NON-REPUDIABLE TRANSLATION OF ELECTRONIC DOCUMENTS
TECHNICAL FIELD OF THE INVENTION
The present invention relates in general to electronic transfer of information and, in particular, but not exclusively, to computer- implemented, non-repudiable translation of electronic documents.
BACKGROUND OF THE INVENTION
Electronic-business (e-business) is the process of using Internet-related and computer technologies to improve business operations. An important e-business function is the secure and efficient transfer of documents between entities in electronic form. In this regard, an established component of e-business operations is the computer-implemented translation of electronic documents being sent and received.
The computer applications that undergird e-business operations are capable of producing and accepting electronic documents in accordance with agreed upon standards, conventions, and protocols. However, in most business environments there are no universal formats to which all such documents may adhere. Consequently, before electronic documents may be transferred from one application to another, the documents are translated from a form acceptable to the first application to another form acceptable to the second application.
For a practical example, in the health-care industry, care providers (e.g., physicians, medical clinics, hospitals, etc,) are required to send certain information to insurance companies about the health-care services provided to insured patients. However, in order
to reduce waste, fraud, and abuse in health insurance and health care delivery, the Federal Health Insurance Portability and Accountability Act (HIPAA) of 1996 sets forth the U.S. Government's guidelines for the administration of health insurance and health-care services. In particular, HIPAA specifies how medical documents including patient information are to be handled. Basically, HIPAA specifies that all patient information must not be made public. Consequently, in providing health insurance and health-care services, the privacy of patient information included in documents has to be maintained.
If, for example, patient information is to be conveyed from a care provider to an insurer in electronic form, the care provider typically has to translate the data format of the electronic document to be conveyed to the data format used by the insurer. The translation process changes the data format and/or syntax of the first application's (original) document to that of the second application's (resulting) document. Since HIPAA specifies that the privacy of the conveyed information is to be maintained, it is important to track how the document was handled during the translation process. In other words, an audit trail including the translation process should be maintained. For audit purposes (e.g., if a question arises about the validity of the health-care information in the translated document) , the original document and the map (set of instructions used by translator program) for translating the original document to the resulting document may be maintained. Nevertheless, a significant problem with previous electronic document translation techniques is that they
do not assure a recipient of a translated document that it can be non-repudiably tied to the original document and/or to the map used for the original document ' s translation (i.e., "non-repudiable" in the sense that the recipient may not deny ownership of the resulting document) . Consequently, there is no way for a recipient (e.g., e-business partner, auditor, etc.) to explicitly or legally tie the original and resulting documents together, or otherwise demonstrate the validity of the translation process.
BRIEF DESCRIPTION OF THE DRAWINGS
For a more complete understanding of the present invention and its advantages, reference is now made to the following descriptions, taken in conjunction with the accompanying drawings, in which:
FIGURE 1 illustrates an example system that may be used to implement one example embodiment of the present invention; FIGURE 2 illustrates an example non-repudiable translation unit that may be used to implement one example embodiment of the present invention; and
FIGURE 3 illustrates an example method that may be used for non-repudiable translation of electronic documents, in accordance with one example embodiment of the present invention.
DETAILED DESCRIPTION OF THE INVENTION
The preferred embodiment of the present invention and its advantages are best understood by referring to
FIGURES 1-3 of the drawings, like numerals being used for like and corresponding parts of the various drawings.
In accordance with one or more example embodiments of the present invention, a technique for non-repudiable translation of electronic documents is provided, whereby an original document that was translated can be non-repudiably identified, a map applied to the original document and used for the translation can be non-repudiably identified, a document resulting from the translation can be non-repudiably identified, and it can be demonstrated that the resulting, translated document was produced from the original document and map. Also, in accordance with one or more example embodiments, a technique for non-repudiable translation of electronic documents is provided, whereby a translation process that invoked a map against an original document to produce a resulting document may be non-repudiably identified, a time period when a translation process occurred may be non-repudiably identified, and an authority responsible for a translation process may be non-repudiably identified. Furthermore, in accordance with certain example embodiments, a technique for non-repudiable translation of electronic documents is provided, whereby a Universal Resource Name (URN) , Message Digest Algorithm (MDA) , and public keys of an original document and map may be digitally signed into a resulting, translated document. Also, an MDA of a translation process used, a date and time that a translation process occurred, and a digital certificate for a translating authority may be included in a resulting document.
