| DOI | Resolve DOI: https://doi.org/10.1016/j.iot.2020.100343 |
|---|
| Author | Search for: Fakroon, Moneer; Search for: Gebali, Fayez; Search for: Mamun, Mohammad1 |
|---|
| Affiliation | - National Research Council of Canada. Digital Technologies
|
|---|
| Format | Text, Article |
|---|
| Subject | Internet of Things; device authentication; hardware security; embedded systems; PUF; AVISPA; BAN; three-factor authentication |
|---|
| Abstract | We propose a secure telehealth system using multifactor authentication for the mobile devices as well as the IoT edge devices in the system. These two types of devices constitute the weakest link in telehealth systems. The mobile devices and edge devices are typically unsecured and contain vulnerable processors. The mobile devices use the healthcare professional’s biometric and endowing the edge device with biometrics is accomplished by using physically unclonable functions (PUFs). The embedded PUF acts as a means of enabling mutual authentication and key exchange. Evaluating the security of the proposed authentication scheme is conducted using three approaches: (a) formal analysis based on Burrows–Abadi–Needham logic (BAN); (b) informal security analysis for protection against many attack types.; (c) model checking using automated validation of internet security protocols and applications (AVISPA) tool. |
|---|
| Publication date | 2020-12-14 |
|---|
| Publisher | Elsevier |
|---|
| In | |
|---|
| Language | English |
|---|
| Peer reviewed | Yes |
|---|
| Export citation | Export as RIS |
|---|
| Report a correction | Report a correction (opens in a new tab) |
|---|
| Record identifier | a69711e9-995c-4131-ae89-8d414aeb6c62 |
|---|
| Record created | 2021-08-03 |
|---|
| Record modified | 2021-08-03 |
|---|
