A secure approach to monitoring emergency health resources

Abstract

This proposal presents an optimized, efficient and secure system designed to improve healthcare staff management in emergency situations through a complete tool to classify victims in a emergency situation according the severity of their condition, providing at the same time their location and the best route to reach them. The developed tool consists on a mobile application (assigned to medical and healthcare staff), a web service and Near Field Communication tags (assigned to victims). The mobile application supports secure communication among health staff and implements triage algorithms which result is stored in NFC tags. Apart from this, it helps to indicate which should be the next victim to be treated. The developed web service provides a global view of the emergency status and the current position of victims and staff. Data security is a key objective, overall in health applications; for this reason, tokens are used to protect the triage results before being stored in NFC tags, and the use of IDentity-Based Signcryption provides confidentiality and authentication to communications. Two different signcryption methods are used depending on the communication mode (peer-to-peer or broadcast mode).

Introduction

Nowadays, most smartphones are used to support different daily tasks, due to their small size and high performance. Beside this, they are equipped with powerful communication technologies that can help in different scenarios. As far as the healthcare environment is concerned, there are studies, not very recent, that support the high penetration of mobile devices in the practice of medicine [1].

Based on this premise, this work presents a system, including mHealth solutions, that improves healthcare staff management in emergency situations thus impacting on a better and more efficient attention to victims. In order to achieve this goal, the system includes different aspects. One of the most significant is the implementation of algorithms for the classification of victims in emergency scenarios. These methods are traditionally referred to as triage. A triage may be defined as a simple, complete, objective and fast process to obtain an initial clinical assessment of casualties with the objective of evaluating their immediate survival capacities and prioritizing them according their severity [2]. In order to classify victims, two steps are considered in all triage systems: a first triage or simple triage whose objective is obtaining a global assessment of the victim’s survivability capabilities taking just some seconds, and a second triage, where health staff evaluates the state of each patient: injuries, bruises and wounds.

There is no standard triage system defined for catastrophes. The most used schemes in practice are START (Simple Triage and Rapid Treatment Algorithm) [3], JUMPSTART (a modification of START triage taking into account children) [4] and SIEVE [2]. For the second triage stage, MAT or SET [5] are the most common. The first triage is carried out in the emergency area, afterwards victims are moved to an Advanced Medical Position (AMP) where the second triage is performed. Finally, victims are evacuated to hospitals. The classification of victims generated in the first triage is based on colored tags, each color defines a different treatment priority: black, irrecoverable victims; red, victims requiring immediate care; yellow, victims requiring urgent care but can wait for treatment from half an hour to one hour; green, victims who are not seriously injured and can wait for treatment more than an hour. In traditional triage methods, tags are papers tags of 4 inch \(\times\) 8 1/2 inch where health staff writes the classification and the result of the triage with a pen. Many are the reasons that makes this procedure not adequate for catastrophes [6]: environmental conditions may degrade information, it is difficult to keep up to date records of victim’s condition, etc. The study presented in [7] supports that a mobile application has better liability and is more user-friendly than the traditional procedure for triage when naïve or less experienced staff carry it out.

These are some of the reasons why the use of Near Field Communication (NFC) tags to store triage result is proposed. Specifically, NFC stickers are used to store the information generated through an adaptation of a JSON Web Token (JWT) scheme (see Sect. 3). The priority of victims is reflected on the mobile devices of health staff through a map, allowing to trace the route to reach victims and geolocate them. Apart from this, health staff, in the affected area, can share information with their colleagues through an instant messaging service, supported by Wi-Fi Direct technology [8] and Bluetooth Low Energy (BLE) communications [9], using two modes: broadcast or peer-to-peer.

All this entire exchange of information is protected through an Identity Based Signcryption scheme (IBSC) [10].

This work is organized as follows. Section 2 provides an introduction to the state of the art on the area covered in this article. A global view of the proposal is described in Sect. 3. In Sect. 4, the system used to define the priority of victims is sketched out. The scheme defined to protect communications involving healthcare staff, an IBSC scheme, is proposed in Sect. 5. Section 6 contains a system analysis, and finally, conclusions and future works close the paper.