FIGURE 1 illustrates an example system 10 that may be used to implement one example embodiment of the present invention. System 10 includes a network 16 that couples a first computer application (e.g., Application
A) 12 with a second computer application (e.g., Application B) 18. System 10 can enable performance of e-business transactions between Application A 12 and Application B 18. For example, Application A 12 may be a computer application executed in software by a processor at a first business entity's location, and Application B 18 may be a computer application executed in software by a processor at a second business entity's location.
Network 16 may include any suitable private and/or public network that can couple together two or more business entities together for e-business purposes. In an example embodiment, network 16 may include the Internet and/or any suitable Local Area Network (LAN) , Metropolitan Area Network (MAN) , or Wide Area Network (WAN) coupling one or more business entities (e.g., including Application A 12 and Application B 18) to the Internet. In a second example embodiment, network 16 may include a private network within one company coupling two computer applications (e.g., Application A 12 and Application B 18) . In other words, the present invention is not intended to be limited to any particular type of network or other medium capable of coupling two or more business entities' computer applications (e.g., in an e-business environment) . Preferably, at least two computer applications (e.g., Application A 12 and Application B 18) are coupled together for the purpose of transferring electronic documents from one application in a first data format (e.g., data format A 14) to a second application in a second data format (e.g., data format B 20) .
FIGURE 2 illustrates an example non-repudiable translation unit 100 that may be used to implement one
example embodiment of the present invention. For example, translation unit 100 may be used in conjunction with Application A 12 (FIG. 1) for non-repudiably translating an original document in data format A 14 to a resulting document in data format B 20. Then, the resulting document may be transferred via network 16 (or other suitable communications medium) to Application B 18. As another example, translation unit 100 may be used in conjunction with Application B 18 for non-repudiably translating an original document in data format A 14 to a resulting document in data format B 20 (i.e., after the original document from Application A 12 has been transferred to Application B 18) . As still another example, translation unit 100 may be used in conjunction with Application B 18 for non-repudiably translating an original document in data format B 20 to a resulting document in data format A 14. Then, the resulting document may be transferred via network 16 (or other suitable communications medium) from Application B 18 to Application A 12. As illustrated by these examples, the present invention is not intended to be limited to any particular location where non-repudiable translation may be performed. However, for practical design purposes, it may be preferable to implement unit 100 at the location where the original documents are produced. As such, non-repudiable translation unit 100 may be implemented in software, hardware or firmware, or any suitable combination thereof.
FIGURE 3 illustrates an example method 200 that may be used for non-repudiable translation of electronic documents, in accordance with one example embodiment of the present invention. For example, method 200 may be
implemented in software and executed by a processor used in conjunction with non-repudiable translation unit 100 of FIGURE 2 and Application A 12 of FIGURE 1. In this regard, at step 202, translation unit 100 retrieves an original document 102 (e.g., in data format A 14 from a suitable data storage location) . At step 204, translation unit 100 determines a URN 104 for the original document 102. For this example, in accordance with Request For Comments (RFC) 2396, a URN may be defined as the persistent location of such a document (e.g., stored in an archive) .
At step 206, translation unit 100 generates a digital signature for the original document 102 (e.g., using a private key associated with Application A 12) . For example, a private key may be held exclusively by the owner of a document for use in encrypting and decrypting such a document and information related to such a document. A companion public key (e.g., key made available to the public for use in encryption and decryption) may be used to decrypt information encrypted with the private key. Conversely, a private key may be used to decrypt information encrypted with the companion public key.
As an optional step (included for technical reasons but not necessarily for implementing the present invention) , an MD extractor 106 may be used to extract the MD of the original document 108 from the digital signature (e.g., by use of a public key 110) . For this example, an MD may be a one-way hash value of the associated document (e.g., original document 102). An MD may be used to confirm that an original document has not been changed during translation, because if an original
document is changed during translation, then the resulting MD will be different than the original MD. As such, for this example, a digital signature may be a private key encryption of an MD associated with the document from which the MD was produced. A corresponding public key may be used to decrypt the original MD and MDA applied to the original document, in order to confirm that the document has not changed. For one example embodiment, an MDA may be implemented using an MDS ALGOL®. At step 208, translation unit 100 retrieves a map
112 used for translation of original document 102. For this example, map 112 may be a set of instructions executed by translator 114 (e.g., processor including computer program for performing translation) . At step 210, translation unit 100 determines a URN 116 for the map 112. At step 212, translation unit 100 generates a digital signature for the map 112 (e.g., using a private key associated with Application A 12) . As another optional step (again included for technical reasons but not necessarily for implementing the present invention) , MD extractor 106 may be used to extract the MD of the map 118 from the digital signature (e.g., by use of a public key 120) .
