Method and system for delivering secure e-mail

US 20030084347A1
Filed: 09/30/2002
Published: 05/01/2003
Est. Priority Date: 01/16/2000
Status: Active Grant

First Claim

Patent Images

1. A method for increasing the privacy of an e-mail message (M), comprising the steps of:

providing a central Server (PS) which stores concordance tables between decryption key (K) data and the different identification given to them by different users;

at the Sender'"'"'s terminal, encrypting a message using an encryption key A, and sending by e-mail the encrypted message (EM) to the Recipient;

providing the Recipient with a Partial encryption/decryption Key (PK), which is the decryption key for said encrypted message (EM) modified by a given Operator (OP);

sending by the Sender'"'"'s terminal to said central Server (PS) an Operator Identification (OI_i) belonging to the Sender, which identifies the Operator (OP) employed by the Sender to generate the Partial encryption/decryption key (PK), and which is obtained from the Operator Table stored at the Sender'"'"'s end;

at the Server (PS), obtaining the Operator (OP) from the Sender Operators Table (ST) stored at the Server, using the Operator Identification of the Sender (OI_i) sent to the Server by the Sender'"'"'s terminal;

at the Server (PS), obtaining the Operator Identification of the Recipient (OI), from the Recipient Operators Table (RT) stored at the Server, using the Operator (OP);

sending to the Recipient its Operator Identification (OI_o), together with any additional data associated with the sender, or the recipient or the message;

at the Recipient, receiving the encrypted message (EM) and the Partial encryption/decryption Key (PK) from the Sender, and the Operator Identification (OI_o) from the Server;

extracting the Operator (OP) using the Operator Table stored at the Recipient'"'"'s end, and generating therewith the decryption Key from the Partial Key; and

decrypting the encrypted e-mail message (EM).

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method for increasing the privacy of an e-mail message, comprises the steps of: a) providing a central Server (PS) which stores concordance tables between decryption key data and the different identification given to them by different users; b) at the Sender'"'"'s terminal (ST), encrypting a message using an encryption key, and sending by e-mail the encrypted message to the Recipient (RIT); c) providing the RT with a Partial encryption/decryption Key, which is the decryption key modified by a given Operator (OP); d) sending by the ST to said PS an Operator Identification (OI); belonging to ST, which identifies OP employed by ST to generate the encryption/decryption key, and which is obtained from the Operator Table stored at ST; e) at PS, obtaining OP from the Sender Operators Table stored at PS, using the OI; of ST sent to PS by ST; f) at PS, obtaining OI; of the RT, from the Recipient Operators Table stored at PS, using OP; g) sending to RT its OI, together with any additional data; b) at RT, receiving the encrypted message and the Partial Key from ST, and OI: from PS; i) extracting OP using the Operator Table stored at the RT, and generating therewith the decryption Key from the Partial Key; and j) decrypting the encrypted e-mail message.

Citations

22 Claims

1. A method for increasing the privacy of an e-mail message (M), comprising the steps of:
- providing a central Server (PS) which stores concordance tables between decryption key (K) data and the different identification given to them by different users;
  
  at the Sender'"'"'s terminal, encrypting a message using an encryption key A, and sending by e-mail the encrypted message (EM) to the Recipient;
  
  providing the Recipient with a Partial encryption/decryption Key (PK), which is the decryption key for said encrypted message (EM) modified by a given Operator (OP);
  
  sending by the Sender'"'"'s terminal to said central Server (PS) an Operator Identification (OI_i) belonging to the Sender, which identifies the Operator (OP) employed by the Sender to generate the Partial encryption/decryption key (PK), and which is obtained from the Operator Table stored at the Sender'"'"'s end;
  
  at the Server (PS), obtaining the Operator (OP) from the Sender Operators Table (ST) stored at the Server, using the Operator Identification of the Sender (OI_i) sent to the Server by the Sender'"'"'s terminal;
  
  at the Server (PS), obtaining the Operator Identification of the Recipient (OI), from the Recipient Operators Table (RT) stored at the Server, using the Operator (OP);
  
  sending to the Recipient its Operator Identification (OI_o), together with any additional data associated with the sender, or the recipient or the message;
  
