Biometrics-based cryptography scheme for E-Health systems

Thanks to all-weather, effective and convenient services, E-Health Systems have been widely applied. However, with the increase of network risks and security threats, the privacy of personal medical information must be assured. The biometrics have become an effective and secure means of identification and authentication due to good distinctiveness and exclusiveness. To meet security and privacy requirements of E-Health systems, a biometrics-based cryptography scheme is proposed. First, Biometrics-based Fuzzy Authentication and Key Negotiation (BFAKN) strictly identifies all components and operators in the whole system, and safely negotiate the cryptographic keys. Based on the biometrics of biological signals and the fuzzy vault algorithm, mutual authentications between the sensors and the terminal and between the terminal and the server can be achieved, and the keys for local and public communications are negotiated safely, ensuring the security of all communications. Second, Fingerprint-based Authority Access Mechanism (FAAM) is proposed to fulfil aothority management, realizing secure storage and access of sensitive biomedical information in the system. Experimental results show that local communications within Wireless Body Area Networks (WBAN) and public communications have very high security, and personal medical information can be accessed safely.