JCS Cover
Frequency: Monthly
ISSN: 1549-3636 (Print)
ISSN: 1552-6607 (Online)
Research Article Open Access

A Lightweight and Privacy-Preserving Biometric Authentication Framework for Sustainable IoMT Systems

Saima Anwar Lashari1, Mahmood A. Al-Shareeda2,3, Mohammed Amin Almaiah4 and Rami Shehab5
  • 1 College of Computing and Informatics Saudi Electronic University Riyadh, 11673, Saudi Arabia
  • 2 Department of Electronic Technologies, Basra Technical Institute, Southern Technical University, Basra, 61001, Iraq
  • 3 College of Engineering, Al-Ayen University, Thi-Qar, Iraq
  • 4 Department of Computer Science, King Abdullah the II IT School, The University of Jordan, Amman, Jordan
  • 5 Vice-Presidency for Postgraduate Studies and Scientific Research, King Faisal University, Al-Ahsa 31982, Saudi Arabia

Abstract

Biometric authentication provides secure, identity-bound access control for the Internet of Medical Things (IoMT), crucial for wearable, implantable, and ambient devices. However, the inherent immutability and sensitivity of biometric data pose severe privacy risks in the event of a breach. Furthermore, conventional public-key cryptography is often too computationally intensive for resource-constrained IoMT hardware. To address these challenges, this paper proposes a lightweight, privacy-preserving authentication framework for sustainable IoMT. Our system integrates cancellable biometrics with fuzzy extractors to generate secure, revocable, and non-invertible templates. We replace elliptic curve cryptography with lightweight symmetric primitives, TinyAES and SPECK, to minimize overhead. The mutual authentication protocol is formally verified using BAN logic, ensuring session security and freshness. Implemented on commercial IoMT devices (ESP32, Raspberry Pi), the framework demonstrates a 3.4× reduction in execution time, 57% lower memory usage, and 66% lower energy consumption compared to ECC-based schemes. In summary, this work presents an efficient, deployable architecture for viable and sustainable biometric authentication in resource-limited e-healthcare.

Journal of Computer Science
Volume 22 No. 1, 2026, 185-201

DOI: https://doi.org/10.3844/jcssp.2026.185.201

Submitted On: 31 August 2025 Published On: 9 February 2026

How to Cite: Lashari, S. A., Al-Shareeda, M. A., Almaiah, M. A. & Shehab, R. (2026). A Lightweight and Privacy-Preserving Biometric Authentication Framework for Sustainable IoMT Systems. Journal of Computer Science, 22(1), 185-201. https://doi.org/10.3844/jcssp.2026.185.201

Open AccessCopyright: © 2026 Saima Anwar Lashari, Mahmood A. Al-Shareeda, Mohammed Amin Almaiah and Rami Shehab. This is an open access article distributed under the terms of the Creative Commons Attribution License, which permits unrestricted use, distribution, and reproduction in any medium, provided the original author and source are credited.

  • 82 Views
  • 21 Downloads
  • 0 Citations

Download

Keywords

  • Internet of Medical Things (IoMT)
  • Biometric Authentication
  • Privacy-Preserving Security
  • Cancellable Biometrics
  • Fuzzy Extractors
  • Lightweight Cryptography
  • Sustainable IoT Systems