Method and system for tracking the path of electronic documents

The electronic document path tracking system addresses the challenge of illegal document use by integrating security programs and visually tracking document paths, enhancing data security through unique ID generation and steganography.

JP7886003B2Active Publication Date: 2026-07-07SOFTCAMP

Patent Information

Authority / Receiving Office
JP · JP
Patent Type
Patents
Current Assignee / Owner
SOFTCAMP
Filing Date
2021-12-22
Publication Date
2026-07-07

AI Technical Summary

Technical Problem

Existing document protection systems fail to prevent and track illegal use of confidential information due to lack of integration among internal control security programs, and there is a need for enhanced data security measures to manage the distribution path of electronic documents, especially in the financial sector.

Method used

An electronic document path tracking system that includes a log information update unit to generate unique IDs and adjust parent IDs based on changes in storage location or name, and a path tracking unit to search and visualize the execution history of electronic documents, utilizing steganography for hidden information and encryption/decryption to enhance security.

Benefits of technology

Enhances data security by tracking the distribution route of electronic documents through data file duplication and renaming, enabling effective prevention and tracking of illegal use and leakage.

✦ Generated by Eureka AI based on patent content.

Smart Images

  • Figure 0007886003000001
    Figure 0007886003000001
  • Figure 0007886003000002
    Figure 0007886003000002
  • Figure 0007886003000003
    Figure 0007886003000003
Patent Text Reader

Abstract

To provide an electronic document route tracking method and a tracking system capable of tracking a distribution route of an electronic document by data file duplication and file name renaming and the like to enhance the security of data.SOLUTION: A log information update unit includes a unique ID generation module and a log information update module. When the storage location or name of first electronic document data loaded by a word processing unit based on an OS (Operating System) is changed and regenerated as second electronic document data, the unique ID generation module creates a unique ID for the second electronic document data and adjusts a unique ID of the first electronic document data to a parent ID. The log information update module generates or updates a storage route of the second electronic document data due to the regeneration as log information and configures it in the second electronic document data. A route tracking unit is provided to search for the log information from the first electronic document data or the second electronic document data and grasp an execution history from the searched log information.SELECTED DRAWING: Figure 2
Need to check novelty before this filing date? Find Prior Art

Description

Technical Field

[0001] The present invention relates to a method and system for tracking the distribution path of electronic documents, which can enhance data security by tracking the distribution path of electronic documents through data file replication, file name change, etc.

Background Art

[0002] The amount of confidential information related to excellent technologies of domestic enterprises has increased, but the risk of leakage due to the digitalization of information circulation has become greater, and it is very difficult to grasp the illegal leakage path. Therefore, although the actual number of leakage cases is increasing, there is no preventive measure, and the financial damage is gradually increasing. However, since the current document protection system is designed in the dimension of copyright protection, when a legal copy leaks out, it is impossible to prevent and track illegal use, and there is no countermeasure against leakage caused by collusion among insiders, which is a problem.

[0003] On the other hand, due to security accident issues such as recent leakage of personal information, in the financial sector, through internal control and strengthening, automatic (mandatory) encryption is applied to all generated documents, and more than 95% of the documents are generated and circulated as security documents.

[0004] Although life-cycle management of such security documents and tracking of the distribution path of security documents including personal information are necessary, since the current internal control security programs operating in the financial sector have independent log systems, it is difficult to perform relevant analysis with consistency among each security program, and there is a need for a connection system for organic relevant analysis among security programs.

[0005] In addition, there is also a need for a connection system for smooth tracking until the content retrieved by a business system (such as CRM) is saved as a document on a terminal (PC) and circulated.

Prior Art Documents

Patent Documents

[0006] [Patent Document 1] Korean Published Patent No. 10-2010-0118422 [Overview of the project] [Problems that the invention aims to solve]

[0007] The present invention was devised to solve the aforementioned problems, and its purpose is to provide an electronic document path tracking method and tracking system that can enhance data security by tracking the path of electronic documents, such as through data file duplication and file renaming. [Means for solving the problem]

[0008] To achieve the objectives of the present invention, the present invention provides an electronic document path tracking system that includes a log information update unit which includes a unique ID generation module that generates a unique ID for the second electronic document data when the storage location or name of the first electronic document data loaded in a word processing unit based on an OS (Operating System) is changed and regenerated as second electronic document data, and adjusts the unique ID of the first electronic document data to its parent ID, and a log information update module which generates or updates the storage path resulting from the regeneration of the second electronic document data as log information and incorporates it into the second electronic document data, and a path tracking unit which searches for log information in the first electronic document data or the second electronic document data and grasps the execution history from the retrieved log information. [Effects of the Invention]

