research-article

Can I Trust the Data I See?: A Physician's Concern on Medical Data in IoT Health Architectures

Authors:

Fariha Tasmin Jaigirdar,

Carsten Rudolph,

Chris BainAuthors Info & Claims

ACSW '19: Proceedings of the Australasian Computer Science Week Multiconference

Article No.: 27, Pages 1 - 10

https://doi.org/10.1145/3290688.3290731

Published: 29 January 2019 Publication History

Abstract

With the increasing advancement of Internet of Things (IoT) enabled systems, smart medical devices open numerous opportunities for the healthcare sector. The success of using such devices in the healthcare industry depends strongly on secured and reliable medical data transmission. Physicians diagnose that data and prescribe medicines and/or give guidelines/instructions/treatment plans for the patients. Therefore, a physician is always concerned about the medical data trustworthiness, because if it is not guaranteed, a savior can become an involuntary foe! This paper analyses two different scenarios to understand the real-life consequences in IoT-based healthcare (IoT-Health) application. Appropriate sequence diagrams for both scenarios show data movement as a basis for determining necessary security requirements in each layer of IoT-Health. We analyse the individual entities of the overall system and develop a system-wide view of trust in IoT-Health. The security analysis pinpoints the research gap in end-to-end trust and indicates the necessity to treat the whole IoT-Health system as an integrated entity. This study highlights the importance of integrated cross-layer security solutions that can deal with the heterogeneous security architectures of IoT healthcare system and finally identifies a possible solution for the open question raised in the security analysis with appropriate future research directions.

References

[1]

Mohammed Riyadh Abdmeziem and Djamel Tandjaoui. 2015. An end-to-end secure key management protocol for e-health applications. Computers and Electrical Engineering 44: 184--197.

Digital Library

[2]

Raja Naeem Akram and Ryan K.L. Ko. 2015. Digital trust - Trusted computing and beyond: A position paper. Proceedings - 2014 IEEE 13th International Conference on Trust, Security and Privacy in Computing and Communications, TrustCom 2014: 884--892.

Digital Library

[3]

Fadele Ayotunde Alaba, Mazliza Othman, Ibrahim Abaker Targio Hashem, and Faiz Alotaibi. 2017. Internet of Things security: A survey. Journal of Network and Computer Applications 88, April: 10-28.

Digital Library

[4]

Adel Alkhalil and Rabie A. Ramadan. 2017. IoT Data Provenance Implementation Challenges. Procedia Computer Science 109, 2014: 1134--1139.

[5]

G. Aloi, G. Caliciuri, G. Fortino, R. Gravina, P. Pace, W. Russo, and C. Savaglio. 2017. Enabling IoT interoperability through opportunistic smartphone-based mobile gateways. Journal of Network and Computer Applications 81, July 2016: 74--84.

Digital Library

[6]

Sabine Bauer and Daniel Schreckling. 2013. Data Provenance in the Internet of Things. Retrieved from https://web.sec.unipassau.de/projects/compose/papers/Bauer_Data_Provenance_in_the_Internet_of_Things.pdf

[7]

Nicola Bui and Michele Zorzi. 2011. Health care applications: a solution based on the internet of things. International Symposium on Applied Sciences in Biomedical and Communication Technologies: 0--4.

Digital Library

[8]

Luca Catarinucci, Danilo De Donno, Luca Mainetti, Luca Palano, Luigi Patrono, Maria Laura Stefanizzi, and Luciano Tarricone. 2015. An IoTAware Architecture for Smart Healthcare Systems. IEEE Internet of Things Journal 2, 6: 515--526.

[9]

Mahmoud Elkhodr, Belal Alsinglawi, and Mohammad Alshehri. 2018. Data Provenance in the Internet of Things. 2018 32nd International Conference on Advanced Information Networking and Applications Workshops (WAINA): 727--731.

[10]

Sigrid Gürgens, Peter Ochsenschläger, and Carsten Rudolph. 2005. On a formal framework for security properties. Computer Standards and Interfaces 27, 5: 457--466.

Digital Library

[11]

Hao Chen, Xueqin Jia, and Heng Li. 2011. A brief introduction to IoT gateway. IET International Conference on Communication Technology and Application (ICCTA 2011) 7: 610--613.

[12]

Ragib Hasan, Shams Zawoad, Shahid Noor, Md Munirul Haque, and Darrell Burke. 2016. How Secure is the Healthcare Network from Insider Attacks? An Audit Guideline for Vulnerability Analysis. Proceedings -International Computer Software and Applications Conference 1: 417--422.

