Health related information of an individual is very sensitive and demands a high level of security and privacy. Healthcare providers have the responsibility to ensure that patient information is secure and accessible only to authorized users. Healthcare systems are using biometrics since long for authentication and/or access control purposes. Biometrics can also be used for healthcare data security and privacy. This paper proposes an iris based cancelable biometric cryptosystem to securely store the healthcare data of patients on the smart card. It employs symmetric key cryptography to encrypt the healthcare data and store it on the smart card in encrypted form. We use the fuzzy commitment scheme to bind the secret encryption key with the cancelable iris template of the patient. Our proposed scheme provides user authentication as well as the decryption of healthcare data when needed by using the iris template of the owner of the healthcare smart card. The implementation results show that our proposed scheme provides better performance as compared to other schemes. It can generate an encryption key of a maximum of 252 bits from the input iris template with a false acceptance rate (FAR) of 0 and a false rejection rate (FRR) of 0.07. The generated key can be used for encrypting the health care data of patients using a symmetric encryption algorithm, e.g. Advance Encryption Standard (AES), International Data Encryption Algorithm (IDEA), Blowfish, etc. As compared to a conventional encryption system where the security of the system depends on keeping the key secret, our proposed scheme binds the encryption key with the iris - template of the patient impeccably without the need to store it securely. The security analysis demonstrates that it is not possible for an attacker to retrieve the secret key or healthcare data of the patient from the stolen healthcare card.

个人的健康相关信息非常敏感，需要高度的安全性和隐私性。医疗保健提供者有责任确保患者信息安全且只有授权用户才能访问。长期以来，医疗保健系统都在使用生物识别技术来进行身份验证和/或访问控制。生物识别技术还可用于医疗数据安全和隐私。本文提出了一种基于虹膜的可取消生物特征密码系统，以将患者的医疗保健数据安全地存储在智能卡上。它采用对称密钥加密技术对医疗保健数据进行加密，并将其以加密形式存储在智能卡上。我们使用模糊承诺方案将秘密加密密钥与患者的可取消虹膜模板进行绑定。我们提出的方案通过使用医疗保健智能卡所有者的虹膜模板在需要时提供用户身份验证以及医疗保健数据的解密。实施结果表明，与其他方案相比，我们提出的方案提供了更好的性能。它可以从输入的虹膜模板中生成最大 252 位的加密密钥，错误接受率 (FAR) 为 0，错误拒绝率 (FRR) 为 0.07。生成的密钥可用于使用对称加密算法对患者的医疗保健数据进行加密，例如高级加密标准 (AES)、国际数据加密算法 (IDEA)、Blowfish 等。系统的关键在于对密钥保密，我们提出的方案将加密密钥与患者的虹膜模板完美绑定，无需安全存储。安全分析表明，攻击者不可能从被盗的医疗卡中检索患者的密钥或医疗数据。