KR102417811B1 - Document translation service server which provides document translation services with personal information protection function and the operating method thereof - Google Patents

Abstract

Disclosed are a document translation service server that provides a document translation service having a personal information protection function, and a method of operating the same. According to the present invention, when a document file for a first document is received from a client terminal of a first member, a translation command for the first document and a personal information protection processing command for personal information included in the first document are received, in advance Based on a plurality of set different regular expressions, at least one first string that is personal information included in the first document is checked, and after masking with a preset symbol for the at least one first string, the first A document translation service server that translates a document and transmits it to a client terminal of a first member, and an operating method thereof.

Description

A document translation service server providing a document translation service having a privacy function and an operating method thereof

The present invention relates to a document translation service server that provides a document translation service having a personal information protection function, and a method of operating the same.

Personal information means information that can identify a specific individual, such as a resident registration number or phone number. If such personal information is illegally leaked to others, it can be used for criminal purposes, so care must be taken not to leak personal information.

In this regard, a document-related program such as a word processor that supports basic document creation and editing may support a function of protecting personal information by masking personal information included in the document.

Accordingly, the user can prevent personal information from being leaked by masking the personal information included in the document by utilizing such a personal information protection function.

However, when a translation is required for a document containing such personal information, the existing translation service does not support the privacy protection function. There was a hassle of additionally executing the information protection function to mask personal information.

If, when translating a document containing personal information, it can be provided to the user by performing the translation after masking the personal information, even if the user needs to translate the document, it can be easily added to the document. In that it is possible to protect the included personal information, it will be possible to increase the user's convenience.

Therefore, there is a need for research on document translation technology that provides a document translation service having a privacy protection function.

According to the present invention, when a document file for a first document is received from a client terminal of a first member, a translation command for the first document and a personal information protection processing command for personal information included in the first document are received, in advance Based on a plurality of set different regular expressions, at least one first string that is personal information included in the first document is checked, and after masking with a preset symbol for the at least one first string, the first By presenting a document translation service server that translates a document and transmits it to the client terminal of the first member, and a method of operating the same, it is intended to support the increase of user convenience.

A document translation service server providing a document translation service having a personal information protection function according to an embodiment of the present invention stores a plurality of different regular expressions preset to correspond to the notation format of personal information. A regular expression storage unit, while receiving a document file for a first document from a client terminal of a first member among a plurality of members pre-designated as members subscribed to the document translation service, a translation command for the first document and the When a personal information protection processing command for personal information included in the first document is received, an event generating unit that generates an event for performing translation and personal information protection processing for the first document, when the event occurs, A string checking unit for checking whether a character string having a notation format corresponding to the plurality of regular expressions stored in the regular expression storage unit exists among the texts included in the first document; When it is confirmed that at least one first character string exists as a character string having a notation format corresponding to the plurality of regular expressions among texts, after masking the at least one first character string with a preset symbol A translation document generator for generating a translation document for the first document based on a predefined translation engine, and a document file for transmitting the document file for the translated document to the client terminal of the first member when the translation document is generated includes a transmission unit.

In addition, in the method of operating a document translation service server that provides a document translation service having a personal information protection function according to an embodiment of the present invention, a plurality of different regular expressions preset to correspond to the notation format of personal information are stored. Maintaining a regular expression storage unit in the document translation service, while receiving the document file for the first document from the client terminal of the first member among a plurality of members pre-designated as members subscribed to the document translation service, When a translation command and a personal information protection processing command for personal information included in the first document are received, generating an event for performing translation and personal information protection processing for the first document, the event occurs , checking whether a character string having a notation format corresponding to the plurality of regular expressions stored in the regular expression storage unit exists among the texts included in the first document; When it is confirmed that at least one first character string exists as a character string having a notation format corresponding to the plurality of regular expressions among texts, the at least one first character string is masked with a preset symbol and then a preset translation generating a translated document for the first document based on an engine; and, when the translated document is generated, transmitting a document file for the translated document to a client terminal of the first member.

According to the present invention, when a document file for a first document is received from a client terminal of a first member, a translation command for the first document and a personal information protection processing command for personal information included in the first document are received, in advance Based on a plurality of set different regular expressions, at least one first string that is personal information included in the first document is checked, and after masking with a preset symbol for the at least one first string, the first By presenting a document translation service server that translates a document and transmits it to the client terminal of the first member, and a method of operating the same, it is possible to increase user convenience.

1 is a diagram showing the structure of a document translation service server that provides a document translation service having a personal information protection function according to an embodiment of the present invention.
FIG. 2 is a diagram for explaining an operation of a document translation service server that provides a document translation service having a personal information protection function according to an embodiment of the present invention.
3 is a flowchart illustrating an operation method of a document translation service server that provides a document translation service having a personal information protection function according to an embodiment of the present invention.

Hereinafter, embodiments according to the present invention will be described in detail with reference to the accompanying drawings. These descriptions are not intended to limit the present invention to specific embodiments, and should be understood to include all modifications, equivalents, and substitutes included in the spirit and scope of the present invention. While describing each drawing, like reference numerals are used for similar components, and unless otherwise defined, all terms used in this specification, including technical or scientific terms, refer to those of ordinary skill in the art to which the present invention belongs. It has the same meaning as is commonly understood by those who have it.