[13]

Shivayogi. Hiremath, Geng Yang, and Kunal. Mankodiya. 2014. Wearable Internet of Things. Wireless Mobile Communication and Healthcare (Mobihealth), 2014 EAI 4th International Conference on: 304--307.

[14]

Susmita Horrow and Sardana Anjali. 2012. Identity Management Framework for Cloud Based Internet of Things. SecurIT '12 Proceedings of the First International Conference on Security of Internet of Things: 200--203.

Digital Library

[15]

S M Riazul Islam, Daehan Kwak, Humaun Kabir, Mahmud Hossain, and Kyung-Sup Kwak. 2015. The Internet of Things for Health Care: A Comprehensive Survey. Access, IEEE 3: 678--708.

[16]

Shruti Jaiswal and Daya Gupta. 2017. Security Requirements for Internet of Things (IoT). Proceedings of International Conference on Communication and Networks 508: 419--427.

[17]

Khalid Mahmood, Shehzad Ashraf Chaudhry, Husnain Naqvi, Taeshik Shon, and Hafiz Farooq Ahmad. 2016. A lightweight message authentication scheme for Smart Grid communications in power sector. Computers and Electrical Engineering 52: 114--124.

Digital Library

[18]

Sanaz Rahimi Moosavi, Tuan Nguyen Gia, Amir Mohammad Rahmani, Ethiopia Nigussie, Seppo Virtanen, Jouni Isoaho, and Hannu Tenhunen. 2015. SEA: A secure and efficient authentication and authorization architecture for IoT-based healthcare using smart gateways. Procedia Computer Science 52, 1: 452--459.

Digital Library

[19]

Luc Moreau, Yolanda Gil, Timothy Lebo, and Jim Mccusker. 2014. PROV-DM: The PROV Data Model W3C Recommendation 30 April 2013. Retrieved from http://www.w3.org/TR/2013/REC-prov-dm-20130430/%5Cnhttp://www.w3.org/TR/prov-dm/%5Cnhttp://www.w3.org/TR/2013/NOTE-prov-implementations-20130430/%5Cnhttp://www.w3.org/TR/2013/PR-prov-dm-20130312/

[20]

Luc Moreau, Victor Tan, Laszlo Varga, Paul Groth, Simon Miles, Javier Vazquez-Salceda, John Ibbotson, Sheng Jiang, Steve Munroe, Omer Rana, and Andreas Schreiber. 2008. The provenance of electronic data. Communications of the ACM 51, 4: 52--58.

Digital Library

[21]

Habeeb Olufowobi, Robert Engel, Nathalie Baracaldo, Luis Angel D Bathen, Samir Tata, and Heiko Ludwig. 2017. Data Provenance Model for Internet of Things (IoT) Systems. In In: Drira K. et al. (eds) Service-Oriented Computing ICSOC 2016 Workshops. ICSOC 2016, 85--91.

[22]

Heena Rathore, Amr Mohamed, Abdulla Al-Ali, Xiaojiang Du, and Mohsen Guizani. 2017. A review of security challenges, attacks and resolutions for wireless medical devices. 2017 13th International Wireless Communications and Mobile Computing Conference, IWCMC 2017: 1495--1501.

[23]

C Saritha, V Sukanya, and Y Narasimha Murthy. 2008. ECG Signal Analysis Using Wavelet Transforms. Bulgarian Journal of Physic 35: 68--77.

[24]

Hossein Shafagh, Shahid Raza, Thiemo Voigt, and Klaus Wehrle. 2014. Delegation-based Authentication and Authorization for the IP-based Internet of Things. In 2014 Eleventh Annual IEEE International Conference on Sensing, Communication, and Networking (SECON).

[25]

Jatinder Singh, Thomas Pasquier, Jean Bacon, Hajoon Ko, and David Eyers. 2016. Twenty Security Considerations for Cloud- Supported Internet of Things. IEEE Internet of Things Journal 3, 3: 269--284.

[26]

Yan Lindsay Sun, Zhu Han, Wei Yu, and K J Ray Liu. 2006. A Trust Evaluation Framework in Distributed Networks: Vulnerability Analysis and Defense Against Attacks. In IEEE International Conference on Computer Communications, INFOCOM'06, 1--13.

[27]

Liane Margarida Rockenbach Tarouco, Leandro Marcio Bertholdo, Lisandro Zambenedetti Granville, Lucas Mendes Ribeiro Arbiza, Felipe Carbone, Marcelo Marotta, and Jose Jair Cardoso De Santanna. 2012. Internet of Things in healthcare: Interoperatibility and security issues. IEEE International Conference on Communications: 6121--6125.

