{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,3,2]],"date-time":"2026-03-02T23:18:14Z","timestamp":1772493494939,"version":"3.50.1"},"reference-count":28,"publisher":"MDPI AG","issue":"12","license":[{"start":{"date-parts":[[2023,6,7]],"date-time":"2023-06-07T00:00:00Z","timestamp":1686096000000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["Sensors"],"abstract":"<jats:p>The integration of the Internet of Things (IoT) and the telecare medical information system (TMIS) enables patients to receive timely and convenient healthcare services regardless of their location or time zone. Since the Internet serves as the key hub for connection and data sharing, its open nature presents security and privacy concerns and should be considered when integrating this technology into the current global healthcare system. Cybercriminals target the TMIS because it holds a lot of sensitive patient data, including medical records, personal information, and financial information. As a result, when developing a trustworthy TMIS, strict security procedures are required to deal with these concerns. Several researchers have proposed smart card-based mutual authentication methods to prevent such security attacks, indicating that this will be the preferred method for TMIS security with the IoT. In the existing literature, such methods are typically developed using computationally expensive procedures, such as bilinear pairing, elliptic curve operations, etc., which are unsuitable for biomedical devices with limited resources. Using the concept of hyperelliptic curve cryptography (HECC), we propose a new solution: a smart card-based two-factor mutual authentication scheme. In this new scheme, HECC\u2019s finest properties, such as compact parameters and key sizes, are utilized to enhance the real-time performance of an IoT-based TMIS system. The results of a security analysis indicate that the newly contributed scheme is resistant to a wide variety of cryptographic attacks. A comparison of computation and communication costs demonstrates that the proposed scheme is more cost-effective than existing schemes.<\/jats:p>","DOI":"10.3390\/s23125419","type":"journal-article","created":{"date-parts":[[2023,6,8]],"date-time":"2023-06-08T02:02:28Z","timestamp":1686189748000},"page":"5419","update-policy":"https:\/\/doi.org\/10.3390\/mdpi_crossmark_policy","source":"Crossref","is-referenced-by-count":24,"title":["A Smart Card-Based Two-Factor Mutual Authentication Scheme for Efficient Deployment of an IoT-Based Telecare Medical Information System"],"prefix":"10.3390","volume":"23","author":[{"ORCID":"https:\/\/orcid.org\/0000-0002-1351-898X","authenticated-orcid":false,"given":"Muhammad Asghar","family":"Khan","sequence":"first","affiliation":[{"name":"Department of Electrical Engineering, Hamdard Institute of Engineering and Technology, Hamdard University, Islamabad 44000, Pakistan"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-4908-5573","authenticated-orcid":false,"given":"Hosam","family":"Alhakami","sequence":"additional","affiliation":[{"name":"Department of Computer Science, College of Computer and Information Systems, Umm Al-Qura University, Makkah 21955, Saudi Arabia"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-1230-9470","authenticated-orcid":false,"given":"Wajdi","family":"Alhakami","sequence":"additional","affiliation":[{"name":"Department of Information Technology, College of Computers and Information Technology, Taif University, Taif 21431, Saudi Arabia"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Alexey V.","family":"Shvetsov","sequence":"additional","affiliation":[{"name":"Department of Smart Technologies, Moscow Polytechnic University, St. Bolshaya Semenovskaya, 38, 107023 Moscow, Russia"},{"name":"Faculty of Transport, North-Eastern Federal University, St. Belinsky, 58, 677000 Yakutsk, Russia"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Insaf","family":"Ullah","sequence":"additional","affiliation":[{"name":"Department of Electrical Engineering, Hamdard Institute of Engineering and Technology, Hamdard University, Islamabad 44000, Pakistan"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"1968","published-online":{"date-parts":[[2023,6,7]]},"reference":[{"key":"ref_1","doi-asserted-by":"crossref","unstructured":"Ullah, I., Khan, M.A., Abdullah, A.M., Noor, F., Innab, N., and Chen, C.