公开(公告)号：US08725889B2

公开(公告)日：2014-05-13

申请号：US11712675

申请日：2007-03-01

申请人： Scott M. Petry ,  Shinya Akamine ,  Peter Kevin Lund ,  Fred Cox ,  Michael John Oswall

发明人： Scott M. Petry ,  Shinya Akamine ,  Peter Kevin Lund ,  Fred Cox ,  Michael John Oswall

IPC分类号： G06F15/16

CPC分类号： H04L51/12 ,  H04L51/30 ,  H04L63/145

摘要： The present invention provides an electronic message management system (EMS) that includes a real-time feedback loop where data is collected from the electronic messages on incoming connection attempts, outgoing delivery attempts, and message content analysis, and written to a centralized data matrix. A separate process accesses the data matrix and analyzes trends in that data. The detected data patterns, trends or behavior is based on configuration parameters for the recipient. Based on these determinations, the process is able to instruct components in the EMS to accept, redirect, refuse, modify, defer, or otherwise dispose of the connection request, the delivery attempt, or the message. Associated methods for managing the transmission of electronic messages are also disclosed.

摘要翻译： 本发明提供了一种电子消息管理系统（EMS），其包括实时反馈回路，其中从进入连接尝试，传出尝试和消息内容分析的电子消息中收集数据，并写入集中式数据矩阵。 单独的进程访问数据矩阵并分析该数据的趋势。 检测到的数据模式，趋势或行为是基于收件人的配置参数。 基于这些确定，该过程能够指示EMS中的组件接受，重定向，拒绝，修改，延迟或以其他方式处理连接请求，传递尝试或消息。 还公开了用于管理电子消息传输的相关方法。

公开(公告)号：US20130340028A1

公开(公告)日：2013-12-19

申请号：US13844026

申请日：2013-03-15

申请人： Ramesh Rajagopal ,  Scott M. Petry ,  James K. Tosh, JR. ,  Peter K. Lund ,  Fredric L. Cox ,  Adam P. Moore

发明人： Ramesh Rajagopal ,  Scott M. Petry ,  James K. Tosh, JR. ,  Peter K. Lund ,  Fredric L. Cox ,  Adam P. Moore

IPC分类号： H04L29/06

CPC分类号： H04L63/08 ,  G06F21/316 ,  G06F21/50 ,  G06F21/62 ,  G06F21/6263 ,  H04L63/168 ,  H04L63/20

摘要： Disclosed herein are systems and methods that allow for secure access to websites and web-based applications and other resources available through the browser. Also described are systems and methods for invocation of a secure web container which may display data representative of a requesting party's application at a user's machine. The secure web container is invoked upon receipt of an API call from the requesting party. Thus, described in the present specification are systems and methods for constructing and destroying private, secure, browsing environments (a secure disposable web container), insulating the user and requesting parties from the threats associated with being online for the purposes of providing secure, policy-based interaction with a requesting party's online services.

公开(公告)号：US08595814B2

公开(公告)日：2013-11-26

申请号：US11302985

申请日：2005-12-13

申请人： Binh Le ,  Erik Chen ,  Michael J. Oswall ,  Adam Dawes ,  Joseph Green ,  Kenneth K. Okumura ,  Scott M. Petry ,  Lisa Lund

发明人： Binh Le ,  Erik Chen ,  Michael J. Oswall ,  Adam Dawes ,  Joseph Green ,  Kenneth K. Okumura ,  Scott M. Petry ,  Lisa Lund

IPC分类号： H04L29/06

CPC分类号： H04L9/3268 ,  H04L63/0823 ,  H04L63/102 ,  H04L63/166 ,  H04L2209/60 ,  H04L2209/76

摘要： Disclosed are systems and methods for providing transport layer encryption with an intermediate electronic message managing service interposed in a message path of an electronic message to be sent from a sending server to an intended receiving server across a computer network. To implement TLS in such a managed e-mail services context, given that a managed e-mail service is inserted into the message delivery path, the transport layer security protocols are simultaneously established along both the link from the sending server to the managed e-mail service and from the receiving server to the managed e-mail service, with the managed e-mail service providing a “proxy” connection for communication between the sending server and the receiving server.

