Secure messaging

US 20060020799A1
Filed: 07/06/2004
Published: 01/26/2006
Est. Priority Date: 07/06/2004
Status: Active Grant

First Claim

Patent Images

1. A method for secure electronic communication of an email message from an originator to a recipient, said method comprising the steps of:

said originator removing a security sensitive portion of the message;

said originator employing first communication means to send the removed portion to an external store, said external store being operative to grant access to said stored removed portion upon presentation of a two factor authentication comprising an authentication code and a reference code;

said originator employing email to send the residue of the message, along with the reference code and notification that said removed portion is in said store, to said recipient;

employing second communications means to send said authentication code to said recipient;

said recipient accessing said external store; and

said recipient employing third communication means to provide said external store with the necessary two factor authentication comprising said reference code and said authentication code and for said external store to grant access to said removed portion.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A messaging method and system sends secure emails (14) by the email originator (10) removing the portion of the email (14) which is confidential (24) from the body of the email (14). The removed portion (24) is sent to a secure storage site (30). The residue (20) of the email (14) is sent to the intended recipient (12), together with a notification (22) that the confidential portion (24) is at the secure site (30). Secure storage site 30 then sends a SMS text message (38) to the recipient'"'"'s mobile phone (44) which has an authentication code (38) which the recipient (12) uses to establish identity and retrieve the confidential portion (24) of the email message (14) from the secure store (30). The secure store (30) emails the originator with notification (60) when the recipient (12) retrieves the secure portion (24) of the email message (14).

79 Citations

View as Search Results

19 Claims

1. A method for secure electronic communication of an email message from an originator to a recipient, said method comprising the steps of:
- said originator removing a security sensitive portion of the message;
  
  said originator employing first communication means to send the removed portion to an external store, said external store being operative to grant access to said stored removed portion upon presentation of a two factor authentication comprising an authentication code and a reference code;
  
  said originator employing email to send the residue of the message, along with the reference code and notification that said removed portion is in said store, to said recipient;
  
  employing second communications means to send said authentication code to said recipient;
  
  said recipient accessing said external store; and
  
  said recipient employing third communication means to provide said external store with the necessary two factor authentication comprising said reference code and said authentication code and for said external store to grant access to said removed portion.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
- - 2. A method, according to claim 1, wherein said first communication means includes at least one of:
    - a secure Internet connection;
      
      a secure Internet connection using encryption;
      
      a secure Internet connection including a Secure Socket Layer (SSL);
      
      a secure network connection; and
      
      a secure network connection including encryption.
  - 3. A method, according to claim 1, wherein said second communication means includes connection through a gateway;
    - said gateway comprising at least one of;
      
      a cellular telephone network;
      
      a cellular telephone network selectably operable to send said authentication code to said recipient as a visually readable short message service text message;
      
      a Microsoft Passport network, said method including the step of sending said authentication code via said recipient'"'"'s passport;
      
      a Microsoft Messenger network, said method including the step of sending said authentication code as an instant message;
      
      a pager network, said method including the step of sending said authentication code as a pager message;
      
      a voice network, said method including the step of generating said authentication code as a synthesised voice message; and
      
      a network operative to send said authentication code as Unstructured Supplementary Service Data (USSD).
  - 4. A method, according to claim 2, wherein said second communication means includes connection through a gateway;
    - said gateway comprising at least one of;
      
      a cellular telephone network;
      
      a cellular telephone network selectably operable to send said authentication code to said recipient as a visually readable short message service text message;
      
      a Microsoft Passport network, said method including the step of sending said authentication code via said recipient'"'"'s passport;
      
      a Microsoft Messenger network, said method including the step of sending said authentication code as an instant message;
      
      a pager network, said method including the step of sending said authentication code as a pager message;
      
      a voice network, said method including the step of generating said authentication code as a synthesised voice message; and
      