Related work

The integration of mobile devices and wireless communications into healthcare has generated new terms, such as mHealth. Penetration of these technologies in the field of health is currently very significant. One of the subjects that more attention has received in this environment is information security. In [11], a novel proposal to improve user authentication is proposed. Authors use facial image recognition and an algorithm to establish different access levels in m-health environments. The application described in [12] is an example of solution for emergency response. A mobile application generates a map with recent emergency events; in the same map users may find the location of an automated defibrillator. CodeBlue system [13] is another example of mobile technologies in emergency situations. It is an U.S. Army system, centered on the use of wireless sensors in emergencies combining hardware and software platforms providing remote monitoring and tracking of patients and first responders [14]. These applications are not designed for large-scale emergency scenarios.

There are different proposals to help finding missing people after a large-scale disaster, such as Google Person Finder [15], People Locator and ReUnite [16] and Safety Check of Facebook. All these systems try to verify and share the status of people after a disaster. Specifically, Facebook’s proposal uses notifications asking them to indicate if they are alright. Once answered, users can check if any of their friends are in the affected area and their status.

There are also some organizations working to provide solutions related to emergency situations. One of them is Sahana foundation [17] project, that aims to provide a set of modular, web-based disaster management applications. All the solutions are eHealth systems and include tools for synchronization between multiple instances: a Missing Person Registry, Request and Pledge Management System and Volunteer Coordination. Since this proposal is a web-based framework, it has the problem of relying on communication with a centralized web-server, and thus, it cannot take advantages of mobile nodes. In the same line, a very useful tool is proposed in [18] consisting of software intended to manage data traffic efficiently in emergency situations taking place in smart cities.

An application designed to support pre-hospital emergency management is presented at [19]. As in our proposal, this application has a back-end service that enhances its functionalities, allowing to identify patients’ condition, personal information and location. Anonymization is the only security service implemented for victim-related information. Given the characteristics of the information handled, anonymization alone is clearly insufficient. This system was tested by emergency medical staff.

In [20], a systematic and updated review of triage mobile applications is carried out. Authors state the interest of this solutions in recent years. Different approaches and technologies are present in the analyzed proposals. Among the criteria used in the comparison information security is not contemplated, and this is one of the main objectives in the system that we propose. The triage application included in our system met most of the recommendations drawn from this study since continuous care including the emergency scenario and geolocation service are provided.

In any emergency scenario, unambiguous identification of affected people must be a requirement. Traditional tag solutions are based on pre-written numbers that identifies patients. Barcodes are a possibility to consider as they facilitate the mechanical reading [21] and using them is a cheap and easy method to create identifications. They can be generated just using conventional devices such as printers, but in an emergency situation it is not a realistic approach.

Radio Frequency IDentification (RFID) is a very useful technology for victim identification, as it’s explained in [22, 23]. Two types of tags are contemplated in this technology: passive tags, that use the energy received from the reader to send the identifier, and active tags, that include a battery to increase its distance range. Specific hardware, for example RFID readers, is required when using this technology and there are many privacy and security concerns to overcame when using it in health application. In [24], a specific triage tag technology is proposed. These electronic triage tags use non-invasive biomedical sensors to continuously monitor the vital signs of patients and deliver pertinent information to their possible treatment. These are not tags suitable for emergency situations.

In [25], authors claims to solve victim identification problem through assigning an unique identifier (ID) to a device attached to the victim. This ID is also stored in an NFC-tag associated to the device. Nevertheless, the proposal does not include any protection mechanism for this identifier neither for the information related to the triage performed. Another work where an specific device is used for triage is [6]. It is focused on the design of the device although a mobile application is used for data acquisition, priority classification, data storage and data transfer to medical record server in hospitals. Again security mechanisms are not provided.

Reference [26] presents a routing protocol to guarantee communication within Wireless Body Area Networks defined to support an automated monitoring framework devoted to capture vital signs of casualties.

The use of NFC (Near Field Communication) [27] is one of the bases for automatic patient identification in the system proposed here. Specifically, NFC stickers are used. Some solutions based on these elements have been previously implemented, such as [28]. There a mobile system for victim classification in emergency situations was developed. The goal of this application is carrying out a first triage through a smartphone and storing its result in NFC tags. This system includes security schemes but it has a weakness, cloning NFC tags is possible.

Unlike technologies as Bluetooth, RFID [29] or Wi-Fi [30], NFC is not oriented to continuous data transmission. It’s necessary a temporally contact between devices to allow a quick and instant information transfer. Although at first glance, proximity requirement may be seen as a limitation, it actually limits the types of attacksto deal with. Furthermore, since pairing between devices is not required its usability gets improved.

