Electronic message system with federation of trusted senders
First Claim
1. In a server included in an electronic messaging system that receives challenge messages, a method of determining whether a challenge message should be delivered to a first user'"'"'s inbox comprising:
- transmitting, by a first messaging service associated with a first domain name, an original message generated by a first user at a first client associated with the first domain name, the original message indicating the first user as sending the original message and indicating a second user to receive the original message, the second user being associated with a second messaging service associated with a second domain name;
in response to the original message, at a server of the first messaging service associated with the first domain name, receiving a first challenge message from the second messaging service associated with the second domain name, wherein the first challenge message was generated in response to the first user being unknown to the second user;
analyzing, by the server of the first messaging service, the first challenge message to identify whether the first challenge message contains a federated token;
if the first challenge message does not contain a federated token, using the server of the first messaging service to deliver the first challenge message to the first user'"'"'s pending folder;
if the first challenge message does contain a federated token, determining, by the server of the first messaging service, at least one of whether the federated token is authentic and whether the federated token is valid;
delivering, by the server of the first messaging service, the first challenge message to the first user'"'"'s inbox upon determining that the federated token is at least one of authentic and valid to allow the first user an opportunity to view and respond to the first challenge message;
in response to the first challenge message, at a server of the second messaging service associated with the second domain name, receiving a second challenge message from the first messaging service associated with the first domain name, wherein the second challenge message was generated in response to the server of the second messaging service being unknown to the first user;
analyzing, by the server of the second messaging service, the second challenge message to identify whether the second challenge message contains a federated token;
if the second challenge message does not contain a federated token, using the server of the second messaging service to deliver the second challenge message to the second user'"'"'s pending folder;
if the second challenge message does contain a federated token, determining, by the server of the second messaging service, at least one of whether the federated token is authentic and whether the federated token is valid; and
delivering, by the server of the second messaging service, the second challenge message to the second user'"'"'s inbox upon determining that the federated token is at least one of authentic and valid to allow the second user an opportunity to view and respond to the second challenge message.
8 Assignments
0 Petitions
Accused Products
Abstract
Systems and methods for allowing challenge messages to be sent directly to a recipient'"'"'s inbox where normally the challenge message would be sent to a pending folder or deleted. Challenge messages sent between federated messaging services contain a federated token which can be identified, authenticated and validated to determine whether the challenge message should be sent to a recipient'"'"'s inbox. The federated token can include an authentication portion and a validation portion. Authentication methods for the authentication portion can include, for example, checksums, salts, hashes and digital signatures. Once a federated token is authenticated by decrypting the authentication portion according to one or more of these authentication methods, the federated token is validated by determining the defined use-base and determining whether the receipt of the federated token satisfies the defined use.
-
Citations
12 Claims
-
1. In a server included in an electronic messaging system that receives challenge messages, a method of determining whether a challenge message should be delivered to a first user'"'"'s inbox comprising:
-
transmitting, by a first messaging service associated with a first domain name, an original message generated by a first user at a first client associated with the first domain name, the original message indicating the first user as sending the original message and indicating a second user to receive the original message, the second user being associated with a second messaging service associated with a second domain name; in response to the original message, at a server of the first messaging service associated with the first domain name, receiving a first challenge message from the second messaging service associated with the second domain name, wherein the first challenge message was generated in response to the first user being unknown to the second user; analyzing, by the server of the first messaging service, the first challenge message to identify whether the first challenge message contains a federated token; if the first challenge message does not contain a federated token, using the server of the first messaging service to deliver the first challenge message to the first user'"'"'s pending folder; if the first challenge message does contain a federated token, determining, by the server of the first messaging service, at least one of whether the federated token is authentic and whether the federated token is valid; delivering, by the server of the first messaging service, the first challenge message to the first user'"'"'s inbox upon determining that the federated token is at least one of authentic and valid to allow the first user an opportunity to view and respond to the first challenge message; in response to the first challenge message, at a server of the second messaging service associated with the second domain name, receiving a second challenge message from the first messaging service associated with the first domain name, wherein the second challenge message was generated in response to the server of the second messaging service being unknown to the first user; analyzing, by the server of the second messaging service, the second challenge message to identify whether the second challenge message contains a federated token; if the second challenge message does not contain a federated token, using the server of the second messaging service to deliver the second challenge message to the second user'"'"'s pending folder; if the second challenge message does contain a federated token, determining, by the server of the second messaging service, at least one of whether the federated token is authentic and whether the federated token is valid; and delivering, by the server of the second messaging service, the second challenge message to the second user'"'"'s inbox upon determining that the federated token is at least one of authentic and valid to allow the second user an opportunity to view and respond to the second challenge message. - View Dependent Claims (2, 3, 4, 5)
-
-
6. In an electronic messaging system, a method of determining whether a challenge message to a first messaging service from a second messaging service should be delivered to a first user'"'"'s inbox, the first user being associated with the first messaging service, the method comprising:
-
at a first messaging service associated with a first domain name, the first messaging service comprising systems and protocols that
1) transmit an original message generated by a first user at a first client associated with the first messaging service to a second user to receive the second message, the second user being associated with a second messaging service associated with a second domain name, and
2) allow the first messaging service to authorize incoming challenge messages,receiving, by a first server associated with the first messaging service, a first challenge message from the second messaging service, wherein the first challenge message was generated in response to the first user being unknown to the second user; analyzing, by the first server associated with the first messaging service, the first challenge message to identify whether the first challenge message contains a first federated token; if the first challenge message does not contain a first federated token, using the first server associated with the first messaging service to deliver the first challenge message to the first user'"'"'s pending folder; if the first challenge message does contain a federated token, determining, by the first server associated with the first messaging service, at least one of whether the first federated token is authentic and whether the first federated token is valid; and delivering, by the first server associated with the first messaging service, the first challenge message to the first user'"'"'s inbox upon determining that the first federated token is at least one of authentic and valid to allow the first user an opportunity to view and respond to the first challenge message; and at the second messaging service associated with the second domain name, the second messaging service comprising systems and protocols that allow the second messaging service to authorize incoming challenge messages, receiving, by a second server associated with the second messaging service, a second challenge message, wherein the second challenge message was generated in response to the second user being unknown to the first server; analyzing, by the second server associated with the second messaging service, the second challenge message to identify whether the second challenge message contains a second federated token; if the second challenge message does not contain a second federated token, using the second server associated with the second messaging service to deliver the second challenge message to the second user'"'"'s pending folder; if the second challenge message does contain a federated token, determining, by the second server associated with the second messaging service, at least one of whether the second federated token is authentic and whether the second federated token is valid; and delivering, by the second server associated with the second messaging service, the second challenge message to the second user'"'"'s inbox upon determining that the second federated token is at least one of authentic and valid to allow the second user an opportunity to view and respond to the first challenge message. - View Dependent Claims (7, 8, 9, 10, 11, 12)
-
Specification