E-mail authentication
First Claim
1. A method for determining whether at least one e-mail originates from a forged source, the method comprising:
- receiving data at a client device pertaining to the least one e-mail directed to at least one intended recipient, wherein the data includes information identifying a purported sender;
sending a query from the client device to a verification host requesting confirmation that the at least one e-mail originated from the purported sender, wherein the query includes information identifying the at least one e-mail comprising at least one of at least a portion of text contained in a message body of the e-mail or a hash of the at least a portion of the text;
receiving, by the client device, a response from the verification host indicating whether or not the at least one e-mail originated from the purported sender based on whether the purported sender sent an e-mail that matches the information identifying the at least one e-mail to the intended recipient; and
determining that the at least one e-mail originates from a forged source unless the response indicates that the at least one e-mail originated from the purported sender.
0 Assignments
0 Petitions
Accused Products
Abstract
A system and method for determining whether an e-mail originates from a sender authorized by an address provider to send the e-mail to an intended recipient'"'"'s e-mail address. The e-mail identifies an address provider from which the intended recipient'"'"'s e-mail address was obtained. The e-mail is delivered to the intended recipient only upon verification that the sender is authorized by the address provider to obtain the intended recipient'"'"'s e-mail address. The system and method may also provide for determining whether an e-mail originates from a forged source. A server receives data relating to an e-mail, including a purported sender and a verification host. The server queries the verification host with information pertaining to the e-mail and requests confirmation that the e-mail originates from the purported sender. The e-mail is determined to originate from a forged source unless the verification host responds that the e-mail originates from the purported sender.
33 Citations
20 Claims
-
1. A method for determining whether at least one e-mail originates from a forged source, the method comprising:
-
receiving data at a client device pertaining to the least one e-mail directed to at least one intended recipient, wherein the data includes information identifying a purported sender; sending a query from the client device to a verification host requesting confirmation that the at least one e-mail originated from the purported sender, wherein the query includes information identifying the at least one e-mail comprising at least one of at least a portion of text contained in a message body of the e-mail or a hash of the at least a portion of the text; receiving, by the client device, a response from the verification host indicating whether or not the at least one e-mail originated from the purported sender based on whether the purported sender sent an e-mail that matches the information identifying the at least one e-mail to the intended recipient; and determining that the at least one e-mail originates from a forged source unless the response indicates that the at least one e-mail originated from the purported sender. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16)
-
-
17. An apparatus comprising a processor operatively coupled to a memory, the memory holding instructions that when executed by the processor, cause the apparatus to perform operations comprising:
-
receiving data pertaining to the least one e-mail directed to at least one intended recipient, wherein the data includes information identifying a purported sender; sending a query to a verification host requesting confirmation that the at least one e-mail originated from the purported sender, wherein the query includes information identifying the at least one e-mail comprising at least one of at least a portion of text contained in a message body of the e-mail or a hash of the at least a portion of the text; receiving a response from the verification host indicating whether or not the at least one e-mail originated from the purported sender based on whether the purported sender sent an e-mail that matches the information identifying the at least one e-mail to the intended recipient; and determining that the at least one e-mail originates from a forged source unless the response indicates that the at least one e-mail originated from the purported sender. - View Dependent Claims (18, 19, 20)
-
Specification