Title: Lightweight authentication scheme based on modified EAP security for CoAP protocol-based IoMT applications

Authors: Pritam S. Salankar; Vinay Avasthi; Ashutosh Pasricha

Addresses: School of Computer Science, University of Petroleum and Energy Studies, Energy Acres, BIDHOLI, via, Prem Nagar, Dehradun, Uttarakhand 248007, India ' School of Computer Science, University of Petroleum and Energy Studies, Energy Acres, BIDHOLI, via, Prem Nagar, Dehradun, Uttarakhand 248007, India ' Schlumberger, South Delhi, India

Abstract: The medical data generated from the patients that are communicated and stored on servers are highly sensitive, and also the IoMT network creates open spaces for an adversary. The proposed work designs a lightweight authentication scheme to support the extensible authentication protocol (EAP) called lightweight EAP (L-EAP). The proposed L-EAP modifies the EAP model and dynamically changes the security service as per healthcare application requirements. The L-EAP selectively applies the data encryption and integrity without frequent re-handshaking with the server using one-bit epoch field in the EAP message header. The L-EAP performs such a key generation process as a part of the authentication phase and enlarges the lifetime of the IoMT network. The advanced encryption standard (AES) is improved for providing data confidentiality in L-EAP. The L-EAP improves the confusion property of cipher text in AES and applies shift row and XOR operations to all the words.

Keywords: internet of medical things; IoMT; lightweight mutual authentication; improved AES-based encryption; modified EAP; dynamic service change.

DOI: 10.1504/IJICS.2023.128026

International Journal of Information and Computer Security, 2023 Vol.20 No.1/2, pp.176 - 198

Received: 23 Jan 2021
Accepted: 13 Jul 2021
Published online: 04 Jan 2023 *