Apparatus and method for controlling unauthorized dissemination of electronic mail
First Claim
1. A method for classification and enforcement of security requirements to an existing information dissemination system, the method comprising the steps of:
- providing, to a user of said existing information dissemination system, a user interface for selecting security requirements for user classification of respective information to be distributed, wherein said user comprises a creator of said information to be distributed;
accepting respective security requirements from said interface for enforcement in respect of dissemination of the corresponding information;
modifying a definition of an existing message sensitivity field within a header definition of said information dissemination system such that the field within said header carries a classification tag, wherein said classification tag indicates said user classification of said information, said classification indicating information for legitimizing at a sending end prior to sending such that said sending is carried out only as legitimized, said information for legitimizing at a sending end comprising authorized recipients and a legitimate one of a group of sending methods, wherein said message sensitivity field is indicative of a sensitivity of said corresponding information;
associating with said dissemination system an enforcement module embodied on a computer recordable medium, said module being operable to receive said security requirements via said classification tag, andenforcing said dissemination via said module in accordance with said classification tag, such that said information is disseminated to authorized recipients and blocked from other recipients.
26 Assignments
0 Petitions
Accused Products
Abstract
A method for classification and enforcement of security requirements in an information dissemination system, said information dissemination system not being designed for said security requirements and enforcement. The method comprising the steps of: accepting a user specification of said security requirements for dissemination of respective information, said specifying is done using a user interface; Associating with said dissemination system an enforcement module, said module being operable to receive said security requirements and apply them to control dissemination via said dissemination system, and then enforcing said dissemination via said module.
62 Citations
26 Claims
-
1. A method for classification and enforcement of security requirements to an existing information dissemination system, the method comprising the steps of:
-
providing, to a user of said existing information dissemination system, a user interface for selecting security requirements for user classification of respective information to be distributed, wherein said user comprises a creator of said information to be distributed; accepting respective security requirements from said interface for enforcement in respect of dissemination of the corresponding information; modifying a definition of an existing message sensitivity field within a header definition of said information dissemination system such that the field within said header carries a classification tag, wherein said classification tag indicates said user classification of said information, said classification indicating information for legitimizing at a sending end prior to sending such that said sending is carried out only as legitimized, said information for legitimizing at a sending end comprising authorized recipients and a legitimate one of a group of sending methods, wherein said message sensitivity field is indicative of a sensitivity of said corresponding information; associating with said dissemination system an enforcement module embodied on a computer recordable medium, said module being operable to receive said security requirements via said classification tag, and enforcing said dissemination via said module in accordance with said classification tag, such that said information is disseminated to authorized recipients and blocked from other recipients. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15)
-
-
16. A system for classification and enforcement of security requirements operating in conjunction with an existing information dissemination system, said system for classification and enforcement of security requirements comprising:
-
an add-on integration module, configured for modifying an existing message sensitivity field in a header by changing a definition of said field, the field being of said existing information dissemination system to serve as a classification tag, wherein said classification tag indicates a user content-dependent classification of said information, said classification indicating authorized recipients, wherein said user comprises a creator of said information to be distributed, wherein said message sensitivity field is indicative of a sensitivity of said corresponding information; a user interface embodied on a computer recordable medium configured for specifying said user'"'"'s content dependent security requirements for dissemination of information; and an enforcement module embodied on a computer recordable medium associable with said information dissemination system, operable to receive said security requirements from said interface, and to perform said enforcement via said association in accordance with said classification tag, such as to enable said enforcement module to disseminate said information to authorized recipients and block said information from other recipients; wherein said interface is configured for receiving classification data for said information including information for legitimizing at said enforcement module prior to sending, such that said sending is carried out only as legitimized, said information for legitimizing by said enforcement module comprising said authorized recipients and a legitimate one of a group of sending methods, and wherein said security requirements are derived from said classification data. - View Dependent Claims (17, 18, 19, 20, 21, 22, 23, 24, 25, 26)
-
Specification