In　wireless　body　area　networks　(WBAN),　real-time　sensing　and　comprehensive　analysis　of　human　body　conditions　can　be　achieved　by　wearing　or　implanting　various　sensors,　thereby　providing　patients　with　more　accurate　and　refined　treatment　services.　However,　to　ensure　portability,　these　sensors　are　often　designed　to　be　very　small　and　may　struggle　to　handle　excessive　computational　and　communication　pressures.　Additionally,　leakage　of　human　sensing　data　from　these　sensors　could　pose　a　significant　security　threat　to　patients＇　lives,　thereby　demanding　higher　security　requirements.　Therefore,　achieving　a　balance　between　computational　capability　and　security　strength,　implementing　high-security　and　high-computational　efficiency　authentication,　validating　the　legitimacy　of　sensing　devices,　and　creating　virtual　secure　communication　links　become　fundamental　prerequisites　for　ensuring　the　privacy　and　security　of　WBAN　data.　To　address　this,　we　propose　a　privacy-preserving　and　anonymous　certificateless　mutual　authentication　protocol　for　WBAN.　Our　scheme　can　achieve　privacy-preserving　and　anonymous　authentication　for　devices　through　pseudonym　generation　and　communication　anonymity.　Furthermore,　through　security　analysis,　our　proposed　scheme　meets　requirements　such　as　nonrepudiation,　unlinkability,　perfect　forward　and　backward　secrecy,　known　session-specific　temporary　information　security,　and　traceability,　thereby　greatly　satisfying　the　security　needs　of　WBAN　devices.　Finally,　through　simulation　experiments,　we　find　that　compared　to　other　solutions,　our　scheme　demonstrates　higher　computational　efficiency　and　stronger　communication　efficiency,　thus　possessing　greater　practical　application　capability.　©　2024　IEEE.