In this document, when a part "includes" a certain component, it means that other components may be further included, rather than excluding other components, unless otherwise stated. In addition, in various embodiments of the present invention, each of the components, functional blocks or means may be composed of one or more sub-components, and the electrical, electronic, and mechanical functions performed by each component are electronic. A circuit, an integrated circuit, an ASIC (Application Specific Integrated Circuit), etc. may be implemented as various well-known devices or mechanical elements, and may be implemented separately or two or more may be integrated into one.

On the other hand, the blocks in the accompanying block diagram or steps in the flowchart are computer program instructions that are loaded in a processor or memory of equipment capable of data processing, such as a general-purpose computer, a special-purpose computer, a portable notebook computer, and a network computer, and perform specified functions. can be interpreted as meaning Since these computer program instructions may be stored in a memory provided in a computer device or in a memory readable by a computer, the functions described in the blocks of the block diagrams or the steps of the flowcharts are produced as articles of manufacture containing instruction means for performing the same. it might be In addition, each block or each step may represent a module, segment, or portion of code comprising one or more executable instructions for executing the specified logical function(s). It should also be noted that, in some alternative embodiments, it is also possible for the functions recited in blocks or steps to be executed out of the prescribed order. For example, two blocks or steps shown one after another may be performed substantially simultaneously or in the reverse order, and in some cases, some blocks or steps may be omitted.

1 is a diagram showing the structure of a document translation service server that provides a document translation service having a personal information protection function according to an embodiment of the present invention.

Referring to FIG. 1 , the document translation service server 110 includes a regular expression storage unit 111 , an event generation unit 112 , a character string verification unit 113 , a translation document generation unit 114 , and a document file transmission unit 115 . ) is included.

First, the regular expression storage unit 111 stores a plurality of different regular expressions preset to correspond to the format of the personal information.

Here, the regular expression means a formal language used to express a set of strings having a specific rule, such as '111-2222-3333' or '123456-4567890'.

For example, as shown in Table 1 below, a plurality of preset regular expressions may be stored in the regular expression storage unit 111 .

Personal information notation format regular expression Mobile phone number notation format ^\d{3}-\d{3,4}-\d{4}$ phone number format ^\d{2,3}-\d{3,4}-\d{4}$ Resident registration number marking format ^\d{6}-\d{7}$ ... ...

The event generating unit 112 receives the document file for the first document from the client terminal 141 of the first member among a plurality of members who are pre-designated as members subscribed to the document translation service, and adds the document to the first document. When a translation command and a personal information protection processing command for personal information included in the first document are received, an event for performing translation and personal information protection processing for the first document is generated.

When the event is generated by the event generating unit 112 , the character string check unit 113 corresponds to the plurality of regular expressions stored in the regular expression storage unit 111 among texts included in the first document. Checks whether a string with the specified notation format exists.

The translation document generating unit 114 is a character string having a notation format corresponding to the plurality of regular expressions among texts included in the first document by the character string checking unit 113. At least one first character string exists. When it is confirmed that the at least one first character string is masked with a preset symbol, a translation document for the first document is generated based on a preset translation engine.

When the translated document is generated by the translation document generating unit 114 , the document file transmitting unit 115 transmits a document file for the translated document to the client terminal 141 of the first member.

Hereinafter, the operations of the character string check unit 113 , the translation document generation unit 114 , and the document file transmission unit 115 will be described in detail, for example.

First, while a document file for a first document is received from a client terminal of 'Member 1' who is a first member among a plurality of members who are pre-designated as members subscribed to the document translation service, a translation command for the first document is received and it is said that a personal information protection processing command for personal information included in the first document has been received, and accordingly, the event generating unit 112 performs a translation command and personal information protection processing for the first document Assume that an event for

Then, the character string check unit 113 may check whether a character string having a notation format corresponding to the plurality of regular expressions stored in the regular expression storage unit 111 among the text included in the first document exists. .

At this time, if the first document is the same as the figure shown in reference numeral 210 of FIG. 2 , referring to the regular expression storage unit 111 as shown in Table 1, the text included in the first document and the plurality of Comparing the regular expressions of , in the first document, the character string denoted by reference numeral 201 has a notation format corresponding to the 'phone number representation format', and the character string denoted by reference numeral 202 is the 'resident registration number representation format'. It can be confirmed that it has a notation form corresponding to '.

Accordingly, the character string check unit 113 may identify the character string indicated by reference numeral 201 and the character string indicated by reference numeral 202 as at least one first character string in the first document.

Then, the translation document generating unit 114 may generate a translation document for the first document based on a predefined translation engine after masking the at least one first character string 201 and 202 with a preset symbol. have.

In relation to this, when the preset symbol is '*', the translation document generating unit 114 masks each of the at least one first character string 201 and 202 with '*', and then based on the preset translation engine Thus, a translation document for the first document may be generated as shown in the figure 220 .

In this way, when the translated document is generated by the translated document generating unit 114 , the document file transmitting unit 115 may transmit a document file for the translated document to the client terminal of 'Member 1'.

