System and method for providing security via a top level domain

US 20090198995A1
Filed: 01/31/2008
Published: 08/06/2009
Est. Priority Date: 01/31/2008
Status: Active Grant

First Claim

Patent Images

1. A secure messaging system, comprising:

at least one secure message server of a top-level domain; and

a plurality of registered clients, registered with the top-level domain,a plurality of secure communication links, communicatively coupling said plurality of registered clients, via said at least one secure message server,wherein said at least one secure message server and said plurality of secure communication links are configured to transmit secure messages between said plurality of registered clients using pre-assigned top-level domain accounts without the need for further encryption/decryption protocols.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A system and method is disclosed for providing end-to-end security for communications between registered clients of a top level domain without the need for further encryption/decryption protocols than those provided by said at least one of said plurality of secure communication links and said at least one secure message server. Clients registered with the top level domain are assigned at least one email and IM account and to ensure message security, are required to communicate with other registered others strictly via the assigned email and IM accounts. In this manner, non-registered users are denied secure access to the top level domain. In one embodiment, registered clients of the top-level domain may communicate with non-registered users via a gateway server in a secure or non-secure manner, as is the option of the registered client (sender).

24 Citations

View as Search Results

27 Claims

1. A secure messaging system, comprising:
- at least one secure message server of a top-level domain; and
  
  a plurality of registered clients, registered with the top-level domain,a plurality of secure communication links, communicatively coupling said plurality of registered clients, via said at least one secure message server,wherein said at least one secure message server and said plurality of secure communication links are configured to transmit secure messages between said plurality of registered clients using pre-assigned top-level domain accounts without the need for further encryption/decryption protocols.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
- - 2. The secure messaging system of claim 1, wherein said transmitted messages are selected from the group consisting of:
    - email messages an IM messages.
  - 3. The secure messaging system of claim 1, wherein the at least one secure message server is a secure email message server.
  - 4. The secure messaging system of claim 1, wherein the at least one secure message server is a secure IM message server.
  - 5. The secure messaging system of claim 1, wherein the plurality of secure communication links operate in accordance with one of a plurality of secure protocols selected from the group consisting of:
    - simple mail transfer protocol (SMTP) over secure socket layer (SSL), Internet Message Access Protocol (IMAP) over secure socket layer (SSL), and post office protocol (POP) over secure socket layer (SSL).
  - 6. The secure messaging system of claim 1, further comprising:
    - means for registering a client with said top-level domain.
  - 7. The secure messaging system of claim 1, further comprising a gateway server configured to transmit at least one message from one of said plurality of registered clients, via said at least one secure message server, to at least one message recipient, not registered with said top-level domain.
  - 8. The secure messaging system of claim 7, wherein said gateway server is further configured to encrypt said at least one message transmitted prior to transmitting said message to said at least one non-registered message recipient.
  - 9. The secure messaging system of claim 8, wherein said gateway server optionally encrypts said message in response to an indicator provided in said message.
  - 10. The secure messaging system of claim 7, further comprising:
    - provisioning means for provisioning said at least one non-registered message recipient to receive and decrypt encrypted messages received from said gateway server.
  - 11. The secure messaging system of claim 10, wherein said provisioning means, further comprises:
    - means for authenticating said non-registered users to said top-level domain.
  - 12. The secure messaging system of claim 10, wherein said provisioning means for provisioning non-registered message recipients is performed in a pre-operational stage.
  - 13. The secure messaging system of claim 10, wherein said means for provisioning non-registered message recipients is performed substantially concurrent with receiving said encrypted messages.

