{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,7,16]],"date-time":"2026-07-16T03:31:23Z","timestamp":1784172683713,"version":"3.55.0"},"reference-count":28,"publisher":"MDPI AG","issue":"12","license":[{"start":{"date-parts":[[2017,12,15]],"date-time":"2017-12-15T00:00:00Z","timestamp":1513296000000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["Sensors"],"abstract":"<jats:p>As sensor networks and cloud computation technologies have rapidly developed over recent years, many services and applications integrating these technologies into daily life have come together as an Internet of Things (IoT). At the same time, aging populations have increased the need for expanded and more efficient elderly care services. Fortunately, elderly people can now wear sensing devices which relay data to a personal wireless device, forming a body area network (BAN). These personal wireless devices collect and integrate patients\u2019 personal physiological data, and then transmit the data to the backend of the network for related diagnostics. However, a great deal of the information transmitted by such systems is sensitive data, and must therefore be subject to stringent security protocols. Protecting this data from unauthorized access is thus an important issue in IoT-related research. In regard to a cloud healthcare environment, scholars have proposed a secure mechanism to protect sensitive patient information. Their schemes provide a general architecture; however, these previous schemes still have some vulnerability, and thus cannot guarantee complete security. This paper proposes a secure and lightweight body-sensor network based on the Internet of Things for cloud healthcare environments, in order to address the vulnerabilities discovered in previous schemes. The proposed authentication mechanism is applied to a medical reader to provide a more comprehensive architecture while also providing mutual authentication, and guaranteeing data integrity, user untraceability, and forward and backward secrecy, in addition to being resistant to replay attack.<\/jats:p>","DOI":"10.3390\/s17122919","type":"journal-article","created":{"date-parts":[[2017,12,15]],"date-time":"2017-12-15T12:23:56Z","timestamp":1513340636000},"page":"2919","update-policy":"https:\/\/doi.org\/10.3390\/mdpi_crossmark_policy","source":"Crossref","is-referenced-by-count":30,"title":["Internet of Things (IoT) Based Design of a Secure and Lightweight Body Area Network (BAN) Healthcare System"],"prefix":"10.3390","volume":"17","author":[{"given":"Yong-Yuan","family":"Deng","sequence":"first","affiliation":[{"name":"Department of Computer Science and Information Engineering, Chaoyang University of Technology, Taichung 413, Taiwan"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Chin-Ling","family":"Chen","sequence":"additional","affiliation":[{"name":"Department of Computer Science and Information Engineering, Chaoyang University of Technology, Taichung 413, Taiwan"},{"name":"School of Information Engineering, Changchun Sci-Tech University, Changchun 130600, China"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-4247-914X","authenticated-orcid":false,"given":"Woei-Jiunn","family":"Tsaur","sequence":"additional","affiliation":[{"name":"Computer Center, National Taipei University, Taipei 237, Taiwan"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Yung-Wen","family":"Tang","sequence":"additional","affiliation":[{"name":"School of Physical Therapy, Chun Shan Medical University, Taichung 402, Taiwan"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Jung-Hsuan","family":"Chen","sequence":"additional","affiliation":[{"name":"Department of Industrial Education, National Taiwan Normal University, Taipei 10610, Taiwan"}],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"1968","published-online":{"date-parts":[[2017,12,15]]},"reference":[{"key":"ref_1","doi-asserted-by":"crossref","first-page":"108","DOI":"10.1016\/j.future.2016.02.020","article-title":"End-to-end security scheme for mobility enabled healthcare Internet of Things","volume":"64","author":"Moosavi","year":"2016","journal-title":"Future Gener. Comput. Syst."},{"key":"ref_2","doi-asserted-by":"crossref","first-page":"43","DOI":"10.1016\/j.comcom.2016.05.002","article-title":"Lightweight and escrow-less authenticated key agreement for the Internet of Things","volume":"98","author":"Simplicio","year":"2017","journal-title":"Comput. Commun."