That is, the document translation service server 110 receives the document file for the first document from the client terminal 141 of the first member, and provides a translation command for the first document and an individual included in the first document. When a personal information protection processing command for information is received, based on the preset plurality of different regular expressions, the at least one first string that is personal information included in the first document is identified, and the at least one After masking with a preset symbol for the first character string of , a document file for the translated document generated by performing translation of the first document may be transmitted to the client terminal 141 of the first member.

According to an embodiment of the present invention, the document translation service server 110 includes a member database 116 , an identification information request unit 117 , a permission table generator 118 , a hash value generator 119 , and a permission table storage A processing unit 120 may be further included.

First, identification information of the plurality of members is stored in the member database 116 .

Here, the identification information of the plurality of members means unique information for identifying each of the plurality of members, such as a mobile phone number or an E-mail address of each of the plurality of members.

For example, identification information of the plurality of members as shown in Table 2 below may be stored in the member database 116 .

multiple members identification information member 1 Identification 1 member 2 Identification 2 member 3 Identification 3 member 4 Identification 4 ... ...

When the document file for the translated document is transmitted to the first member's client terminal 141 by the document file transmitting unit 115, the identification information requesting unit 117 sends it to the first member's client terminal 141, It requests transmission of identification information about a member to be granted access to the at least one first string among the plurality of members.

The permission table generating unit 118 is the identification information of the member to be granted access to the at least one first character string from the client terminal 141 of the first member, and identifies the at least one second member. When the information is received, it is checked whether the identification information of the at least one second member is stored in the member database 116 , and it is confirmed that the identification information of the at least one second member is stored in the member database 116 . If done, an authority table is created in which identification information of the at least one second member is recorded.

When the permission table is generated by the permission table generator 118 , the hash value generator 119 applies a document file for the translated document as an input to a preset hash function to generate a hash value.

When the hash value is generated by the hash value generator 119, the permission table storage processing unit 120 stores the permission table and the hash value in correspondence with each other in the permission table storage.

Hereinafter, operations of the identification information request unit 117 , the authority table generation unit 118 , the hash value generation unit 119 , and the authority table storage processing unit 120 will be described in detail, for example.

First, as in the above-described example, it is assumed that the document file for the translated document is transmitted to the client terminal of 'member 1' by the document file transmission unit 115 .

Then, the identification information request unit 117 is a client terminal of 'member 1', and identifies a member to be granted access to at least one first string 201 and 202 among the plurality of members. You may request the transmission of information.

At this time, identification information of at least one second member to which the client terminal of 'member 1' is to grant access to the at least one first character string 201, 202 in response to the identification information transmission request Assume that 'identification information 2, identification information 3' is received in the document translation service server 110 as 'identification information 2, identification information 3', which is identification information of each of 'member 2 and member 3', is transmitted. .

Then, the authority table generating unit 118 may check whether 'identification information 2, identification information 3' is stored in the member database 116 . In relation to this, since 'identification information 2 and identification information 3' are recorded in the member database 116 as shown in Table 2, the authority table generating unit 118 stores the 'identification information 2, identification information 3' in the member database 116. It can be confirmed that 3' is recorded, and an authority table in which 'identification information 2, identification information 3' is recorded can be created as shown in Table 3 below.

at least one second member identification information member 2 Identification 2 member 3 Identification 3

Then, the hash value generator 119 may generate a hash value by applying the document file for the translated document as an input to a preset hash function.

At this time, if it is assumed that the hash value is generated as 'hash value 1', the permission table storage processing unit 120 may store the permission table and 'hash value 1' by matching them with each other in the permission table storage.

In this case, according to an embodiment of the present invention, the document translation service server 110 may further include a transmission request unit 121 , a permission table reading unit 122 , and a release approval signal transmission unit 123 .

After the permission table and the hash value are matched with each other by the permission table storage processing unit 120 and stored in the permission table storage by the permission table storage processing unit 120, the transmission request unit 121 is configured by a third member who is one of the at least one second member. , which is applied to the at least one first character string by the third member to the client terminal 142 of the third member after the document file for the translated document is executed in the client terminal 142 of the third member When the unmasking request is received from the third member's client terminal 142 as the unmasking command instructing to release the masking is applied, the third member's client terminal 142 sends a document file for the translated document and request to transmit the identification information of the third member.

When a document file for the translated document and identification information of the third member are received from the client terminal 142 of the third member, the permission table reading unit 122 inputs the document file for the translated document into the hash function. to generate the hash value, and then browse the permission table stored corresponding to the hash value in the permission table storage.

When the authority table is read by the authority table reading unit 122, the release approval signal transmitting unit 123 checks whether the identification information of the third member is recorded on the authority table, and confirms that the third member identification information is recorded on the authority table. When it is confirmed that the identification information of the third member is recorded, a masking release approval signal for approving the release of the masking applied to the at least one first character string is transmitted to the client terminal 142 of the third member.

At this time, when the third member's client terminal 142 receives the unmasking approval signal from the document translation service server 110, after releasing the masking applied to the at least one first character string in the translated document, The translated document may be displayed on the screen.

Hereinafter, operations of the transmission request unit 121 , the authority table browsing unit 122 , the release approval signal transmission unit 123 , and the client terminal 142 of the third member will be described in detail, for example.