[0009] The present invention, as described above, has the effect of enhancing data security by tracking the distribution route of electronic documents, such as through data file duplication and file renaming. [Brief explanation of the drawing]

[0010] [Figure 1] This figure shows an image of the distribution path of electronic document data according to a preferred embodiment of the present invention, visualized as a connected node and edge structure. [Figure 2]This is a block diagram showing a tracking system for tracing the path of an electronic document according to a preferred embodiment of the present invention. [Figure 3] This is a block diagram showing a tracking system for tracing the path of electronic documents according to another preferred embodiment of the present invention. [Figure 4] This is a block diagram showing a tracking system for tracing the path of electronic documents according to yet another preferred embodiment of the present invention. [Figure 5] This flowchart sequentially illustrates the process of securely processing electronic document data based on a tracking system according to a preferred embodiment of the present invention, authenticating the user, and outputting the content of the electronic document data. [Figure 6] This is an illustrative diagram showing, as one example, the concealed information of securely processed electronic document data. [Modes for carrying out the invention]

[0011] Various "Embodiments" or "Examples" are described below based on the details discussed, and the accompanying drawings illustrate these various embodiments. The following description and drawings are illustrative and should not be construed as restrictive. Numerous specific details are described to provide a complete understanding of the various embodiments of the present invention. However, in certain embodiments, widely known or prior details are not described in order to provide a concise description of the embodiments of the present invention.

[0012] In the specification, any reference to “one embodiment” or “an embodiment” means that a particular feature, structure, or characteristic described based on the embodiment may be included in at least one embodiment. In many parts of the specification, the phrase “one embodiment” does not necessarily refer to the same embodiment in all instances.

[0013] Embodiments of the present invention may include special-purpose or general-purpose computers, including a variety of computer hardware, as will be described in more detail below. Figure 2 shows a schematic diagram of an exemplary computer system that can be used to embody the features of the present invention, and is referred to as a client. The client described herein is merely an example of such a suitable computer environment and is not intended to imply any limitation on the scope of the uses or functionality of the present invention. The present invention should not be construed as having any dependency or requirement relating to any one of the components shown in Figure 2 or any combination thereof.

[0014] This document defines terms used to describe the “Electronic Document Route Tracking Method and Tracking System” according to the present invention. The “Electronic Document Route Tracking Method and Tracking System” according to the present invention refers to software, a device, or a process designed to generate new electronic document data upon a change in the storage location or name of electronic document data, and to track the distribution route through which it is transmitted. The “Electronic Document Route Tracking Method and Tracking System” is embedded in a client and configured to work in conjunction with software that executes electronic documents. Hereinafter, the “Electronic Document Route Tracking Method” and the “Electronic Document Route Tracking System” will be referred to as the “Tracking Method” and the “Tracking System,” respectively.

[0015] The “electronic document” according to the present invention is an “electronic document” in English, and is a standardized document format created and transmitted or stored in electronic form by a device with information processing capabilities, such as a computer. The document may include content such as text, images, and graphs. Supported file extensions for electronic document-related software for execution on a computer include versions such as doc, ppt, docx, xlsx, and pptx supported by MS Office, as well as versions such as HWP and PDF, and many other diverse extensions can also be exemplified. A “word processing unit” refers to office software that can read, correct, or create electronic documents. A “log information update unit” according to the present invention refers to software that works in conjunction with a word processing unit and generates a unique ID and parent ID for electronic document data when new electronic document data is created. A “security agent” according to the present invention refers to software that generates and inputs hidden information into an electronic document, searches and verifies the hidden information configured in the electronic document, and reads the unique ID, parent ID, security rating, and log information of the electronic document. Furthermore, "authorization information" refers to the rights granted to the user or the executing PC regarding the content of an electronic document, including the right to read the content, the number of times it can be read, edit it, decrypt it, export it, print it, mark it, set its validity period, automatically destroy it, change the permissions, and copy the content. Therefore, the scope of use for the electronic document differs depending on who the user is and what kind of PC is executing it.

[0016] This document describes an electronic document path tracking system according to an embodiment of the present invention.