-M. (2023). Enabling Secure Communication in Wireless Body Area Networks with Heterogeneous Authentication Scheme. Sensors, 23.","DOI":"10.3390\/s23031121"},{"key":"ref_2","doi-asserted-by":"crossref","first-page":"103477","DOI":"10.1016\/j.micpro.2020.103477","article-title":"Lightweight and provable secure cross-domain access control scheme for Internet of things (IoT) based wireless body area networks (WBAN)","volume":"81","author":"Ullah","year":"2020","journal-title":"Microprocess. Microsyst."},{"key":"ref_3","doi-asserted-by":"crossref","unstructured":"AlQahtani, S.A. (2023). An Evaluation of e-Health Service Performance through the Integration of 5G IoT, Fog, and Cloud Computing. Sensors, 23.","DOI":"10.3390\/s23115006"},{"key":"ref_4","doi-asserted-by":"crossref","unstructured":"Al-kahtani, M.S., Khan, F., and Taekeun, W. (2022). Application of Internet of Things and Sensors in Healthcare. Sensors, 22.","DOI":"10.3390\/s22155738"},{"key":"ref_5","doi-asserted-by":"crossref","first-page":"1","DOI":"10.1145\/3499426","article-title":"Applying probabilistic model checking to the behavior guidance and abnormality detection for A-MCI patients under wireless sensor network","volume":"19","author":"Gao","year":"2023","journal-title":"ACM Trans. Sens. Netw."},{"key":"ref_6","doi-asserted-by":"crossref","first-page":"377","DOI":"10.1108\/IJWIS-03-2021-0032","article-title":"Performance evaluation of GPU- and cluster-computing for parallelization of compute-intensive tasks","volume":"17","author":"Keller","year":"2021","journal-title":"Int. J. Web Inf. Syst."},{"key":"ref_7","doi-asserted-by":"crossref","first-page":"333","DOI":"10.1108\/IJWIS-03-2021-0036","article-title":"Application of a methodological approach to compare ontologies","volume":"17","author":"Cardinale","year":"2021","journal-title":"Int. J. Web Inf. Syst."},{"key":"ref_8","doi-asserted-by":"crossref","first-page":"6654063","DOI":"10.1155\/2020\/6654063","article-title":"An Online-Offline Certificateless Signature Scheme for Internet of Health Things","volume":"2020","author":"Khan","year":"2020","journal-title":"J. Health Eng."},{"key":"ref_9","first-page":"307","article-title":"A Lightweight and Robust User Authentication Protocol with User Anonymity for IoT-Based Healthcare","volume":"131","author":"Chen","year":"2022","journal-title":"CMES-Comput. Model. Eng. Sci."},{"key":"ref_10","doi-asserted-by":"crossref","first-page":"770","DOI":"10.1145\/358790.358797","article-title":"Password authentication with insecure communication","volume":"24","author":"Lamport","year":"1981","journal-title":"Commun. ACM"},{"key":"ref_11","doi-asserted-by":"crossref","unstructured":"Ullah, I., Alomari, A., Ul Amin, N., Khan, M.A., and Khattak, H. (2019). An Energy Efficient and Formally Secured Certificate-Based Signcryption for Wireless Body Area Networks with the Internet of Things. Electronics, 8.","DOI":"10.3390\/electronics8101171"},{"key":"ref_12","first-page":"8853448","article-title":"Secure smart healthcare monitoring in industrial Internet of things (iiot) ecosystem with cosine function hybrid chaotic map encryption","volume":"2022","author":"Khan","year":"2022","journal-title":"Sci. Program."},{"key":"ref_13","doi-asserted-by":"crossref","first-page":"1417","DOI":"10.3233\/JIFS-201770","article-title":"Efficient secure surveillance on smart healthcare IoT system through cosine-transform encryption","volume":"40","author":"Khan","year":"2021","journal-title":"J. Intell. Fuzzy Syst."},{"key":"ref_14","first-page":"2401","article-title":"A Lightweight Authentication Scheme for 6G-IoT Enabled Maritime Transport System","volume":"24","author":"Chaudhry","year":"2021","journal-title":"IEEE Trans. Intell. Transp. Syst."},{"key":"ref_15","doi-asserted-by":"crossref","first-page":"1529","DOI":"10.1007\/s10916-010-9614-9","article-title":"A secure authentication scheme for telecare medicine information systems","volume":"36","author":"Wu","year":"2010","journal-title":"J. Med. Syst."},{"key":"ref_16","doi-asserted-by":"crossref","first-page":"1989","DOI":"10.1007\/s10916-011-9658-5","article-title":"A more secure authentication scheme for telecare medicine information systems","volume":"36","author":"He","year":"2012","journal-title":"J. Med. Syst."