Proceedings of International Conference on Applied Innovation in IT  ·  2026/03/31  ·  Vol. 14  ·  Issue 1  ·  pp. 1005–1019
Systematic Review: Lightweight Cryptography for Medical Healthcare Monitoring Based on Iot Sensors
Adel Abdul-Jabbar Alkhazraji, Taha Mohammed Hasan and Mustafa Emad Hameed
📄 Download PDF DOI: 10.25673/123672
Abstract
The big expansion in healthcare information technology systems and medical devices led to the spread of the Internet of Medical Things (IoMT), which contains sensors and applications. IoMT enables real-time clinical data collection and monitoring. With the development of medical technology, there is a necessity to introduce lightweight and effective cryptographic schemes that protect the health information of patients without compromising the performance or functionality of these devices. The problem of incompatibility of traditional cryptographic solutions with these devices in the IoMT systems makes them susceptible to the threat of data breach and violation of privacy. This review assesses the implementation of lightweight cryptography, identifying common themes and challenges. As a solution to these challenges, the paper gives a detailed explanation of lightweight cryptography and hybrid methods. The results show that these methods improve security with less computational overload on IoT devices, and support energy efficiency as well as scalability. The implications of the findings can provide some suggestions regarding future research directions, as well as assist developers and researchers in making decisions concerning the provision of lightweight cryptography in healthcare IoT systems.
Keywords
Medical Healthcare Monitoring Lightweight Cryptography Hybrid Cryptography Iot Sensors.
References
  1. R. R. Irshad et al., “Towards enhancing security of IoT-enabled healthcare system,” Heliyon, vol. 9, no. 11, Nov. 2023, doi: 10.1016/j.heliyon.2023.e22336.
  2. L. Greco, G. Percannella, P. Ritrovato, F. Tortorella, and M. Vento, “Trends in IoT-based solutions for health care: Moving AI to the edge,” Pattern Recognition Letters, vol. 135, pp. 346–353, Jul. 2020, doi: 10.1016/j.patrec.2020.05.016.
  3. P. Vijayakumar, M. S. Obaidat, M. Azees, S. H. Islam, and N. Kumar, “Efficient and secure anonymous authentication with location privacy for IoT-based WBANs,” IEEE Transactions on Industrial Informatics, vol. 16, no. 4, pp. 2603–2611, Apr. 2020, doi: 10.1109/TII.2019.2925071.
  4. K. Sowjanya, M. Dasgupta, and S. Ray, “A lightweight key management scheme for key-escrow-free ECC-based CP-ABE for IoT healthcare systems,” Journal of Systems Architecture, vol. 117, Aug. 2021, doi: 10.1016/j.sysarc.2021.102108.
  5. A. Subashini and P. Kanaka Raju, “Hybrid AES model with elliptic curve and ID-based key generation for IoT in telemedicine,” Measurement: Sensors, vol. 28, Aug. 2023, doi: 10.1016/j.measen.2023.100824.
  6. T. Hayajneh, B. J. Mohd, M. Imran, G. Almashaqbeh, and A. V. Vasilakos, “Secure authentication for remote patient monitoring with wireless medical sensor networks,” Sensors, vol. 16, no. 4, Mar. 2016, doi: 10.3390/s16040424.
  7. B. Al-Shargabi, O. Sabri, O. Albahbouh Aldabbas, and A. Abuarqoub, “A survey on lightweight encryption methods for IoT-enabled healthcare applications,” in Proc. ACM Int. Conf., pp. 753–757, Dec. 2023, doi: 10.1145/3644713.3644839.
  8. M. A. Jan, F. Khan, S. Mastorakis, M. Adil, A. Akbar, and N. Stergiou, “LightIoT: Lightweight and secure communication for energy-efficient IoT in health informatics,” IEEE Transactions on Green Communications and Networking, vol. 5, no. 3, pp. 1202–1211, Sep. 2021, doi: 10.1109/TGCN.2021.3077318.
  9. R. Imam et al., “A systematic literature review of attribute-based encryption in health services,” Journal of King Saud University – Computer and Information Sciences, Oct. 2022, doi: 10.1016/j.jksuci.2022.06.018.
  10. N. Alsaeed, F. Nadeem, and F. Albalwy, “A scalable and lightweight group authentication framework for Internet of Medical Things using integrated blockchain and fog computing,” Future Generation Computer Systems, vol. 151, pp. 162–181, Feb. 2024, doi: 10.1016/j.future.2023.09.032.