[0017] A tracking system according to an embodiment of the present invention includes a client that includes a log information update unit which includes a unique ID generation module that generates a unique ID for the second electronic document data when the storage location or name of the first electronic document data loaded in a word processing unit based on an OS (Operating System) is changed and the second electronic document data is newly created, and adjusts the unique ID of the first electronic document data to its parent ID, and a log information update module which generates or updates the storage path resulting from the creation of the second electronic document data as log information and stores it in a log information storage unit; a log information storage unit which stores the log information generated or updated by the log information update unit; and a route tracking server which includes a route tracking unit which searches the log information storage unit for log information by unique ID of the first electronic document data or the second electronic document data and grasps the execution history from the retrieved log information. Furthermore, the tracking system according to the present invention includes a log information update unit that includes a unique ID generation module that generates a unique ID for the second electronic document data when the storage location or name of the first electronic document data loaded in a word processing unit based on an OS (Operating System) is changed and the second electronic document data is newly created, and adjusts the unique ID of the first electronic document data to its parent ID, and a log information update module that generates or updates the storage path resulting from the creation of the second electronic document data using log information and stores it in the log information storage unit, a log information storage unit where the log information generated or updated by the log information update unit is stored, and a path tracking unit that searches the log information storage unit for log information by unique ID of the first electronic document data or the second electronic document data and grasps the execution history from the retrieved log information. Furthermore, the tracking system according to the present invention further includes a path visualization processing unit that visualizes the execution history of the log information retrieved by the path tracking unit as a node and edge connection structure and outputs it. Furthermore, the tracking system according to the present invention further includes a URL verification unit that, when the first electronic document data is downloaded via a web browser 20 and regenerated as second electronic document data, verifies the URL information from which the first electronic document data was transmitted using the alternative stream of the NTFS file system and adds it to the log information of the second electronic document data.In addition, a security agent can be further included that generates hidden information with a dedicated fmtID for the security agent by hiding custom.xml configured with a unique ID and a parent ID for the security of the first electronic document data or the second electronic document data at a specific position in the source code of the electronic document data using steganography techniques.

[0018] Hereinafter, a method and a tracking system for tracing the route of an electronic document according to a preferred embodiment of the present invention will be described in more detail based on the accompanying drawings.

[0019] FIG. 1 shows a form in which the distribution route of electronic document data according to a preferred embodiment of the present invention is visualized as a connection structure of nodes and edges, FIG. 2 is a block diagram showing a tracking system for tracing the route of an electronic document according to a preferred embodiment of the present invention, and FIG. 3 is a block diagram showing a tracking system for tracing the route of an electronic document according to another preferred embodiment of the present invention.

[0020] Referring to FIGS. 1 and 3, the tracking system according to the present invention includes a log information update unit 51 including a unique ID generation module 511 that generates a unique ID for the second electronic document data and adjusts the unique ID of the first electronic document data to a parent ID if the storage location or name of the first electronic document data loaded in the word processing unit 40 based on the OS10 is changed and newly generated as the second electronic document data, and a log information update module 512 that generates or updates the storage route due to the generation of the second electronic document data as log information and configures it in the second electronic document data, and a route tracking unit 53 that searches for log information in the first electronic document data or the second electronic document data and grasps the execution history from the searched log information.

[0021] According to another embodiment of the present invention, in a tracking system as shown in FIG. 2, if the storage location or name of the first electronic document data loaded in the word processing unit 40 based on the OS 10 is changed to generate new second electronic document data, a unique ID for the second electronic document data is generated, and a unique ID generation module 511 that adjusts the unique ID of the first electronic document data to a parent ID, and a log information update module 512 that generates or updates the storage path due to the generation of the second electronic document data as log information and stores it in the log information storage unit SE1. The client C1 includes a log information update unit 51 including the module, a log information storage unit SE1 in which the log information newly generated or updated by the log information update unit 51 is stored, and a path tracking unit SE2 that searches the log information storage unit SE1 for the unique ID-based log information of the first electronic document data or the second electronic document data and grasps the execution history from the searched log information.

[0022] Furthermore, according to yet another embodiment of the present invention, in a tracking system as shown in FIG. 3, if the storage location or name of the first electronic document data loaded in the word processing unit 40 based on the OS 10 is changed to generate new second electronic document data, a unique ID for the second electronic document data is generated, and the unique ID of the first electronic document data is adjusted to a parent ID. A unique ID generation module 511, and a log information update module 512 that generates or updates the storage path due to the generation of the second electronic document data as log information and stores it in the log information storage unit. The log information update unit 51 includes a log information storage unit 52 in which the log information newly generated or updated by the log information update unit 51 is stored, and a path tracking unit 53 that searches the log information storage unit 52 for the unique ID-based log information of the first electronic document data or the second electronic document data and grasps the execution history from the searched log information.

[0023] Ultimately, in the first embodiment, the log information is configured and managed integrally with the electronic document data. In the second embodiment, the log information is stored and managed in a separate server SE independent of the client C1. In the third embodiment, the log information is separated from the electronic document data and stored and managed in the client C1.