      a network operative to send said authentication code as Unstructured Supplementary Service Data (USSD).
  - 5. A method, according to claim 1 wherein said third means of communication includes at least one of:
    - a secure Internet connection from a web browser connecting via an encrypted link to a web server;
      
      a secure Internet connection from a web browser connecting via the URL HTTPS;
      
      a secure Internet connection from a web browser connecting via a Secure Socket layer (SSL) to a web server;
      
      a secure Internet connection from a web browser connecting via Transport Layer Security (TLS) to a web server; and
      
      a secure Internet connection from a mobile device'"'"'s Wireless Access Protocol (WAP) browser connecting to a WAP gateway.
  - 6. A method, according to claim 2 wherein said third means of communication includes at least one of:
    - a secure Internet connection from a web browser connecting via an encrypted link to a web server;
      
      a secure Internet connection from a web browser connecting via the URL HTTPS;
      
      a secure Internet connection from a web browser connecting via a Secure Socket layer (SSL) to a web server;
      
      a secure Internet connection from a web browser connecting via Transport Layer Security (TLS) to a web server; and
      
      a secure Internet connection from a mobile device'"'"'s Wireless Access Protocol (WAP) browser connecting to a WAP gateway.
  - 7. A method, according to claim 3 wherein said third means of communication includes at least one of:
    - a secure Internet connection from a web browser connecting via an encrypted link to a web server a secure Internet connection from a web browser connecting via the URL HTTPS;
      
      a secure Internet connection from a web browser connecting via a Secure Socket layer (SSL) to a web server;
      
      a secure Internet connection from a web browser connecting via Transport Layer Security (TLS) to a web server; and
      
      a secure Internet connection from a mobile device'"'"'s Wireless Access Protocol (WAP) browser connecting to a WAP gateway.
  - 8. A method, according to claim 4 wherein said third means of communication includes at least one of:
    - a secure Internet connection from a web browser connecting via an encrypted link to a web server;
      
      a secure Internet connection from a web browser connecting via the URL HTTPS;
      
      a secure Internet connection from a web browser connecting via a Secure Socket layer (SSL) to a web server;
      
      a secure Internet connection from a web browser connecting via Transport Layer Security (TLS) to a web server; and
      
      a secure Internet connection from a mobile device'"'"'s Wireless Access Protocol (WAP) browser connecting to a WAP gateway.
  - 9. A method, according to claim 1, wherein said authentication code is uniquely generated for each stored portion.
  - 10. A method, according to claim 1, including the step of providing the originator'"'"'s identity along with said authentication code.
  - 11. A method, according to claim 1 wherein said store is operative to generate at least a portion of said authentication code.
  - 12. A method, according to any one of the preceding claims, including the step of causing said store to send a notification message to said originator when said recipient has gained access to said removed portion.

13. A system for secure electronic communication of an email message from an originator to a recipient, said system comprising:
- removal means for said originator to remove at least a security sensitive portion of the message;
  
  first communication means for said originator to send the removed portion to an external store, said external store being operative to grant access to said stored removed portion upon presentation of an authentication comprising an authentication code and a reference code;
  
  email means for said originator to send the residue of the message, with notification that said removed portion is in said store, to said recipient;
  
  second communications means to send said authentication to said recipient;
  
  accessing means for said recipient to access said external store; and
  
  third communication means for said recipient to provide said external store with said two factor authentication comprising said reference code and said authentication code for said external store to grant access to said removed portion.
- View Dependent Claims (14, 15, 16, 17)
- - 14. A system, according to claim 13, wherein said first communication means includes at least one of:
    - a secure Internet connection;
      
      a secure Internet connection using encryption;
      
      a secure Internet connection including a Secure Socket Layer (SSL);
      
      a secure network connection; and
      
      a secure network connection including encryption.
  - 15. A system, according to claim 13, wherein said second communication means includes connection through a gateway;
    - said gateway comprising at least one of;
      
      a cellular telephone network;
      
