Intelligent two-phase dual authentication framework for Internet of Medical Things
Abstract The Internet of Medical Things (IoMT) has revolutionized healthcare by bringing real-time monitoring and data-driven treatments. Nevertheless, the security of communication between IoMT devices and servers remains a huge problem because of the inherent sensitivity of the health data and sus...
Saved in:
| Main Authors: | , , , , , , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
Nature Portfolio
2025-01-01
|
| Series: | Scientific Reports |
| Subjects: | |
| Online Access: | https://doi.org/10.1038/s41598-024-84713-5 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| _version_ | 1832594730514382848 |
|---|---|
| author | Muhammad Asif Mohammad Abrar Abdu Salam Farhan Amin Faizan Ullah Sabir Shah Hussain AlSalman |
| author_facet | Muhammad Asif Mohammad Abrar Abdu Salam Farhan Amin Faizan Ullah Sabir Shah Hussain AlSalman |
| author_sort | Muhammad Asif |
| collection | DOAJ |
| description | Abstract The Internet of Medical Things (IoMT) has revolutionized healthcare by bringing real-time monitoring and data-driven treatments. Nevertheless, the security of communication between IoMT devices and servers remains a huge problem because of the inherent sensitivity of the health data and susceptibility to cyber threats. Current security solutions, including simple password-based authentication and standard Public Key Infrastructure (PKI) approaches, typically do not achieve an appropriate balance between security and low computational overhead, resulting in the possibility of performance bottlenecks and increased vulnerability to attacks. To overcome these limitations, we present an intelligent two-phase dual authentication framework that improves the security of sensor-to-server communication in IoMT environments. During the registration phase, our framework is based on Elliptic Curve Diffie-Hellman (ECDH) for rapid key exchange, and during real-time communication, our framework uses the Advanced Encryption Standard Galois Counter Mode (AES-GCM) to encrypt data securely. The efficiency of the proposed framework was rigorously tested through simulations that evaluated encryption-decryption time, computational cost, latency, and packet delivery ratio. The security resilience was also evaluated against man-in-the-middle, replay, and brute force attacks. The results show that encryption/decryption time is reduced by over 45%, overall computational cost by 45.38%, and latency by 28.42% over existing approaches. Furthermore, the framework achieved a high packet delivery ratio and strong defense against cyber threats for maintaining the confidentiality and integrity of the medical data across IoMT networks. However, the dual authentication approach doesn’t affect the functionality of medical IoT devices while enhancing IoMT security, which makes it an ideal integration option for existing healthcare systems. |
| format | Article |
| id | doaj-art-f0d8819953ed448889c22883cd8cc019 |
| institution | Kabale University |
| issn | 2045-2322 |
| language | English |
| publishDate | 2025-01-01 |
| publisher | Nature Portfolio |
| record_format | Article |
| series | Scientific Reports |
| spelling | doaj-art-f0d8819953ed448889c22883cd8cc0192025-01-19T12:24:04ZengNature PortfolioScientific Reports2045-23222025-01-0115111910.1038/s41598-024-84713-5Intelligent two-phase dual authentication framework for Internet of Medical ThingsMuhammad Asif0Mohammad Abrar1Abdu Salam2Farhan Amin3Faizan Ullah4Sabir Shah5Hussain AlSalman6Department of Computer Science, Bacha Khan UniversityFaculty of Computer Studies, Arab Open UniversityDepartment of Computer Science, Abdul Wali Khan UniversitySchool of Computer Science and Engineering, Yeungnam UniversityDepartment of Computer Science, Bacha Khan UniversityDepartment of Computer Science, University of BunerDepartment of Computer Science, College of Computer and Information Sciences, King Saud UniversityAbstract The Internet of Medical Things (IoMT) has revolutionized healthcare by bringing real-time monitoring and data-driven treatments. Nevertheless, the security of communication between IoMT devices and servers remains a huge problem because of the inherent sensitivity of the health data and susceptibility to cyber threats. Current security solutions, including simple password-based authentication and standard Public Key Infrastructure (PKI) approaches, typically do not achieve an appropriate balance between security and low computational overhead, resulting in the possibility of performance bottlenecks and increased vulnerability to attacks. To overcome these limitations, we present an intelligent two-phase dual authentication framework that improves the security of sensor-to-server communication in IoMT environments. During the registration phase, our framework is based on Elliptic Curve Diffie-Hellman (ECDH) for rapid key exchange, and during real-time communication, our framework uses the Advanced Encryption Standard Galois Counter Mode (AES-GCM) to encrypt data securely. The efficiency of the proposed framework was rigorously tested through simulations that evaluated encryption-decryption time, computational cost, latency, and packet delivery ratio. The security resilience was also evaluated against man-in-the-middle, replay, and brute force attacks. The results show that encryption/decryption time is reduced by over 45%, overall computational cost by 45.38%, and latency by 28.42% over existing approaches. Furthermore, the framework achieved a high packet delivery ratio and strong defense against cyber threats for maintaining the confidentiality and integrity of the medical data across IoMT networks. However, the dual authentication approach doesn’t affect the functionality of medical IoT devices while enhancing IoMT security, which makes it an ideal integration option for existing healthcare systems.https://doi.org/10.1038/s41598-024-84713-5Internet of medical thingsDual authentication FrameworkCybersecuritySensor-to-server communicationHealth Data ProtectionCryptographic robustness |
| spellingShingle | Muhammad Asif Mohammad Abrar Abdu Salam Farhan Amin Faizan Ullah Sabir Shah Hussain AlSalman Intelligent two-phase dual authentication framework for Internet of Medical Things Scientific Reports Internet of medical things Dual authentication Framework Cybersecurity Sensor-to-server communication Health Data Protection Cryptographic robustness |
| title | Intelligent two-phase dual authentication framework for Internet of Medical Things |
| title_full | Intelligent two-phase dual authentication framework for Internet of Medical Things |
| title_fullStr | Intelligent two-phase dual authentication framework for Internet of Medical Things |
| title_full_unstemmed | Intelligent two-phase dual authentication framework for Internet of Medical Things |
| title_short | Intelligent two-phase dual authentication framework for Internet of Medical Things |
| title_sort | intelligent two phase dual authentication framework for internet of medical things |
| topic | Internet of medical things Dual authentication Framework Cybersecurity Sensor-to-server communication Health Data Protection Cryptographic robustness |
| url | https://doi.org/10.1038/s41598-024-84713-5 |
| work_keys_str_mv | AT muhammadasif intelligenttwophasedualauthenticationframeworkforinternetofmedicalthings AT mohammadabrar intelligenttwophasedualauthenticationframeworkforinternetofmedicalthings AT abdusalam intelligenttwophasedualauthenticationframeworkforinternetofmedicalthings AT farhanamin intelligenttwophasedualauthenticationframeworkforinternetofmedicalthings AT faizanullah intelligenttwophasedualauthenticationframeworkforinternetofmedicalthings AT sabirshah intelligenttwophasedualauthenticationframeworkforinternetofmedicalthings AT hussainalsalman intelligenttwophasedualauthenticationframeworkforinternetofmedicalthings |