Change search
ReferencesLink to record
Permanent link

Direct link
SEA: A Secure and Efficient Authentication and Authorization Architecture for IoT-Based Healthcare Using Smart Gateways
University of Turku, Finland.
University of Turku, Finland.
KTH, School of Information and Communication Technology (ICT), Industrial and Medical Electronics. University of Turku, Finland.ORCID iD: 0000-0001-8750-8242
University of Turku, Finland.
Show others and affiliations
2015 (English)In: Procedia Computer Science, ISSN 1877-0509, E-ISSN 1877-0509, Vol. 52, 452-459 p.Article in journal (Refereed) Published
Abstract [en]

In this paper, a secure and efficient authentication and authorization architecture for IoT-based healthcare is developed. Security and privacy of patients’ medical data are crucial for the acceptance and ubiquitous use of IoT in healthcare. Secure authentication and authorization of a remote healthcare professional is the main focus of this work. Due to resource constraints of medical sensors, it is infeasible to utilize conventional cryptography in IoT-based healthcare. In addition, gateways in existing IoTs focus only on trivial tasks without alleviating the authentication and authorization challenges. In the presented architecture, authentication and authorization of a remote end-user is done by distributed smart e-health gateways to unburden the medical sensors from performing these tasks. The proposed architecture relies on the certificate-based DTLS handshake protocol as it is the main IP security solution for IoT. The proposed authentication and authorization architecture is tested by developing a prototype IoT-based healthcare system. The prototype is built of a Pandaboard, a TI SmartRF06 board and WiSMotes. The CC2538 module integrated into the TI board acts as a smart gateway and the WisMotes act as medical sensor nodes. The proposed architecture is more secure than a state-of-the-art centralized delegation-based architecture because it uses a more secure key management scheme between sensor nodes and the smart gateway. Furthermore, the impact of DoS attacks is reduced due to the distributed nature of the architecture. Our performance evaluation results show that compared to the delegation-based architecture, the proposed architecture reduces communication overhead by 26% and communication latency from the smart gateway to the end-user by 16%.

Place, publisher, year, edition, pages
Elsevier, 2015. Vol. 52, 452-459 p.
Keyword [en]
Internet of Things, Healthcare, Smart Home/Hospital, Smart Gateway, Security, Authentication, Authorization
National Category
Embedded Systems Computer Systems Communication Systems
URN: urn:nbn:se:kth:diva-168664DOI: 10.1016/j.procs.2015.05.013ISI: 000361567100055ScopusID: 2-s2.0-84939148509OAI: diva2:817834
The 6th International Conference on Ambient Systems, Networks and Technologies (ANT-2015), the 5th International Conference on Sustainable Energy Information Technology (SEIT-2015)

QC 20150618

Available from: 2015-06-07 Created: 2015-06-07 Last updated: 2015-10-20Bibliographically approved

Open Access in DiVA

fulltext(494 kB)452 downloads
File information
File name FULLTEXT01.pdfFile size 494 kBChecksum SHA-512
Type fulltextMimetype application/pdf

Other links

Publisher's full textScopusConference websiteSciencedirect

Search in DiVA

By author/editor
Rahmani, Amir-MohammadTenhunen, Hannu
By organisation
Industrial and Medical Electronics
In the same journal
Procedia Computer Science
Embedded SystemsComputer SystemsCommunication Systems

Search outside of DiVA

GoogleGoogle Scholar
Total: 452 downloads
The number of downloads is the sum of all downloads of full texts. It may include eg previous versions that are now no longer available

Altmetric score

Total: 193 hits
ReferencesLink to record
Permanent link

Direct link