NFC devices may operate in two different modes: active and passive modes. In active mode, each device generates its own electromagnetic field (emulating the communication paradigm peer-to-peer). In passive mode, a device generates the electromagnetic field with its own power supply. In this way, it enables other device to start the connection taking energy from the field generated to power its circuit. Then the passive device generates the response signal and transfers the data. This mode of operation matches with the RFID communication model, and it’s the one used in this proposal.

Some of the key points and contributions of the system defined in this paper are summarized below:

• a tool to streamline the prioritization of victim assistance depending on their severity and location is provided. It includes the representation of the problem of allocating victims to MPAs and an algorithm to make such allocation cost-balanced.

• a secure communication channel for first-responders supported by Wi-Fi-Direct, and Bluetooth Low Energy technology is defined.

• a web application that allows the Visualization of the emergency status is included.

• a mobile application in charge of casualties triage, storing its protected output in NFC tags to store its result is supplied.

• all victim-related information is protected through specific mechanisms.

• unambiguous victim identification using NFC technology is achieved.

• dedicated devices are not required, so cost is reduced and deployment is simplified.

Global view

This paper presents a system based on [31] that may help to improve communication and management of first responders in real Mass Casualty Incident (MCI). Not all the emergencies are equal regarding resource management. This work is focused on MCI where multiple victims and the network infrastructure may be affected. The main objective is to generate a tool to save as much time as possible to treat victims in emergency situations.

Fig. 1

Triage system schema

It is assumed that in the incident area there is Wi-Fi Direct coverage and that the security procedures implemented in this wireless technology are robust.

Three basic areas may be distinguished at MCI (Fig. 1). The first zone is the rescue zone, where the basic triage is performed. In the treatment zone, the second triage to stabilize victims is performed jointly with the evacuation triage to define priority for evacuation of victims. The final zone is the hospital, where victims are treated if necessary.

The system provides a communication channel through a chat supported by Wi-Fi Direct on firs responders’ mobile phones jointly with a map that helps them to locate the next victim to be treated and where the nearest point of medical attention is. Each triage location is represented in a map included in the web application. The order in which victims should be assisted is based on the severity of their injuries.

In this triage system, two stages are defined. The first one consists on evaluating victims at the affected area applying a first triage; we developed the JUMPSTART triage method to obtain victims classification using colored tags. This triage is generated by the first aid team including health personnel, fire-fighters or even rescue services.

The output of this step is a color for each patient, and it is stored on tags. In this case NFC tags, specifically NFC stickers, are used to save the triage result. The proposed work uses NFC stickers but multiple kind of NFC tags can be used, it depends on the emergency and the victim state. The use of DESFire EV1 8K tag is recommended for this system.

In order to store the triage result in NFC stickers, an adaptation of JSON Web Token (JWT) is defined; The JSON header contains the algorithm used (HS256), and the payload is composed by the data related to the triage result, the identifier (ID) of each member of the healthcare workforce who has changed the content of the NFC sticker and a previous shared emergency code generated for each emergency situation, see Fig. 2. The JWT is stored on the NFC sticker.

Fig. 2

JSON token

JWTs allow platform-independent exchange of JSON-based information and, in this case, ensure the integrity of the information related to the triage result and identify who performed the triage.

In this case, the system stores 335 characters on the sticker and depends on the patient condition, the NFC tag used allows to store up to 7673 characters. Once the first triage is finished, the second stage may begin. In this step, victims’ locations given by the first triage is the starting point.

In our system, the location of Advanced Medical Posts (AMPs) is decided taking into account the best route to evacuation (Fig. 3). Then, the assignation of patients to each AMPs is done automatically. Multiple variables are used for this task: triage color, AMPs workload and time required to transfer patients.

Fig. 3

Victims’ and AMP’s location

A star/tree subgraph is generated for each triage color. Vertices represent victim’s and AMP’s location. The nearest AMP is then assigned to each victim by defining an edge between them. The system generates as many trees as AMPs; the routes to reach them are the edges. Each edge has a cost associated defined as the distance between an AMP and a victim.