  11. R. R. K. Chaudhary and K. Chatterjee, “A lightweight security framework for electronic healthcare system,” International Journal of Information Technology, vol. 14, no. 6, pp. 3109–3121, Oct. 2022, doi: 10.1007/s41870-022-01034-4.
  12. G. Said, A. Ghani, A. Ullah, M. Azeem, M. Bilal, and K. S. Kwak, “Light-weight secure aggregated data sharing in IoT-enabled wireless sensor networks,” IEEE Access, vol. 10, pp. 33571–33585, 2022, doi: 10.1109/ACCESS.2022.3160231.
  13. M. Imtyaz Ahmed and G. Kannan, “Secure and lightweight privacy preserving Internet of Things integration for remote patient monitoring,” Journal of King Saud University – Computer and Information Sciences, vol. 34, no. 9, pp. 6895–6908, Oct. 2022, doi: 10.1016/j.jksuci.2021.07.016.
  14. K. P. Satamraju and B. Malarkodi, “Proof of concept of scalable integration of Internet of Things and blockchain in healthcare,” Sensors, vol. 20, no. 5, Mar. 2020, doi: 10.3390/s20051389.
  15. O. Popoola, M. Rodrigues, J. Marchang, A. Shenfield, A. Ikpehia, and J. Popoola, “A critical literature review of security and privacy in smart home healthcare schemes adopting IoT and blockchain: Problems, challenges and solutions,” Blockchain: Research and Applications, p. 100178, Dec. 2023, doi: 10.1016/j.bcra.2023.100178.
  16. J. Zhang and H. Yang, “A privacy-preserving remote heart rate abnormality monitoring system,” IEEE Access, vol. 11, pp. 97089–97098, 2023, doi: 10.1109/ACCESS.2023.3312549.
  17. G. Wang, R. Lu, and Y. L. Guan, “Achieve privacy-preserving priority classification on patient health data in remote e-healthcare system,” IEEE Access, vol. 7, pp. 33565–33576, 2019, doi: 10.1109/ACCESS.2019.2891775.
  18. J. A. Onesimu, J. Karthikeyan, J. Eunice, M. Pomplun, and H. Dang, “Privacy preserving attribute-focused anonymization scheme for healthcare data publishing,” IEEE Access, vol. 10, pp. 86979–86997, 2022, doi: 10.1109/ACCESS.2022.3199433.
  19. V. Upadrista, S. Nazir, and H. Tianfield, “Secure data sharing with blockchain for remote health monitoring applications: A review,” Journal of Reliable Intelligent Environments, vol. 9, no. 3, pp. 349–368, Sep. 2023, doi: 10.1007/s40860-023-00204-w.
  20. W. Liang and N. Ji, “Privacy challenges of IoT-based blockchain: A systematic review,” Cluster Computing, vol. 25, no. 3, pp. 2203–2221, Jun. 2022, doi: 10.1007/s10586-021-03260-0.
  21. O. B. J. Rabie, S. Selvarajan, T. Hasanin, G. B. Mohammed, A. M. Alshareef, and M. Uddin, “A full privacy-preserving distributed batch-based certificate-less aggregate signature authentication scheme for healthcare wearable wireless medical sensor networks,” International Journal of Information Security, pp. 51–80, Feb. 2024, doi: 10.1007/s10207-023-00748-1.
  22. V. Wylde et al., “Cybersecurity, data privacy and blockchain: A review,” SN Computer Science, vol. 3, no. 2, Mar. 2022, doi: 10.1007/s42979-022-01020-4.
  23. R. Priyadarshini, A. Quadir Md, N. Rajendran, V. Neelanarayanan, and H. Sabireen, “An enhanced encryption-based security framework in the CPS cloud,” Journal of Cloud Computing, vol. 11, no. 1, Dec. 2022, doi: 10.1186/s13677-022-00336-z.
  24. T. H. Aljohani and N. Zhang, “Secure, ID privacy and inference threat prevention mechanisms for distributed systems,” IEEE Access, vol. 11, pp. 3766–3780, 2023, doi: 10.1109/ACCESS.2023.3234932.
