Patients’ Data Management System Protected by Identity-Based Authentication and Key Exchange
A secure and distributed framework for the management of patients’ information in emergency and hospitalization services is proposed here in order to seek improvements in efficiency and security in this important area. In particular, confidentiality protection, mutual authentication, and automatic i...
Main Authors: | , , , , |
---|---|
Format: | Article |
Language: | English |
Published: |
MDPI AG
2017-03-01
|
Series: | Sensors |
Subjects: | |
Online Access: | http://www.mdpi.com/1424-8220/17/4/733 |
_version_ | 1798025451773362176 |
---|---|
author | Alexandra Rivero-García Iván Santos-González Candelaria Hernández-Goya Pino Caballero-Gil Moti Yung |
author_facet | Alexandra Rivero-García Iván Santos-González Candelaria Hernández-Goya Pino Caballero-Gil Moti Yung |
author_sort | Alexandra Rivero-García |
collection | DOAJ |
description | A secure and distributed framework for the management of patients’ information in emergency and hospitalization services is proposed here in order to seek improvements in efficiency and security in this important area. In particular, confidentiality protection, mutual authentication, and automatic identification of patients are provided. The proposed system is based on two types of devices: Near Field Communication (NFC) wristbands assigned to patients, and mobile devices assigned to medical staff. Two other main elements of the system are an intermediate server to manage the involved data, and a second server with a private key generator to define the information required to protect communications. An identity-based authentication and key exchange scheme is essential to provide confidential communication and mutual authentication between the medical staff and the private key generator through an intermediate server. The identification of patients is carried out through a keyed-hash message authentication code. Thanks to the combination of the aforementioned tools, a secure alternative mobile health (mHealth) scheme for managing patients’ data is defined for emergency and hospitalization services. Different parts of the proposed system have been implemented, including mobile application, intermediate server, private key generator and communication channels. Apart from that, several simulations have been performed, and, compared with the current system, significant improvements in efficiency have been observed. |
first_indexed | 2024-04-11T18:19:13Z |
format | Article |
id | doaj.art-cc25cf6173434f1282950ebdc23aed9c |
institution | Directory Open Access Journal |
issn | 1424-8220 |
language | English |
last_indexed | 2024-04-11T18:19:13Z |
publishDate | 2017-03-01 |
publisher | MDPI AG |
record_format | Article |
series | Sensors |
spelling | doaj.art-cc25cf6173434f1282950ebdc23aed9c2022-12-22T04:09:49ZengMDPI AGSensors1424-82202017-03-0117473310.3390/s17040733s17040733Patients’ Data Management System Protected by Identity-Based Authentication and Key ExchangeAlexandra Rivero-García0Iván Santos-González1Candelaria Hernández-Goya2Pino Caballero-Gil3Moti Yung4Department of Computer Engineering and Systems, University of La Laguna, 38206 Tenerife, SpainDepartment of Computer Engineering and Systems, University of La Laguna, 38206 Tenerife, SpainDepartment of Computer Engineering and Systems, University of La Laguna, 38206 Tenerife, SpainDepartment of Computer Engineering and Systems, University of La Laguna, 38206 Tenerife, SpainComputer Science Department, Snapchat and Columbia University, New York, NY 10027, USAA secure and distributed framework for the management of patients’ information in emergency and hospitalization services is proposed here in order to seek improvements in efficiency and security in this important area. In particular, confidentiality protection, mutual authentication, and automatic identification of patients are provided. The proposed system is based on two types of devices: Near Field Communication (NFC) wristbands assigned to patients, and mobile devices assigned to medical staff. Two other main elements of the system are an intermediate server to manage the involved data, and a second server with a private key generator to define the information required to protect communications. An identity-based authentication and key exchange scheme is essential to provide confidential communication and mutual authentication between the medical staff and the private key generator through an intermediate server. The identification of patients is carried out through a keyed-hash message authentication code. Thanks to the combination of the aforementioned tools, a secure alternative mobile health (mHealth) scheme for managing patients’ data is defined for emergency and hospitalization services. Different parts of the proposed system have been implemented, including mobile application, intermediate server, private key generator and communication channels. Apart from that, several simulations have been performed, and, compared with the current system, significant improvements in efficiency have been observed.http://www.mdpi.com/1424-8220/17/4/733identity-based cryptosystemidentity-based authentication and key exchangemHealthkeyed-hash message authentication codeAndroidNFC |
spellingShingle | Alexandra Rivero-García Iván Santos-González Candelaria Hernández-Goya Pino Caballero-Gil Moti Yung Patients’ Data Management System Protected by Identity-Based Authentication and Key Exchange Sensors identity-based cryptosystem identity-based authentication and key exchange mHealth keyed-hash message authentication code Android NFC |
title | Patients’ Data Management System Protected by Identity-Based Authentication and Key Exchange |
title_full | Patients’ Data Management System Protected by Identity-Based Authentication and Key Exchange |
title_fullStr | Patients’ Data Management System Protected by Identity-Based Authentication and Key Exchange |
title_full_unstemmed | Patients’ Data Management System Protected by Identity-Based Authentication and Key Exchange |
title_short | Patients’ Data Management System Protected by Identity-Based Authentication and Key Exchange |
title_sort | patients data management system protected by identity based authentication and key exchange |
topic | identity-based cryptosystem identity-based authentication and key exchange mHealth keyed-hash message authentication code Android NFC |
url | http://www.mdpi.com/1424-8220/17/4/733 |
work_keys_str_mv | AT alexandrariverogarcia patientsdatamanagementsystemprotectedbyidentitybasedauthenticationandkeyexchange AT ivansantosgonzalez patientsdatamanagementsystemprotectedbyidentitybasedauthenticationandkeyexchange AT candelariahernandezgoya patientsdatamanagementsystemprotectedbyidentitybasedauthenticationandkeyexchange AT pinocaballerogil patientsdatamanagementsystemprotectedbyidentitybasedauthenticationandkeyexchange AT motiyung patientsdatamanagementsystemprotectedbyidentitybasedauthenticationandkeyexchange |