Design And Analysis Of Security Protocols For WBAN

Wireless body area network(WBAN)provides a mechanism of transmitting persons physiological data to healthcare service providers in real time.As an integral part of the Internet of Things(Io T)ecosystem,WBAN is the smart objects providing ubiquity in healthcare management system.A service provider can remotely monitor physiological parameters for example ECG,blood pressure,sugar level,respiration rate and activity recognition from anywhere and at any time.Data generated by WBAN technology is susceptible to an unauthorized access and modification over open networks.An unauthorized access violates a user's privacy while modified data may lead to an irreversible misdiagnosis.Securing these data in the context of a heterogeneous Io T and resource limited WBAN is a challenging task for researchers.These challenges underscore the need for computationally efficient and lightweight security mechanisms.Current research on cryptographic techniques intended for of smart objects in an evolving Io T infrastructure are still in progress.Some of the recently proposed schemes for securing WBAN are vulnerable to security and privacy attacks.Moreover,due to high computational cost,practical implementation of security mechanisms on resource-limited device is thus reduced.In order to solve security in WBAN,this dissertation proposes efficient and lightweight application layer security protocols that are suitable for integrating WBAN in Io T.Our main work includes the following:1.We propose an efficient remote user authentication scheme for WBAN.The scheme addresses a security flaw in a previously proposed scheme in literature.It is based on certificateless cryptography.Its performance in terms of computation and communication costs is lower than some of the existing schemes and provides for security requirements of an authenticated key agreement scheme.2.Secure communication between WBAN and service provider should provide both confidentiality and authenticity.In order to solve this problem,a new provablysecure data transmission is designed using signcryption primitive,achieving confidentiality and authenticity in one logical step machine.We provide security proof for indistinguishability against adaptive chosen ciphertext attack(IND-CCA2)and existential unforgeability against adaptive chosen message attack(EUF-CMA)in random oracle model.The scheme has less computational overhead.3.We designed a heterogeneous access control scheme for WBAN.Firstly,we de-signed a heterogeneous signcryption scheme.In this scheme,a user in a certificateless cryptographic environment securely transmits a query to another entity in identity based environment.Formal security proof for IND-CCA2 and EUF-CMA is given.Finally,we use the signcryption scheme to design a new lightweight access control protocol suitable for resource constrained devices such as WBAN.This study offers significant progress towards secure integration of WBAN into the internet,an important ingredient in the realization of access to healthcare services from anywhere and at anytime.