  25. M. U. Rehman, A. Shafique, and A. B. Usman, “Securing medical information transmission between IoT devices: An innovative hybrid encryption scheme based on quantum walk, DNA encoding, and chaos,” Internet of Things, vol. 24, Dec. 2023, doi: 10.1016/j.iot.2023.100891.
  26. H. B. Mahajan and A. A. Junnarkar, “Smart healthcare system using integrated and lightweight ECC with private blockchain for multimedia medical data processing,” Multimedia Tools and Applications, vol. 82, no. 28, pp. 44335–44358, Nov. 2023, doi: 10.1007/s11042-023-15204-4.
  27. B. D. Deebak and F. Al-Turjman, “Smart mutual authentication protocol for cloud-based medical healthcare systems using Internet of Medical Things,” IEEE Journal on Selected Areas in Communications, vol. 39, no. 2, pp. 346–360, Feb. 2021, doi: 10.1109/JSAC.2020.3020599.
  28. B. A. Alzahrani, A. Irshad, A. Albeshri, K. Alsubhi, and M. Shafiq, “An improved lightweight authentication protocol for wireless body area networks,” IEEE Access, vol. 8, pp. 190855–190872, 2020, doi: 10.1109/ACCESS.2020.3031484.
  29. A. N. Bahache, N. Chikouche, and F. Mezrag, “Authentication schemes for healthcare applications using wireless medical sensor networks: A survey,” SN Computer Science, vol. 3, no. 5, Sep. 2022, doi: 10.1007/s42979-022-01300-z.
  30. B. D. Deebak, F. Al-Turjman, and A. Nayyar, “Chaotic-map based authenticated security framework with privacy preservation for remote point-of-care,” Multimedia Tools and Applications, vol. 80, no. 11, pp. 17103–17128, May 2021, doi: 10.1007/s11042-020-10134-x.
  31. U. Khalid, M. Asim, T. Baker, P. C. K. Hung, M. A. Tariq, and L. Rafferty, “A decentralized lightweight blockchain-based authentication mechanism for IoT systems,” Cluster Computing, vol. 23, no. 3, pp. 2067–2087, Sep. 2020, doi: 10.1007/s10586-020-03058-6.
  32. C. T. Li, D. H. Shih, C. C. Wang, C. L. Chen, and C. C. Lee, “A blockchain-based data aggregation and group authentication scheme for electronic medical system,” IEEE Access, vol. 8, pp. 173904–173917, 2020, doi: 10.1109/ACCESS.2020.3025898.
  33. P. Aufner, “The IoT security gap: A look down into the valley between threat models and their implementation,” International Journal of Information Security, pp. 3–14, Feb. 2020, doi: 10.1007/s10207-019-00445-y.
  34. P. J. Chuang and Y. F. Tu, “Constructing effective lightweight privacy protection in RFID-based systems,” Journal of Supercomputing, vol. 77, no. 9, pp. 9658–9688, Sep. 2021, doi: 10.1007/s11227-021-03656-0.
  35. M. Hosseinzadeh, B. Vo, M. Y. Ghafour, and S. Naghipour, “Electrocardiogram signals-based user authentication systems using soft computing techniques,” Artificial Intelligence Review, vol. 54, no. 1, pp. 667–709, Jan. 2021, doi: 10.1007/s10462-020-09863-0.
  36. N. Sasikaladevi and D. Malathi, “Privacy preserving light weight authentication protocol (LEAP) for WBAN by exploring genus-2 HEC,” Multimedia Tools and Applications, vol. 78, no. 13, pp. 18037–18054, Jul. 2019, doi: 10.1007/s11042-019-7149-8.
  37. S. Shreya, K. Chatterjee, and A. Singh, “A smart secure healthcare monitoring system with Internet of Medical Things,” Computers and Electrical Engineering, vol. 101, Jul. 2022, doi: 10.1016/j.compeleceng.2022.107969.
  38. M. A. Almaiah, F. Hajjej, A. Ali, M. F. Pasha, and O. Almomani, “An AI-enabled hybrid lightweight authentication model for digital healthcare using industrial Internet of Things cyber-physical systems,” Sensors, vol. 22, no. 4, Feb. 2022, doi: 10.3390/s22041448.
  39. N. H. Kamarudin, N. H. S. Suhaimi, F. A. Nor Rashid, M. N. A. Khalid, and F. Mohd Ali, “Exploring authentication paradigms in the Internet of Things: A comprehensive scoping review,” Symmetry, vol. 16, no. 2, Feb. 2024, doi: 10.3390/sym16020171.
