Cargando…

Anonymous Three-Party Password-Authenticated Key Exchange Scheme for Telecare Medical Information Systems

Telecare Medical Information Systems (TMIS) provide an effective way to enhance the medical process between doctors, nurses and patients. For enhancing the security and privacy of TMIS, it is important while challenging to enhance the TMIS so that a patient and a doctor can perform mutual authentica...

Descripción completa

Detalles Bibliográficos
Autores principales: Xie, Qi, Hu, Bin, Dong, Na, Wong, Duncan S.
Formato: Online Artículo Texto
Lenguaje:English
Publicado: Public Library of Science 2014
Materias:
Acceso en línea:https://www.ncbi.nlm.nih.gov/pmc/articles/PMC4105614/
https://www.ncbi.nlm.nih.gov/pubmed/25047235
http://dx.doi.org/10.1371/journal.pone.0102747
_version_ 1782327402437804032
author Xie, Qi
Hu, Bin
Dong, Na
Wong, Duncan S.
author_facet Xie, Qi
Hu, Bin
Dong, Na
Wong, Duncan S.
author_sort Xie, Qi
collection PubMed
description Telecare Medical Information Systems (TMIS) provide an effective way to enhance the medical process between doctors, nurses and patients. For enhancing the security and privacy of TMIS, it is important while challenging to enhance the TMIS so that a patient and a doctor can perform mutual authentication and session key establishment using a third-party medical server while the privacy of the patient can be ensured. In this paper, we propose an anonymous three-party password-authenticated key exchange (3PAKE) protocol for TMIS. The protocol is based on the efficient elliptic curve cryptosystem. For security, we apply the pi calculus based formal verification tool ProVerif to show that our 3PAKE protocol for TMIS can provide anonymity for patient and doctor while at the same time achieves mutual authentication and session key security. The proposed scheme is secure and efficient, and can be used in TMIS.
format Online
Article
Text
id pubmed-4105614
institution National Center for Biotechnology Information
language English
publishDate 2014
publisher Public Library of Science
record_format MEDLINE/PubMed
spelling pubmed-41056142014-07-23 Anonymous Three-Party Password-Authenticated Key Exchange Scheme for Telecare Medical Information Systems Xie, Qi Hu, Bin Dong, Na Wong, Duncan S. PLoS One Research Article Telecare Medical Information Systems (TMIS) provide an effective way to enhance the medical process between doctors, nurses and patients. For enhancing the security and privacy of TMIS, it is important while challenging to enhance the TMIS so that a patient and a doctor can perform mutual authentication and session key establishment using a third-party medical server while the privacy of the patient can be ensured. In this paper, we propose an anonymous three-party password-authenticated key exchange (3PAKE) protocol for TMIS. The protocol is based on the efficient elliptic curve cryptosystem. For security, we apply the pi calculus based formal verification tool ProVerif to show that our 3PAKE protocol for TMIS can provide anonymity for patient and doctor while at the same time achieves mutual authentication and session key security. The proposed scheme is secure and efficient, and can be used in TMIS. Public Library of Science 2014-07-21 /pmc/articles/PMC4105614/ /pubmed/25047235 http://dx.doi.org/10.1371/journal.pone.0102747 Text en © 2014 Xie et al http://creativecommons.org/licenses/by/4.0/ This is an open-access article distributed under the terms of the Creative Commons Attribution License, which permits unrestricted use, distribution, and reproduction in any medium, provided the original author and source are properly credited.
spellingShingle Research Article
Xie, Qi
Hu, Bin
Dong, Na
Wong, Duncan S.
Anonymous Three-Party Password-Authenticated Key Exchange Scheme for Telecare Medical Information Systems
title Anonymous Three-Party Password-Authenticated Key Exchange Scheme for Telecare Medical Information Systems
title_full Anonymous Three-Party Password-Authenticated Key Exchange Scheme for Telecare Medical Information Systems
title_fullStr Anonymous Three-Party Password-Authenticated Key Exchange Scheme for Telecare Medical Information Systems
title_full_unstemmed Anonymous Three-Party Password-Authenticated Key Exchange Scheme for Telecare Medical Information Systems
title_short Anonymous Three-Party Password-Authenticated Key Exchange Scheme for Telecare Medical Information Systems
title_sort anonymous three-party password-authenticated key exchange scheme for telecare medical information systems
topic Research Article
url https://www.ncbi.nlm.nih.gov/pmc/articles/PMC4105614/
https://www.ncbi.nlm.nih.gov/pubmed/25047235
http://dx.doi.org/10.1371/journal.pone.0102747
work_keys_str_mv AT xieqi anonymousthreepartypasswordauthenticatedkeyexchangeschemefortelecaremedicalinformationsystems
AT hubin anonymousthreepartypasswordauthenticatedkeyexchangeschemefortelecaremedicalinformationsystems
AT dongna anonymousthreepartypasswordauthenticatedkeyexchangeschemefortelecaremedicalinformationsystems
AT wongduncans anonymousthreepartypasswordauthenticatedkeyexchangeschemefortelecaremedicalinformationsystems