Filtering incoming e-mail

US 6,484,197 B1
Filed: 02/11/1999
Issued: 11/19/2002
Est. Priority Date: 11/07/1998
Status: Expired due to Term

First Claim

Patent Images

1. An access controller for a mail client in-box, said access controller being cooperable with a mail client for sending messages across a network to any of a plurality of clients and receiving messages from any of said clients across said network, said access controller including:

means instantiable to generate a token indicative of the number of times one of said clients can access said mail client in-box, for transmission to the one of said clients; and

authenticating means instantiable to validate any token included in a message from the one of said clients to allow or deny access to said mail client in-box, in accordance with whether or not the number of times the one of said clients can access said mail client in-box has yet been exhausted.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method and apparatus, in particular, for filtering mail to mitigate the problems of SPAM mail or unwanted access across a network is disclosed. The invention provides an access controller for a data store, operable within for example a mail client. The controller includes a token generating mechanism for generating tokens indicative of the number of times a client can access the data store; and an authenticating mechanism for validating any token included in a message from a client to allow or deny access to said data store.

268 Citations

16 Claims

1. An access controller for a mail client in-box, said access controller being cooperable with a mail client for sending messages across a network to any of a plurality of clients and receiving messages from any of said clients across said network, said access controller including:
- means instantiable to generate a token indicative of the number of times one of said clients can access said mail client in-box, for transmission to the one of said clients; and
  
  authenticating means instantiable to validate any token included in a message from the one of said clients to allow or deny access to said mail client in-box, in accordance with whether or not the number of times the one of said clients can access said mail client in-box has yet been exhausted.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
- - 2. An access controller as claimed in claim 1 wherein said token generating means is adapted to generate tokens of types indicative of the number of times said client is allowed to access to said mail client in-box.
  - 3. An access controller as claimed in claim 2 wherein said token comprises an array attribute and said token generating means comprises means for populating said array with one or more prime numbers.
  - 4. An access controller as claimed in claim 3 wherein said populating means comprises means for persistently storing a product of prime numbers (X), means for persistently storing the number of tokens generated (i), means for acquiring an ith prime number (P), and means for acquiring the type of token to be generated (z), said populating means being responsive to z indicating a token allowing unlimited access to populate said array with a negatively signed ith prime number (−
    - P[i]), and responsive to z indicating an n-time token, where n is an integer number, to populate said array with a series of ith to i+nth prime numbers, and being further adapted to multiply said product of prime numbers (X) by each prime number with which a token is populated.
  - 5. An access controller as claimed in claim 4 wherein said authenticating means includes means for checking a prime number and is responsive to a token including a positive prime number by which said product of primes (X) is divisible, to divide said product of primes by said prime and to allow access to said mail client in-box.
  - 6. An access controller as claimed in claim 4 wherein said authenticating means includes means for checking a prime number and is responsive to a token including a negative prime number by which said product of primes (X) is divisible, to allow access to said mail client in-box.
  - 7. An access controller as claimed in claim 6 wherein said controller is adapted to divide said product of primes (X) by a negative prime number included in messages allowing a client unlimited access to said mail client in-box to revoke said clients access to said mail client in-box.
  - 8. An access controller as claimed in claim 2 wherein said token comprises a date and time attribute and said token generating means comprises means for populating said attribute with the date and time said token is generated.
  - 9. An access controller as claimed in claim 2 wherein said token generating means includes means for digitally signing and encrypting said token and said token authenticating means includes means for decrypting and verifying the signature of a token.
  - 10. A computer program product comprising computer program code stored on a computer readable storage medium for, when executed on a computer, controlling access to a data store, the program code comprising an access control component as claimed in claim 1.

11. A mail client for sending messages across a network to any of a plurality of clients and receiving messages from any of said clients across said network, said mail client comprising:
- an in-box into which incoming messages are stored and an address book including a plurality of client address objects, each object including a token attribute, said mail client being adapted to set said token attribute for a first of said clients when a message including a token is received from said first client; and
  
  an access controller including means for generating a token, indicative of the number of times said first client can access said in-box, for transmission to said mail client, and authenticating means for validating any token included in a message from said first client to allow or deny access to said in-box, in accordance with whether or not the number of times said first client can access said in-box has yet been exhausted, wherein said token generating means is adapted to generate tokens of types indicative of the number of times said first client is allowed to access to said in-box.
- View Dependent Claims (12, 13, 14, 15)
- - 12. A mail client as claimed in claim 11, said mail client being adapted to include a token stored in a client address object in messages to be sent to said client.
  - 13. A mail client as claimed in claim 11, said mail client being responsive to user selection of a client from said in-box or said address book to cause said token generation means to generate a token of a given type and to mail said token to said selected client.
  - 14. A mail client as claimed in claim 11 wherein said in-box is divided into a plurality of folders, said mail client being responsive to messages without tokens being received from a sender for a first time to place said messages in a New Parties folder, responsive to messages without tokens being received from a sender subsequent times to place said messages in a Bad Parties folder, responsive to messages with valid tokens being received from a sender to place said messages in a Good Parties folder and responsive to messages with invalid tokens being received from a sender to place said messages in said Bad Parties folder.
  - 15. A mail client as claimed in claim 14 wherein said client is responsive to messages received from clients in the same organisation as the mail client to place said messages in said Good Parties folder.

16. In a networked computing environment having an access controller for a mail client in-box, said access controller being cooperable with a mail client for sending messages across a network to a plurality of clients and receiving messages from said clients across said network, a method for controlling access to the mail client in-box, comprising the steps of:
- generating a token indicative of the number of times a client can access said mail client in-box for transmission to said client; and
  
  authenticating any token included in a message from a client to allow or deny access to said mail client in-box, in accordance with whether or not the number of times a client can access said mail client in-box has yet been exhausted.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Trend Micro Inc.
Original Assignee
International Business Machines Corporation
Inventors
Donohue, Seamus Brendan
Primary Examiner(s)
Burgess, Glenton B.
Assistant Examiner(s)
FLYNN, KIMBERLY D

Application Number

US09/248,628
Time in Patent Office

1,377 Days
Field of Search

709/206, 709/207, 709/202, 395/200.36, 707/10, 707/9, 340/825.5, 370/94.1, 705/26
US Class Current

709/206
CPC Class Codes

H04L 51/212 using filtering or selectiv...

Filtering incoming e-mail

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

268 Citations

16 Claims

Specification

Solutions

Use Cases

Quick Links

Filtering incoming e-mail

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

268 Citations

16 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links