Skip to main content

Research Repository

Advanced Search

Sticky-Policy enabled authenticated OOXML for Health Care

Spyra, Grzegorz; Buchanan, William J; Ekonomou, Elias


Grzegorz Spyra

Elias Ekonomou


This paper proposes a secure medical document sharing construction, which addresses confidentiality and authenticity concerns related to cloud-based data protection issues. The paper extends the popular Office Open XML (OOXML) document format with eXtensible Access Control Mark-up Language (XACML) data which is defined with a sticky-policy and is carried by the document package to enforce data owner access preferences in untrusted networks. Furthermore, it uses Identity Based Encryption (IBE) and Authenticated IBE, which are two next generation public key cryptographic techniques to guarantee data security. The defined model amends the original IBE construction properties and uses an XACML policy as a public key. With this the authenticated encryption, with associated data concept applied to the model, ensures the protection of sensitive data. Shared data is thus encrypted and signed, while the public key (i.e. sticky-policy) is attached to encrypted data remains in plain text format.

Presentation Conference Type Conference Paper (Published)
Conference Name BCS Health Informatics 2015
Start Date Oct 7, 2015
End Date Oct 8, 2015
Acceptance Date Oct 7, 2015
Publication Date Oct 7, 2015
Deposit Date Aug 28, 2015
Publicly Available Date Oct 7, 2015
Peer Reviewed Not Peer Reviewed
Book Title Proceedings of BCS Health Informatics Scotland 2015 Conference
Keywords Cybersecurity; health information systems; business management;
Public URL
Publisher URL
Contract Date Aug 28, 2015


Sticky Policy Enabled Authenticated OOXML For Health Care - Conference Programme (5.2 Mb)

You might also like

Downloadable Citations