},{"key":"ref_17","doi-asserted-by":"crossref","first-page":"3597","DOI":"10.1007\/s10916-012-9835-1","article-title":"An improved authentication scheme for telecare medicine information systems","volume":"36","author":"Wei","year":"2012","journal-title":"J. Med. Syst."},{"key":"ref_18","doi-asserted-by":"crossref","first-page":"9994","DOI":"10.1007\/s10916-013-9994-8","article-title":"A secure and efficient authentication and key agreement scheme based on ECC for telecare medicine information systems","volume":"38","author":"Xu","year":"2014","journal-title":"J. Med. Syst."},{"key":"ref_19","doi-asserted-by":"crossref","first-page":"135","DOI":"10.1007\/s10916-014-0135-9","article-title":"Cryptanalysis and Improvement of Authentication and Key Agreement Protocols for Telecare Medicine Information Systems","volume":"38","author":"Islam","year":"2014","journal-title":"J. Med. Syst."},{"key":"ref_20","doi-asserted-by":"crossref","first-page":"66","DOI":"10.1007\/s10916-015-0244-0","article-title":"Cryptanalysis and Improvement of an Improved Two Factor Authentication Protocol for Telecare Medical Information Systems","volume":"39","author":"Chaudhry","year":"2015","journal-title":"J. Med. Syst."},{"key":"ref_21","doi-asserted-by":"crossref","first-page":"7452","DOI":"10.1109\/ACCESS.2017.2780124","article-title":"A Robust Mutual Authentication Scheme Based on Elliptic Curve Cryptography for Telecare Medical Information Systems","volume":"6","author":"Qiu","year":"2018","journal-title":"IEEE Access"},{"key":"ref_22","doi-asserted-by":"crossref","first-page":"10","DOI":"10.1007\/s10916-018-1120-5","article-title":"A robust and efficient ECC-based mutual authentication and session key generation scheme for healthcare applications","volume":"43","author":"Nikooghadm","year":"2019","journal-title":"J. Med. Syst."},{"key":"ref_23","doi-asserted-by":"crossref","first-page":"39717","DOI":"10.1109\/ACCESS.2019.2905731","article-title":"Questioning key compromise attack on Ostad-Sharif et al.\u2019s authentication and session key generation scheme for healthcare applications","volume":"7","author":"Kumari","year":"2019","journal-title":"IEEE Access"},{"key":"ref_24","doi-asserted-by":"crossref","first-page":"9273662","DOI":"10.1155\/2022\/9273662","article-title":"Dependable and Provable Secure Two-Factor Mutual Authentication Scheme Using ECC for IoT-Based Telecare Medical Information System","volume":"2022","author":"Radhakrishnan","year":"2022","journal-title":"J. Healthc. Eng."},{"key":"ref_25","first-page":"501","article-title":"Conditional Privacy-Preserving Authentication Scheme for IoV Based on ECC","volume":"24","author":"Xie","year":"2022","journal-title":"Int. J. Netw. Secur."},{"key":"ref_26","unstructured":"Shamus Sofware Ltd. (2023, April 15). Miracl Library. Available online: http:\/\/github.com\/miracl\/MIRACL."},{"key":"ref_27","doi-asserted-by":"crossref","first-page":"89133","DOI":"10.1109\/ACCESS.2021.3089009","article-title":"Securing Internet of drones with identity-based proxy signcryption","volume":"9","author":"Khan","year":"2021","journal-title":"IEEE Access"},{"key":"ref_28","doi-asserted-by":"crossref","first-page":"2688","DOI":"10.1109\/JIOT.2021.3093068","article-title":"An Efficient and Secure Multi-message and Multi-receiver Signcryption Scheme for Edge Enabled Internet of Vehicles","volume":"9","author":"Ullah","year":"2021","journal-title":"IEEE Internet Things J."}],"container-title":["Sensors"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/www.mdpi.com\/1424-8220\/23\/12\/5419\/pdf","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,10,10]],"date-time":"2025-10-10T19:50:20Z","timestamp":1760125820000},"score":1,"resource":{"primary":{"URL":"https:\/\/www.mdpi.com\/1424-8220\/23\/12\/5419"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2023,6,7]]},"references-count":28,"journal-issue":{"issue":"12","published-online":{"date-parts":[[2023,6]]}},"alternative-id":["s23125419"],"URL":"https:\/\/doi.org\/10.3390\/s23125419","relation":{},"ISSN":["1424-8220"],"issn-type":[{"value":"1424-8220","type":"electronic"}],"subject":[],"published":{"date-parts":[[2023,6,7]]}}}