Wearable device is pushing the rapid development of mobile health, however, the open architecture of wireless body area network has brought challenges for the security of user data. In order to protect the security of user data, a two-factor authentication protocol between device note and data hub was proposed based on physically unclonable func-tion and interpulse interval. Using dual uniqueness of device physical characteristic and user biometric trait, the protocol can resist compromise and impersonation attacks and was specially suitable for resource constrained wearable devices under body area network. Compared with the existing authentication schemes, the security of the proposed protocol was enhanced. The practicability and effectiveness of the protocol are confirmed by hardware implementation on FPGA.%可穿戴设备正推进着移动医疗的快速发展,但无线体域网的开放式结构也给用户数据安全带来了更多威胁.为了数据安全,基于物理不可克隆函数和脉搏间隔,提出一种设备节点和数据中心之间的双因子认证协议.此协议利用设备物理特征和用户生物特征双重唯一性,有效地阻止了妥协和假冒等攻击,且适用于体域网环境下资源受限的医疗设备.与现有方案相比,增强了认证协议安全性.FPGA平台上实验证明了所提协议的实用性和有效性.
展开▼