Method and system for messaging security
First Claim
1. A messaging firewall comprising:
- a message relay implemented at least partially in programmed computer hardware and introducible into a messaging pathway to receive a plurality of electronic messages including at least first and second messages from different users associated with different user systems;
a security manager configured to determine, for each of the first and second messages received by the message relay, a level of verification by applying a signature verification policy that references particular attributes of the respective messages as received, and to at least initiate verification of digital signatures for the respective messages, wherein the verification of respective signatures for the first and second messages is to differing levels of confidence in accordance with the signature verification policy and at least one particular attribute of the respective message as received.
2 Assignments
0 Petitions
Accused Products
Abstract
An e-mail firewall applies policies to e-mail messages transmitted between a first site and a plurality of second sites. The e-mail firewall includes a plurality of mail transfer relay modules for transferring e-mail messages between the first site and one of the second sites. Policy managers are used to enforce and administer selectable policies. The policies are used to determine security procedures for the transmission and reception of e-mail messages. The e-mail firewall employs signature verification processes to verify signatures in received encrypted e-mail messages. The e-mail firewall is further adapted to employ external servers for verifying signatures. External servers are also used to retrieve data that is employed to encrypt and decrypt e-mail messages received and transmitted by the e-mail firewall, respectively.
-
Citations
13 Claims
-
1. A messaging firewall comprising:
-
a message relay implemented at least partially in programmed computer hardware and introducible into a messaging pathway to receive a plurality of electronic messages including at least first and second messages from different users associated with different user systems; a security manager configured to determine, for each of the first and second messages received by the message relay, a level of verification by applying a signature verification policy that references particular attributes of the respective messages as received, and to at least initiate verification of digital signatures for the respective messages, wherein the verification of respective signatures for the first and second messages is to differing levels of confidence in accordance with the signature verification policy and at least one particular attribute of the respective message as received. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A messaging firewall comprising:
-
a message relay implemented at least partially in programmed computer hardware and introducible into a messaging pathway to receive a plurality of electronic messages including at least first and second messages from different users associated with different user systems; and a security manager configured to determine, for each of the first and second messages received by the message relay, a level of verification by applying a signature verification policy that references particular attributes of the respective messages as received, and to at least initiate verification of digital signatures for the respective messages, wherein the verification of respective signatures for the first and second messages is to differing levels of confidence in accordance with the signature verification policy and at least one particular attribute of the respective message as received, and wherein, for at least some of the received electronic messages, the initiating verification includes transmitting to a signature verification server, a locally computed hash, information from the signature to be verified, and a policy-based level of verification to be performed by the signature verification server. - View Dependent Claims (9, 10, 11, 12, 13)
-
Specification