Lightweight Mutual Authentication and Privacy-Preservation Scheme for Intelligent Wearable Devices in Industrial-CPS

Mian Ahmad Jan, Fazlullah Khan, Rahim Khan, Spyridon Mastorakis, Varun G. Menon, Mamoun Alazab, Paul Watters

Research output: Journal PublicationArticlepeer-review

55 Citations (Scopus)


Industry 5.0 is the digitalization, automation, and data exchange of industrial processes that involve artificial intelligence, industrial Internet of Things (IIoT), and industrial cyber-physical systems (I-CPS). In healthcare, I-CPS enables the intelligent wearable devices to gather data from the real-world and transmit to the virtual world for decision-making. I-CPS makes our lives comfortable with the emergence of innovative healthcare applications. Similar to any other IIoT paradigm, I-CPS capable healthcare applications face numerous challenging issues. The resource-constrained nature of wearable devices and their inability to support complex security mechanisms provide an ideal platform to malevolent entities for launching attacks. To preserve the privacy of wearable devices and their data in an I-CPS environment, in this article we propose a lightweight mutual authentication scheme. Our scheme is based on client-server interaction model that uses symmetric encryption for establishing secured sessions among the communicating entities. After mutual authentication, the privacy risk associated with a patient data is predicted using an AI-enabled hidden Markov model. We analyzed the robustness and security of our scheme using Burrows-Abadi-Needham logic. This analysis shows that the use of lightweight security primitives for the exchange of session keys makes the proposed scheme highly resilient in terms of security, efficiency, and robustness. Finally, the proposed scheme incurs nominal overhead in terms of processing, communication and storage and is capable to combat a wide range of adversarial threats.

Original languageEnglish
Article number9290438
Pages (from-to)5829-5839
Number of pages11
JournalIEEE Transactions on Industrial Informatics
Issue number8
Publication statusPublished - Aug 2021
Externally publishedYes


  • Artificial intelligence (AI)
  • authentication
  • client-server model
  • industrial cyber-physical systems (I-CPS)
  • Industrial Internet of Things (IIoT)
  • privacy
  • security

ASJC Scopus subject areas

  • Control and Systems Engineering
  • Information Systems
  • Computer Science Applications
  • Electrical and Electronic Engineering


Dive into the research topics of 'Lightweight Mutual Authentication and Privacy-Preservation Scheme for Intelligent Wearable Devices in Industrial-CPS'. Together they form a unique fingerprint.

Cite this