A Dynamic-Identity Based Multimedia Server Client Authentication Scheme for Tele-Care Multimedia Medical Information System

Recently, several biometric and tele-care based user authentication schemes have been proposed to enhance the safe and security of the systems. In 2013, the authors, namely Das et al. improved the authentication scheme of Chang et al. to overcome the severe security flaws, such as failed to protect man-in-the-middle attack, failed to provide the reliable authentication and flaws in client login-phase. Besides, the authors evaluated the authentication in the simulation tool of AVISPA. In the same year, the authors, namely Khurram et al. proposed an improved the authentication scheme of Youngwa An to eradicate the security flaws, like impersonation attack, mutual authentication and user anonymity. The authors, like Das et al. and Khurram et al. have had their own strategies to mitigate the security flaws, though they are still not able to evaluate their schemes in the real time medical information systems. Besides, both authors fail to prove the privacy preservation to the user systems. Thus, this paper proposes a dynamic-identity based multimedia server client authentication scheme to resolve the major security threats of Das et al. and Khurran et al. We prove that our proposed scheme is secure and efficient in comparison with the authentication schemes, namely Youngwa An, Khurram et al., Das et al. and Chang et al. We also depict that our proposed scheme can offer the features like privacy preservation and service scalability reliably for the user systems. Eventually, we design an develop a real time testbed of multimedia medical information system to cross-examine the authentication schemes. In the cross-examination, our authentication scheme shows the most achievable results for the metrics like call setup time, signal congestion and bandwidth consumption in relation to the other authentication schemes, such as Youngwa An, Khurram et al., Das et al. and Chang et al.

[1]  Yu-Fang Chung,et al.  A Password-Based User Authentication Scheme for the Integrated EPR Information System , 2012, Journal of Medical Systems.

[2]  Muhammad Khurram Khan,et al.  An Improved Biometrics-Based Remote User Authentication Scheme with User Anonymity , 2013, BioMed research international.

[3]  Ashok Kumar Das,et al.  Analysis and improvement on an efficient biometric-based remote user authentication scheme using smart cards , 2011, IET Inf. Secur..

[4]  Chunguang Ma,et al.  Security flaws in two improved remote user authentication schemes using smart cards , 2014, Int. J. Commun. Syst..

[5]  Muhammad Khurram Khan,et al.  Cryptanalysis and security enhancement of a 'more efficient & secure dynamic ID-based remote user authentication scheme' , 2011, Comput. Commun..

[6]  Fang Qun Cryptanalysis and improvement of a remote user authentication scheme , 2010 .

[7]  Ya-Fen Chang,et al.  A Uniqueness-and-Anonymity-Preserving Remote User Authentication Scheme for Connected Health Care , 2013, Journal of Medical Systems.

[8]  Muhammad Khurram Khan,et al.  Cryptanalysis and Improvement of ‘A Privacy Enhanced Scheme for Telecare Medical Information Systems’ , 2012, Journal of Medical Systems.

[9]  Yuh-Min Tseng,et al.  A communication-efficient and fault-tolerant conference-key agreement protocol with forward secrecy , 2007, J. Syst. Softw..

[10]  Wei Liang,et al.  Cryptanalysis of a dynamic identity‐based remote user authentication scheme with verifiable password update , 2015, Int. J. Commun. Syst..

[11]  S. Gritzalis,et al.  Managing Medical and Insurance Information Through a Smart-Card-Based Information System , 2000, Journal of Medical Systems.

[12]  Yu-Fang Chung,et al.  A Secure Authentication Scheme for Telecare Medicine Information Systems , 2012, Journal of Medical Systems.

[13]  Muhammad Khurram Khan,et al.  Cryptanalysis and improvement of ‘a robust smart‐card‐based remote user password authentication scheme’ , 2014, Int. J. Commun. Syst..

[14]  Wenfen Liu,et al.  An Improved Authentication Scheme for Telecare Medicine Information Systems , 2012, Journal of Medical Systems.

[15]  G. P. Biswas,et al.  A more efficient and secure ID-based remote mutual authentication with key agreement scheme for mobile devices on elliptic curve cryptosystem , 2011, J. Syst. Softw..

[16]  Jonathan Katz,et al.  Scalable Protocols for Authenticated Group Key Exchange , 2003, CRYPTO.

[17]  Ashutosh Saxena,et al.  A dynamic ID-based remote user authentication scheme , 2004, IEEE Transactions on Consumer Electronics.

[18]  Sk Hafizul Islam,et al.  Cryptanalysis and improvement of a password-based user authentication scheme for the integrated EPR information system , 2015, J. King Saud Univ. Comput. Inf. Sci..

[19]  Jia-Lun Tsai,et al.  New dynamic ID authentication scheme using smart cards , 2010, Int. J. Commun. Syst..

[20]  Jianfeng Ma,et al.  A Privacy Enhanced Authentication Scheme for Telecare Medical Information Systems , 2013, Journal of Medical Systems.

[21]  Zhang Rui,et al.  A More Secure Authentication Scheme for Telecare Medicine Information Systems , 2012, Journal of medical systems.

[22]  Hung-Ming Chen,et al.  An Efficient and Secure Dynamic ID-based Authentication Scheme for Telecare Medical Information Systems , 2012, Journal of Medical Systems.

[23]  Mihir Bellare,et al.  Authenticated Key Exchange Secure against Dictionary Attacks , 2000, EUROCRYPT.

[24]  Chun-Ta Li,et al.  An efficient biometrics-based remote user authentication scheme using smart cards , 2010, J. Netw. Comput. Appl..

[25]  Jianfeng Ma,et al.  Improvement of robust smart‐card‐based password authentication scheme , 2015, Int. J. Commun. Syst..

[26]  Younghwa An,et al.  Security Analysis and Enhancements of an Effective Biometric-Based Remote User Authentication Scheme Using Smart Cards , 2012, Journal of biomedicine & biotechnology.

[27]  Mark Handley,et al.  SIP: Session Initiation Protocol , 1999, RFC.

[28]  Ashok Kumar Das,et al.  A Secure and Efficient Uniqueness-and-Anonymity-Preserving Remote User Authentication Scheme for Connected Health Care , 2013, Journal of Medical Systems.

[29]  Xiong Li,et al.  Cryptanalysis and improvement of a biometrics-based remote user authentication scheme using smart cards , 2011, J. Netw. Comput. Appl..