[0024] Client C1 is a computer terminal on which software can be installed. In this embodiment, the software is programmed to perform the functions of a log information update unit 51, which includes a unique ID generation module 511 and a log information update module 512. When the storage location or name of the first electronic document data loaded by the word processing unit 40 based on OS 10 is changed and it is newly created as second electronic document data, the unique ID generation module 511 generates a new unique ID for the second electronic document data, as shown in Figure 1, and adjusts the unique ID of the first electronic document data to its parent ID. That is, if the storage location or name of electronic document data A, whose parent ID is 'AA1' and unique ID is 'AC3', is changed, new electronic document data such as 'B' and 'C' are newly created, and unique IDs are generated for the new electronic document data B and C. In addition, the unique ID of the existing electronic document data A is adjusted to the parent ID of the new electronic document data B and C. By changing the storage location in this way, new electronic document data B and C are created independently of the existing electronic document data A, or by changing the name of the existing electronic document data A, new electronic document data B and C are created. In such cases, the unique ID generation module 511 generates unique IDs for the new electronic document data B and C, and sets the unique ID of the existing electronic document data A as the parent ID for the new electronic document data B and C. Therefore, by understanding the relationship between the parent IDs and unique IDs of the existing electronic document data A and the new electronic document data B and C, it is possible to understand the distribution route between electronic document data A to H.

[0025] For reference, new electronic document data B and C can be generated in the same client C11 in relation to existing electronic document data A, and new electronic document data can also be generated in different clients C11 to C14 in relation to existing electronic document data. In this embodiment, when a unique ID is newly generated, the unique ID and parent ID of the electronic document data can be adjusted in cases such as when the electronic document is opened (executed), saved (renamed) to a different name, and then the electronic document is terminated; when the name of the electronic document is changed directly without opening it, and then the electronic document is opened and terminated; or when the name of the electronic document is not changed, but the storage path is changed by a method of transmission within the range of clients C11 to C14 or to other clients C11 to C14.

[0026] The log information update module 512 generates or updates the storage path resulting from the creation of the second electronic document data as log information and stores it in the log information storage unit SE1. More specifically, electronic document data 'D' is created from electronic document data 'A' and 'C'. That is, electronic document data D has the execution history of electronic document data 'A', 'C', and 'D'. Therefore, electronic document data D has the execution history as log information. In this way, the log information of the other electronic document data E has the execution history of electronic document data 'A', 'C', and 'E' as log information. Once log information is generated for each electronic document data, the tracking system according to this embodiment uses a unique ID generation module 511 to generate and adjust the parent ID and unique ID of the electronic document data to configure it as electronic document data, and the log information update module 512 generates log information containing data about the execution history of the electronic document data to configure it as electronic document data. However, as another embodiment of log information storage, the unique ID generation module 511 generates and adjusts the parent ID and unique ID of the electronic document data to configure it in the electronic document data, and as shown in Figure 2, it can be stored in the log information storage unit SE1 built on a separate server SE. Furthermore, as another embodiment of log information storage, the unique ID generation module 511 generates and adjusts the parent ID and unique ID of the electronic document data to configure it in the electronic document data, and as shown in Figure 3, it can be stored in the log information storage unit 52 built on the client C1.

[0027] Next, the route tracking units SE2 and 53 of the tracking system according to the present invention include route tracking units SE2 and 53 that search for log information in the electronic document data or the log information storage unit SE1 configured in the server SE or the log information storage unit 52 configured in the client C1, and grasp the execution history from the retrieved log information. As described above with reference to Figure 1, the log information is the execution history of the electronic document data, and therefore includes the unique ID of previous versions of the electronic document data, the computer (client) or program that executed it, and the URL to which the electronic document data was transmitted. The route tracking units SE2 and 53 can check the log information and track the distribution route of the electronic document data together with the contents.

[0028] The tracking system according to the present invention further includes a route visualization processing unit 54 that visualizes and outputs the execution history of log information retrieved by route tracking units SE2 and 53 as a connected node and edge structure, as shown in Figure 1. Since the log information of electronic document data includes the unique ID and parent ID of previous versions, the route tracking units SE2 and 53 can confirm the unique ID and parent ID to understand the electronic document data by version. The route visualization processing unit 54 visualizes the log information thus understood so that the execution history of a particular electronic document data can be intuitively understood by the user, and arrows can be displayed on the edges to distinguish between previous versions of electronic document data and subsequent versions of electronic document data.