First, as in the above example, it is assumed that the permission table and 'hash value 1' correspond to each other and are stored in the permission table storage by the permission table storage processing unit 120 . After that, the document file for the translated document is executed in the client terminal of 'Member 2' by 'Member 2' among 'Member 2 and Member 3', which is the at least one second member, and to 'Member 2' As a result, a masking release command requesting to cancel the masking applied to the at least one first character string 201 and 202 is applied to the client terminal of 'member 2', and the document translation service server 110 receives the 'member' Assume that a de-masking request is received from a client terminal of 2'.

Then, the transmission requesting unit 121 may request to transmit the document file for the translated document and identification information of the 'member 2' to the client terminal of 'member 2'.

In this case, as the client terminal of 'Member 2' transmits the document file for the translated document in response to the transmission request, and at the same time transmits 'Identification information 2' as the identification information of 'Member 2', document translation When it is said that the service server 110 has received the document file for the translated document and 'identification information 2', the permission table reading unit 122 applies the document file for the translated document as an input to the hash function, You can create a hash value like 'hash value 1'.

Then, the permission table browsing unit 122 may browse the permission table stored in correspondence with 'hash value 1' in the permission table storage.

In relation to this, according to the above-described example, since the permission table is stored in the permission table storage in correspondence with 'hash value 1' by the permission table storage processing unit 120, the permission table browsing unit 122 is 'hash value 1' ', it is possible to browse the authority table as shown in Table 3 in the authority table storage.

In this way, when the authority table is read by the authority table viewing unit 122 , the release approval signal transmitting unit 123 may check whether 'identification information 2' is recorded on the authority table.

In relation to this, since 'identification information 2 and identification information 3' are recorded as identification information of the at least one second member in the authority table as shown in Table 3, the release approval signal transmitter 123 is It can be confirmed that 'identification information 2' is recorded in the .

Here, the fact that 'identification information 2', which is identification information of 'member 2', is recorded on the permission table means that 'member 2' is granted access to at least one first character string 201 and 202 Since it means one of the at least one second member, the release approval signal transmitter 123 approves the release of the masking applied to the at least one first character string 201 and 202 to the terminal of 'member 2'. may transmit a masking unmasking signal for

Accordingly, when the unmasking signal is received at the client terminal of 'Member 2', the client terminal of 'Member 2' releases the masking applied to the at least one first character string 201 and 202, and then the translation The document may be displayed on the screen as shown in the figure 230 .

In this way, the document translation service server 110 receives, from the client terminal 141 of the first member, the identification information of the at least one second member to be granted access to the at least one first character string. After receiving and generating the permission table, and storing the hash values of the permission table and the translation document in correspondence with each other in the permission table storage, a client terminal of a third member who is one of the at least one second member ( 142), when the document file for the translated document is executed and the unmasking command for the translated document is received, based on the hash value and the permission table, the third member is the at least one second member By checking whether the third member is included in the at least one second member, it is possible to transmit the unmasking approval signal to the client terminal 142 of the third member.

Meanwhile, in order to strengthen the security of the permission table, the permission table storage processing unit 120 may encrypt the permission table and store the encrypted permission table in correspondence with the hash value in the permission table storage.

In this regard, according to an embodiment of the present invention, the authority table storage processing unit 120 includes the private key storage unit 124, the calculation value calculation unit 125, the private key extraction unit 126, and the authority table encryption unit ( 127) and an encrypted storage processing unit 128 .

First, n (n is a natural number greater than or equal to 2) preset private keys are stored in the private key storage unit 124 .

Here, different integer values of 0 or more and n-1 or less are assigned to each of the n private keys, and n public keys corresponding to each of the n private keys are pre-distributed to the client terminals of the plurality of members. and an integer value identical to an integer value assigned to a private key corresponding to each public key is assigned to the n public keys.

For example, when n is '10', '10' private keys as shown in Table 4 below may be stored in the private key storage unit 124 .

'10' private keys integer value private key 1 0 private key 2 One private key 3 2 private key 4 3 private key 5 4 private key 6 5 private key 7 6 private key 8 7 private key 9 8 private key 10 9

In addition, '10' public keys as shown in Table 5 below corresponding to each of the '10' private keys may be pre-distributed to the client terminals of the plurality of members.

'10' public keys integer value public key 1 0 public key 2 One public key 3 2 public key 4 3 public key 5 4 public key 6 5 public key 7 6 public key 8 7 public key 9 8 public key 10 9

When the hash value is generated by the hash value generator 119, the calculation value calculating unit 125 checks attribute information of the document file for the translated document, and at the time when the document file for the translated document is generated. After obtaining the date value for , the first calculated value is calculated by performing a modulo operation with the date value as the dividend and n as the divisor.

Here, the modulo operation refers to an operation of dividing a dividend by a divisor to calculate a remainder thereof.

When the first operation value is calculated by the operation value calculation unit 125, the private key extraction unit 126 refers to the private key storage unit 124, and the first operation value among the n private keys is an integer. The first private key assigned as a value is extracted.

When the first private key is extracted by the private key extraction unit 126, the authority table encryption unit 127 encrypts the authority table with the first private key.

When the permission table is encrypted by the permission table encryption unit 127, the encryption storage processing unit 128 stores the encrypted permission table and the hash value in correspondence with each other in the permission table storage.