The Haversine Formula [32] has been chosen to calculate distance between two points. The notation required to define it is as follows: R the sphere radio, in our case the Earth’s radio, \(\gamma _A , \gamma _B\) , respectively, stand for the latitudes of points A and B, \(\Delta \lambda\) is the difference between both points longitudes. Considering \(\text {sen}_{\gamma _{AB}} = \text {sen}(\gamma _A) \cdot \text {sen}(\gamma _B)\), \(\cos _{\gamma _{AB}} = \cos (\gamma _A) \cdot \cos (\gamma _B)\), \(d = d(A, B) = R * \text {arccos}( \text {sen}_{\gamma _{AB}} + \cos _{\gamma _{AB}} * \cos (\Delta \lambda ))\), the distance corresponds to the expression \(\text {hvsin} (\frac{d}{R}) = \text {hvsin}(\gamma _A - \gamma _B) + \cos _{\gamma _{AB\Delta \lambda }}\) where hvsin is the haversine function: \(\text {hvsin} (\theta ) = \text {sen}^2(\frac{\theta }{2}) = \frac{1-\cos (\theta )}{2}\), and \(\cos _{\gamma _{AB\Delta \lambda }} = \cos (\gamma _A) \cdot \cos (\gamma _B) \cdot \text {hvsin}(\Delta \lambda )\).

As it was previously stated, the system provides a secure communication channel through a chat supported by Wi-Fi Direct on first responders’ mobile phones. It allows healthcare staff members to request help from a specific peer or from the closest ones. In order to identify the recipient of the chat messages, everybody share their own ID (it is a public information) through BLE by beacon mode, like in Fig. 4a. The fist time two healthcare staff members meet both exchange and store IDs. In this way, each peer will have a list of IDs belonging to nearby colleagues.

Fig. 4

Communication modes

With this IDs list, health staff can share information using two communication modes: peer-to-peer mode or broadcast mode, as you can see in Fig. 4. Green lines are the broadcast communication and the blue ones, direct communication. In the broadcast mode, all health personnel in the affected area receive the notification and, simply by clicking on it, can initiate a chat.

When health staff arrives to a victim’s location, the NFC sticker should be read with a mobile device, the person is assigned to an AMP, the point is marked as completed, and the status of next victim is checked.

Victim prioritization assistance tool

This section sketches the procedure used to define victims’ priority. It is one of the innovations in this paper.

After the first triage, health staff transfer victims to the AMP to carry out the second triage. Position of different AMPs is previously defined. An undirected graph is generated from the points defined during the first triage.

Initially, our system assigns patients to each AMP depending on their relative position and distance. The main objective is to prioritize patients depending on the severity of their injuries. A first approach conveys the generation of different tree subraphs, as many trees as AMPs.

Every patient is originally assigned to an AMP according the cost associate to the edges. Patients with red triage are attended first, then patients with yellow triage and finally those with green triage Fig. 5a.

Black triage victims are assigned to the nearest AMP in order to be evacuated once the rest of the victims have been assisted.

Fig. 5

Victims’ assignation based on nearest AMP

In order to represent and analyze, this allocation problem an undirected graph \(G = (V, K)\) is considered. V stands for the vertex set, and it comprises AMPs (“internal”) nodes as well as victims nodes (“leaves”). The set of edges (K) is defined as the allocation of each victim to every single AMP. So \(|V| = |K|+1\). The edge cost function is denoted by \(c : K \rightarrow [0, \infty )\). If S is a set of internal nodes, the final allocation will consist of as many trees as |S|. A \(S\text {-}distribution\) of K is a collection \(P = \{K_1, K_2, \ldots , K_{|S|}\}\) of S disjoint subsets of K. Any \(S\text {-}distribution\) will define a solution to the allocation problem defined. A compromise solution will try to avoid \(S\text {-}distributions\) where the assignation of victims to AMPs will not be balanced (Fig. 5b).

An ad hoc rebalancing tree process is defined to deal with this issue. Once the first approach generates a feasible solution by considering the nearest AMP, the process of rebalancing tree is executed. Red points are evaluated, and each AMP calculates the cost of transfer all patients to them. This is the global cost for each AMP. The objective is reducing the cost by reassigning nodes. Then,the AMP with the highest global cost and the most expensive node is selected. The cost of migrating this victim to another AMP is calculated: the cheapest movement for the global cost of the corresponding AMP is selected. This approach is repeated until no more improvements in the movement of victims are detected. When the \(S\text {-}distributions\) built reach a cost balanced allocation of casualties, the system continues with the yellow output triages, then with the set of green nodes and finally with the black triages. A pseudocode of the algorithm developed is shown below (Algorithm 1).