  at the Recipient, receiving the encrypted message (EM) and the Partial encryption/decryption Key (PK) from the Sender, and the Operator Identification (OI_o) from the Server;
  
  extracting the Operator (OP) using the Operator Table stored at the Recipient'"'"'s end, and generating therewith the decryption Key from the Partial Key; and
  
  decrypting the encrypted e-mail message (EM).
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 15, 16, 17, 18, 19, 20, 21, 22)
- - 2. A method according to claim 1, wherein the Server receives from the Sender and sends to the Recipient additional data.
  - 3. A method according to claim 2, wherein the additional data comprises one or more of the Sender'"'"'s e-mail address, the Recipient'"'"'s e-mail address, and an identifying code for the e-mail message.
  - 4. A method according to claim 1, wherein the Key is automatically generated by a software agent installed at the Sender'"'"'s end.
  - 5. A method according to claim 1 wherein the Key is generated by an action of the Sender.
  - 6. A method according to claim 1, further comprising providing a Recipient who is not a registered user with a private e-mail central Server (PS) which stores concordance tables between decryption key data and the different identification given to them by different users, with a private e-mail message which had been encrypted (EM) utilizing an encryption key (K).
  - 7. A method according to claim 6, where the Recipient is willing to register as a registered user with said Server, comprising:
    - a) Sending by the Sender to the Recipient the encrypted message (EM) with a Partial encryption/decryption Key (PK), which is the decryption key modified by a given Operator (OP);
      
      b) Providing the Recipient with information indicating that a message (M) is waiting;
      
      c) Offering the Recipient alternative options to receive the encrypted message (EM);
      
      d) Upon the performing of the required act by the Recipient, generating by the Server (PS) a Table of Operators and Operator Identifiers for said Recipient, providing said Recipient with the software agent and the Table of Operators and Operator Identifiers, and sending said Recipient the Operator Identifier (OI_o) that belongs to the original message;
      
      e) Installing by the Recipient the software agent on his terminal, thereby enabling the reception of receive messages from any Sender;
      
      f) at the Recipient, receiving the encrypted message (EM) and the Partial Key (PK) from the Sender, and the Operator Identification (OI_o) from the Server;
      
      g) extracting the Operator (OP) using the Operator Table stored at the Recipient'"'"'s end, and generating therewith the decryption Key from the Partial Key (PK); and
      
      h) decrypting the encrypted e-mail message (EM).
  - 8. A method according to claim 7, wherein the information indicating that a message is waiting comprises a self-activated program that generates a pup-up window on the terminal of the Recipient.
  - 9. A method according to claim 8, wherein the self activated program is seat to the Recipient by the agent of the Sender.
  - 10. A method according to claim 8, wherein the self-activated program is sent to the Recipient by the Server.
  - 11. A method according to claim 10, wherein the Server sends the self-activating program to the Recipient when it is unable to locate the Recipient'"'"'s address in its database.
  - 12. A method according to claim 7, wherein the option comprises the option to subscribe to the Server.
  - 13. A method according to claim 6, where the Recipient is not willing to register as a registered user with said Server, comprising:
    - Sending by the Sender to the Recipient the encrypted message (EM) with a Partial encryption/decryption Key (PK), which is the decryption key modified by a given Operator (OP);
      
      b) sending by the SerLder'"'"'s terminal to said central Server (PS) an Operator Identification (OI_i) belonging to the Sender, which identifies the Operator (OP) employed by the Sender to generate the Partial encryption/decryption Key (PK), and which is obtained from the Operator Table stored at the Sender'"'"'s end;
      
      c) at the Server, obtaining the Operator (OP) from the Sender Operators Table (ST) stored at the Server, using the Operator Identification (OI_i) of the Sender sent to the Server (PS) by the Sender'"'"'s terminal;
      
      d) at the Server (PS), obtaining the Operator Identification (OI_o) of the Recipient, from the Recipient Operators Table (RT) stored at the Server, using the Operator (Oil);
      
      e) Providing the Recipient with information indicating that a message (M) is waiting;
      
      f) Offering the Recipient alternative options to receive the encrypted message (EM);
      
      g) Upon the performing of the required act by the Recipient, sending the Recipient by the Server (PS) a temporary agent, together with the Operator (OP) needed to obtain the full decryption key of the message (M);
      
