Adhoc secure document exchange

US 7,752,269 B2
Filed: 01/19/2004
Issued: 07/06/2010
Est. Priority Date: 01/19/2004
Status: Active Grant

First Claim

Patent Images

1. A non-transitory computational component storing instructions that are executed by a processor to perform a method, the method comprising:

detecting by an email server an attachment to a first message comprising a first electronic message;

removing said attachment from said first electronic message;

associating a password with said attachment;

storing said attachment in a secure storage device, wherein said password is required to access said stored attachment;

inserting a link to said stored attachment in said first electronic message;

delivering said first electronic message with said inserted link to a first delivery address;

delivering said password to a second delivery address as part of a second message, wherein said first delivery address is different than said second delivery address;

receiving by a user said first electronic message at said first delivery address;

receiving by said user said second electronic message containing said password at said second delivery address;

accessing by said user associated with said first and second delivery addresses said link to said stored attachment, wherein said accessing comprises a request by said user for said stored attachment;

receiving by a secure server said request for said stored attachment;

requesting said password from said user associated with said first and second delivery addresses; and

in response to receiving said password from said user, delivering said attachment without alteration and in an original form to one of said first and second delivery addresses.

View all claims

24 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Embodiments of the present invention are directed to a system capable of enforcing document security and delivery policies. In particular, the present invention allows for the detection and removal of files attached to electronic messages. When an attached file is removed from an electronic message, the file may be placed in secure storage. A link to the stored file is inserted in the electronic communication prior to delivery of the message to the addressee of the communication. In order to access the stored file, the recipient of the message is required to select the provided link, which establishes a secure communication channel between the secure storage device and the receiving client computer. Optionally, the recipient may also be required to provide a password and/or digital certificate in order to access the stored file.

51 Citations

View as Search Results

22 Claims

1. A non-transitory computational component storing instructions that are executed by a processor to perform a method, the method comprising:
- detecting by an email server an attachment to a first message comprising a first electronic message;
  
  removing said attachment from said first electronic message;
  
  associating a password with said attachment;
  
  storing said attachment in a secure storage device, wherein said password is required to access said stored attachment;
  
  inserting a link to said stored attachment in said first electronic message;
  
  delivering said first electronic message with said inserted link to a first delivery address;
  
  delivering said password to a second delivery address as part of a second message, wherein said first delivery address is different than said second delivery address;
  
  receiving by a user said first electronic message at said first delivery address;
  
  receiving by said user said second electronic message containing said password at said second delivery address;
  
  accessing by said user associated with said first and second delivery addresses said link to said stored attachment, wherein said accessing comprises a request by said user for said stored attachment;
  
  receiving by a secure server said request for said stored attachment;
  
  requesting said password from said user associated with said first and second delivery addresses; and
  
  in response to receiving said password from said user, delivering said attachment without alteration and in an original form to one of said first and second delivery addresses.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
- - 2. The method of claim 1, further comprising:
    - delivering said attachment to said first delivery address.
  - 3. The method of claim 2, wherein said attachment is delivered over a secure communication channel.
  - 4. The method of claim 1, wherein said first electronic message is associated with said first delivery address, and wherein first said delivery address is outside of a domain from which said electronic message originates.
  - 5. The method of claim 1, wherein said secure storage device comprises a hypertext transfer protocol secure server.
  - 6. The method of claim 1, wherein said detecting comprises monitoring electronic message traffic at a firewall.
  - 7. The method of claim 1, wherein said link to said stored attachment in said first electronic message comprises an HTTPS link.
  - 8. The method of claim 1, wherein said computational component comprises a logic circuit.
  - 9. The method of claim 1, wherein said computational component comprises a computer readable storage medium containing instructions for performing the method.
  - 10. The method of claim 1, wherein said second delivery address is a facsimile number.

