System for determining email spam by delivery path
First Claim
Patent Images
1. A method for determining email spam, comprising:
- determining that an email addressed to a user is from a sender on a whitelist of senders associated with the user;
upon determining that the email is from a sender on the whitelist of senders, obtaining a delivery path of the email including a plurality of delivery path nodes;
matching the plurality of delivery path nodes of the email with a plurality of delivery path nodes of a trusted delivery path for the sender; and
upon determining that the plurality of delivery path nodes of the email match the plurality of delivery path nodes of the trusted delivery path for the sender, marking the email as a trusted message.
2 Assignments
0 Petitions
Accused Products
Abstract
A spam detector for determining likelihood of forgery of a source in an email addressed to a destination is provided, comprising extraction means for extracting delivery path information from one or more packets in the packet flow of the email, and comparison means for comparing the extracted delivery path information with trusted delivery path information from the source to the destination.
34 Citations
22 Claims
-
1. A method for determining email spam, comprising:
-
determining that an email addressed to a user is from a sender on a whitelist of senders associated with the user; upon determining that the email is from a sender on the whitelist of senders, obtaining a delivery path of the email including a plurality of delivery path nodes; matching the plurality of delivery path nodes of the email with a plurality of delivery path nodes of a trusted delivery path for the sender; and upon determining that the plurality of delivery path nodes of the email match the plurality of delivery path nodes of the trusted delivery path for the sender, marking the email as a trusted message. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A non-transitory computer readable storage medium storing one or more programs configured for execution by a computer, the one or more programs comprising instructions for:
-
determining that an email addressed to a user is from a sender on a whitelist of senders associated with the user; upon determining that the email is from a sender on the whitelist of senders, obtaining a delivery path of the email including a plurality of delivery path nodes; matching the plurality of delivery path nodes of the email with a plurality of delivery path nodes of a trusted delivery path for the sender; and upon determining that the plurality of delivery path nodes of the email match the plurality of delivery path nodes of the trusted delivery path for the sender, marking the email as a trusted message. - View Dependent Claims (10, 11, 12, 13, 14)
-
-
15. A system, for determining email spam, comprising:
-
one or more central processing units for executing programs; memory storing one or more programs be executed by the one or more central processing units; the one or more programs comprising instructions for; determining that an email addressed to a user is from a sender on a whitelist of senders associated with the user; upon determining that the email is from a sender on the whitelist of senders, obtaining a delivery path of the email including a plurality of delivery path nodes; matching the plurality of delivery path nodes of the email with a plurality of delivery path nodes of a trusted delivery path for the sender; and upon determining that the plurality of delivery path nodes of the email match the plurality of delivery path nodes of the trusted delivery path for the sender, marking the email as a trusted message. - View Dependent Claims (16, 17, 18, 19, 20, 21, 22)
-
Specification