      h) Running the temporary agent to decrypt the message without permanently installing a software agent on the Recipient'"'"'s terminal.
  - 15. A method for increasing the privacy of an e-mail message according any one of claims 1 to 5, further comprising performing, managing or controlling certified operations, with a high degree of confidence that a message has been generated by a given entity, and received by another given entity, comprising transmitting a private e-mail message, and further using identifying data associated with an e-mail message to trace a given message and/or its routing history.
  - 16. A method according to claim 15, for awarding prizes in a lottery or lottery-like scheme.
  - 17. A method according to claim 16, wherein a shop that supplies goods or services by order over the Internet keeps track of an order placed via e- mail, and remunerates the sender according to a preset rule.
  - 18. A method according to claim 17, wherein a specific e-mail message is traced using its PK or other added data, such as a certificate or serial number, that is transmitted together with the message.
  - 19. A method according to claim 18, wherein the message number or identifier is used to participate in a lottery in which messages are drawn and prizes allotted to their senders or recipients, according to a predetermined rule.
  - 20. A method according to claim 1, comprising:
    - identifying at a Server a Sender who transmits a large number of e-mail messages at the same time; and
      
      If the Sender of said messages has not previously identified itself to the Server as a legitimate Sender, and if the number and/or the frequency of messages it distributes exceeds a predetermined limit, preventing the messages to be received by the Recipient by omitting to provide to the intended Recipients Operator Identification for said messages.
  - 21. A method of increasing the privacy of an e-mail message, wherein a Recipient in a private e-mail system, as claimed in claims 1-13 and 15-20, advises the Server that it does not desire to receive messages from a given Sender, whereby the Server refuses to provide an Operator Identification for messages directed to that Recipient and originating from said Sender, thus effectively filtering out messages of undesired origin.
  - 22. A method according to claim 21, wherein the user advises the Server that it dues not desire to receive messages from a given Sender by sending a junk mail message that he has received from that Sender to the Server.

14. A system for increasing the privacy of an e-mail message (M), comprising:
- a central Server (PS) which stores concordance tables between decryption key data and the different identification given to them by different users;
  
  a software agent provided at the Sender terminal, suitable to encrypt a message using an encryption key (K), and to cause the encrypted message (EM) to be sent to the Recipient by e-mail, together with a Partial encryption/decryption Key (PK), which is the decryption key (K) modified by a given Operator (OP);
  
  a program at the Sender'"'"'s end, for sending to said central Server (PS) an Operator Identification (OI_i) belonging to the Sender, which identifies the Operator (OP) employed by the Sender to generate the Partial encryption/decryption Key (PK), and which is obtained from the Operator Table stored at the Sender'"'"'s end;
  
  means located at the Server, for receiving information from the Sender and for obtaining the Operator (OP) front the Sender Operators Table (ST) stored at the Server (SP), using the Operator Identification (OI_i) of the Sender sent to the Server by the Sender'"'"'s terminal;
  
  means located at the Server (SP) for obtaining the Operator Identification (OI_o) of the Recipient, from the Recipient Operators Table (RT) stored at the Server, using the Operator (OP), and for sending to the Recipient its Operator Identification (OI_o), together with any additional data;
  
  a software agent at the Recipient'"'"'s end, for receiving the encrypted message (EM) and the Partial Key (PK) from the Sender, and the Operator Identification (OI_o) from the Server;
  
  means provided at the recipient for extracting the Operator (OP) using the Operator Table stored at the Recipient end, and fur generating therewith the decryption Key from the Partial Key (PK); and
  
  software at the Recipient'"'"'s end for decrypting the encrypted e-mail message (EM).

Specification

Resources

Litigation Campaign Assessment

Current Assignee
ELUV Holdings, Ltd.
Original Assignee
ELUV Holdings, Ltd.
Inventors
Luzzatto, Kfir

Granted Patent

US 7,210,036 B2
Time in Patent Office

Days
Field of Search
US Class Current

713/201
CPC Class Codes

H04L 51/00   User-to-user messaging in p...

H04L 63/0428   wherein the data content is...

H04L 63/0435   wherein the sending and rec...

Method and system for delivering secure e-mail

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

22 Claims

Specification

Solutions

Use Cases

Quick Links

Method and system for delivering secure e-mail

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

22 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links