14. A method for conducting secure messaging between at least two clients registered with a top-level domain, the method comprising:
- creating an email message to be securely transmitted from a first client registered with the top-level domain to a second client registered with said top-level domain;
  
  transmitting the email message over a first secure communication link from said first client to a secure message server of the top-level domain;
  
  re-transmitting the message from the secure message server, via a second secure communication link to said second client,wherein said secure messaging between said first registered client and said second registered client is achieved without the need for further encryption/decryption protocols than those provided by said first and second secure communication links and said at least one secure message server.
- View Dependent Claims (15, 16, 17)
- - 15. The method of claim 14, wherein said first and second secure communication link are selected in accordance with one of a plurality of secure protocols selected from the group consisting of:
    - simple mail transfer protocol (SMTP) over secure socket layer (SSL) protocol, Internet Message Access Protocol (IMAP) over secure socket layer (SSL) protocol, and post office protocol (POP) over secure socket layer (SSL) protocol.
  - 16. The method of claim 14, wherein the email message is created from a desktop of the first client and received at a desktop of the second client.
  - 17. The method of claim 14, wherein registration comprises assigning an Email and an IM address associated with the “
    - .md”
      
      top-level domain.

18. A method for conducting secure messaging between a registered client of a top-level domain and a non-registered user of said top-level domain, the method comprising:
- creating a message to be transmitted from said registered client of said top-level domain to said non-registered user;
  
  transmitting the message over a first secure communication link to a secure message server of the top-level domain;
  
  forwarding the message from the secure message server to a gateway server of the top-level domain;
  
  encrypting the message at the gateway server; and
  
  re-transmitting the message from the gateway server over a non-secure communication link to said non-registered user.
- View Dependent Claims (19, 20, 21, 22, 23, 24)
- - 19. The method of claim 18, further comprising the step of:
    - said gateway server filtering said message in accordance with rules pre-programmed into the gateway server.
  - 20. The method according to claim 19, wherein the pre-programmed rules are selected from the group consisting of:
    - encryption rules, mail blocking rules, and mail redirection rules.
  - 21. The method according to claim 18, wherein the encrypting step further comprises the steps of:
    - incorporating an encryption request to be transmitted along with said created message from a desktop of said registered client, recognizing said encryption request at said gateway server; and
      
      encrypting said message at said gateway server responsive to said encryption request.
  - 22. The method according to claim 20, further comprising:
    - means for provisioning said non-registered user to decrypt said encrypted message.
  - 23. The method according to claim 22, wherein said means for provisioning said non-registered user is performed as a pre-operational step, in advance of said non-registered user receiving encrypted messages.
  - 24. The method according to claim 22, wherein said means for provisioning non-registered users is performed substantially concurrently with said non-registered user receiving encrypted messages.

25. A method for conducting secure IM messaging between at two registered clients of a top-level domain, the method comprising:
- a) creating an IM message to be transmitted securely from said first client to said second client;
  
  b) encrypting the created IM message at said first client using said first client encryption key;
  
  c) transmitting the IM message over a first secure communication link to said secure IM message server;
  
  d) decrypting the IM message at the secure message server using said first client encryption key;
  
  e) re-encrypting the IM message at the secure message server using said second client encryption key; and
  
  f) transmitting the re-encrypted message from the secure message server, via a second secure communication link to said second client.
- View Dependent Claims (26, 27)
- - 26. A method according to claim 25, further comprising the steps of:
    - a first registered client authenticating himself to an IM secure message server associated with the top-level domain, prior to said step (a);
      
      a second registered client authenticating himself to said secure IM message server, prior to said step (b)wherein authentication is a pre-requisite to sending IM messages between said two registered clients.
  - 27. A method according to claim 26, wherein authentication must be re-established between said first client and said IM secure message server and said second client and said IM secure message server after a prescribed time period has elapsed.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Park Avenue Capital LLC
Original Assignee
Park Avenue Capital
Inventors
Finlay, Scott Andrew

Granted Patent

US 8,037,298 B2
Time in Patent Office

Days
Field of Search
US Class Current

713/153
CPC Class Codes

H04L 51/00   User-to-user messaging in p...

H04L 51/04   Real-time or near real-time...

H04L 63/168   above the transport layer

System and method for providing security via a top level domain

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

24 Citations

27 Claims

Specification

Solutions

Use Cases

Quick Links

System and method for providing security via a top level domain

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

24 Citations

27 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links