DATA SECURITY AND PRIVACY INWIRELESS BODY AREA

NETWORKS

MING LI AND WENJING LOU, WORCESTER POLYTECHNIC INSTITUTE KUI REN, ILLINOIS INSTITUTE OF TECHNOLOGY

IEEE Wireless Communications • February 2010

報告人 :方良慧教師：溫志煜

2010/4/26 WSN 2

Outline

• Introduction

• Requirements for Data Security And Privacy In WBANs

• Challenging Practical Issues

• Solutions For Data Security And Privacy In WBANs

• Conclusion

2010/4/26 WSN 3

Introduction (1/3)

• The wireless body area network (WBAN) has emerged as a new technology for e-healthcare.

• WBAN allows the data of a patient’s vital body parameters and movements to be collected by small wearable or implantable sensors.

• And communicated using short-range wireless communication techniques.

2010/4/26 WSN 4

Introduction (2/3)

• This medical information is shared among and accessed by various users.

• Such as healthcare staff, researchers, government agencies, and insurance companies.

• Based on the WBAN, a wide range of novel applications are enabled

• Such as ubiquitous health monitoring (UHM), computer-assisted rehabilitation, emergency medical response system (EMRS) and so on.

2010/4/26 WSN 5

Ubiquitous Health Monitoring (UHM)

2010/4/26 WSN 6

Emergency Medical Response System (EMRS)

2010/4/26 WSN 7

The general architecture of a WBAN

2010/4/26 WSN 8

Introduction (3/3)

• Patient-related data is often stored in a distributive manner; the open and dynamic nature of the WBAN makes the data prone to being lost.

• Therefore, it is equally important to protect patient-related data against malicious modification and to ensure its dependability.

2010/4/26 WSN 9

Requirements for Data Security And Privacy In WBANs

• Threats Faced By The Data Stored Within WBAN– Threats from device compromise– Threats from network dynamics

• In order to prevent the patient-related data from leaking during storage periods, the data needs to be always kept confidential at a node or local server. – The data confidentiality should be resilient to

device compromise attacks.

2010/4/26 WSN 10

2010/4/26 WSN 11

Challenging Practical Issues

• Conflict between security and efficiency

• Conflict between security and safety

• Conflict between security and usability

• Requirement for device interoperability

2010/4/26 WSN 12

Solutions For Data Security And Privacy In WBANs

• Secure And Dependable Distributed Data Storage.– Data confidentiality, dependability, and integrity

are three most important requirements for distributed data storage in WBAN.

– In order to enhance the dependability of the data, error-correcting code techniques can be employed to provide redundancy.

2010/4/26 WSN 13

Fine-Grained DistributedData Access Control

• Access Policy

• SKC-Based Schemes– Symmetric Key Cipher

• PKC-Based Schemes– Public Key Cipher

• Anonymity in Access Control

2010/4/26 WSN 14

Access Policy

2010/4/26 WSN 15

SKC-Based Schemes

2010/4/26 WSN 16

PKC-Based Schemes

2010/4/26 WSN 17

Conclusion

• The WBAN is an emerging and promising technology that will change people’s healthcare experiences revolutionarily.

• Data security and privacy in WBANs and WBAN-related e-healthcare systems is an important area, and there still remain a number of considerable challenges to overcome.

thanks for your attention