*Corresponding Author: kjha.phd@gmail.com 154 DOI: https://doi.org/10.52756/ijerr.2024.v39spl.012 Int. J. Exp. Res. Rev., Vol. 39: 154-169 (2024) A Secure Biometric-Based User Authentication Scheme for Cyber-Physical Systems in Healthcare Khushboo Jha*, Aruna Jain and Sumit Srivastava Department of Computer Science and Engineering, Birla Institute of Technology, Ranchi-835215, Jharkhand, India E-mail/Orcid Id: KJ, kjha.phd@gmail.com, https://orcid.org/0000-0003-1062-8128; AJ, arunajain@bitmesra.ac.in; SS, sumit.srivs88@gmail.com, https://orcid.org/0009-0003-6880-2958 Introduction In the present times, when people manage their routine work single-handedly in a nuclear family, there is a big challenge for elderly people when they are left alone in their twilight years. They face social exclusion, loneliness, isolation and even negligence, which in turn have negative impacts on their emotional and physical wellbeing. These elderly and medically challenged people are left by their families and friends for some reason and live alone for the majority of their time. Therefore, experts are working to provide services remotely, particularly for elderly people (Pal et al., 2018). To overcome aforesaid challenges, a based IoT environment for remote healthcare monitoring (Mondal et al., 2023: Jain et al., 2023) using wireless sensor networks (WSNs) (Alghamdi et al., 2023) is one of the eminent solutions for helping older people independently manage good health and safely age in place. It is regarded as a novel paradigm within the realm of the Internet of Things (IoT), facilitated by the proliferation of Machine- to-Machine communication, Wireless Sensor Networks, ubiquitous computing technology, Radio Frequency Identification (RFID), network communication infrastructure and evolving control methodologies (Rai et al., 2023; Dawn et al., 2023). Moreover, CPS-based applications such as smart cities (Jha and Singh, 2024), smart homes for remote healthcare systems, etc. have the potential to leverage the proliferation of smart devices and wireless networks, enabling them to provide intelligent services which are driven by data from the physical environment. Further, IoT sensor device-based home care is becoming an integral part of the healthcare monitoring system (Mondal et al., 2023). Aiming to prevent elder and disabled people from being confined to institutions unnecessarily, this policy encourages people to age in Article History: Received: 4 th March, 2024 Accepted: 22 nd May, 2024 Published: 30 th May, 2024 Abstract: The effectiveness and advantages of Cyber-Physical Systems (CPS) are significantly influenced by the interconnectivity of individual devices or nodes, such as Internet of Things (IoT) devices. The exchange of data that is pertinent to a comprehensive job or capability plays a crucial role in numerous CPS applications, including healthcare monitoring in smart cities and homes and many more. Data exploitation in remote healthcare systems may have catastrophic consequences for patients; hence, a safe cryptographic technique is necessary. To address these security difficulties, a highly effective biometric based three-factor mutual authentication along with a key agreement scheme has been put forth that leverages the lightweight Elliptic Curve Cryptosystem (ECC). This scheme has been specifically designed to cater to the unique requirements of remote healthcare systems. The approach has been validated utilizing the Burrows-Abadi-Needham (BAN) logic, which verifies the effectiveness of mutual authentication. Also, the resistance to active and passive attacks was demonstrated through the use of the Automated Validation of Internet Security Protocols and Applications (AVISPA) tool. Furthermore, a preliminary security evaluation is conducted to verify the resilience of the proposed system against several cryptographic attacks. Additionally, the suggested method is evaluated against existing state-of-the-art schemes and demonstrates superior performance in various security dimensions. Keywords: Authentication, AVISPA tool, BAN logic, biometric, elliptic curve cryptosystem, wireless sensor network How to cite this Article: Khushboo Jha, Aruna Jain and Sumit Srivastava (2024). A Secure Biometric-Based User Authentication Scheme for Cyber- Physical Systems in Healthcare. International Journal of Experimental Research and Review, 39(spl.) 154-169. DOI: https://doi.org/10.52756/ijerr.2024.v39spl.012