In case new victims are detected, the system automatically recalculates the trees using new nodes priority, and a new health staff’s route is recalculated. The system assigns to each health staff member, depending on its location, the victim with the highest priority to be transferred to the AMP, where the second triage is developed.

A simulation has been carried out with the aim of validating this approach based on graphs. In the example shown in Fig. 5a, the solution is defined changing 4 nodes out of 22, resulting in 13 nodes at \(AMP^1\) and 9 nodes at \(AMP^2\) being the cost the same (Fig. 6). This is a basic example with red nodes to understand the algorithm, but several tests were generated with different number of nodes and random locations.

Fig. 6

Solution of rebalancing algorithm

If a patient change his/her location and a health staff re-triages her/him, the system updates the information and the mobile application updates the NFC tag if necessary.

The incorporation of new health staff or new casualties does not cause any problems or additional cost. If more nodes are added to the graph, the priorities are updated paying attention to the new characteristics of the affected area. When a member of the health staff, in the affected zone, wants to access the triage result of a patient he/she has to read the NFC sticker through the mobile application. Health staff can see all the nodes in their mobile phone, specifically the node she/he has to go next to treat a victim.

Health staff communication with signcryption scheme

One of the most important objectives of this work is the security of information related to healthcare in MCI. In this section, the description of one of the security mechanisms (IBSC schemes) used are included.

The implemented system supports two different communication modes: peer-to-peer mode and broadcast mode. In both communication modes, an ID-Based Signcryption scheme (IBSC) is used in order to achieve secure communications.

Health staff can share information with only one person in peer-to-peer mode through an ID-Based Signcryption and with multiple users in broadcast mode through an ID-Based Multi-Receiver Signcryption Scheme. This complex cryptosystem is a combination of an ID-Based Encryption (IBE) and an ID-Based Signature (IBS) providing private and authenticated delivery of information between two or more parties in an efficient way through the composition of an encryption scheme with a signature scheme [10]. This approach offers the advantage of simplifying key management since defining a public key infrastructure is not necessary. This kind of scheme was chosen due to its low computational complexity, efficiency, in terms of memory, and its usability.

The Private Key Generator (PKG), located at the central server, is a crucial part of the proposal because it is in charge of generating private keys for all the first responders.

In this implementation, the identifier (ID) assigned to each member of the health staff is the number associated to each registered medical practitioners or an specific ID assigned when he/she is intended for such emergency. Next, we describe the mathematical basic tools used as well as their notation.

Considering two cycling groups \((G, +)\) and \((V, \cdot )\) of the same prime order q. P is a generator of G, and there is a bilinear map paring \({\hat{e}} : G \times G \rightarrow V\) satisfying the following conditions:

• Bilinear: \(\forall P, Q \in G\) and \(\forall a, b \in {\mathbb {Z}}\), \({\hat{e}}(aP, bQ) = {\hat{e}}(P, Q)^{ab}\)

• Non-degenerate: \(\exists P_1, P_2 \in G\) that \({\hat{e}}(P_1,P_2) \ne 1\). This means if P is generator of G, then \({\hat{e}}(P,P)\) is a generator of Q.

• Computability: there exists an algorithm to compute \({\hat{e}}(P,Q), \forall P,Q \in G\)

Some hash functions denoted as follows are also needed: \(H_1: \{0, 1\}^* \rightarrow G^*, H_2 : \{0, 1\}^* \rightarrow {\mathbb {Z}}^*_q, H_3 : {\mathbb {Z}}^*_q \rightarrow \{0, 1\}^n, H_4 : \{0, 1\}^n \rightarrow \{0, 1\}^{|m|}, H_5 : G \times G \times \{0, 1\}^n \times {Z}^*_q \times {Z}^*_q \times \ldots \times {Z}^*_q \rightarrow {Z}^*_q,\) where the size of the message is defined by n. The signcryption scheme used is a combination between the ID-Based Signcryption Scheme proposed in [33] and ID-Based Signcryption Scheme for Multiple Receivers. Here, \(x \xleftarrow {r} S\) stands for an element x randomly selected from a set S, \(x \leftarrow y\) denotes the assignation of the value y to x, and || is used for concatenation. The first two steps are common to both versions of the protocol since they are responsible for the configuration tasks and the generation of the secret information associated with each staff member, respectively.

