System and method for secure communication
First Claim
1. A computer-based system for securing communication of e-mail messages exchanged between messaging users, the computer-based system comprising:
- a secure messaging server being accessible to the messaging users via a telecommunication network and being designed to store incoming e-mail messages received from the messaging users, the incoming e-mail messages in each case having one of the messaging users specified as a sender (S) of the incoming e-mail message and at least one communication partner specified as a recipient (R) of the incoming e-mail message,a database for storing data of the messaging users,one or more in- and outgoing automatic message handlers that automatically handle incoming and outgoing e-mail messages according to the data of the messaging users stored in the database,a trust management module for managing the messaging users out-of-band verification of their communication partners,the trust management module forming in the database associations between the messaging users and their communication partners, the associations being formed by storing in the database the communication partners assigned to the messaging users, and each association being indicative of a trust establishing out-of-band verification of one communication partner of one of the plurality of the messaging users, wherein the trust establishing out-of-band verification takes place via a message unlock code (MUC) which is generated for at least a first communication between the sender (S) and the recipient (R) by the trust management module, and wherein the MUC is transmitted outside the telecommunication network via a different communication device from the sender (S) to the recipient (R),in response to detecting a defined trust-destroying action performed by a communication partner after an association indicative of trust is established via a MUC for the communication partner and a message user, the trust management module stores in the database information indicative of a reduced trust level for the communication partner,an access control module(s) for granting or denying to a communication partner access to an e-mail message received from one of the messaging users, wherein said granting or denying is based on an association stored in the database which indicates a trust establishing out-of-band verification between said one of the messaging users specified as a sender (S) of the e-mail message and the communication partner specified as a recipient (R) of the e-mail message;
granting, by the access control module, access to the e-mail message to a recipient of an association that indicates a positive trust establishing out-of-band verification,requesting, by the access control module, verification information for a recipient (R) of an association that indicates reduced trust level.
1 Assignment
0 Petitions
Accused Products
Abstract
A system for secure communication comprises a secure electronic messaging server which is accessible by the public and a database for storing data of messaging users. The data comprises the tracking of trust establishing out-of-band verification and the monitoring of the trust relations derived thereof, messaging user-based instructions related to the handling of incoming mails, wherein the instructions comprise information related to an at least one security level chosen by the messaging user. The system comprises message handlers to automatically handle in- and outgoing mails according to these instructions. This system allows transmitting messages privately and securely with minimum prerequisites for its users. The inventive system allows a secure transmitting of messages between a sender and a recipient, wherein only one of the two parties is a messaging user.
30 Citations
10 Claims
-
1. A computer-based system for securing communication of e-mail messages exchanged between messaging users, the computer-based system comprising:
-
a secure messaging server being accessible to the messaging users via a telecommunication network and being designed to store incoming e-mail messages received from the messaging users, the incoming e-mail messages in each case having one of the messaging users specified as a sender (S) of the incoming e-mail message and at least one communication partner specified as a recipient (R) of the incoming e-mail message, a database for storing data of the messaging users, one or more in- and outgoing automatic message handlers that automatically handle incoming and outgoing e-mail messages according to the data of the messaging users stored in the database, a trust management module for managing the messaging users out-of-band verification of their communication partners, the trust management module forming in the database associations between the messaging users and their communication partners, the associations being formed by storing in the database the communication partners assigned to the messaging users, and each association being indicative of a trust establishing out-of-band verification of one communication partner of one of the plurality of the messaging users, wherein the trust establishing out-of-band verification takes place via a message unlock code (MUC) which is generated for at least a first communication between the sender (S) and the recipient (R) by the trust management module, and wherein the MUC is transmitted outside the telecommunication network via a different communication device from the sender (S) to the recipient (R), in response to detecting a defined trust-destroying action performed by a communication partner after an association indicative of trust is established via a MUC for the communication partner and a message user, the trust management module stores in the database information indicative of a reduced trust level for the communication partner, an access control module(s) for granting or denying to a communication partner access to an e-mail message received from one of the messaging users, wherein said granting or denying is based on an association stored in the database which indicates a trust establishing out-of-band verification between said one of the messaging users specified as a sender (S) of the e-mail message and the communication partner specified as a recipient (R) of the e-mail message; granting, by the access control module, access to the e-mail message to a recipient of an association that indicates a positive trust establishing out-of-band verification, requesting, by the access control module, verification information for a recipient (R) of an association that indicates reduced trust level. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. Computer-implemented method for securing communication of e-mail messages exchanged between messaging users, the computer-implemented method comprising:
-
receiving in a secure messaging server incoming e-mail messages from the messaging users via a telecommunication network, the incoming e-mail messages in each case having one of the messaging users specified as a sender(S) of the incoming e-mail message and at least one communication partner specified as a recipient (R) of the incoming e-mail message, storing the incoming e-mail messages received from the plurality of messaging users, storing data of the messaging users in a database, managing in the secure messaging server, out-of-band verifications for the messaging users and their communication partners, associations between the messaging users and their communication partners being formed in the database, the associations being formed by storing in the database the communication partners assigned to the messaging users, and each association being indicative of a trust establishing out-of-band verification of one communication partner of one of the messaging users, wherein the trust establishing out-of-band verification takes place via a message unlock code (MUC) which is generated for at least a first communication between the sender (S) and the recipient (R) by a trust management module, and wherein the MUC is transmitted outside the telecommunication network via a different communication device from the sender (S) to the recipient (R), in response to detecting a defined trust-destroying action performed by a communication partner after an association indicative of trust is established via a MUC for the communication partner and a message user, the trust management module stores in the database information indicative of a reduced trust level for the communication partner, granting or denying to a communication partner access to an e-mail message received from one of the messaging users, wherein said granting or denying is based on an association stored in the database which indicates a trust establishing verification between said one of the messaging users specified as a sender (S) of the e-mail message and the at least one communication partner specified as a recipient (R) of the e-mail message; granting, by an access control module, access to the e-mail message to a recipient of an association that indicates a positive trust establishing out-of-band verification, requesting, by the access control module, verification information for a recipient (R) of an association that indicates reduced trust level.
-
Specification