Hereinafter, the operations of the calculation value calculating unit 125, the private key extracting unit 126, the authority table encryption unit 127, and the encrypted storage processing unit 128 will be described in detail, for example.

First, as in the above-described example, it is assumed that n is '10', and that the hash value is generated as 'hash value 1' by the hash value generator 119 .

Then, the calculation value calculating unit 125 may check attribute information of the document file for the translation document, and obtain a date value for the time when the document file for the translation document is generated.

At this time, when the date value for the time when the obtained document file for the translated document is generated is '20201027', the calculation value calculating unit 125 sets '20201027' as the dividend and '10' as the divisor By performing the modulo operation, the first operation value may be calculated as '7'.

In this way, when the first calculated value is calculated as '7' by the calculated value calculating unit 125, the private key extracting unit 126 refers to the private key storage unit 124 and selects the '10' private keys. The first private key to which '7' is assigned as an integer value may be extracted.

In relation to this, in the private key storage unit 124 as shown in Table 4, the private key extracting unit ( 126) may extract 'private key 8' as the first private key.

Then, the authority table encryption unit 127 may encrypt the authority table with the 'private key 8'.

In this way, when the authority table is encrypted by the authority table encryption unit 127, the encryption storage processing unit 128 may store the encrypted table and the 'hash value 1' in correspondence with each other in the authority table storage.

At this time, according to an embodiment of the present invention, the permission table viewing unit 122 is configured to decrypt and read the permission table stored in the permission table storage in an encrypted state corresponding to the hash value, and the hash value It may include an operation unit 129 , a public key transmission request unit 130 , and a decryption browsing unit 131 .

First, when a document file for the translated document and identification information of the third member are received from the client terminal 142 of the third member, the hash value calculating unit 129 generates the document file for the translated document, the hash The hash value is generated by applying it as an input to a function.

When the hash value is generated by the hash value calculating unit 129, the public key transmission request unit 130 checks the attribute information of the document file for the translated document, and at the time when the document file for the translated document is generated. After calculating the first operation value by obtaining a date value for , making the date value a dividend and performing a modulo operation with n as a divisor, While transmitting the operation value, transmission of the public key to which the first operation value is assigned as an integer value is requested.

The decryption reading unit 131 responds to the request for transmission of the public key by the client terminal 142 of the third member, and the first operation value among the n public keys stored in the client terminal 142 of the third member. When the first public key is received from the client terminal 142 of the third member as the first public key is extracted and transmitted with the public key assigned as an integer value, the encrypted authority table is converted into the first public key. Decrypt and browse the authority table.

Hereinafter, the operations of the hash value calculating unit 129, the public key transmission requesting unit 130, and the decryption browsing unit 131 will be described in detail, for example.

First, as in the above example, let n be '10', and the client terminal of 'member 2' responds to the transmission request of the transmission request unit 121, and the document file for the translated document and member 2' It is assumed that as identification information 'identification information 2' is transmitted, a document file for the translated document and 'identification information 2' are received from the client terminal of 'member 2'.

Then, the hash value calculating unit 129 may apply the document file for the translated document as an input to the hash function to generate the hash value as 'hash value 1'.

Then, the public key transmission request unit 130 may check attribute information of the document file for the translated document, and obtain a date value for the time when the document file for the translated document is generated.

In this case, as in the above example, when the date value for the time when the document file for the translation document is generated is '20201027', the public key transmission requesting unit 130 sets '20201027' as the dividend, and '10 By performing a modulo operation of ' as a divisor, the first operation value may be calculated as '7'.

Then, the public key transmission request unit 130 may request transmission of the public key to which '7' is assigned as an integer value while transmitting the first calculated value '7' to the client terminal of 'member 2'. .

In this case, according to the above-described example, '10' public keys as shown in Table 5 may be stored in the client terminal of 'Member 2', and '7' among the '10' public keys is assigned as an integer value. Since the public key is 'public key 8', the client terminal of 'member 2' may extract 'public key 8' and transmit it to the document translation service server 110 .

Accordingly, when the 'public key 8' is received by the document translation service server 110, the decryption viewing unit 131 may decrypt the encrypted permission table with the 'public key 8' to view the permission table.

Here, the encrypted permission table is encrypted with 'private key 8' by the permission table encryption unit 127, and 'public key 8' corresponds to 'private key 8', so the decryption browsing unit 131 is The encrypted authority table can be decrypted based on the 'public key 8'.

3 is a flowchart illustrating an operation method of a document translation service server that provides a document translation service having a personal information protection function according to an embodiment of the present invention.

In step S310, a regular expression storage unit in which a plurality of different regular expressions preset to correspond to the notation format of personal information is stored is maintained.

In step S320, while a document file for a first document is received from a client terminal of a first member among a plurality of members who are pre-designated as members subscribed to the document translation service, a translation command for the first document and the When a personal information protection processing command for personal information included in the first document is received, an event for performing translation and personal information protection processing for the first document is generated.

In step S330, when the event occurs, it is checked whether a character string having a notation format corresponding to the plurality of regular expressions stored in the regular expression storage unit among texts included in the first document exists.

In step S340, when it is confirmed that at least one first character string exists as a character string having a notation format corresponding to the plurality of regular expressions among texts included in the first document, the at least one first character string After masking the character string with a preset symbol, a translation document for the first document is generated based on a preset translation engine.