},{"key":"ref_3","doi-asserted-by":"crossref","first-page":"26","DOI":"10.1016\/j.jnca.2016.11.017","article-title":"Lightweight distributed secure data management system for health Internet of Things","volume":"89","author":"Yang","year":"2017","journal-title":"J. Netw. Comput. Appl."},{"key":"ref_4","doi-asserted-by":"crossref","first-page":"838","DOI":"10.1016\/j.future.2017.02.020","article-title":"Universal and secure object ownership transfer protocol for the Internet of Things","volume":"78","author":"Ray","year":"2018","journal-title":"Future Gener. Comput. Syst."},{"key":"ref_5","doi-asserted-by":"crossref","unstructured":"Simplicio, M., Oliveira, B., Barreto, P., Margi, C., Carvalho, T., and Naslund, M. (2011, January 4\u20137). Comparison of authenticated-encryption schemes in wireless sensor networks. Proceedings of the 36th IEEE Conference on Local Computer Networks (LCN), Bonn, Germany.","DOI":"10.1109\/LCN.2011.6115506"},{"key":"ref_6","doi-asserted-by":"crossref","unstructured":"Chiuchisan, I., and Dimian, M. (2015, January 29\u201330). Internet of Things for e-Health: An approach to medical applications. Proceedings of the IEEE International Workshop on Computational Intelligence for Multimedia Understanding (IWCIM), Prague, Czech Republic.","DOI":"10.1109\/IWCIM.2015.7347091"},{"key":"ref_7","doi-asserted-by":"crossref","unstructured":"Khemissa, H., and Tandjaoui, D. (2015, January 9\u201311). A Lightweight Authentication Scheme for E-Health Applications in the Context of Internet of Things. Proceedings of the International Conference on Next Generation Mobile Applications, Services and Technologies, Cambridge, UK.","DOI":"10.1109\/NGMAST.2015.31"},{"key":"ref_8","doi-asserted-by":"crossref","first-page":"746","DOI":"10.1109\/TIFS.2015.2509912","article-title":"Conjunctive keyword search with designated tester and timing enabled proxy re-encryption function for e-health clouds","volume":"11","author":"Yang","year":"2016","journal-title":"IEEE Trans. Inf. Forensics Secur."},{"key":"ref_9","first-page":"2967","article-title":"The price of security in wireless sensor networks","volume":"54","author":"Lee","year":"2010","journal-title":"Comput. Netw. Int. J. Comput. Telecommun. Netw."},{"key":"ref_10","doi-asserted-by":"crossref","first-page":"1431","DOI":"10.1109\/JBHI.2014.2300846","article-title":"A review on the state-of-the-art privacy preserving approaches in e-health clouds","volume":"18","author":"Abbas","year":"2014","journal-title":"IEEE J. Biomed. Health Inform."},{"key":"ref_11","doi-asserted-by":"crossref","first-page":"1981","DOI":"10.1109\/TIFS.2015.2442215","article-title":"Searchable attribute-based mechanism with efficient data sharing for secure cloud storage","volume":"10","author":"Liang","year":"2015","journal-title":"IEEE Trans. Inf. Forensics Secur."},{"key":"ref_12","doi-asserted-by":"crossref","first-page":"74","DOI":"10.1016\/j.future.2014.06.004","article-title":"A hybrid solution for privacy preserving medical data sharing in the cloud environment","volume":"43\u201344","author":"Yang","year":"2015","journal-title":"Future Gener. Comput. Syst."},{"key":"ref_13","doi-asserted-by":"crossref","first-page":"4155","DOI":"10.1109\/TIE.2011.2178214","article-title":"SDRP: A secure and distributed reprogramming protocol for wireless sensor networks","volume":"59","author":"He","year":"2012","journal-title":"IEEE Trans. Ind. Electron."},{"key":"ref_14","doi-asserted-by":"crossref","first-page":"665","DOI":"10.1109\/TIFS.2014.2382297","article-title":"Improving privacy and security in decentralized ciphertext-policy attribute-based encryption","volume":"10","author":"Han","year":"2015","journal-title":"IEEE Trans. Inf. Forensics Secur."},{"key":"ref_15","doi-asserted-by":"crossref","first-page":"380","DOI":"10.1109\/SURV.2011.020211.00045","article-title":"A survey of applications of identity-based cryptography in mobile ad-hoc networks","volume":"14","author":"Zhao","year":"2012","journal-title":"IEEE Commun. Surv. Tutor."},{"key":"ref_16","doi-asserted-by":"crossref","first-page":"261","DOI":"10.1007\/s10796-014-9489-2","article-title":"The internet of things: A survey of topics and trends","volume":"17","author":"Whitmore","year":"2015","journal-title":"Inf. Syst. Front."