[28]

Thomas Zachariah, Noah Klugman, Bradford Campbell, Joshua Adkins, Neal Jackson, and Prabal Dutta. 2015. The Internet of Things Has a Gateway Problem. Proceedings of the 16th International Workshop on Mobile Computing Systems and Applications - HotMobile '15: 27--32.

Digital Library

[29]

a Zanella, N. Bui, a Castellani, L. Vangelista, and M. Zorzi. 2014. Internet of Things for Smart Cities. IEEE Internet of Things Journal 1, 1: 22--32.

[30]

Qian Zhu, Ruicong Wang, Qi Chen, Yan Liu, and Weijun Qin. 2010. IOT gateway: Bridging wireless sensor networks into Internet of Things. Proceedings - IEEE/IFIP International Conference on Embedded and Ubiquitous Computing, EUC 2010: 347--352.

Digital Library

[31]

2018. Therapeutic Goods Administration (TGA). Retrieved July 8, 2018 from https://www.tga.gov.au/regulation-basics

[32]

2018. Food and Drug Administration (FDA). Retrieved May 10, 2018 from https://www.fda.gov/RegulatoryInformation/RulesRegulations/default.htm

Cited By

Akinola OAkinola AOyekan BOyerinde OFolashade Adebiyi HSulaimon B(2024)Blockchain-Enabled Security Solutions for Medical Device Integrity and Provenance in Cloud EnvironmentsInternational Journal of Scientific Research and Modern Technology (IJSRMT)10.38124/ijsrmt.v3i4.27(1-13)Online publication date: 25-Apr-2024
https://doi.org/10.38124/ijsrmt.v3i4.27
Akinola OAkinola AOyekan BOyerinde OFolashade Adebiyi HSulaimon B(2024)Blockchain-Enabled Security Solutions for Medical Device Integrity and Provenance in Cloud EnvironmentsInternational Journal of Innovative Science and Research Technology (IJISRT)10.38124/ijisrt/IJISRT24APR225(123-135)Online publication date: 16-Apr-2024
https://doi.org/10.38124/ijisrt/IJISRT24APR225
Rastogi PSingh DBedi S(2024)An improved blockchain framework for ORAP verification and data security in healthcareJournal of Ambient Intelligence and Humanized Computing10.1007/s12652-024-04780-415:6(2853-2868)Online publication date: 12-Apr-2024
https://doi.org/10.1007/s12652-024-04780-4
Show More Cited By

Index Terms

Can I Trust the Data I See?: A Physician's Concern on Medical Data in IoT Health Architectures
1. Applied computing
  1. Life and medical sciences
    1. Health informatics
2. Security and privacy
  1. Formal methods and theory of security
    1. Formal security models
  2. Systems security
    1. Distributed systems security
    2. Information flow control

Recommendations

Trust based Security Solution for Internet of Things Healthcare Solution: An End-to-End Trustworthy Architecture
UbiComp '18: Proceedings of the 2018 ACM International Joint Conference and 2018 International Symposium on Pervasive and Ubiquitous Computing and Wearable Computers

With the vision of building "A Smart World", Internet of Things (IoT) plays a crucial role where users, computing systems and objects with sensing and actuating capabilities cooperate with unparalleled convenience. Among many applications of IoT, ...
IoT device security audit tools: a comprehensive analysis and a layered architecture approach for addressing expanded security requirements
Abstract
The Internet of Things (IoT) has the potential to bring unprecedented accessibility and efficiency to a wide range of critical applications and access control services. With the advent of IoT technology, there is a surge in potential threats and ...
Internet of Things (IoT): From awareness to continued use
Abstract
This paper proposes a research model with five constructs, i.e., IoT awareness, users’ IoT privacy knowledge, users’ IoT security knowledge, users’ IoT Trust, and continued intention to use IoT to bring clarity to the growing yet ...
Highlights
- Clarifying how variables linked from IoT awareness to IoT continued use.
- IoT ...

Comments

Please enable JavaScript to view thecomments powered by Disqus.

Information & Contributors

Information

Published In

cover image ACM Other conferences

ACSW '19: Proceedings of the Australasian Computer Science Week Multiconference

January 2019

486 pages

ISBN:9781450366038

DOI:10.1145/3290688

Copyright © 2019 ACM.

Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]

In-Cooperation

CORE - Computing Research and Education
Macquarie University-Sydney

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 29 January 2019

Permissions

Request permissions for this article.

