Technological development expands the computation process of smart devices that adopt the telecare medical information system (TMIS) to fulfill the demands of the healthcare organization. It provides better medical identification to claim the features namely trustworthy, efficient, and resourceful. Moreover, the telecare services automate the remote healthcare monitoring process to ease professional workloads. Importantly, it is conceived to be more timesaving, economical, and easy healthcare access. Cloud-Based Medical Healthcare (CBMH) system is a standard platform that gives its support to the patients for emergency treatment from the medical experts over Internet communication. Since the medical records are very sensitive, security protection is much necessitated. In addition, patient anonymity should be well preserved. In 2016, Chiou et al. proposed a mutual authentication protocol for the Telecare Medical Information System (TMIS) using Cloud Environment (CE). They claim that their protocol satisfies patient anonymity. However, this paper proves that the Chiou et al. scheme is not only completely insecure against the patient anonymity, health-report revelation, health-report forgery, report confidentiality, and non-repudiation but also fails to validate the service access against verifiability, undeniability and unforgeability. In order to provide better mutual authenticity, this paper suggests the framework of smart service authentication to cross-examine the common secret session key among the communication entities. In order to examine the security properties, formal and informal verification was carried out. Lastly, to prove the security and performance efficiency of a system, the proposed SSA framework was implemented using FPGA and Moteiv TMote Sky-Mote. A proposed smart service authentication (SSA) framework is presented to ensure better data security between the patients and the physicians. The formal and informal security analysis proves the significance of the SSA framework model to withstand the security attacks such as health-report forgery, health-report revelation, server-spoofing etc. As a result, it is claimed that it can be well suited for TMIS.

中文翻译：

---

使用医疗物联网的基于云的医疗保健系统的智能相互认证协议

技术发展扩展了采用远程医疗信息系统 (TMIS) 的智能设备的计算过程，以满足医疗机构的需求。它提供了更好的医学识别，以声称具有可信、高效和足智多谋的特征。此外，远程护理服务使远程医疗监控过程自动化，以减轻专业工作量。重要的是，它被认为更省时、更经济且更容易获得医疗保健服务。基于云的医疗保健（CBMH）系统是一个标准平台，它通过互联网通信为医疗专家提供紧急治疗支持。由于医疗记录非常敏感，因此非常需要安全保护。此外，患者的匿名性应该得到很好的保护。2016 年，Chiou 等人。提出了一种使用云环境 (CE) 的远程护理医疗信息系统 (TMIS) 的相互认证协议。他们声称他们的协议满足患者的匿名性。然而，本文证明了 Chiou 等人。该方案不仅对患者匿名、健康报告披露、健康报告伪造、报告保密和不可否认性完全不安全，而且无法验证服务访问的可验证性、不可否认性和不可伪造性。为了提供更好的相互真实性，本文提出了智能服务认证的框架来交叉检查通信实体之间的公共秘密会话密钥。为了检查安全属性，进行了正式和非正式验证。最后，为了证明系统的安全性和性能效率，提议的 SSA 框架是使用 FPGA 和 Moteiv TMote Sky-Mote 实现的。提出了一种提议的智能服务认证（SSA）框架，以确保患者和医生之间更好的数据安全性。正式和非正式的安全分析证明了 SSA 框架模型在抵御健康报告伪造、健康报告泄露、服务器欺骗等安全攻击方面的重要性。因此，据称它可以很好地适用于管理信息系统。