无线医疗传感器网络中基于PUF的轻量级 匿名认证协议

信息安全研究 ›› 2025, Vol. 11 ›› Issue (12): 1134-.

无线医疗传感器网络中基于PUF的轻量级匿名认证协议

王雄李伟麟王志强付成龙张泽昊王文博

(北京电子科技学院网络空间安全系北京100070)

出版日期:2025-12-12 发布日期:2025-12-04
通讯作者: 李伟麟硕士研究生.主要研究方向为密码协议、漏洞挖掘. hs_lwl@qq.com
作者简介:王雄硕士，副教授.主要研究方向为密码协议、密码系统. bjwxong@163.com 李伟麟硕士研究生.主要研究方向为密码协议、漏洞挖掘. hs_lwl@qq.com 王志强博士，副教授.主要研究方向为网络攻防、漏洞挖掘. wangzq@besti.edu.cn 付成龙硕士研究生.主要研究方向为身份认证、拟态防御. fcl2000@foxmail.com 张泽昊硕士研究生.主要研究方向为身份认证协议. 2685425775@qq.com 王文博硕士研究生.主要研究方向为密码协议、漏洞挖掘. wang1799101314@163.com

基金资助:

中央高校基本科研业务费专项资金项目(3282024056，3282024022，3282023052)

A Lightweight PUFbased Anonymous Authentication Protocol for Wireless Medical Sensor Networks

Wang Xiong, Li Weilin, Wang Zhiqiang, Fu Chenglong, Zhang Zehao, and Wang Wenbo

(Department of Cyberspace Security, Beijing Electronic Science and Technology Institute, Beijing 100070)

Online:2025-12-12 Published:2025-12-04

摘要/Abstract

摘要： 针对当前无线医疗传感器节点资源受限、易受攻击等问题，提出了一种面向无线医疗传感器网络的轻量级匿名认证协议.该协议利用网关部署的物理不可克隆函数(physical unclonable function, PUF)，实现了医疗专家通过网关与无线医疗传感器节点之间安全的身份认证以及密钥协商.通过ROR Oracle(realorrandom Oracle)模型、Proverif协议分析化工具以及非形式化分析，证明了该协议可实现医疗专家与无线医疗传感器之间的双向认证与会话密钥协商，并且可抵抗常见攻击，具有良好的安全属性.与近年提出的认证协议对比表明，提出的协议计算开销最低，当认证次数达到3500次时，总计算开销优于其他协议22.7%以上.同时，实验表明，该协议具有良好安全属性与轻量级特性，适用于资源受限的无线医疗传感器网络.

关键词: 匿名认证协议, 轻量级, 物理不可克隆函数, 无线医疗传感器网络, 双向认证

Abstract: In response to the current challenges of resource constraints and the vulnerability of wireless medical sensor nodes, this paper proposes a lightweight anonymous authentication protocol specifically designed for wireless medical sensor networks. The protocol utilizes a physical unclonable function (PUF), deployed by the gateway, to facilitate secure authentication and key negotiation between medical experts and wireless medical sensor nodes via the gateway. The Proverif protocol analysis tool, the ROR Oracle model and nonformal analysis demonstrate that this protocol achieves mutual authentication and session key negotiation between medical specialists and wireless medical sensors, and is resistant to common attacks with good security properties. A comparison of the proposed protocol with other authentication protocols from recent years reveals that it has the lowest computational costs, with the total computational costs outperforming other protocols by more than 22.7% when the number of authentication times reaches 3500. Furthermore, experiments demonstrate that the protocol has good security attributes and lightweight characteristics, making it suitable for resourceconstrained wireless medical sensor networks.

Key words: anonymous authentication protocol, lightweight, physical unclonable function (PUF);, wireless medical sensor network

中图分类号:

```
TP309
```

王雄, 李伟麟, 王志强, 付成龙, 张泽昊, 王文博, . 无线医疗传感器网络中基于PUF的轻量级匿名认证协议[J]. 信息安全研究, 2025, 11(12): 1134-.

