Secure electronic mail system
First Claim
1. A secure messaging system comprising:
- a server system including a processor configured to execute a secure messaging service program; and
a sender computing device including a processor configured to execute a program that displays a client graphical user interface (GUI);
wherein the sender computing device is configured to;
receive input of a message from a sender via the client GUI;
receive input of a send command from the sender via the client GUI to send the message to a recipient designated by the sender; and
send the message over a secure channel to the server system;
wherein the server system is configured to;
receive the message;
store the message in encrypted form;
generate a substitute message after receiving the message, said substitute message lacking at least some message content of the message, and including a link that provides functionality to authenticate a recipient and to securely retrieve the message from the server system and further including a message access key including a message identifier identifying the message and a service host identifier indicating to the recipient a network accessible address of the server system at which the message is stored; and
transmit the substitute message to the sender computing device via the secure channel;
wherein the sender computing device is further configured to;
send the substitute message from the sender computing device to a third party application server for transmission to a recipient computing device, wherein the substitute message is transmitted from the sender computing device to the third party application server over a secure channel; and
wherein the server system is further configured to;
receive a request for access to the message stored at the server system from the recipient computing device, the request being generated based on the message access key in the link in the substitute message; and
transmit the message to the recipient computing device via a secure communications protocol.
3 Assignments
0 Petitions
Accused Products
Abstract
An e-mail system is disclosed that overcomes many deficiencies of, but is backward compatible with, existing e-mail systems. Embodiments of the system may include various features, including but not limited to: (1) secure transfer of e-mail messages, without the need for users to replace existing e-mail clients or to change e-mail addresses; (2) tracking of all actions performed in connection with an e-mail transmission; (3) the ability for a recipient to view information about an e-mail message, optionally including information about how other addressees have responded to it, before deciding whether to retrieve the e-mail message; (4) the aggregation of entire e-mail conversations into a single threaded view; (5) the ability to include both private and public messages in a single e-mail communication; (6) sender control over downstream actions performed in connection with an e-mail message; (7) flexible control over cryptographic methods used to encrypt emails messages for storage.
171 Citations
20 Claims
-
1. A secure messaging system comprising:
-
a server system including a processor configured to execute a secure messaging service program; and a sender computing device including a processor configured to execute a program that displays a client graphical user interface (GUI); wherein the sender computing device is configured to; receive input of a message from a sender via the client GUI; receive input of a send command from the sender via the client GUI to send the message to a recipient designated by the sender; and send the message over a secure channel to the server system; wherein the server system is configured to; receive the message; store the message in encrypted form; generate a substitute message after receiving the message, said substitute message lacking at least some message content of the message, and including a link that provides functionality to authenticate a recipient and to securely retrieve the message from the server system and further including a message access key including a message identifier identifying the message and a service host identifier indicating to the recipient a network accessible address of the server system at which the message is stored; and transmit the substitute message to the sender computing device via the secure channel; wherein the sender computing device is further configured to; send the substitute message from the sender computing device to a third party application server for transmission to a recipient computing device, wherein the substitute message is transmitted from the sender computing device to the third party application server over a secure channel; and wherein the server system is further configured to; receive a request for access to the message stored at the server system from the recipient computing device, the request being generated based on the message access key in the link in the substitute message; and transmit the message to the recipient computing device via a secure communications protocol. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. A method for use with a secure messaging system, the method comprising:
-
at a sender computing device; receiving input of a message from a sender via a client GUI; receiving input of a send command from the sender via the client GUI to send the message to a recipient designated by the sender; and sending the message over a secure channel to a server system; at the server system; receiving the message; storing the message in encrypted form; generating a substitute message after receiving the message, said substitute message lacking at least some message content of the message, and including a link that provides functionality to authenticate a recipient and to securely retrieve the message from the server system and further including a message access key including a message identifier identifying the message and a service host identifier indicating to the recipient a network accessible address of the server system at which the message is stored; and transmitting the substitute message to the sender computing device via the secure channel; at the sender computing device; sending the substitute message from the sender computing device to a third party application server for transmission to a recipient computing device, wherein the substitute message is transmitted from the sender computing device to the third party application server over a secure channel; and at the server system; receiving a request for access to the message stored at the server system from the recipient computing device, the request being generated based on the message access key in the link in the substitute message; and transmitting the message to the recipient computing device via a secure communications protocol. - View Dependent Claims (13, 14, 15, 16, 17, 18)
-
-
19. A secure messaging system comprising:
-
a server system including a processor configured to execute a secure messaging service program; a third party application server; and a sender computing device including a processor configured to execute a program that displays a client graphical user interface (GUI); wherein the sender computing device is configured to; receive input of a message from a sender via the client GUI; receive input of a send command from the sender via the client GUI to send the message to a recipient designated by the sender; and send the message over a secure channel to the server system; wherein the server system is configured to; receive the message; store the message in encrypted form; generate a substitute message after receiving the message, said substitute message lacking at least some message content of the message, and including a link that provides functionality to authenticate a recipient and to securely retrieve the message from the server system and further including a message access key including a message identifier identifying the message and a service host identifier indicating to the recipient a network accessible address of the server system at which the message is stored; and transmit the substitute message to the sender computing device via the secure channel; wherein the sender computing device is further configured to; send the substitute message from the sender computing device to the third party application server, wherein the substitute message is sent from the sender computing device to the third party application server over a secure channel; wherein the third party application server is configured to; transmit the substitute message to a recipient computing device; and wherein the server system is further configured to; receive a request for access to the message stored at the server system from the recipient computing device, the request being generated based on the message access key in the link in the substitute message; and transmit the message to the recipient computing device via a secure communications protocol. - View Dependent Claims (20)
-
Specification