Electronic mail system with functionally for senders to control actions performed by message recipients
First Claim
1. A secure e-mail system, comprising:
- a sender client component for composing and sending an e-mail message addressed to a first recipient with associated message control policies that control whether the first recipient of the e-mail message can forward the e-mail message to a second recipient;
a server system that hosts a secure e-mail service, said secure e-mail service configured to receive a first permission request from the sender client component to send the e-mail message using the secure e-mail service, authorize, at the time of e-mail message composing by a sender, sending of the e-mail message using the secure e-mail service based on subscription of the sender client component to the secure e-mail service, receive the e-mail message and message control policies from the sender client component over a secure HTTPS communications protocol, and store the e-mail message and message control policies from the sender client component in a secure message repository on the server system; and
a recipient computing device configured to send a download request to the secure e-mail service to securely retrieve the e-mail message from the secure message repository via the secure HTTPS communications protocol, send a second permission request to the secure e-mail service at the time of an attempt by the first recipient to forward the e-mail message to the second recipient with a child e-mail message, and send the child e-mail message to the server system for storage in response to receiving authorization to forward the e-mail message with the child e-mail message;
where the secure e-mail service is configured to, at the time of the attempt by the first recipient to forward the e-mail message, receive and check the second permission request against the message control policies, and based on a result of the check, reply to the recipient computing device granting or denying permission to forward the e-mail message by the first recipient to the second recipient.
5 Assignments
0 Petitions
Accused Products
Abstract
An e-mail system is disclosed that overcomes many deficiencies of, but is backward compatible with, existing e-mail systems. Embodiments of the system may include various features, including but not limited to: (1) secure transfer of e-mail messages, without the need for users to replace existing e-mail clients or to change e-mail addresses; (2) tracking of all actions performed in connection with an e-mail transmission; (3) the ability for a recipient to view information about an e-mail message, optionally including information about how other addressees have responded to it, before deciding whether to retrieve the e-mail message; (4) the aggregation of entire e-mail conversations into a single threaded view; (5) the ability to include both private and public messages in a single e-mail communication; (6) sender control over downstream actions performed in connection with an e-mail message; (7) flexible control over cryptographic methods used to encrypt emails messages for storage.
113 Citations
19 Claims
-
1. A secure e-mail system, comprising:
-
a sender client component for composing and sending an e-mail message addressed to a first recipient with associated message control policies that control whether the first recipient of the e-mail message can forward the e-mail message to a second recipient; a server system that hosts a secure e-mail service, said secure e-mail service configured to receive a first permission request from the sender client component to send the e-mail message using the secure e-mail service, authorize, at the time of e-mail message composing by a sender, sending of the e-mail message using the secure e-mail service based on subscription of the sender client component to the secure e-mail service, receive the e-mail message and message control policies from the sender client component over a secure HTTPS communications protocol, and store the e-mail message and message control policies from the sender client component in a secure message repository on the server system; and a recipient computing device configured to send a download request to the secure e-mail service to securely retrieve the e-mail message from the secure message repository via the secure HTTPS communications protocol, send a second permission request to the secure e-mail service at the time of an attempt by the first recipient to forward the e-mail message to the second recipient with a child e-mail message, and send the child e-mail message to the server system for storage in response to receiving authorization to forward the e-mail message with the child e-mail message; where the secure e-mail service is configured to, at the time of the attempt by the first recipient to forward the e-mail message, receive and check the second permission request against the message control policies, and based on a result of the check, reply to the recipient computing device granting or denying permission to forward the e-mail message by the first recipient to the second recipient. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A computer-implemented method of controlling an e-mail conversation using a secure e-mail service, comprising:
-
receiving a first permission request from a sender to send a parent e-mail message using the secure e-mail service; authorizing the sender to send the parent e-mail message based on the sender being subscribed to the secure e-mail service; receiving the parent e-mail message and associated message control policies from the sender over a secure HTTPS communications protocol, and storing the parent e-mail message in a secure message repository on a server system, said parent e-mail message addressed to at least a first recipient, and said message control policies including a message forwarding control for controlling whether a recipient of the parent e-mail message can forward the parent e-mail message to other users; providing the first recipient access to the parent e-mail message from the server system over the secure HTTPS communications protocol; receiving a second permission request from the first recipient to forward or reply to the parent e-mail message with a child e-mail message; applying the message control policies to the second permission request to authorize the first recipient to forward or reply with the child e-mail message; receiving the child e-mail message, generated by the first recipient by forwarding or replying to the parent e-mail message, over the secure HTTPS communications protocol, said child e-mail message addressed to at least a second recipient; storing the child e-mail message on the server system in association with the parent e-mail message, and providing the second recipient access to the child e-mail message from the server system over the secure HTTPS communications protocol; subsequently, receiving, at the server system, a request from the sender of the parent e-mail message to terminate an e-mail conversation associated with the parent e-mail message; and in response to the request to terminate the e-mail conversation, doing at least the following;
(a) blocking the first recipient from forwarding and replying to the parent e-mail message, (b) blocking the second recipient from forwarding and replying to the child e-mail message. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18)
-
-
19. A secure e-mail system, comprising:
-
a sender computing device including; a sender client component having instructions executable by a processor of the sender computing device to output a first permission request to send a parent e-mail message to a first addressee using a secure e-mail service, receive an authorization to send the parent e-mail message using the secure e-mail service based on the sender client component being subscribed to the secure e-mail service, and send the parent e-mail message and sender-created message control policies associated with the parent e-mail message to the secure e-mail service, where the sender-created message control policies include a message forwarding control indicating whether the first addressee can forward the parent e-mail message; a server system configured to receive the parent e-mail message and the sender-created message control policies from the sender client component via a secure HTTPS communications protocol, store the parent e-mail message in a secure repository on the server system, and provide the first addressee with access to the parent e-mail message via the secure HTTPS communication protocol; and an addressee computing device including; an addressee client component having instructions executable by a processor of the addressee computing device to request a retrieval, via the HTTPS communications protocol, of the parent e-mail message and metadata indicating the sender-created message control policies from the server system, the addressee client component having further instructions to send a query to the server system for authorization to perform a message action on the parent e-mail message at the time of an attempt by the first addressee to perform the message action; wherein the server system is further configured to receive the query and in response, apply the sender-created message control policies, send an authorization message to the addressee client component indicating the message action is authorized; and wherein the addressee client component has further instructions to perform the message action on the parent e-mail message upon receiving the authorization message from the server system indicating that the message action is authorized, where the instructions to perform the message action include instructions to send a child e-mail message addressed to a second addressee to the server system for storage thereon.
-
Specification