This chapter examines the development of a comprehensive passwordless authentication solution for mobile e-health systems, addressing challenges of security, data privacy, and user accessibility. As reliance on mobile health applications grows, especially for remote patient monitoring, traditional authentication methods using passwords are no longer sufficient, particularly for elderly users. The study introduces a multi-faceted approach, beginning with the creation of a secure mobile e-health application infrastructure, which eliminates the need for third-party servers. A unique identity-based encryption protocol is implemented, leveraging advanced cryptographic techniques to generate non-regenerated unique identities for e-health sensor nodes. This protocol is fortified through the integration of Near Field Communication (NFC) technology and secure boot processes, which enable trusted, device-specific authentication without relying on passwords. A mobile e-health test bed, combining hardware and software components, validates the feasibility of the authentication protocol under real-world conditions. The solution’s efficacy is demonstrated through formal validation methods using tools like AVISPA and SPAN, showing resilience against node cloning and replay attacks. Furthermore, a lightweight identity-based encryption (IBE) algorithm is optimized to minimize memory usage and processing time, making it suitable for resource-constrained mobile devices. The findings reveal a significant enhancement in data security, privacy, and usability for mobile e-health applications. The proposed authentication framework provides a practical and scalable solution, benefiting elderly users by simplifying the authentication process and eliminating the need for password management. These contributions advance the field of mobile e-health, offering an innovative approach to secure authentication that aligns with the unique constraints of healthcare environments and supports a reliable, cost-effective infrastructure for future digital health systems.

错误:搜索内容不能为空,请输入英文关键词
错误:关键词超出字数限制,请精简
高级检索

Trusted Access: Authentication Solutions for Mobile E-Health

  • Nazhatul Hafizah Kamarudin,
  • Yusnani Mohd Yussoff,
  • Tutut Herawan

摘要

This chapter examines the development of a comprehensive passwordless authentication solution for mobile e-health systems, addressing challenges of security, data privacy, and user accessibility. As reliance on mobile health applications grows, especially for remote patient monitoring, traditional authentication methods using passwords are no longer sufficient, particularly for elderly users. The study introduces a multi-faceted approach, beginning with the creation of a secure mobile e-health application infrastructure, which eliminates the need for third-party servers. A unique identity-based encryption protocol is implemented, leveraging advanced cryptographic techniques to generate non-regenerated unique identities for e-health sensor nodes. This protocol is fortified through the integration of Near Field Communication (NFC) technology and secure boot processes, which enable trusted, device-specific authentication without relying on passwords. A mobile e-health test bed, combining hardware and software components, validates the feasibility of the authentication protocol under real-world conditions. The solution’s efficacy is demonstrated through formal validation methods using tools like AVISPA and SPAN, showing resilience against node cloning and replay attacks. Furthermore, a lightweight identity-based encryption (IBE) algorithm is optimized to minimize memory usage and processing time, making it suitable for resource-constrained mobile devices. The findings reveal a significant enhancement in data security, privacy, and usability for mobile e-health applications. The proposed authentication framework provides a practical and scalable solution, benefiting elderly users by simplifying the authentication process and eliminating the need for password management. These contributions advance the field of mobile e-health, offering an innovative approach to secure authentication that aligns with the unique constraints of healthcare environments and supports a reliable, cost-effective infrastructure for future digital health systems.