With its advantages are gradually emerging, the Internet of Things (IoT) is profoundly changing the way people work and live. Among all IoT applications, medical IoT is partic-ularly important, in which the user can communicate with smart medical device through the hospital gateway node. However, due to the inherent defects of these smart devices and the openness of wireless networks, medical IoT is vulnerable to kinds of attacks, such as impersonation attack and password guessing attack. Unfortunately, there are few authentication schemes for medical IoT at present, while existing three-party schemes have various weakness and are not suitable for medical IoT. Given the sensitivity of patient data and the deadly consequences of attacks on medical devices, there is an urgent need to develop a suitable authentication scheme in Medical IoT Network with high security. To alleviate the above problems, a robust ECC based three-party authentication and key agreement scheme for medical IoT(RAKI) has been proposed, which is secure with random oracle model and the informal security analysis. Besides, the performance comparisons against existing competing three-party schemes indicate that our scheme is efficient for medical IoT.