A Privacy Enhanced Authentication Scheme for Telecare Medical Information Systems

• Published in: Journal of medical systems Vol. 37; no. 1; pp. 9897 - 8
• Main Authors: Jiang, Qi, Ma, Jianfeng, Ma, Zhuo, Li, Guangsong
• Format: Journal Article
• Language: English
• Published: Boston Springer US 01.02.2013; Springer Nature B.V
• Subjects: Authentication; Authentication protocols; Availability; Computer Security; Confidentiality; Cybersecurity; Health Informatics; Health Sciences; Humans; Information systems; Information Systems - organization & administration; Information Systems - standards; Medical; Medical services; Medicine; Medicine & Public Health; Original Paper; Privacy; Smart cards; Statistics for Life Sciences; Telecare; Telemedicine; Telemedicine - organization & administration; Telemedicine - standards; Tracking; Key agreement; Anonymity; Privacy; Smart card; Authentication; Telecare medical information system
• ISSN: 0148-5598; 1573-689X; 1573-689X
• DOI: 10.1007/s10916-012-9897-0

The telecare medical information system (TMIS) aims to establish telecare services and enable the public to access medical services or medical information at remote sites. Authentication and key agreement is essential to ensure data integrity, confidentiality, and availability for TMIS. Most recently, Chen et al. proposed an efficient and secure dynamic ID-based authentication scheme for TMIS, and claimed that their scheme achieves user anonymity. However, we observe that Chen et al.’s scheme achieves neither anonymity nor untraceability, and is subject to the identity guessing attack and tracking attack. In order to protect user privacy, we propose an enhanced authentication scheme which achieves user anonymity and untraceablity. It is a secure and efficient authentication scheme with user privacy preservation which is practical for TMIS.