Cryptanalysis and Improvement of an Improved Two Factor Authentication Protocol for Telecare Medical Information Systems

被引：92

作者：

Chaudhry, Shehzad Ashraf ^{[1
]}

Naqvi, Husnain ^{[1
]}

Shon, Taeshik ^{[2
]}

Sher, Muhammad ^{[1
]}

Farash, Mohammad Sabzinejad ^{[3
]}

机构：

[1] Int Islamic Univ Islamabad, Dept Comp Sci & Software Engn, Islamabad, Pakistan

[2] Ajou Univ, Coll Informat Technol, Div Informat & Comp Engn, Suwon 443749, South Korea

[3] Kharazmi Univ, Mohammad Sabzinejad Farash Dept Math & Comp Sci, Tehran, Iran

来源：

JOURNAL OF MEDICAL SYSTEMS | 2015年 / 39卷 / 06期

关键词：

Authentication; Authenticated key agreement; Elliptic curve cryptography; Impersonation attack; TMIS; Body area networks; REMOTE USER AUTHENTICATION; KEY AGREEMENT PROTOCOL; EXCHANGE PROTOCOL; EFFICIENT; SCHEME; SECURE; ANONYMITY; ROBUST;

D O I：

10.1007/s10916-015-0244-0

中图分类号：

R19 [保健组织与事业（卫生事业管理）];

学科分类号：

摘要：

Telecare medical information systems (TMIS) provides rapid and convenient health care services remotely. Efficient authentication is a prerequisite to guarantee the security and privacy of patients in TMIS. Authentication is used to verify the legality of the patients and TMIS server during remote access. Very recently Islam et al. (J. Med. Syst. 38(10): 135, 2014) proposed a two factor authentication protocol for TMIS using elliptic curve cryptography (ECC) to improve Xu et al.'s (J. Med. Syst. 38(1): 9994, 2014) protocol. They claimed their improved protocol to be efficient and provides all security requirements. However our analysis reveals that Islam et al.'s protocol suffers from user impersonation and server impersonation attacks. Furthermore we proposed an enhanced protocol. The proposed protocol while delivering all the virtues of Islam et al.'s protocol resists all known attacks.

引用

页数：11

共 50 条

[1] Cryptanalysis and Improvement of an Improved Two Factor Authentication Protocol for Telecare Medical Information Systems
Shehzad Ashraf Chaudhry
Husnain Naqvi
Taeshik Shon
Muhammad Sher
Mohammad Sabzinejad Farash
Journal of Medical Systems, 2015, 39
[2] Cryptanalysis and improvement of an authentication scheme for telecare medical information systems
Zhao, Yun
Zhang, Chunming
INTERNATIONAL JOURNAL OF ELECTRONIC SECURITY AND DIGITAL FORENSICS, 2014, 6 (03) : 157 - 168
[3] Cryptanalysis and Improvement of Authentication and Key Agreement Protocols for Telecare Medicine Information Systems
Islam, S. K. Hafizul
Khan, Muhammad Khurram
JOURNAL OF MEDICAL SYSTEMS, 2014, 38 (10)
[4] Cryptanalysis and Improvement of a Novel RFID Authentication Protocol for Medical Systems
Xiao, Feng
Hu, Xi
KSII TRANSACTIONS ON INTERNET AND INFORMATION SYSTEMS, 2025, 19 (02): : 589 - 611
[5] An Improved User Authentication Scheme for Telecare Medical Information Systems
Madhusudhan, R.
Nayak, Chaitanya S.
2018 IEEE/ACM INTERNATIONAL CONFERECE ON CONNECTED HEALTH: APPLICATIONS, SYSTEMS AND ENGINEERING TECHNOLOGIES (CHASE), 2018, : 100 - 105
[6] Enabling Telecare Medical Information Systems With Strong Authentication and Anonymity
Xiong, Hu
Tao, Junyi
Yuan, Chen
IEEE ACCESS, 2017, 5 : 5648 - 5661
[7] A Robust and Anonymous Two Factor Authentication and Key Agreement Protocol for Telecare Medicine Information Systems
Xiong, Hu
Tao, Junyi
Chen, Yanan
JOURNAL OF MEDICAL SYSTEMS, 2016, 40 (11)
[8] An Improved Anonymous Authentication Scheme for Telecare Medical Information Systems
Wen, Fengtong
Guo, Dianli
JOURNAL OF MEDICAL SYSTEMS, 2014, 38 (05)
[9] Cryptanalysis and Improvement of Authentication and Key Agreement Protocols for Telecare Medicine Information Systems
SK Hafizul Islam
Muhammad Khurram Khan
Journal of Medical Systems, 2014, 38
[10] Cryptanalysis and improvement of 'a secure authentication scheme for telecare medical information system' with nonce verification
Siddiqui, Zeeshan
Abdullah, Abdul Hanan
Khan, Muhammad Khurram
Alghamdi, Abdullah Sharaf
PEER-TO-PEER NETWORKING AND APPLICATIONS, 2016, 9 (05) : 841 - 853

← 1 2 3 4 5 →