摘要
可穿戴设备正推进着移动医疗的快速发展,但无线体域网的开放式结构也给用户数据安全带来了更多威胁。为了数据安全,基于物理不可克隆函数和脉搏间隔,提出一种设备节点和数据中心之间的双因子认证协议。此协议利用设备物理特征和用户生物特征双重唯一性,有效地阻止了妥协和假冒等攻击,且适用于体域网环境下资源受限的医疗设备。与现有方案相比,增强了认证协议安全性。FPGA平台上实验证明了所提协议的实用性和有效性。
Wearable device is pushing the rapid development of mobile health, however, the open architecture of wireless body area network has brought challenges for the security of user data. In order to protect the security of user data, a two-factor authentication protocol between device note and data hub was proposed based on physically unclonable func-tion and interpulse interval. Using dual uniqueness of device physical characteristic and user biometric trait, the protocol can resist compromise and impersonation attacks and was specially suitable for resource constrained wearable devices under body area network. Compared with the existing authentication schemes, the security of the proposed protocol was enhanced. The practicability and effectiveness of the protocol are confirmed by hardware implementation on FPGA.
作者
王俊
刘树波
梁才
李永凯
WANG Jun LIU Shu-bo LIANG Cai LI Yong-kai(Key Laboratory of Aerospace Information Security and Trusted Computing Ministry of Education, Wuhan University, Wuhan 430072, China School of Computer, Wuhan University, Wuhan 430072, China)
出处
《通信学报》
EI
CSCD
北大核心
2017年第6期127-135,共9页
Journal on Communications
基金
国家自然科学基金资助项目(No.41371402
No.41671443)
中央高校基本科研业务费专项基金资助项目(No.2015211020201
No.2042017gf0038)~~
关键词
认证协议
双因子
物理不可克隆函数
脉搏间隔
authentication protocol, two-factor, physically unclonable function, interpulse interval
