Computer network virus protection system and method
First Claim
Patent Images
1. A method for protecting against a potentially virus-infected message, the method comprising:
- receiving an original message comprising an executable code in a gatekeeper server;
forwarding the original message from the gatekeeper server to a sacrificial server;
creating from the original message a non-executable format message by using one of a plurality of application-level conversion processes selected in accordance with a type of the message, the non-executable format retaining an appearance, human readability and semantic content of the original message; and
forwarding the non-executable format message to an intended recipient of the original message.
4 Assignments
0 Petitions
Accused Products
Abstract
A network is protected from viruses through the use of a sacrificial server, which may be physical or virtual. Any executable programs or other suspicious parts of incoming e-mail messages are forwarded to a sacrificial server, where they are converted to non-executable format such as Adobe Acrobat PDF and sent to the recipient. The sacrificial server is then checked for virus activity. After the execution is completed, the sacrificial server is rebooted.
41 Citations
64 Claims
-
1. A method for protecting against a potentially virus-infected message, the method comprising:
-
receiving an original message comprising an executable code in a gatekeeper server; forwarding the original message from the gatekeeper server to a sacrificial server; creating from the original message a non-executable format message by using one of a plurality of application-level conversion processes selected in accordance with a type of the message, the non-executable format retaining an appearance, human readability and semantic content of the original message; and forwarding the non-executable format message to an intended recipient of the original message. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20)
-
-
21. A system for protecting against a potentially virus-infected message, the system comprising:
-
a workstation computer on a network associated with an intended recipient of an original message comprising an executable code; a gatekeeper server, in communication with the workstation computer, for receiving the original message; and a sacrificial server on the network for creating from the original message a non-executable format message by using one of a plurality of application-level conversion processes selected in accordance with a type of the message, the non-executable format retaining an appearance, human readability and semantic content of the original message and forwarding the non-executable format message to the workstation computer. - View Dependent Claims (22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41, 42, 43)
-
-
44. A sacrificial server for protecting against a potentially virus infected message, the sacrificial server comprising:
-
communication means for receiving an original message attachment from a network; and processing means for creating from the original message attachment a non-executable format message attachment by using one of a plurality of application-level conversion processes selected in accordance with a type of the message, the non-executable format retaining an appearance, human readability and semantic content of the original message and for returning the non-executable format message attachment to the network. - View Dependent Claims (45, 46, 47, 48, 49, 50, 51, 52, 53, 54, 55, 56, 57)
-
-
58. An article of manufacture including a non-transitory computer-readable medium having instructions stored thereon, execution of which by a computing device causes the computing device to perform operations comprising:
-
receiving an original message comprising an executable code in a gatekeeper server; forwarding the original message from the gatekeeper server to a sacrificial server; creating from the original message a non-executable format message by using one of a plurality of application-level conversion processes selected in accordance with a type of the message, the non-executable format retaining an appearance, human readability and semantic content of the original message; and forwarding the non-executable format message to an intended recipient of the original message. - View Dependent Claims (59, 60, 61)
-
-
62. An apparatus for protecting against a potentially virus infected message, the apparatus comprising:
a gatekeeper device configured to; receive an original message attachment from a network, and forward the original message to a sacrificial server, wherein the sacrificial server is configured to create from the original message attachment a non-executable format message attachment by using one of a plurality of application-level conversion processes selected in accordance with a type of the message, the non-executable format retaining an appearance, human readability and semantic content of the original message and for returning the non-executable format message attachment to the network. - View Dependent Claims (63)
-
64. A system comprising:
-
a gatekeeper device configured to receive an original message comprising an executable code; and a sacrificial processor configured to; receive the original message from the gatekeeper device, create from the original message a non-executable format message by using one of a plurality of application-level conversion processes selected in accordance with a type of the message, the non-executable format retaining an appearance, human readability and semantic content of the original message, and forward the non-executable format message to an intended recipient of the original message.
-
Specification