Request Permissions

Check for updates

Author Tags

Qualifiers

Research-article
Research
Refereed limited

Conference

ACSW 2019

ACSW 2019: Australasian Computer Science Week 2019

January 29 - 31, 2019

NSW, Sydney, Australia

Acceptance Rates

ACSW '19 Paper Acceptance Rate 61 of 141 submissions, 43%;

Overall Acceptance Rate 61 of 141 submissions, 43%

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

32
Total Citations
View Citations
679
Total Downloads

Downloads (Last 12 months)74
Downloads (Last 6 weeks)4

Reflects downloads up to 16 Nov 2024

Other Metrics

View Author Metrics

Citations

Cited By

Akinola OAkinola AOyekan BOyerinde OFolashade Adebiyi HSulaimon B(2024)Blockchain-Enabled Security Solutions for Medical Device Integrity and Provenance in Cloud EnvironmentsInternational Journal of Scientific Research and Modern Technology (IJSRMT)10.38124/ijsrmt.v3i4.27(1-13)Online publication date: 25-Apr-2024
https://doi.org/10.38124/ijsrmt.v3i4.27
Akinola OAkinola AOyekan BOyerinde OFolashade Adebiyi HSulaimon B(2024)Blockchain-Enabled Security Solutions for Medical Device Integrity and Provenance in Cloud EnvironmentsInternational Journal of Innovative Science and Research Technology (IJISRT)10.38124/ijisrt/IJISRT24APR225(123-135)Online publication date: 16-Apr-2024
https://doi.org/10.38124/ijisrt/IJISRT24APR225
Rastogi PSingh DBedi S(2024)An improved blockchain framework for ORAP verification and data security in healthcareJournal of Ambient Intelligence and Humanized Computing10.1007/s12652-024-04780-415:6(2853-2868)Online publication date: 12-Apr-2024
https://doi.org/10.1007/s12652-024-04780-4
Czekster RGrace PMarcon CHessel FCazella S(2023)Challenges and Opportunities for Conducting Dynamic Risk Assessments in Medical IoTApplied Sciences10.3390/app1313740613:13(7406)Online publication date: 22-Jun-2023
https://doi.org/10.3390/app13137406
Kaur MKumar PGupta A(2023)Survey on IoT Based Secure Health Care Framework Using Block Chain TechnologyEmergent Converging Technologies and Biomedical Systems10.1007/978-981-99-2271-0_13(153-167)Online publication date: 18-Aug-2023
https://doi.org/10.1007/978-981-99-2271-0_13
Sharma ASingh PTselykh ABozhenyuk A(2023)Internet of Medical Things (IoMT) Application for Detection of Replication Attacks Using Deep Graph Neural NetworkProceedings of International Conference on Recent Innovations in Computing10.1007/978-981-19-9876-8_21(267-282)Online publication date: 3-May-2023
https://doi.org/10.1007/978-981-19-9876-8_21
Thomas MBoursalie OSamavi RDoyle T(2023)Bayesian-Based Parameter Estimation to Quantify Trust in Medical DevicesArtificial Intelligence for Personalized Medicine10.1007/978-3-031-36938-4_8(95-108)Online publication date: 2-Sep-2023
https://doi.org/10.1007/978-3-031-36938-4_8
Dayaratne TJaigirdar FDasgupta RSakzad ARudolph C(2023)Improving Cybersecurity Situational Awareness in Smart Grid EnvironmentsPower Systems Cybersecurity10.1007/978-3-031-20360-2_5(115-134)Online publication date: 9-Feb-2023
https://doi.org/10.1007/978-3-031-20360-2_5
Selamat AHameed SAbdul Latiff LA. Razak SKrejcar OPenhaker M(2022)A Fog-Based Threat Detection for Telemetry Smart Medical Devices Using a Real-Time and Lightweight Incremental Learning MethodHandbook of Research on New Investigations in Artificial Life, AI, and Machine Learning10.4018/978-1-7998-8686-0.ch007(141-159)Online publication date: 2022
https://doi.org/10.4018/978-1-7998-8686-0.ch007
Hamed T(2022)Blockchain-based internet of medical things (IoMT) for healthcare managementi-manager’s Journal on Cloud Computing10.26634/jcc.9.2.191539:2(21)Online publication date: 2022
https://doi.org/10.26634/jcc.9.2.19153
Show More Cited By

View Options

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Publication

View options

PDF

View or Download as a PDF file.

eReader

View online with eReader.

Media

Figures

Other

Tables

View Table of Contents