Digital Twins-Empowered Secure Network Slice Access and Isolation for Consumer Healthcare Applications

Abstract

Existing wireless infrastructure and networks are unable to meet the diverse Quality of Service (QoS) demands inherent in a wide range of consumer healthcare applications (CHAs). In this context, the adoption of fifth generation of wireless cellular technology (5G)/Beyond fifth-generation (B5G)-based network slicing technology has become pivotal for CHAs. It facilitates the creation of multiple virtual networks on a shared physical infrastructure by catering to distinct QoS requirements, where digital twins (DTs) are providing a virtual representation and management framework for healthcare smart devices, services, and applications within network slices. This allows different services and applications to coexist. However, network slicing has to address various security concerns, including securing slice access, enabling secure inter-slice communication, ensuring slice isolation within the shared physical network with DTs, and authenticating end users. To address these challenges, we propose a security mechanism that is specifically designed to safeguard network slice access and isolation in CHAs empowered by DTs, where only legitimate devices with corresponding digital twins and matching attributes are granted access. The proposed model incorporates the use of digital certificates for authenticating both slice access and devices by providing enhanced slice isolation to mitigate unauthorized access. Through a detailed comparative assessment, we demonstrate that the proposed scheme offers superior security and improved functionality attributes, while maintaining low communication costs as compared to those for other similar existing schemes. Furthermore, we validate the feasibility of our scheme through testbed simulations.