},{"key":"ref_17","doi-asserted-by":"crossref","first-page":"62","DOI":"10.1016\/j.future.2013.12.015","article-title":"BodyCloud: A SaaS approach for community Body Sensor Networks","volume":"35","author":"Fortino","year":"2014","journal-title":"Future Gener. Comput. Syst."},{"key":"ref_18","doi-asserted-by":"crossref","first-page":"50","DOI":"10.1016\/j.inffus.2014.03.005","article-title":"A framework for collaborative computing and multi-sensor data fusion in body sensor networks","volume":"22","author":"Fortino","year":"2015","journal-title":"Inf. Fusion"},{"key":"ref_19","doi-asserted-by":"crossref","first-page":"68","DOI":"10.1016\/j.inffus.2016.09.005","article-title":"Multi-sensor fusion in body sensor networks: State-of-the-art and research challenges","volume":"35","author":"Gravina","year":"2017","journal-title":"Inf. Fusion"},{"key":"ref_20","doi-asserted-by":"crossref","first-page":"126","DOI":"10.1109\/TC.2013.200","article-title":"Efficient privacy-preserving ciphertext-policy attribute based-encryption and broadcast encryption","volume":"64","author":"Zhou","year":"2015","journal-title":"IEEE Trans. Comput."},{"key":"ref_21","doi-asserted-by":"crossref","first-page":"201","DOI":"10.1007\/s11042-011-0791-4","article-title":"A cluster-based key agreement scheme using keyed hashing for body area networks","volume":"66","author":"Ali","year":"2013","journal-title":"Multimedia Tools Appl."},{"key":"ref_22","doi-asserted-by":"crossref","first-page":"55","DOI":"10.1016\/j.sna.2011.10.016","article-title":"Prototype of a secure wireless patient monitoring system for the medical community","volume":"173","author":"Mollera","year":"2012","journal-title":"Sens. Actuators A Phys."},{"key":"ref_23","doi-asserted-by":"crossref","first-page":"145","DOI":"10.1002\/wcm.947","article-title":"A novel elliptical curve ID cryptography protocol for multi-hop ZigBee sensor networks","volume":"12","author":"Kim","year":"2012","journal-title":"Wirel. Commun. Mob. Comput."},{"key":"ref_24","doi-asserted-by":"crossref","first-page":"664","DOI":"10.1109\/JBHI.2012.2235180","article-title":"Secure and lightweight network admission and transmission protocol for body sensor networks","volume":"17","author":"He","year":"2013","journal-title":"IEEE J. Biomed. Health Inform."},{"key":"ref_25","doi-asserted-by":"crossref","first-page":"104","DOI":"10.1016\/j.future.2014.10.010","article-title":"A lightweight attribute-based encryption scheme for the internet of things","volume":"49","author":"Yao","year":"2015","journal-title":"Future Gener. Comput. Syst."},{"key":"ref_26","doi-asserted-by":"crossref","first-page":"1164","DOI":"10.1109\/TITB.2012.2199996","article-title":"A distributed trust evaluation model and its application scenarios for medical sensor networks","volume":"16","author":"He","year":"2012","journal-title":"IEEE Trans. Inf. Technol. Biomed."},{"key":"ref_27","doi-asserted-by":"crossref","first-page":"623","DOI":"10.1109\/TITB.2012.2194788","article-title":"ReTrust: Attackresistant and lightweight trust management for medical sensor networks","volume":"16","author":"He","year":"2012","journal-title":"IEEE Trans. Inf. Technol. Biomed."},{"key":"ref_28","doi-asserted-by":"crossref","first-page":"1173","DOI":"10.1002\/dac.2405","article-title":"An ID-based mutual authentication with key agreement protocol for multiserver environment on elliptic curve cryptosystem","volume":"27","author":"Han","year":"2014","journal-title":"Int. J. Commun. Syst."}],"container-title":["Sensors"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/www.mdpi.com\/1424-8220\/17\/12\/2919\/pdf","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,10,11]],"date-time":"2025-10-11T18:54:13Z","timestamp":1760208853000},"score":1,"resource":{"primary":{"URL":"https:\/\/www.mdpi.com\/1424-8220\/17\/12\/2919"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2017,12,15]]},"references-count":28,"journal-issue":{"issue":"12","published-online":{"date-parts":[[2017,12]]}},"alternative-id":["s17122919"],"URL":"https:\/\/doi.org\/10.3390\/s17122919","relation":{},"ISSN":["1424-8220"],"issn-type":[{"value":"1424-8220","type":"electronic"}],"subject":[],"published":{"date-parts":[[2017,12,15]]}}}