  40. G. Mehmood, M. Z. Khan, A. Waheed, M. Zareei, and E. M. Mohamed, “A trust-based energy-efficient and reliable communication scheme for remote patient monitoring in wireless body area networks,” IEEE Access, vol. 8, pp. 131397–131413, 2020, doi: 10.1109/ACCESS.2020.3007405.
  41. P. Puello Marrugo, E. Martínez Franco, and J. C. Rodríguez Ribón, “Systematic review of platforms used for remote monitoring of vital signs in patients with hypertension, asthma and/or chronic obstructive pulmonary disease,” IEEE Access, vol. 7, pp. 158710–158719, 2019, doi: 10.1109/ACCESS.2019.2950124.
  42. I. Volkov, G. Radchenko, and A. Tchernykh, “Digital twins, Internet of Things and mobile medicine: A review of current platforms to support smart healthcare,” Programming and Computer Software, vol. 47, no. 8, pp. 578–590, Dec. 2021, doi: 10.1134/S0361768821080284.
  43. R. Shahzadi, S. M. Anwar, F. Qamar, M. Ali, and J. J. P. C. Rodrigues, “Chaos-based enhanced RC5 algorithm for security and integrity of clinical images in remote health monitoring,” IEEE Access, vol. 7, pp. 52858–52870, 2019, doi: 10.1109/ACCESS.2019.2909554.
  44. O. Salem, K. Alsubhi, A. Shaafi, M. Gheryani, A. Mehaoua, and R. Boutaba, “Man-in-the-middle attack mitigation in Internet of Medical Things,” IEEE Transactions on Industrial Informatics, vol. 18, no. 3, pp. 2053–2062, Mar. 2022, doi: 10.1109/TII.2021.3089462.
  45. V. Kumar, M. S. Mahmoud, A. Alkhayyat, J. Srinivas, M. Ahmad, and A. Kumari, “RAPCHI: Robust authentication protocol for IoMT-based cloud-healthcare infrastructure,” Journal of Supercomputing, vol. 78, no. 14, pp. 16167–16196, Sep. 2022, doi: 10.1007/s11227-022-04513-4.
  46. M. A. Siddiqi, C. Doerr, and C. Strydis, “IMDfence: Architecting a secure protocol for implantable medical devices,” IEEE Access, vol. 8, pp. 147948–147964, 2020, doi: 10.1109/ACCESS.2020.3015686.
  47. M. Ataei Nezhad, H. Barati, and A. Barati, “An authentication-based secure data aggregation method in Internet of Things,” Journal of Grid Computing, vol. 20, no. 3, Sep. 2022, doi: 10.1007/s10723-022-09619-w.
  48. A. A. Hady, A. Ghubaish, T. Salman, D. Unal, and R. Jain, “Intrusion detection system for healthcare systems using medical and network data: A comparison study,” IEEE Access, vol. 8, pp. 106576–106584, 2020, doi: 10.1109/ACCESS.2020.3000421.
  49. M. Ramadan and S. Raza, “Secure equality test technique using identity-based signcryption for telemedicine systems,” IEEE Internet of Things Journal, vol. 10, no. 18, pp. 16594–16604, Sep. 2023, doi: 10.1109/JIOT.2023.3269222.
  50. M. Azeem et al., “Fog-oriented secure and lightweight data aggregation in IoMT,” IEEE Access, vol. 9, pp. 111072–111082, 2021, doi: 10.1109/ACCESS.2021.3101668.
  51. L. Xue, “DSAS: A secure data sharing and authorized searchable framework for e-healthcare system,” IEEE Access, vol. 10, pp. 30779–30791, 2022, doi: 10.1109/ACCESS.2022.3153120.
  52. G. Dupont et al., “Demonstration of new attacks on three healthcare network protocols in a lab environment,” Journal of Computer Virology and Hacking Techniques, vol. 20, no. 2, pp. 301–314, Jun. 2024, doi: 10.1007/s11416-023-00479-w.
  53. A. Ghubaish, T. Salman, M. Zolanvari, D. Unal, A. Al-Ali, and R. Jain, “Recent advances in the Internet-of-Medical-Things (IoMT) systems security,” IEEE Internet of Things Journal, vol. 8, no. 11, pp. 8707–8718, Jun. 2021, doi: 10.1109/JIOT.2020.3045653.