In step S350, when the translated document is generated, a document file for the translated document is transmitted to the client terminal of the first member.

In this case, according to an embodiment of the present invention, the method of operating the document translation service server includes maintaining a member database in which identification information of the plurality of members is stored, and a document file for the translated document is provided to the first member Upon completion of transmission to the client terminal of the first member, to the client terminal of the first member, requesting transmission of identification information about a member to be granted access to the at least one first string among the plurality of members step, when identification information of at least one second member is received from the client terminal of the first member as identification information of a member to be granted access to the at least one first character string, the member database If it is confirmed that the identification information of the at least one second member is stored in the member database, the identification information of the at least one second member generating a permission table recording It may further include the step of storing the corresponding authorization table storage.

In addition, according to an embodiment of the present invention, in the method of operating the document translation service server, after the permission table and the hash value correspond to each other and stored in the permission table storage, a second member of the at least one second member After the third member executes the document file for the translated document in the client terminal of the third member, the third member applies to the at least one first character string in the client terminal of the third member When a demasking request is received from the client terminal of the third member as a demasking command instructing to release the masking is applied, the third member's client terminal provides a document file for the translated document and the third requesting to transmit identification information of a member; when a document file for the translated document and identification information of the third member are received from the client terminal of the third member, the document file for the translated document is converted into the hash After generating the hash value by applying it as an input to a function, reading the permission table stored corresponding to the hash value in the permission table storage, and when the permission table is read, the third on the permission table It is checked whether the identification information of the member is recorded, and when it is confirmed that the identification information of the third member is recorded on the authority table, it is applied to the at least one first character string by the client terminal of the third member The method may further include transmitting an unmasking approval signal for approving the release of masking, wherein the third member's client terminal receives the unmasking approval signal from the document translation service server from the translation document. After removing the masking applied to the at least one first character string, the translated document may be displayed on the screen.

At this time, according to an embodiment of the present invention, the step of storing the permission table and the hash value in correspondence with each other in the permission table storage includes preset n (n is a natural number greater than or equal to 2) private keys (the n private keys). are assigned different integer values from 0 to n-1, respectively, and n public keys corresponding to each of the n private keys are pre-distributed to the client terminals of the plurality of members, and the n public keys maintaining a private key storage in which the same integer value as the integer value assigned to the private key corresponding to each public key is stored), when the hash value is generated, a document file for the translated document The first operation is performed by checking attribute information of , obtaining a date value for the time when the document file for the translation document is generated, and performing a modulo operation with the date value as a dividend and n as a divisor. calculating a value; when the first calculated value is calculated, referring to the private key storage unit, extracting a first private key to which the first calculated value is assigned as an integer value among the n private keys; encrypting the authority table with the first private key when the first private key is extracted may include

At this time, according to an embodiment of the present invention, the reading of the authority table comprises receiving a document file for the translated document and identification information of the third member from the client terminal of the third member, the translated document generating the hash value by applying a document file for After calculating the first calculated value by obtaining a date value for the generated time point, making the date value a dividend, and performing a modulo operation with n as a divisor, the third member's client terminal requesting transmission of a public key to which the first operation value is assigned as an integer value while transmitting the first operation value; 3 As the first public key is extracted and transmitted with the public key to which the first operation value is assigned as an integer value among the n public keys stored in the client terminal of the third member, the second public key is sent from the client terminal of the third member When one public key is received, decrypting the encrypted authority table with the first public key may include reading the authority table.

The operation method of the document translation service server that provides the document translation service having the personal information protection function according to an embodiment of the present invention has been described with reference to FIG. 3 . Here, since the method of operating the document translation service server according to an embodiment of the present invention may correspond to the configuration of the operation of the document translation service server 110 described with reference to FIG. 1 , a more detailed description thereof will be omitted. decide to do

The method of operating a document translation service server that provides a document translation service having a personal information protection function according to an embodiment of the present invention may be implemented as a computer program stored in a storage medium for execution through combination with a computer.

In addition, the operating method of the document translation service server that provides a document translation service having a personal information protection function according to an embodiment of the present invention is implemented in the form of a program command that can be executed through various computer means and stored in a computer-readable medium. can be recorded. The computer-readable medium may include program instructions, data files, data structures, etc. alone or in combination. The program instructions recorded on the medium may be specially designed and configured for the present invention, or may be known and available to those skilled in the art of computer software. Examples of the computer-readable recording medium include magnetic media such as hard disks, floppy disks and magnetic tapes, optical media such as CD-ROMs and DVDs, and magnetic media such as floppy disks. - includes magneto-optical media, and hardware devices specially configured to store and execute program instructions, such as ROM, RAM, flash memory, and the like. Examples of program instructions include not only machine language codes such as those generated by a compiler, but also high-level language codes that can be executed by a computer using an interpreter or the like.

As described above, in the present invention, specific matters such as specific components, etc., and limited embodiments and drawings have been described, but these are only provided to help a more general understanding of the present invention, and the present invention is not limited to the above embodiments. , various modifications and variations are possible from these descriptions by those of ordinary skill in the art to which the present invention pertains.

