Confidential mail with tracking and authentication
First Claim
1. A method of verifying that an electronic communication has been received by an intended recipient, the method comprising:
- (a) creating a message envelope including at least an encrypted message and a confidential mail token, the encrypted message configured to be decrypted only by server infrastructure of the intended recipient, wherein the decrypted message is forwarded to the intended recipient by the server infrastructure, and wherein the confidential mail token includes a privacy policy bit requiring receipt of a certificate that includes an email address from a recipient of the message envelope;
(b) transmitting the message envelope from a sender to the intended recipient for processing, wherein at least a portion of data within the message envelope is processed to generate a verification return receipt including the certificate that includes the email address of the recipient of the message envelope pursuant to the privacy policy bit forwarded with the confidential mail token;
(c) receiving, by the sender, the verification return receipt including the certificate that includes the email address from the recipient of the message envelope; and
(d) processing the verification return receipt by the sender comparing the email address that was included in the certificate in the verification return receipt received from the recipient of the message envelope to an email address of the intended recipient stored in the confidential mail token to verify that the recipient of the message envelope is the intended recipient, that the message envelope reached the intended recipient and that the message envelope that reached the intended recipient is authentic, wherein in response to verification by the sender that the recipient of the message envelope is the intended recipient as a result of the stored email address of the intended recipient matching the email address received from the recipient, the sender establishing a connection with the recipient'"'"'s server infrastructure and the sender transmitting a session content encryption key to the intended recipient for decrypting the encrypted message within the message envelope previously sent to the server infrastructure.
2 Assignments
0 Petitions
Accused Products
Abstract
A method for confidential electronic communication between a sender workstation and a receiver workstation is provided, whereby privacy is guaranteed for the electronic communications transmitted over the public Internet. The method of confidential communication is equipped with message tracking and message receipt verification. The system for implementing the method includes a sender server that creates a session content encryption key along with a message envelope that includes a content encryption key encrypted message and a confidential mail token. The content encryption key is stored securely inside the sender organization'"'"'s system which transmits the message envelope to an intended recipient. The intended recipient processes the message envelope in order to generate a message receipt verification, which is transmitted to the sender. The message receipt verification is processed by the sender server to verify that the message envelope reached the intended recipient. The message receipt verification, which is comprised of the confidential mail token and unique verification data generated by the intended recipient allows the sender server to verify that the message envelope reached the intended receiver and that the message envelope identified as received is authentic. Following verification that the message transmitted by the sender reached the intended receiver and is authorized, the sender transmits the content encryption key to the intended receiver.
19 Citations
15 Claims
-
1. A method of verifying that an electronic communication has been received by an intended recipient, the method comprising:
-
(a) creating a message envelope including at least an encrypted message and a confidential mail token, the encrypted message configured to be decrypted only by server infrastructure of the intended recipient, wherein the decrypted message is forwarded to the intended recipient by the server infrastructure, and wherein the confidential mail token includes a privacy policy bit requiring receipt of a certificate that includes an email address from a recipient of the message envelope; (b) transmitting the message envelope from a sender to the intended recipient for processing, wherein at least a portion of data within the message envelope is processed to generate a verification return receipt including the certificate that includes the email address of the recipient of the message envelope pursuant to the privacy policy bit forwarded with the confidential mail token; (c) receiving, by the sender, the verification return receipt including the certificate that includes the email address from the recipient of the message envelope; and (d) processing the verification return receipt by the sender comparing the email address that was included in the certificate in the verification return receipt received from the recipient of the message envelope to an email address of the intended recipient stored in the confidential mail token to verify that the recipient of the message envelope is the intended recipient, that the message envelope reached the intended recipient and that the message envelope that reached the intended recipient is authentic, wherein in response to verification by the sender that the recipient of the message envelope is the intended recipient as a result of the stored email address of the intended recipient matching the email address received from the recipient, the sender establishing a connection with the recipient'"'"'s server infrastructure and the sender transmitting a session content encryption key to the intended recipient for decrypting the encrypted message within the message envelope previously sent to the server infrastructure. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A system for authenticating confidential email communications transmitted from a sender to an intended recipient, the system comprising:
-
a sender server configured to create and transmit an electronic message envelope including at least an encrypted message and a confidential mail token, the encrypted message configured to be decrypted only by server infrastructure of the intended recipient, wherein the decrypted message is forwarded to the intended recipient by the server infrastructure of the sender, and wherein the confidential mail token includes a privacy policy bit requiring receipt of a certificate that includes an email address from a recipient of the message envelope; a verification return receipt including the certificate that includes the email address of the recipient of the message envelope pursuant to the privacy policy bit forwarded with the confidential mail token; wherein the sender server verifies that the electronic message envelope reached the intended recipient by comparing the email address that was included in the certificate in the verification return receipt received from the recipient of the electronic message to an email address of the intended recipient, wherein in response to the stored email address matching the email address received from the recipient stored in the confidential mail token, verifying that the recipient of the message envelope is the intended recipient, that the electronic message envelope reached the intended recipient, that the message that reached the intended recipient is authentic, and the sender establishing a connection with the intended recipient'"'"'s server infrastructure and the sender transmitting a session content encryption key to the intended recipient for decrypting the encrypted message within the message envelope previously sent to the server infrastructure. - View Dependent Claims (12)
-
-
13. A computer-readable storage device which stores a set of instructions which when executed performs a method for providing confidential electronic communication with tracking and authentication, the method executed by the set of instructions comprising:
-
(a) creating a message envelope including at least an encrypted message and a confidential mail token, the encrypted message configured to be decrypted only by server infrastructure associated with an intended recipient, wherein the decrypted message is forwarded to the intended recipient by the server infrastructure, and wherein the confidential mail token includes a privacy policy bit requiring receipt of a certificate that includes an email address from a recipient of the message envelope; (b) transmitting the message envelope from a sender to the intended recipient for processing, wherein at least a portion of data within the message envelope is processed to generate a verification return receipt including the certificate that includes the email address of the recipient of the message envelope pursuant to the privacy policy bit forwarded with the confidential mail token; (c) receiving, by the sender, the verification return receipt including the certificate that includes the email address from the recipient of the message envelope; (d) processing the verification return receipt by the sender comparing the email address that was included in the certificate in the verification return receipt received from the recipient of the message envelope to an email address of the intended recipient stored in the confidential mail token to verify that the recipient of the message envelope is the intended recipient and that the message envelope reached the intended recipient; and (e) in response to verifying that the recipient of the message envelope is the intended recipient as a result of the stored email address of the intended recipient matching the email address received from the recipient and that the message envelope that reached the intended recipient is authentic, the sender establishing a connection with the intended recipient'"'"'s server infrastructure and the sender transmitting a session content encryption key to the intended recipient for decrypting the encrypted message within the message envelope previously sent to the server infrastructure. - View Dependent Claims (14, 15)
-
Specification