  54. N. Z. Bawany, T. Qamar, H. Tariq, and S. Adnan, “Integrating healthcare services using blockchain-based telehealth framework,” IEEE Access, vol. 10, pp. 36505–36517, 2022, doi: 10.1109/ACCESS.2022.3161944.
  55. W. A. N. A. Al-Nbhany, A. T. Zahary, and A. A. Al-Shargabi, “Blockchain-IoT healthcare applications and trends: A review,” IEEE Access, vol. 12, pp. 4178–4212, 2024, doi: 10.1109/ACCESS.2023.3349187.
  56. G. Thamilarasu, A. Odesile, and A. Hoang, “An intrusion detection system for Internet of Medical Things,” IEEE Access, vol. 8, pp. 181560–181576, 2020, doi: 10.1109/ACCESS.2020.3026260.
  57. N. Sahu, D. Peng, and H. Sharif, “Diagnosis-steganography-transmission: An innovative integrated paradigm for ECG healthcare,” SN Computer Science, vol. 2, no. 4, Jul. 2021, doi: 10.1007/s42979-021-00721-6.
  58. S. Das and S. Namasudra, “A novel hybrid encryption method to secure healthcare data in IoT-enabled healthcare infrastructure,” Computers and Electrical Engineering, vol. 101, Jul. 2022, doi: 10.1016/j.compeleceng.2022.107991.
  59. P. N. Renjith, K. Ramesh, and S. Sasikumar, “An improved trust-based security framework for Internet of Things,” International Journal of Information Technology, vol. 13, no. 2, pp. 677–685, Apr. 2021, doi: 10.1007/s41870-020-00574-x.
  60. S. Xu, Y. Li, R. H. Deng, Y. Zhang, X. Luo, and X. Liu, “Lightweight and expressive fine-grained access control for healthcare Internet-of-Things,” IEEE Transactions on Cloud Computing, vol. 10, no. 1, pp. 474–490, 2022, doi: 10.1109/TCC.2019.2936481.
  61. S. Kumar, P. Tiwari, and M. Zymbler, “Internet of Things is a revolutionary approach for future technology enhancement: A review,” Journal of Big Data, vol. 6, no. 1, Dec. 2019, doi: 10.1186/s40537-019-0268-2.
  62. M. N. Jeyakumar and J. Samraj, “Secure medical sensor monitoring framework using novel hybrid encryption algorithm driven by Internet of Things,” Measurement: Sensors, vol. 33, p. 101122, Jun. 2024, doi: 10.1016/j.measen.2024.101122.
  63. S. Akhbarifar, H. Haj, S. Javadi, A. M. Rahmani, and M. Hosseinzadeh, “A secure remote health monitoring model for early disease diagnosis in cloud-based IoT environment,” Personal and Ubiquitous Computing, vol. 27, no. 3, pp. 697–713, 2023, doi: 10.1007/s00779-020-01475-3.
  64. K. Tsantikidou and N. Sklavos, “Hardware limitations of lightweight cryptographic designs for IoT in healthcare,” Cryptography, vol. 6, no. 3, Sep. 2022, doi: 10.3390/cryptography6030045.

Proceedings of the International Conference on Applied Innovations in IT by Anhalt University of Applied Sciences is licensed under CC BY-SA 4.0  ·  This work is licensed under a Creative Commons Attribution-ShareAlike 4.0 International License

ICAIIT 2026
International Conference on Applied Innovation in IT
Navigation
Publisher
ISSN2199-8876
Publisher Edition Hochschule Anhalt
Location Anhalt University of Applied Sciences
Email leiterin.hsb@hs-anhalt.de
Phone +49 (0) 3496 67 5611
Address Building 01, Room 425
Bernburger Str. 55
D-06366 Köthen, Germany
Open Access License
CC BY-SA 4.0

All works are licensed under the Creative Commons Attribution-ShareAlike 4.0 International License (CC BY-SA 4.0), unless otherwise noted.

Published by ICAIIT in cooperation with Anhalt University of Applied Sciences.

© 2026 ICAIIT — International Conference on Applied Innovations in IT. Anhalt University of Applied Sciences, Köthen, Germany.
Visitors: site traffic counter