The Internet of Medical Things (IoMT) has revolutionized healthcare by transforming medical operations into standardized, interoperable services. However, this service-oriented model introduces significant security vulnerabilities in device management and communication, which are especially critical given the sensitivity of medical data. To address these risks, this paper proposes SLIE (Secure and Lightweight Identity Encryption), a novel cryptosystem based on Wildcard Key Derivation Identity-Based Encryption (WKD-IBE). SLIE ensures scalable trust and secure omnidirectional communication through end-to-end encryption, hierarchical access control, and a lightweight key management system designed for resource-constrained devices. It incorporates constant-time operations, memory obfuscation, and expiry-based key revocation to counter side-channel, man-in-the-middle, and unauthorized access attacks, thereby ensuring compliance with standards like HIPAA and GDPR. Evaluations show that SLIE significantly outperforms RSA, with encryption and decryption times of 0.936ms and 0.217ms for 1KB of data, an 84.54% improvement in encryption speed, a 99.70% improvement in decryption speed, and an energy efficiency of 0.014 J/KB.

翻译：医疗物联网通过将医疗操作转化为标准化、可互操作的服务，彻底变革了医疗保健领域。然而，这种面向服务的模式在设备管理和通信方面引入了显著的安全漏洞，鉴于医疗数据的敏感性，这些问题尤为关键。为应对这些风险，本文提出SLIE（安全轻量级身份加密），一种基于通配符密钥派生身份基加密的新型密码系统。SLIE通过端到端加密、分层访问控制以及专为资源受限设备设计的轻量级密钥管理系统，确保了可扩展的信任与安全的全向通信。该系统融合了恒定时间操作、内存混淆和基于有效期的密钥撤销机制，以抵御侧信道攻击、中间人攻击和未授权访问攻击，从而确保符合HIPAA和GDPR等标准。评估结果表明，SLIE性能显著优于RSA，针对1KB数据的加密和解密时间分别为0.936毫秒和0.217毫秒，加密速度提升84.54%，解密速度提升99.70%，能源效率达到0.014焦耳/KB。