11. A method for enforcing security policies, comprising:
- generating a first electronic message;
  
  attaching a first file to said first electronic message;
  
  initiating delivery of said first electronic message and said first file;
  
  intercepting said first electronic message and said first file;
  
  removing said first file from said first electronic message;
  
  storing said first file;
  
  inserting a first link to said stored first file in said first electronic message;
  
  delivering said first electronic message and said first link to a first delivery address wherein a user is provided with the first electronic message at the first delivery address;
  
  generating a password notification message, wherein said password notification message includes a password or instructions for obtaining a password;
  
  delivering said password notification message to a second delivery address, wherein said first delivery address is different than said second delivery address, and wherein the user is provided with the password notification message at the second delivery address;
  
  receiving a request for said stored first file, wherein said receiving a request for said stored first file includes a user associated with said first delivery address clicking on said first link;
  
  requesting said password from said user requesting said first stored file; and
  
  in response to receiving said password, delivering said stored first file to said user, wherein said stored first file is delivered to said user in an original form.
- View Dependent Claims (12, 13)
- - 12. The method of claim 11, wherein said second delivery address comprises a telephone number.
  - 13. The method of claim 11, wherein said password notification message includes instructions for obtaining a password, wherein said instructions for obtaining a password require that the user contact a sender of the first electronic message to request said password.

14. A document delivery security system, comprising:
- a first client computer;
  
  a first communication network;
  
  at least a first server computer interconnected to said client computer by said first communication network;
  
  a communication interface between said first server computer and a second communication network;
  
  software running on said at least a first server computer operable to detect a first electronic message having an attached file and marked for delivery over said second communication network, and operable to remove said file from said first electronic message, wherein said first electronic message is provided to said communication interface for delivery to a first delivery address without said file and with a link to said file,wherein said software is further operable to cause a second electronic message to be provided to a second delivery address,wherein said second electronic message includes a first password,wherein said first delivery address is different than said second delivery address;
  
  wherein said first electronic message is delivered to said first delivery address, andwherein said second electronic message is delivered to said second delivery address;
  
  storage interconnected to said first server computer, wherein said file is stored in said storage, and wherein said first password is required to access said file,wherein said software running on said at least a first server computer is further operable to;
  
  respond to a request to access said file received in connection with a click on said link included in said first electronic message by requiring said first password, and in response to receiving said required first password is operable to provide said file to said communication interface for delivery to said first delivery address.
- View Dependent Claims (15, 16, 17, 18)
- - 15. The system of claim 14, wherein said at least a first server comprises a firewall.
  - 16. The system of claim 14, wherein said second communication network comprises the Internet.
  - 17. The system of claim 14, wherein said first communication network comprises a private intranet.
  - 18. The system of claim 14, wherein said second delivery address is a telephone number.

19. A communication system, comprising:
- means for receiving a first communication from a first communication network;
  
  means for detecting an attachment to said first communication;
  
  means for removing said detected attachment from said first communication;
  
  means for storing said removed attachment;
  
  means for inserting a link to said stored attachment in said first communication; and
  
  means for providing said first communication with said inserted link to a second communication network for delivery to a first delivery address and for providing a second communication containing a password necessary to access said stored attachment to said second communication network for delivery to a second delivery address, wherein said first delivery address and said second delivery address are different, wherein in response to a request to access said stored attachment entered by a recipient click on said inserted link, said recipient is required to provide said password, and wherein in response to receiving said password said stored attachment is delivered to said recipient without modification.
- View Dependent Claims (20, 21, 22)
- - 20. The system of claim 19, further comprising:
    - means for generating said password required for access to said stored attachment.
  - 21. The system of claim 19, further comprising means for securely delivering said stored attachment to said delivery address.
  - 22. The system of claim 19, wherein said second delivery address is a telephone number.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Avaya Incorporated
Original Assignee
Avaya Incorporated
Inventors
Schreuder, James D., Chan, Kevin, Scholte, Alexander Martin, Minhazuddin, Muneyb
Primary Examiner(s)
Chang; Jungwon

Application Number

US10/760,681
Publication Number

US 20050182821A1
Time in Patent Office

2,360 Days
Field of Search

709/206, 713/183
US Class Current

709/206
CPC Class Codes

G06F 21/6236   between heterogeneous systems

H04L 51/08   Annexed information, e.g. a...

H04L 51/48   Message addressing, e.g. ad...

Adhoc secure document exchange

First Claim

24 Assignments

0 Petitions

Accused Products

Abstract

51 Citations

22 Claims

Specification

Solutions

Use Cases

Quick Links

Adhoc secure document exchange

First Claim

24 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

51 Citations

22 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links