Next, the description of all these steps is included:

• SETUP The initial parameters are established, and the server generates the master public key (mpk) and the master secret key (msk). For that a prime q based on some private data \(k \in {\mathbb {Z}}\), two groups G and V of order q and a bilinear pairing map \({\hat{e}}: G \times G \rightarrow V\) are selected. \(P \in G\) is selected randomly and the hash functions \(H_1\), \(H_2\) and \(H_3\) are also chosen.

  $$\begin{aligned}&msk \xleftarrow {r} {\mathbb {Z}}^*_q \\&mpk \leftarrow msk \cdot P \end{aligned}$$

• EXTRACT In this step, the secret key for each member of the health staff based on their ID is generated. The public key \(Q_{ID} \in G\) and the secret key \(S_{ID} \in G\) are calculated taking into account the msk. It should be pointed out that this key exchange between server and the users is performed using the stream cipher SNOW3G [34] under the session key obtained through an Elliptic Curve Diffie–Hellman (ECDH) [35].

  $$\begin{aligned}&Q_{ID} \leftarrow H_1(ID) \\&S_{ID} \leftarrow msk \cdot Q_{ID} \end{aligned}$$

• SINGLE SIGNCRYPTION All the messages \(m \in \{0,1\}^n\) will be encrypted and signed. The receiver’s public key is generated taking into account \(ID_b\) and then the message is signed with \(S_{ID_a}\) and encrypted with \(Q_{ID_{b}}\) giving as result \(\sigma\) (a t-uple of three components: c, T, U).

  $$\begin{aligned}&Q_{ID_b} \leftarrow H_1(ID_b) \\&x {\mathop {\leftarrow }\limits ^{r}}{\mathbb {Z}}^*_q \\&T \leftarrow x \cdot P \\&r \leftarrow H_2(T || m) \\&W \leftarrow x \cdot mpk \\&U \leftarrow r \cdot S_{ID_a} + W \\&y \leftarrow {\hat{e}}(W, Q_{ID_b}) \\&k \leftarrow H_3(y) \\&c \leftarrow k \oplus m \\&\sigma \leftarrow (c, T, U) \end{aligned}$$

• SINGLE UNSIGNCRYPTION If everything is right, the message \(m \in \{0,1\}^n\) is returned. Otherwise, if there are some problems in the signature or in the encryption of m, \(\bot\) is returned. The sender’s public key is generated taking into account \(ID_a\) and then the message is unencrypted with \(S_{ID_b}\).

  $$\begin{aligned}&Q_{ID_a} \leftarrow H_1(ID_a) \\&split \quad \sigma \quad as \quad (c, T, U) \\&y \leftarrow H_2({\hat{e}}(S_{ID_b}, T)) \\&k \leftarrow y \\&m \leftarrow k \oplus c \\&r \leftarrow H_2(T || m) \end{aligned}$$

  Verification:

  $$\begin{aligned} {\hat{e}}(U, P) == {\hat{e}}(Q_{ID_a}, mpk)^r \cdot {\hat{e}}(T, mpk) \end{aligned}$$

• MULTIPLE RECEIVER SIGNCRYPTION If there are n receivers, the system has to deal with several identifiers \(ID_1, ID_2,\ldots , ID_n\). The sender identifier is \(ID_a\). All the broadcasted messages \(m \in \{0,1\}^n\) will be encrypted and signed. The receivers’ public keys are generated taking into account all the identificatiers \(ID_1, ID_2, \ldots , ID_n\) giving as result \(\sigma\) (a t-uple of three components:\(c, T, U, Y, W, a_0, \ldots a_n-1\) )