Therefore, the spirit of the present invention should not be limited to the described embodiments, and not only the claims described below, but also all of the claims and all equivalents or equivalent modifications to the claims will be said to belong to the scope of the spirit of the present invention. .

110: a document translation service server that provides a document translation service having a personal information protection function
111: regular expression storage unit 112: event generating unit
113: string confirmation unit 114: translation document generating unit
115: document file transfer unit 116: member database
117: identification information request unit 118: authority table generation unit
119: hash value generation unit 120: permission table storage processing unit
121: transmission request unit 122: permission table view unit
123: release approval signal request unit 124: private key storage unit
125: calculation value calculation unit 126: private key extraction unit
127: permission table encryption unit 128: encryption storage processing unit
129: hash value calculation unit 130: public key transmission request unit
131: decryption reading unit
141: client terminal of the first member
142: client terminal of the third member

Claims (12)

A document translation service server that provides a document translation service having a personal information protection function, the document translation service server comprising:
a regular expression storage unit in which a plurality of different regular expressions preset to correspond to the notation format of personal information are stored;
a member database storing identification information of a plurality of members pre-designated as members subscribed to the document translation service;
When a document file for a first document is received from a client terminal of a first member of the plurality of members, a translation command for the first document and a personal information protection processing command for personal information included in the first document When this is received, an event generating unit that generates an event for performing translation and personal information protection processing on the first document;
a character string checking unit that, when the event occurs, checks whether a character string having a notation format corresponding to the plurality of regular expressions stored in the regular expression storage unit exists among the text included in the first document;
When it is confirmed that at least one first character string exists as a character string having a notation format corresponding to the plurality of regular expressions among texts included in the first document, the at least one first character string is converted to a preset symbol a translation document generator generating a translation document for the first document based on a pre-specified translation engine after masking;
a document file transmission unit which, when the translated document is generated, transmits a document file for the translated document to the client terminal of the first member;
When the document file for the translated document is transmitted to the client terminal of the first member, a target to grant access to the at least one first string among the plurality of members to the client terminal of the first member an identification information request unit for requesting transmission of identification information for a member who becomes a member;
When identification information of at least one second member is received from the client terminal of the first member as identification information of a member to be granted access to the at least one first character string, it is stored in the member database It is checked whether the identification information of the at least one second member is stored, and when it is confirmed that the identification information of the at least one second member is stored in the member database, the identification information of the at least one second member is recorded an authority table generating unit for generating an authority table;
a hash value generator for generating a hash value by applying a document file for the translated document as an input to a preset hash function;
a permission table storage processing unit that, when the hash value is generated, stores the permission table and the hash value in correspondence with each other in a permission table storage;
After the permission table and the hash value correspond to each other and stored in the permission table storage, a document file for the translated document in the client terminal of the third member by a third member who is one of the at least one second member After this is executed, as a de-masking command instructing to cancel the masking applied to the at least one first character string is applied to the client terminal of the third member by the third member, the third member's a transmission request unit for requesting to transmit, to the client terminal of the third member, a document file for the translated document and identification information of the third member when a request for unmasking is received from the client terminal;
When a document file for the translated document and identification information of the third member are received from the client terminal of the third member, the document file for the translated document is applied as an input to the hash function to generate the hash value a permission table browsing unit for reading the permission table stored corresponding to the hash value in the permission table storage; and
When the permission table is read, it is checked whether the identification information of the third member is recorded on the permission table, and when it is confirmed that the identification information of the third member is recorded on the permission table, the third member A release approval signal transmitter for transmitting a masking release approval signal for approving the release of the masking applied to the at least one first character string to the client terminal of
including,
The third member's client terminal is
When the unmasking approval signal is received from the document translation service server, after removing the masking applied to the at least one first character string in the translation document, the translation document is displayed on a screen Translation service server. delete delete According to claim 1,
The permission table storage processing unit
n preset private keys (n is a natural number greater than or equal to 2) - The n private keys are each assigned different integer values from 0 to n-1, and the n private keys to the client terminals of the plurality of members n public keys corresponding to each of the keys are pre-distributed, and to the n public keys, an integer value identical to the integer value assigned to the private key corresponding to each public key is assigned - the stored private key storage;
When the hash value is generated, the property information of the document file for the translation document is checked, the date value for the time when the document file for the translation document is generated is obtained, and the date value is the dividend, n an arithmetic value calculator for calculating a first arithmetic value by performing a modulo arithmetic operation to be a divisor of ;
a private key extracting unit for extracting a first private key to which the first calculated value is assigned as an integer value among the n private keys with reference to the private key storage unit when the first calculated value is calculated;
an authority table encryption unit that encrypts the authority table with the first private key when the first private key is extracted; and
When the permission table is encrypted, an encryption storage processing unit for storing the encrypted permission table and the hash value in correspondence with each other in the permission table storage
A document translation service server comprising a. 5. The method of claim 4,
The permission table viewing unit
When a document file for the translated document and identification information of the third member are received from the client terminal of the third member, the document file for the translated document is applied as an input to the hash function to generate the hash value a hash value operator;
When the hash value is generated, the attribute information of the document file for the translation document is checked to obtain a date value for the time when the document file for the translation document is generated, the date value is the dividend, and n is After calculating the first operation value by performing a modulo operation of a divisor, the first operation value is assigned as an integer value while transmitting the first operation value to the client terminal of the third member a public key transmission request unit requesting transmission of the key; and
