Sensors 2017, 17(4), 733; https://doi.org/10.3390/s17040733
Patients’ Data Management System Protected by Identity-Based Authentication and Key Exchange
Alexandra Rivero-García 1
, Iván Santos-González 1, Candelaria Hernández-Goya 1, Pino Caballero-Gil 1,*
and Moti Yung 2
, Iván Santos-González 1, Candelaria Hernández-Goya 1, Pino Caballero-Gil 1,*
and Moti Yung 21
Department of Computer Engineering and Systems, University of La Laguna, 38206 Tenerife, Spain
2
Computer Science Department, Snapchat and Columbia University, New York, NY 10027, USA
*
Author to whom correspondence should be addressed.
Academic Editor: Vittorio M. N. Passaro
Received: 31 January 2017 / Revised: 22 March 2017 / Accepted: 28 March 2017 / Published: 31 March 2017
(This article belongs to the Special Issue Selected Papers from UCAmI 2016)
Abstract
A secure and distributed framework for the management of patients’ information in emergency and hospitalization services is proposed here in order to seek improvements in efficiency and security in this important area. In particular, confidentiality protection, mutual authentication, and automatic identification of patients are provided. The proposed system is based on two types of devices: Near Field Communication (NFC) wristbands assigned to patients, and mobile devices assigned to medical staff. Two other main elements of the system are an intermediate server to manage the involved data, and a second server with a private key generator to define the information required to protect communications. An identity-based authentication and key exchange scheme is essential to provide confidential communication and mutual authentication between the medical staff and the private key generator through an intermediate server. The identification of patients is carried out through a keyed-hash message authentication code. Thanks to the combination of the aforementioned tools, a secure alternative mobile health (mHealth) scheme for managing patients’ data is defined for emergency and hospitalization services. Different parts of the proposed system have been implemented, including mobile application, intermediate server, private key generator and communication channels. Apart from that, several simulations have been performed, and, compared with the current system, significant improvements in efficiency have been observed. View Full-TextKeywords:
identity-based cryptosystem; identity-based authentication and key exchange; mHealth; keyed-hash message authentication code; Android; NFC
▼
Figures
Figure 1
This is an open access article distributed under the Creative Commons Attribution License which permits unrestricted use, distribution, and reproduction in any medium, provided the original work is properly cited (CC BY 4.0).
Share & Cite This Article
MDPI and ACS Style
Rivero-García, A.; Santos-González, I.; Hernández-Goya, C.; Caballero-Gil, P.; Yung, M. Patients’ Data Management System Protected by Identity-Based Authentication and Key Exchange. Sensors 2017, 17, 733.
Note that from the first issue of 2016, MDPI journals use article numbers instead of page numbers. See further details here.