Body area networks (BANs) are formed to collect the healthcare data of a person for diagnosis and the provision of treatments. The prime motive of body area network devices is to collect and communicate legacy health-related data. These devices use simple authentication and key generation procedures to provide security with low power consumption and computational power. These procedures are vulnerable to many attacks, especially denial of service (DoS). © 2020 Elsevier Ltd