In response to a request for transmission of the public key by the client terminal of the third member, a public key to which the first calculated value is assigned as an integer value among the n public keys stored in the client terminal of the third member As the first public key is extracted and transmitted, when the first public key is received from the client terminal of the third member, the decryption viewing unit decrypts the encrypted authority table with the first public key and reads the authority table
A document translation service server comprising a. A method of operating a document translation service server that provides a document translation service having a personal information protection function, the method comprising:
maintaining a regular expression storage unit in which a plurality of different regular expressions preset to correspond to the notation format of personal information are stored;
maintaining a member database in which identification information of a plurality of members pre-designated as members subscribed to the document translation service is stored;
When a document file for a first document is received from a client terminal of a first member of the plurality of members, a translation command for the first document and a personal information protection processing command for personal information included in the first document generating an event for performing translation and personal information protection processing on the first document when this is received;
checking whether a character string having a notation format corresponding to the plurality of regular expressions stored in the regular expression storage unit exists among texts included in the first document when the event occurs;
When it is confirmed that at least one first character string exists as a character string having a notation format corresponding to the plurality of regular expressions among texts included in the first document, the at least one first character string is converted to a preset symbol generating a translation document for the first document based on a predefined translation engine after masking;
when the translated document is generated, transmitting a document file for the translated document to the client terminal of the first member;
When the document file for the translated document is transmitted to the client terminal of the first member, a target to grant access to the at least one first string among the plurality of members to the client terminal of the first member requesting transmission of identification information for a member who becomes a member;
When identification information of at least one second member is received from the client terminal of the first member as identification information of a member to be granted access to the at least one first character string, it is stored in the member database It is checked whether the identification information of the at least one second member is stored, and when it is confirmed that the identification information of the at least one second member is stored in the member database, the identification information of the at least one second member is recorded creating an authorization table;
generating a hash value by applying a document file for the translated document as an input to a preset hash function;
when the hash value is generated, storing the permission table and the hash value in correspondence with each other in a permission table storage;
After the permission table and the hash value correspond to each other and stored in the permission table storage, a document file for the translated document in the client terminal of the third member by a third member who is one of the at least one second member After this is executed, as a de-masking command instructing to cancel the masking applied to the at least one first character string is applied to the client terminal of the third member by the third member, the third member's requesting to transmit a document file for the translated document and identification information of the third member to the client terminal of the third member when a request for unmasking is received from the client terminal;
When a document file for the translated document and identification information of the third member are received from the client terminal of the third member, the document file for the translated document is applied as an input to the hash function to generate the hash value reading the permission table stored corresponding to the hash value in the permission table storage; and
When the permission table is read, it is checked whether the identification information of the third member is recorded on the permission table, and when it is confirmed that the identification information of the third member is recorded on the permission table, the third member transmitting, to a client terminal of
including,
The third member's client terminal is
When the unmasking approval signal is received from the document translation service server, after removing the masking applied to the at least one first character string in the translation document, the translation document is displayed on a screen How the translation service server works. delete delete 7. The method of claim 6,
The step of storing the permission table and the hash value in correspondence with each other in the permission table storage comprises:
n preset private keys (n is a natural number greater than or equal to 2) - The n private keys are each assigned different integer values from 0 to n-1, and the n private keys to the client terminals of the plurality of members n public keys corresponding to each of the keys are pre-distributed, and to the n public keys, an integer value identical to the integer value assigned to the private key corresponding to each public key is assigned - the stored private key maintaining a storage unit;
When the hash value is generated, the property information of the document file for the translation document is checked, the date value for the time when the document file for the translation document is generated is obtained, and the date value is the dividend, n calculating a first operation value by performing a modulo operation in which is a divisor;
extracting a first private key to which the first calculated value is assigned as an integer value among the n private keys with reference to the private key storage unit when the first calculated value is calculated;
when the first private key is extracted, encrypting the authority table with the first private key; and
if the permission table is encrypted, storing the encrypted permission table and the hash value in correspondence with each other in the permission table storage;
How to operate a document translation service server comprising a. 10. The method of claim 9,
The step of viewing the authority table is
When a document file for the translated document and identification information of the third member are received from the client terminal of the third member, the document file for the translated document is applied as an input to the hash function to generate the hash value to do;
When the hash value is generated, the attribute information of the document file for the translation document is checked to obtain a date value for the time when the document file for the translation document is generated, the date value is the dividend, and n is After calculating the first operation value by performing a modulo operation of a divisor, the first operation value is assigned as an integer value while transmitting the first operation value to the client terminal of the third member requesting transmission of the key; and
In response to a request for transmission of the public key by the client terminal of the third member, a public key to which the first calculated value is assigned as an integer value among the n public keys stored in the client terminal of the third member Reading the authority table by decrypting the encrypted authority table with the first public key when the first public key is received from the client terminal of the third member as the first public key is extracted and transmitted
How to operate a document translation service server comprising a. A computer-readable recording medium recording a computer program for executing the method of any one of claims 6, 9 or 10 through combination with a computer. A computer program stored in a storage medium for executing the method of any one of claims 6, 9 or 10 in combination with a computer.

Images