[0029] The tracking system according to the present invention further includes a URL verification unit 55 that, when the first electronic document data is downloaded via a web browser 20 and regenerated as second electronic document data, verifies the URL information from which the first electronic document data originated in the alternative stream of the NTFS file system and adds it to the log information of the second electronic document data. As is well known, when electronic document data is downloaded, the originating URL of the electronic document data is stored as Zone.Identifier in the alternative stream of the NTFS file system, so the log information of the regenerated electronic document data can be grasped more specifically.

[0030] Figure 4 is a block diagram showing a tracking system for tracing the path of electronic documents according to another preferred embodiment of the present invention.

[0031] Referring to Figure 4, a tracking system according to a preferred embodiment of the present invention further includes a security agent 30 that generates concealed information to which a dedicated fmtID for the security agent 30 is specified, by concealing a custom.xml file, which contains a unique ID and a parent ID for the security of the first or second electronic document data, at a specific location in the source code of the electronic document data using steganography techniques. That is, the unique ID and parent ID generated and adjusted via the unique ID generation module 511 are stored as concealed information of the electronic document data without external exposure by the word processing unit 40.

[0032] In the tracking system according to the present invention, log information generated by the log information update module 512 can be stored in an electronic document data in an obscured information format. In addition, as mentioned above, it can also be stored separately in the log information storage unit SE1 of the server SE, or in the log information storage unit 52 of the client C1. Below, an example of the system in which log information is stored in an electronic document data in an obscured information format is disclosed.

[0033] More specifically, the security agent 30 according to the present invention includes: a hidden information module 31 that analyzes the source code of electronic document data executed by a word processing unit 40 based on an OS (Operating System) 10 to search for custom.xml using fmtID (format identifier) ​​as the identification value and confirms the authorization information and log information configured in custom.xml; an information confirmation module 32 that grasps and outputs the execution history of the electronic document data from the log information confirmed by the hidden information module 31; a content execution module 33 that adjusts the execution of the electronic document content by the word processing unit 40 under the control of the security module 34; and a security module 34 that generates custom.xml containing authorization information for the security of the electronic document and log information about the execution history of the electronic document at a specific location in the source code of the electronic document data using a steganography technique, specifies a dedicated fmtID for the security agent 30, and limits the acceptable range of content by comparing the authorization information confirmed by the hidden information module 31 and the execution history confirmed by the information confirmation module 32 with reference information.

[0034] The concealed information module 31 analyzes the source code of the electronic document data executed by the OS-based word processing unit 40 to search for custom.xml, which uses fmtID as its identifier, and checks the permission information and log information configured in custom.xml.

[0035] As described above, the security module 34 generates concealed information in which authorization information and log information are configured in the electronic document. The concealed information module 31 searches for the fmtID generated as the identification value of the concealed information to confirm the concealed information in custom.xml format. Since the concealed information according to the present invention is generated by the steganography technique, the word processing unit 40 cannot recognize the concealed information in custom.xml format, and only the concealed information module 31 can confirm and recognize the fmtID. On the other hand, the log information is updated during the saving process, such as data duplication and renaming of the electronic document. The history configured in the log information can include information such as the open time, close time, save time, save location of the electronic document, the unique ID of the current version created during the saving process, and the parent ID of the previous version.

[0036] The information verification module 32 controls the route tracking unit 53 to grasp the execution history of the electronic document from the log information verified by the concealed information module 31. More specifically, the history of log information configured in the concealed information can be information such as the open time, close time, storage time, storage location of the electronic document, the unique ID of the current version created during the storage process, and the parent ID of the previous version, as illustrated earlier. The route tracking unit 53 can grasp this history and understand the execution history and distribution route of the electronic document. Therefore, the security agent 30 includes the information verification module 32 for processing in conjunction with the route tracking unit 53 for security processing of the electronic document data.

[0037] The content execution module 33 adjusts the content execution of electronic document data by the word processing unit 40 under the control of the security module 34. More specifically, since the concealed information includes authorization information for the electronic document, the scope of execution of the electronic document must be restricted by the authorization information. Therefore, once the security module 34 confirms the authorization information and specifies the permissible scope, the content execution module 33, in conjunction with the word processing unit 40, forcibly restricts the execution of the electronic document to only within the permissible scope. That is, if the permissible scope of the electronic document is restricted to content reading only, the content execution module 33 checks the word processing unit 40's approach to the electronic document and forcibly stops any attempt at editing.