  $$\begin{aligned} & Q_{{ID_{a} }} \leftarrow H_{1} (ID_{a} ) \\ & x\mathop \leftarrow \limits^{r} \mathbb{Z}_{q}^{*} \\ & T \leftarrow x \cdot P \\ & Y \leftarrow x \cdot Q_{{ID_{a} }} \\ & \alpha \mathop \leftarrow \limits^{r} \mathbb{Z}_{q}^{*} \\ & U \leftarrow \alpha \cdot Y \\ & W \leftarrow x \cdot mpk \\ & p\mathop \leftarrow \limits^{r} \mathbb{Z}_{q}^{*} \\ & v_{i} \leftarrow H_{2} (\hat{e}(Q_{i} ,W)) \\ & Q_{i} \leftarrow H_{1} (ID_{i} ) \\ & f(x) = \prod\limits_{{i = 0}}^{n} {(x - v_{i} )} + p(modq) = \\ & \quad = a_{0} + a_{1} x + \cdots + a_{{n - 1}} x^{{n - 1}} + x^{n} \\ & \beta \mathop \leftarrow \limits^{r} \mathbb{Z}_{q}^{*} \\ & c \leftarrow \beta \oplus H_{3} (p) \\ & K \leftarrow H_{4} (\beta ) \\ & Z \leftarrow Snow3G_{K} (m) \\ & h \leftarrow H_{5} (c,T,U,Z,a_{0} ,a_{1} , \ldots ,a_{{n - 1}} ) \\ & W \leftarrow (\alpha + h)r \cdot S_{{ID_{a} }} \\ & \sigma \leftarrow (c,T,U,Y,Z,a_{0} , \ldots ,a_{{n - 1}} ) \\ \end{aligned}$$

• MULTIPLE RECEIVER UNSIGNCRYPTION If everything is right, the message \(m \in \{0,1\}^n\) is returned. Two verifications are realized, public verification to check that the ciphertext is valid (\({\hat{e}}(W, P) == {\hat{e}}(U + hY, mpk)\)). Otherwise, the ciphertext has been damaged or it is invalid and \(\bot\) is returned. The second verification (\({\hat{e}}(W, Q_i) == {\hat{e}}(X + hY, mpk)\)), to check if \(ID_i\) is one of the receivers chosen by the sender, and the ciphertext is valid. Otherwise, the receiver shall quit the decryption process and \(\bot\) is returned.

  $$\begin{aligned} h \leftarrow H_5(c, T, U, Z, a_0, a_1, \ldots , a_{n-1}) \end{aligned}$$

  Verification:

  $$\begin{aligned} {\hat{e}}(W, P) == {\hat{e}}(U + hY, mpk) \end{aligned}$$

  Verification:

  $$\begin{aligned}&{\hat{e}}(W, Q_i) == {\hat{e}}(X + hY, mpk) \\&y \leftarrow H_2({\hat{e}}(S_{ID_b}, T)) \\&v_i \leftarrow H_2(y) \\&p \leftarrow f(v_i) \\&\beta \leftarrow c \oplus H_3(p) \\&K \leftarrow H_4(\beta ) \\&m \leftarrow Snow3G_K(Z) \end{aligned}$$

Results and discussion

In this section, an analysis of the proposed communication architecture, its communications and its security is provided.

A flowchart illustrating system communication is shown in Fig. 7.

Fig. 7

Communication flow

First of all, health staff workers need to be previously registered and authenticated by the manager at the server. The manager have a global view with all the events through the web application and will be responsible for the emergency management. He is also registered on the system and has the possibility of modifying the staff information if necessary.

The key generator corresponds to a service running in the server as second process and generating keys to protect communications.

Once the manager assigns a worker to a emergency (1) he/she obtains the information related to the event and his/her intervention on the affected area (2). If the first responder finds a new victim, he/she makes a first triage and stores the output on a new NFC tag (3). In other case, if the worker finds a victim who is already registered he/she reads the NFC tag, analyzes the information and updates it if necessary (4).

Note that first reponders’ routes depend on the triage they carry out. When a new patient is found, extra information is not needed. Otherwise, next victim to attend is decided depending on the priority defined by the previous triages performed on him/her.

Finally, the worker can send information to a group (based on an specific role), for example to doctors (6) (7), or a direct message to another peer (7).

Simulation and efficiency analysis

A prototype of the system has been developed, with a web application (see Fig. 8a) and a mobile application (see Fig. 8b).

Fig. 8

Developed prototype

The implementation comprises:

• a web application developed with JavaScript in the backend (with Nodejs) and Vuejs in the frontend,

• a mobile application implemented in Android with Kotlin and the 5.5 SDK version

Regarding the hardware, a laptop with Windows x64 and 16 GB RAM was used for the web application and a Pixel 2 with Android to run the mobile application.

A simulation tool has been developed based on JavaScript and the Google maps API in order to validate the approach proposed to assign resources. It also allows to represent and monitoring the emergency situation.

