Privacy-Preserving Authentication and Key-Management Protocol for Health Information Systems

This chapter provides a literature survey of existing authentication mechanisms for medical applications. It presents a lightweight user verification and key-management protocol for medical users to achieve privacy. Key management is an important problem in authentication mechanisms, as users and the server should verify each other in a public environment. Telecare medicine information systems provide healthcare delivery services via a public network, i.e., the Internet. The chapter discusses a privacy-preserving lightweight verification and key-management system for medicinal clients. The smart healthcare concept involves various entities and technologies like sensors and wearable components while using information and communications technology. The medical server confirms the genuineness of a patient, both (medical server and patient) mutually compute a session key for key management to establish a connection. The authentication scheme satisfies user privacy when a patient and the medical server exchange messages (of health-related information) via a common channel.