A Secure Three-Factor User Authentication and Key Agreement Protocol for TMIS With User Anonymity
- PMID: 26112322
- DOI: 10.1007/s10916-015-0258-7
A Secure Three-Factor User Authentication and Key Agreement Protocol for TMIS With User Anonymity
Abstract
Telecare medical information system (TMIS) makes an efficient and convenient connection between patient(s)/user(s) and doctor(s) over the insecure internet. Therefore, data security, privacy and user authentication are enormously important for accessing important medical data over insecure communication. Recently, many user authentication protocols for TMIS have been proposed in the literature and it has been observed that most of the protocols cannot achieve complete security requirements. In this paper, we have scrutinized two (Mishra et al., Xu et al.) remote user authentication protocols using smart card and explained that both the protocols are suffering against several security weaknesses. We have then presented three-factor user authentication and key agreement protocol usable for TMIS, which fix the security pitfalls of the above mentioned schemes. The informal cryptanalysis makes certain that the proposed protocol provides well security protection on the relevant security attacks. Furthermore, the simulator AVISPA tool confirms that the protocol is secure against active and passive attacks including replay and man-in-the-middle attacks. The security functionalities and performance comparison analysis confirm that our protocol not only provide strong protection on security attacks, but it also achieves better complexities along with efficient login and password change phase as well as session key verification property.
Similar articles
-
A novel user authentication and key agreement protocol for accessing multi-medical server usable in TMIS.J Med Syst. 2015 Mar;39(3):33. doi: 10.1007/s10916-015-0217-3. Epub 2015 Feb 15. J Med Syst. 2015. PMID: 25681100
-
An Improved RSA Based User Authentication and Session Key Agreement Protocol Usable in TMIS.J Med Syst. 2015 Aug;39(8):79. doi: 10.1007/s10916-015-0262-y. Epub 2015 Jun 28. J Med Syst. 2015. PMID: 26123833
-
A secure user anonymity-preserving three-factor remote user authentication scheme for the telecare medicine information systems.J Med Syst. 2015 Mar;39(3):30. doi: 10.1007/s10916-015-0218-2. Epub 2015 Feb 13. J Med Syst. 2015. PMID: 25677956
-
A Survey of Authentication Schemes in Telecare Medicine Information Systems.J Med Syst. 2017 Jan;41(1):14. doi: 10.1007/s10916-016-0658-3. Epub 2016 Nov 30. J Med Syst. 2017. PMID: 27900653 Review.
-
Security, Privacy, and Usability in Continuous Authentication: A Survey.Sensors (Basel). 2021 Sep 6;21(17):5967. doi: 10.3390/s21175967. Sensors (Basel). 2021. PMID: 34502865 Free PMC article. Review.
Cited by
-
Dependable and Provable Secure Two-Factor Mutual Authentication Scheme Using ECC for IoT-Based Telecare Medical Information System.J Healthc Eng. 2022 Feb 14;2022:9273662. doi: 10.1155/2022/9273662. eCollection 2022. J Healthc Eng. 2022. Retraction in: J Healthc Eng. 2023 Sep 14;2023:9797804. doi: 10.1155/2023/9797804. PMID: 35198134 Free PMC article. Retracted.
-
An Efficient and Practical Smart Card Based Anonymity Preserving User Authentication Scheme for TMIS using Elliptic Curve Cryptography.J Med Syst. 2015 Nov;39(11):180. doi: 10.1007/s10916-015-0351-y. Epub 2015 Oct 3. J Med Syst. 2015. PMID: 26433889
-
A Robust and Efficient ECC-based Mutual Authentication and Session Key Generation Scheme for Healthcare Applications.J Med Syst. 2018 Dec 1;43(1):10. doi: 10.1007/s10916-018-1120-5. J Med Syst. 2018. PMID: 30506115
-
A Standard Mutual Authentication Protocol for Cloud Computing Based Health Care System.J Med Syst. 2017 Apr;41(4):50. doi: 10.1007/s10916-017-0699-2. Epub 2017 Feb 17. J Med Syst. 2017. PMID: 28213882
-
An Improved and Secure Biometric Authentication Scheme for Telecare Medicine Information Systems Based on Elliptic Curve Cryptography.J Med Syst. 2015 Nov;39(11):175. doi: 10.1007/s10916-015-0335-y. Epub 2015 Sep 23. J Med Syst. 2015. PMID: 26399937
References
MeSH terms
LinkOut - more resources
Full Text Sources
Medical