      a cellular telephone network selectably operable to send said authentication code to said recipient as a visually readable short message service text message;
      
      a Microsoft Passport network, said method including the step of sending said authentication code via said recipient'"'"'s passport;
      
      a Microsoft Messenger network, said method including the step of sending said authentication code as an instant message;
      
      a pager network, said method including the step of sending said authentication code as a pager message;
      
      a voice network, said method including the step of generating said authentication code as a synthesised voice message; and
      
      a network operative to send said authentication code as Unstructured Supplementary Service Data (USSD).
  - 16. A system, according to claim 14, wherein said second communication means includes connection through a gateway;
    - said gateway comprising at least one of;
      
      a cellular telephone network;
      
      a cellular telephone network selectively operable to send said authentication code to said recipient as a visually readable short message service text message;
      
      a Microsoft Passport network, said method including the step of sending said authentication code via said recipient'"'"'s passport;
      
      a Microsoft Messenger network, said method including the step of sending said authentication code as an instant message;
      
      a pager network, said method including the step of sending said authentication code as a pager message;
      
      a voice network, said method including the step of generating said authentication code as a synthesised voice message; and
      
      a network operative to send said authentication code as Unstructured Supplementary Service Data (USSD).
  - 17. A system, according to any of claims 13 to 16, wherein said third means of communication includes at least one of:
    - a secure Internet connection from a web browser connecting via an encrypted link to a web server;
      
      a secure Internet connection from a web browser connecting via the URL HTTPS;
      
      a secure Internet connection from a web browser connecting via a Secure Socket layer (SSL) to a web server;
      
      a secure Internet connection from a web browser connecting via Transport Layer Security (TLS) to a web server; and
      
      a secure Internet connection from a mobile device'"'"'s Wireless Access Protocol (WAP) browser connecting to a WAP gateway.

18. A method for secure electronic communication of an email message from an originator to a recipient, said method comprising the steps of:
- said originator removing the security sensitive portion of the message;
  
  providing first communication means and an external store operative to grant access to the removed portion of the message upon presentation of a two factor authentication comprising an authentication code and a reference code;
  
  said originator employing said first communication means to send the removed portion of the message to the external store, said originator employing email to send a residue of the message, along with a reference code and a notification that the removed portion is in said store, to said recipient;
  
  said originator providing second communications means and employing said second communication means to send said authentication code to said recipient;
  
  said recipient accessing said external store; and
  
  said recipient providing third communication means and employing said third communication means to provide said external store with the two factor authentication comprising said reference code and said authentication code for said external store to grant access to the removed portion.

19. A system for secure electronic communication of an email message with a security sensitive portion from an originator to a recipient, said system comprising:
- removal means operable by said originator for removing at least a security sensitive portion of the message;
  
  first communication means operable by said originator for sending the removed portion to an external store, said external store being operative to grant access to said removed portion upon presentation of an authentication comprising an authentication code and a reference code;
  
  email means operable by said originator for sending a residue of the message, with notification that said removed portion is in said store, to said recipient;
  
  second communications means for sending said authentication to said recipient;
  
  accessing means operable by said recipient for accessing said external store; and
  
  third communication means operable by said recipient for providing said external store with said two factor authentication comprising said reference code and said authentication code for said external store to grant access to said removed portion.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
SecurEnvoy Ltd. (Shearwater Group Plc)
Original Assignee
Andrew Christopher Kemshall
Inventors
Kemshall, Andrew Christopher

Granted Patent

US 8,166,299 B2
Time in Patent Office

Days
Field of Search
US Class Current

713/170
CPC Class Codes

H04L 51/00   User-to-user messaging in p...

H04L 63/083   using passwords cryptograph...

H04L 63/166   at the transport layer

Secure messaging

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

79 Citations

19 Claims

Specification

Use Cases

Quick Links

Others

Secure messaging

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

79 Citations

19 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others