[0038] The security module 34 generates concealed information in the electronic document data that the word processing unit 40 cannot recognize, so that only the security agent 30 can recognize it. This concealed information is generated and inserted into a specific location in the source code of the electronic document data using steganography techniques. The concealed information is configured in the electronic document in custom.xml format, and the fmtID (format identifier) ​​is set as the identification value of custom.xml. custom.xml contains authorization information and log information for the electronic document, and the concealed information module 31 can be independently located at a specific location in the source code of the electronic document data. In short, the concealed information is configured in the electronic document data as data that the word processing unit 40 cannot recognize or ignore, similar to steganography techniques, and only the concealed information module 31 can recognize the specified fmtID to confirm the concealed information and read the authorization information and log information. Furthermore, since the concealed information contained within the electronic document data is an object independent of the electronic document data, even if the content or attributes of the electronic document are changed or the file extension of the electronic document is changed, the concealed information maintains its original form, and the concealed information module 31 can search for and recognize the authorization information and log information. For reference, steganography is a data concealment technique that involves embedding data into other data or the research thereof. To add to that, while cryptography is a means of making it impossible to read the contents of a message, steganography hides its very existence.

[0039] Next, the security module 34 compares the authorization information confirmed by the concealed information module 31 with the execution history confirmed by the information confirmation module 32 via the path tracking unit 53 to the reference information and restricts the permissible range of content. As mentioned above, the authorization information concerns the permissible range for the execution of the electronic document, so the content execution module 33 determines the permissible range from the authorization information configured in the concealed information and restricts the word processing unit 40 to execute the electronic document data only for permissible execution content.

[0040] The technique for comparing the aforementioned authorization information and execution history with the reference information will be explained again below.

[0041] Meanwhile, client C1, which has the security agent 30 installed, can connect to the communication network via the web browser 20 and communicate data with other clients C2. If a secure electronic document is received by the web browser 20 during the data communication, the security agent 30 searches for hidden information in the electronic document data, and checks and updates the log information from the found hidden information. As mentioned above, the log information may include the storage time and version of the electronic document, so the security module 34 adds the storage time and version of the electronic document to the log information once the electronic document is received and saved.

[0042] Furthermore, the security agent 30 according to the present invention further includes an encryption / decryption module 35 that encrypts or decrypts the entire electronic document data or its contents under the control of a security module 34, and the security module 34 controls the encryption / decryption module 35 in conjunction with the word processing unit 40. More specifically, in order to enhance the security of electronic document data, the security agent 30 can encrypt the data of an electronic document that has finished executing and save it to client C1. To this end, when the security module 34 recognizes the completion process of an electronic document in the word processing unit 40, it controls the encryption / decryption module 35 to encrypt the electronic document data saved by the word processing unit 40. The encryption / decryption module 35 generates and places a temporary file with a name and extension matching the electronic document data in the storage path of the encrypted electronic document data so that the word processing unit 40 can recognize and load the encrypted electronic document data, and the actual electronic document data with content can be saved as an encrypted file. However, this encryption procedure is merely one embodiment of the present invention, and the word processing unit 40's saving process can also be performed in conjunction with the security module 34 so that the security module 34 can encrypt the electronic document data.

[0043] Subsequently, if the user attempts to execute the encrypted electronic document data by the word processing unit 40, the security module 34 recognizes the execution process of the word processing unit 40 and controls the decryption module 35 to decrypt the encrypted electronic document data. Of course, the decryption module 35 decrypts the specified data under the control of the security module 34, and once the security module 34 confirms the decryption, it processes the electronic document data so that it is executed by the word processing unit 40.

[0044] Figure 5 is a flowchart illustrating the process of securely processing electronic document data, authenticating the user, and outputting the content of the electronic document data based on a preferred embodiment of the present invention. Figure 6 is an illustrative diagram showing the concealed information of the securely processed electronic document data as one embodiment.

[0045] Referring to Figures 3 to 6, the tracking method based on the tracking system according to the present invention is as follows.

[0046] S10: Concealed Information Setting Stage When the word processing unit 40 generates and saves an electronic document data file, the security module 34 of the security agent 30 allows the author who created the electronic document or the rights holder who owns the rights to the electronic document (hereinafter referred to as the 'configurator') to set the authorization information for the electronic document. For this purpose, the security agent 30 generates a security setting menu key (not shown) in the word processing unit 40's menu using a GUI (Graphical User Interface) or general UI. When the configurator clicks the security setting menu key, the security module 34 of the security agent 30 is executed and outputs a setting layer (not shown) in which the scope of execution can be entered.