Some random points of different colors representing people affected by the emergency have been generated and located on the map. Colors are the result of the first triage (red, yellow, green and black). In Fig. 9, the costs of the naïve approach (allocation to the nearest AMP) and the one defined in this paper are compared. The blue part is the cost of traditional method, and the black part is the cost of the proposed system. The improvement of black zone over blue one is observable. In this case, the evaluation is supported by the output of 100 iterations with 1000 victims.

Fig. 9

Costs of allocating victims

In Fig. 10, improvements for 100 iterations with different victims amount are represented. In all the cases, there are improvements. Note that all the locations in the simulations where randomly generated, and the output of this figure is the mean of all solutions of iterations.

Fig. 10

Improvements

The code of the testing tool is available in a Github repository [36].

Security analysis

In the system developed, standard signcryption protocols are used in order to guaranteeing confidentiality and authenticity of data by combining signature and encryption while communication overhead and computational costs are reduced. Details on the formal security analysis of signcryption protocols may be fount at [37].

During Unsigncryption, user B computes \(y \leftarrow H_2({\hat{e}}(S_{ID_b}, T))\) to retrieve the ephemeral session key k used to encrypt the message m. Only the intended recipient in possession of the private key can retrieve this value. Otherwise, it will be necessary to invert the hash function \(H_2\) and solving instances of the Elliptic Curve Diffie–Hellman problem.

For sender identification verification, the signature must be verified using both the public key \(Q_{ID_a}\) of the sender and the master public key (mpk) by user B. Obtaining user keys while they are distributed by the PKG is not viable since that are sent ciphered with SNOW3G.

In the multiple receiver signcryption, the message m is encrypted by the sender using Snow3G with an ephemeral key K derived from randomly selected integers. This k may be calculated only by the intended recipients since it is calculated as the output of a hash function over a secret information. Again, signature verification requires the public keys of users and master.

Forward secrecy is also achieved thanks to the use of ephemeral ciphering keys. Although an adversary managed to know sender’s secret keys, deciphering previous messages will not be possible since ciphering keys are derived from random information that change for every message sent.

The proposed scheme provides protection against different attacks. Attacks related to multiple requests to the server, Denial of Service (DoS) attack, are restricted because only requests associated with a number of legitimate members of the health staff will take effect.

Once the corresponding private key is assigned, no more requests of this kind will be attended. Thus, the typically “Man in the Middle” (MiTM) attack which conveys a successful authentication to the server with an identifier of legitimate members of the health staff is improbable. This false identification would be easily detectable because the number of members who can make requests to the server is limited to those who are working at the time of the request. This authentication is one of the most important points on every cloud computing system based on mobile phones [38]. It should be clarified that resistance to certain types of attacks such as DOS and MiTM is not a feature of the algorithm but of the specific application domain. When using it in a different domain, its invulnerability to the same attacks can not be guaranteed.

Conclusions and future work

Finally, some conclusions and future works close the paper. A prototype, in Android and Nodejs with NFC tags, to improve logistics and attention of casualties in extreme situations has been developed. The main contribution of the paper is the development of a secure tool for the management of victims in emergencies situation. The tool consists on a mobile application, NFC tags and a web application. With the mobile application health staff know at any time which is the next victim to be treated. Our system automatically generates the assignment of patients to each AMP based on their position.

An emergency support channel to contact peers through a chat when health staff require additional support is included as well. Data security is a key objective, so for this reason ID-Based Signcryption is used for protecting communications. Several simulations where realized with different amount of casualties in order to validate the tool proposed. Summing up, contributions of this system are manyfold. The system allows the management of victims and emergency resources as well as, the classification and identification of patients though a triage application. A dynamic algorithmic solution to the problem of victim allocation to AMPs is also proposed. Note that efficiency has been tested through some experiments.

Special attention has been paid to the security of information related to victims and responders by developing specific protocols.

As future work, more functionalities can be added to the web platform, such as, more statistics about the state of the emergency scenario in order to define a heat map to identify the most affected area.

Direct communication (peer-to-peer) between the manager and a staff member participating in the event is a work in progress task.

A real time test with the emergency response staff will be really interesting to analyze the performance of the tool and detecting its weaknesses.

The authors declare that there is no conflict of interest regarding the publication of this paper, and the simulations generated with the data that support the findings of this study are available in a Github repository [36].