参考文献

［1］世界卫生组织. 2020—2025年数字卫生保健 全球战略［EBOL］. 2021 ［20250101］. https:iris.who.intbitstreamhandle106653442499789240027633chi.pdf［2］Kumar P, Lee S G, Lee H J. ESAP: Efficientstrong authentication protocol for healthcare applications using wireless medical sensor networks［J］. Sensors, 2012, 12(2): 16251647［3］He D, Kumar N, Chen J, et al. Robust anonymous authentication protocol for healthcare applications using wireless medical sensor networks［J］. Multimedia Systems, 2015, 21: 4960［4］Li X, Niu J, Kumari S, et al. A new authentication protocol for healthcare applications using wireless medical sensor networks with user anonymity［J］. Security and Communication Networks, 2016, 9(15): 26432655［5］Das A K,Sutrala A K, Odelu V, et al. A secure smartcardbased anonymous user authentication scheme for healthcare applications using wireless medical sensor networks［J］. Wireless Personal Communications, 2017, 94: 18991933［6］Gope P, Hwang T. BSNCare: A secure IoTbased modern healthcare system using body sensor network［J］. IEEE Sensors Journal, 2015, 16(5): 13681376［7］Wu F, Xu L, Kumari S, et al. AniMSroved and anonymous twofactor authentication protocol for healthcare applications with wireless medical sensor networks［J］. Multimedia Systems, 2017, 23: 195205［8］Srinivas J, Mishra D, Mukhopadhyay S. A mutual authentication framework for wireless medical sensor networks［J］. Journal of Medical Systems, 2017, 41: 119［9］Amin R, Islam S K H, Biswas G P, et al. A robust and anonymous patient monitoring system using wireless medical sensor networks［J］. Future Generation CoMSuter Systems, 2018, 80: 483495［10］Jiang Q, Ma J, Yang C, et al. Efficient endtoend authentication protocol for wearable health monitoring systems［J］.CoMSuters & Electrical Engineering, 2017, 63: 182195［11］Mo J, Hu Z, Lin Y. Cryptanalysis and security iMSrovement of two authentication schemes for healthcare systems using wireless medical sensor networks［J］. Security and Communication Networks, 2020, 2020(1): 111［12］Fotouhi M, Bayat M, Das A K, et al. A lightweight and secure twofactor authentication scheme for wireless body area networks in healthcare IoT［J］.CoMSuter Networks, 2020, 177: 107333［13］Wu F, Li X, Sangaiah A K, et al. A lightweight and robust twofactor authentication scheme for personalized healthcare systems using wireless medical sensor networks［J］. Future Generation Computer Systems, 2018, 82: 727737［14］Masud M, Gaba G S, Alqahtani S, et al. A lightweight and robust secure key establishment protocol for Internet of medical things in COVID19 patients care［J］. IEEE Internet of Things Journal, 2020, 8(21): 1569415703［15］Li J, Su Z, Guo D, et al. PSLMAAKA: Provably secure and lightweight mutual authentication and key agreement protocol for fully public channels in Internet of medical things［J］. IEEE Internet of Things Journal, 2021, 8(17): 1318313195［16］Aman M N, Chua K C, Sikdar B. Mutual authentication in IoT systems using physical unclonable functions［J］. IEEE Internet of Things Journal, 2017, 4(5): 13271340［17］Mishra D, Das A K, Mukhopadhyay S. A secure user anonymitypreserving biometricbased multiserver authenticated key agreement scheme using smart cards［J］. Expert Systems with Applications, 2014, 41(18): 81298143［18］Wang W, Chen Q, Yin Z, et al. Blockchain and PUFbased lightweight authentication protocol for wireless medical sensor networks［J］. IEEE Internet of Things Journal, 2021, 9(11): 88838891［19］Yu S, Park Y. A robust authentication protocol for wireless medical sensor networks using blockchain and physically unclonable functions［J］. IEEE Internet of Things Journal, 2022, 9(20): 2021420228［20］Gao Y, AlSarawi S F, Abbott D. Physical unclonable functions［J］. Nature Electronics, 2020, 3(2): 8191［21］Kamal K Y, Muresan R. Mixedsignal physically unclonable function with CMOS capacitive cells［J］. IEEE Access, 2019, 7: 130977130998［22］Jin A T B, Ling D N C, Goh A. Biohashing: Two factor authentication featuring fingerprint data and tokenised random number［J］. Pattern Recognition, 2004, 37(11): 22452255［23］Messerges T S, Dabbish E A, Sloan R H. Examining smartcard security under the threat of power analysis attacks［J］. IEEE Trans on Computers, 2002, 51(5): 541552［24］王晨宇, 汪定, 王菲菲, 等. 面向多网关的无线传感器网络多因素认证协议［J］. 计算机学报, 2020, 43(4): 683700

[1]	侯思祖, 沈昱孛, . 面向配电网资源受限设备的轻量级隐式证书方案研究[J]. 信息安全研究, 2025, 11(9): 845-.
[2]	柳亚男, 曹磊, 张正, 李戈, 邱硕, 王苏豪, . 车联网V2N中的轻量级双向认证与密钥协商[J]. 信息安全研究, 2025, 11(8): 753-.
[3]	谢绒娜, 黄锐, 李宗俞, 武佳卉, 周竞, . 面向车联网的群组密钥管理机制[J]. 信息安全研究, 2025, 11(2): 139-.
[4]	刘龙庚, 任宇, 王莉. 基于多模态与多尺度融合的抗欺骗人脸检测[J]. 信息安全研究, 2022, 8(5): 513-.
[5]	李金儒, 覃羿伶, 王瑜. 云平台多租户资产风险管理解决方案[J]. 信息安全研究, 2021, 7(E1): 54-.
[6]	刘熙胖廖正赟卫志刚. 面向物联网信息安全保护的轻量化密钥体系设计[J]. 信息安全研究, 2018, 4(9): 819-824.