[0047] The user inputs the execution range into the outputted configuration layer, and the security module 34 generates permission information for the execution range as concealed information based on the input command value. The concealed information is generated in custom.xml format using steganography techniques, and the security module 34 places it at a specific location in the source code of the electronic document. Furthermore, the custom.xml file, which contains the concealed information, is identified by an fmtID that can be recognized by the concealed information module 31.

[0048] The security module 34 may further include log information that stores information about the execution history of electronic documents in the concealed information. The history configured in the log information may include information such as the open time, close time, save time, save location of the electronic document, the unique ID of the current version generated and adjusted by the unique ID generation module 511 during the save process, and the parent ID of previous versions.

[0049] S20: Information Discovery Phase If the word processing unit 40 attempts to execute a specific electronic document through user input, the concealed information module 31 of the security agent 30 searches for concealed information in the electronic document and confirms the authorization information and log information.

[0050] If the concealed information module 31 confirms the authorization information, it calls the security module 34, and if it confirms the log information, it calls the information confirmation module 32 for linkage with the route tracking unit 53.

[0051] S30: Stage for verifying the execution history of electronic documents Upon calling the concealed information module 31, the information verification module 32 checks the log information of the concealed information via the path tracking unit 53 to grasp the execution history of the electronic document. As mentioned above, the execution history can include information such as the open time, close time, save time, save location, unique ID of the current version created during the save process, and parent ID of previous versions of the electronic document. The information verification module 32 can grasp the execution history and distribution route of the electronic document based on this history.

[0052] For reference, the execution history of electronic documents as determined by the information verification module 32 can be output through a separate settings window (not shown), thereby allowing the distribution route of the electronic document to be tracked, and the route visualization processing unit 54 can output the electronic document data as an image in the form of nodes and edges.

[0053] S40: Electronic Document Execution Decision Stage The security module 34 restricts the permissible scope of content by comparing the authorization information for the security of electronic document data and the execution history of the log information with reference information. More specifically, the authorization information is the permissible scope for the execution of electronic document data and is entered as a security grade code. That is, when setting security for electronic document data, if the setter sets only content reading as the permissible scope for the electronic document, only the security grade code for content reading will be set in the authorization information. On the other hand, the security module 34 stores the permissible scope content for each security grade code as reference information. Therefore, the security module 34 checks the security grade code set in the authorization information and searches the reference information for the permissible scope content of that security grade code to understand what the permitted scope is for the electronic document. After the permissible scope is confirmed, the security module 34 transmits the relevant data to the content execution module 33.

[0054] Furthermore, the log information pertains to the execution history of electronic documents. If a harmful URL or user's path is found to have passed through the path specified in the reference information within the execution history of an electronic document, the execution of that electronic document will be restricted.

[0055] S50: Electronic document execution stage The word processing unit 40 executes the electronic document based on user input, and the content execution module 33, which is controlled by the security module 34, coordinates the execution of the electronic document in conjunction with the word processing unit 40. In other words, if the security module 34 determines from the authorization information that the permissible range of the electronic document data is limited to content reading, the content execution module 33, upon receiving a content reading signal from the security module 34, restricts the execution of the process so that the word processing unit 40 does not perform any functions other than the user's content reading of the electronic document.

[0056] Furthermore, if the security module 34 checks the execution history of the electronic document data from the log information and confirms that the execution history is the same as a harmful route registered in the reference information, the content execution module 33, having received an execution restriction signal from the security module 34, transmits a stop signal to prevent the word processing unit 40 from executing the electronic document.

[0057] S60: Electronic document preservation stage If the security module 34 confirms the termination process of an electronic document in the word processing unit 40, it updates one or more selected pieces of the access information and log information configured in the concealed information and saves them to the client C1's storage means.

[0058] As described above, the tracking system according to the present invention has been explained with more detailed illustrations, but this should be understood as being for the convenience of explaining and understanding the tracking system according to the present invention. Furthermore, the rights should not be interpreted restrictively by limiting them to the configuration of the embodiments described above, the data storage location, etc., nor should they be interpreted restrictively by using other documents contrary to the description of the present invention. The scope of rights for the tracking system according to the present invention should be determined by the attached claims. [Explanation of Symbols]

[0059] 10 OS 20 Web browsers 31. Hidden Information Module 33 Content Execution Modules 34 Safety Module 35. Decryption Module 40 word processing units 52 Log Information Storage Unit 53 Route Tracking Unit 54 Route Visualization Processing Unit 55 URL Verification Section 511 Unique ID Generation Module 512 Log Information Update Module SE1 Log Information Storage Unit SE2 Route Tracking Unit