At step 214, translation unit 100 invokes translation of the original document 102. For this example, translator unit 100 may provide the original document 102 and the map 112 directly to translator 114 for execution of translation instructions (e.g., convert input document syntax to output document syntax according to map) . As another alternative, MD extractor 106 may be used to feed the original document 102 and map 112 to translator 114 for execution of the translation
instructions (e.g., if the above-described optional steps including the MD extractor 106 have been performed) .
At step 216, translation unit 100 assembles into a document the translation, along with the digital signatures, URNs (e.g., 104, 116), and public keys (e.g., 110, 120) for the original document 102 and map 112. For example, translator 114 may assemble this document. Alternatively, this document may be assembled by a digital signer 122 (e.g., implemented by suitable software, hardware, etc.). At step 218, translation unit 100 digitally signs the assembled document (e.g., using a private key 124) . For example, translator 114 or digital signer 122 may be used for digitally signing the assembled document. Notably, as an optional step, the MD for the original document 108 and the MD for the map 118 may also be assembled into the document before it is digitally signed (e.g., if the above-described optional steps including the MD extractor 106 have been performed) . The digitally signed, resulting document 126 (including at least the translation, and the digital signatures, URNs, and public keys for the original document 102 and map 112) may be transferred to Application B 18.
As such, resulting document 126 includes sufficient information for a recipient to demonstrate non-repudiable translation. In other words, the resulting, digitally signed document 126 includes sufficient information for a recipient to demonstrate the ownership and relationship of the map and the original and translated documents, and digitally certifies (e.g., using digital signature with private key 124) to demonstrate that the map and original document have not been changed.
Additionally, if the above-described optional steps for the MD extractor 106 are performed, the MD of the resulting document may be extracted and reproduced to assure a recipient that the resulting information has not been changed. For example, a recipient may use the URN of the original document to reference the original document, extract the MD of the original document using the public key, and reproduce and compare the MD of the original document with the MD of the resulting document. In this way, a recipient may be assured that the original document has not been changed and was, in fact, the original document. If the original and resulting MDs do not match, then it may be inferred that the original document has been changed. Also, a recipient may use the URN of the map to reference the map, extract the MD of the map using the public key, and reproduce and compare the MD of the original map with the MD of the resulting map. In this way, a recipient may be assured that the original map has not been changed and was, in fact, the map used to produce the resulting document. If the original and resulting map MDs do not match, then it may be inferred that the original map has been changed. As a result of the above, the resulting document is non-repudiably tied to the referenced original document and map .
As yet another option (e.g., again included for technical reasons but not necessarily for implementing the present invention) , in order to improve an electronic audit to be performed, additional information may be added to the resulting document (e.g., during an assembly step 216) . For example, an MD and URN of the translator program may be added to the assembled document to
identify the software that executed the map. Also, a time stamp indicating the time that a translation occurred may be added to the assembled document. Furthermore, a digital certificate may be added to the assembled document in order to identify the translation authority.
Certain embodiments of the present invention may provide one or more technical advantages. For example, certain embodiments of the present invention provide assurance that a translated electronic document can be non-repudiably tied to an original electronic document and a map used for the translation. Also, certain embodiments provide one or more techniques for non-repudiable translation of electronic documents that enable companies .to more accurately communicate business information with e-business partners, customers and vendors than previous techniques. Furthermore, certain embodiments provide one or more techniques for non-repudiable translation of electronic documents, which enable companies to more efficiently and securely conduct commercial transactions than with previous translation techniques .
Although example embodiments of the present invention have been illustrated in the accompanying Drawings and described in the foregoing Detailed Description, it will be understood that the invention is not limited to any embodiment disclosed, but is capable of numerous rearrangements, modifications and substitutions without departing from the spirit of the invention as set forth and defined by the following claims .