Claims

1. A log information update unit including a unique ID generation module that generates a new unique ID for the second electronic document data and generates a parent ID for the second electronic document data that matches the unique ID of the first electronic document data when the storage location or name of the first electronic document data loaded in a word processing unit based on an OS (Operating System) is changed and the second electronic document data is newly generated, and a log information update module that generates or updates the storage path when the second electronic document data is newly generated as log information and integrates it with the second electronic document data, A path tracking unit searches for log information in the first electronic document data or the second electronic document data, and from the retrieved log information, grasps the storage location of the second electronic document data, as well as the execution history including the unique ID and parent ID of the second electronic document data that were newly generated during the storage process. A security agent generates concealed information to which a security agent-specific fmtID is specified, by concealing custom.xml, which is configured as log information containing execution history including a unique ID and parent ID for security purposes of the second electronic document data, at a specific location in the source code of the second electronic document data using steganography techniques, and an execution history including a unique ID and parent ID for security purposes of the second electronic document data, as custom,xml, which is configured as log information, Includes, An electronic document routing system characterized in that the security agent searches for the custom.xml file to grasp its execution history, compares the grasped execution history with reference information in which harmful URLs or harmful user routes are registered, and if it determines that the second electronic document data has passed through the route of the reference information, it restricts the execution of the second electronic document data.

2. A log information update unit including a unique ID generation module that generates a new unique ID for the second electronic document data and generates a parent ID for the second electronic document data that matches the unique ID of the first electronic document data when the storage location or name of the first electronic document data loaded in a word processing unit based on an OS (Operating System) is changed and the second electronic document data is newly generated, and a log information update module that generates or updates the storage path when the second electronic document data is newly generated as log information and stores it in the log information storage unit, A client including a security agent that generates concealed information with a security agent-specific fmtID by concealing a custom.xml file, which contains execution history including a unique ID and parent ID for security purposes of the second electronic document data as log information, at a specific location in the source code of the second electronic document data using steganography techniques, and executing this information, the custom.xml file, which contains execution history including a unique ID and parent ID for security purposes of the second electronic document data, as log information, A log information storage unit where the log information newly generated or updated by the log information update unit is stored, and a route tracking server including a route tracking unit that searches the log information storage unit for each unique ID of the first electronic document data or the second electronic document data, and from the retrieved log information, grasps the storage location of the second electronic document data, as well as the execution history including the unique ID and parent ID of the second electronic document data newly generated during the storage process, Includes, An electronic document routing system characterized in that the security agent searches for the custom.xml file to grasp its execution history, compares the grasped execution history with reference information in which harmful URLs or harmful user routes are registered, and if it determines that the second electronic document data has passed through the route of the reference information, it restricts the execution of the second electronic document data.

3. A log information update unit including a unique ID generation module that generates a new unique ID for the second electronic document data and generates a parent ID for the second electronic document data that matches the unique ID of the first electronic document data when the storage location or name of the first electronic document data loaded in a word processing unit based on an OS (Operating System) is changed and the second electronic document data is newly generated, and a log information update module that generates or updates the storage path when the second electronic document data is newly generated as log information and stores it in the log information storage unit, A log information storage unit where log information created or updated by the log information update unit is stored, A path tracking unit searches log information in a log information storage unit for each unique ID of the first electronic document data or the second electronic document data, and from the retrieved log information, it grasps the storage location of the second electronic document data and the execution history including the unique ID and parent ID of the second electronic document data that were newly generated during the storage process. A security agent generates concealed information to which a security agent-specific fmtID is specified, by concealing custom.xml, which is configured as log information containing execution history including a unique ID and parent ID for security purposes of the second electronic document data, at a specific location in the source code of the second electronic document data using steganography techniques, and an execution history including a unique ID and parent ID for security purposes of the second electronic document data, as custom,xml, which is configured as log information, Includes, An electronic document routing system characterized in that the security agent searches for the custom.xml file to grasp its execution history, compares the grasped execution history with reference information in which harmful URLs or harmful user routes are registered, and if it determines that the second electronic document data has passed through the route of the reference information, it restricts the execution of the second electronic document data.

4. The electronic document path tracking system according to any one of claims 1 to 3, further comprising a path visualization processing unit that visualizes and outputs the execution history of log information retrieved by the path tracking unit as a connected structure of nodes and edges.

5. The electronic document path tracking system according to any one of claims 1 to 3, further comprising a URL verification unit that, when the first electronic document data is downloaded via a web browser and regenerated as the second electronic document data, verifies the URL information from which the first electronic document data was transmitted using the alternate stream of the NTFS file system and adds it to the log information of the second electronic document data.