摘要翻译： 公开了一种用于提供传输层加密的中间电子消息管理服务的系统和方法，该中间电子消息管理服务插入在将通过计算机网络从发送服务器发送到预期接收服务器的电子消息的消息路径中。 为了在这种受管理的电子邮件服务环境中实施TLS，考虑到管理的电子邮件服务被插入消息传递路径中，传输层安全协议同时建立在从发送服务器到被管理的电子邮件服务器的链路之间， 邮件服务和从接收服务器到受管理的电子邮件服务，被管理的电子邮件服务为发送服务器和接收服务器之间的通信提供“代理”连接。

公开(公告)号：US08583787B2

公开(公告)日：2013-11-12

申请号：US13022526

申请日：2011-02-07

申请人： Scott M. Petry ,  Shinya Akamine ,  Peter K. Lund ,  Fred Cox ,  Michael J. Oswall

发明人： Scott M. Petry ,  Shinya Akamine ,  Peter K. Lund ,  Fred Cox ,  Michael J. Oswall

IPC分类号： G06F15/173

CPC分类号： G06Q20/102 ,  G06Q20/105 ,  G06Q20/108 ,  G06Q20/1085 ,  G06Q20/40 ,  H04L43/00 ,  H04L51/12 ,  H04L63/1408 ,  H04L63/145

摘要： Disclosed are systems and methods for detecting unwanted electronic message transmissions on a communications network. These include establishing a database for storing metadata associated with message traffic according to at least the source addresses of the senders of electronic message transmissions. The disclosed principles also include monitoring electronic message transmissions at the certain location on the electronic communications network. Also, included is populating the database with metadata derived from analysis of the monitored electronic messages, where the metadata includes metadata derived by analyzing the contents of the monitored electronic messages. Based upon the populated database, it is determined whether certain received electronic messages are likely to be unwanted based on an examination of the metadata associated with the source addresses of the senders of the received electronic messages and based on the analysis of the content of monitored electronic messages at least in part without reference to a promulgated database of “signatures” of known unwanted electronic messages.

摘要翻译： 公开了用于在通信网络上检测不需要的电子消息传输的系统和方法。 这些包括根据至少电子消息传输的发送者的源地址建立用于存储与消息流量相关联的元数据的数据库。 所公开的原理还包括在电子通信网络上的特定位置监视电子消息传输。 此外，包括的是使用从所监视的电子消息的分析导出的元数据来填充数据库，其中元数据包括通过分析所监视的电子消息的内容导出的元数据。 基于填充的数据库，基于对与所接收的电子消息的发送者的源地址相关联的元数据的检查，基于对所监视的电子邮件的内容的分析，确定某些所接收的电子消息是否可能是不需要的 消息至少部分地不参照公布的已知不需要的电子消息的“签名”数据库。

公开(公告)号：US07958187B2

公开(公告)日：2011-06-07

申请号：US11381515

申请日：2006-05-03

申请人： Scott M. Petry ,  Shinya Akamine ,  Peter K. Lund ,  Fred Cox ,  Michael J. Oswall

发明人： Scott M. Petry ,  Shinya Akamine ,  Peter K. Lund ,  Fred Cox ,  Michael J. Oswall

IPC分类号： G06F15/16 ,  G06F15/173

CPC分类号： H04L63/1408 ,  H04L51/00

摘要： The present invention provides an electronic message management system (EMS) that includes a real-time feedback loop where data is collected from the electronic messages on incoming connection attempts, outgoing delivery attempts, and message content analysis, and written to a centralized data matrix. A separate process accesses the data matrix and analyzes trends in that data. The detected data patterns, trends or behavior is based on configuration parameters for the recipient. Based on these determinations, the process is able to instruct components in the EMS to accept, redirect, refuse, modify, defer, or otherwise dispose of the connection request, the delivery attempt, or the message. Associated methods for managing the transmission of electronic messages are also disclosed.

摘要翻译： 本发明提供了一种电子消息管理系统（EMS），其包括实时反馈回路，其中从进入连接尝试，传出尝试和消息内容分析的电子消息中收集数据，并写入集中式数据矩阵。 单独的进程访问数据矩阵并分析该数据的趋势。 检测到的数据模式，趋势或行为是基于收件人的配置参数。 基于这些确定，该过程能够指示EMS中的组件接受，重定向，拒绝，修改，延迟或以其他方式处理连接请求，传递尝试或消息。 还公开了用于管理电子消息传输的相关方法。

公开(公告)号：US08769020B2

公开(公告)日：2014-07-01

申请号：US10908060

申请日：2005-04-26

申请人： Scott M. Petry ,  Shinya Akamine ,  Peter K. Lund ,  Fredric L. Cox ,  Michael J. Oswall

发明人： Scott M. Petry ,  Shinya Akamine ,  Peter K. Lund ,  Fredric L. Cox ,  Michael J. Oswall

IPC分类号： G06F15/16 ,  G06F15/173

CPC分类号： H04L51/12 ,  H04L51/30 ,  H04L63/145

摘要： The present invention provides an electronic message management system (EMS) that includes a real-time feedback loop where data is collected from the electronic messages on incoming connection attempts, outgoing delivery attempts, and message content analysis, and written to a centralized data matrix. A separate process accesses the data matrix and analyzes trends in that data. The detected data patterns, trends or behavior is based on configuration parameters for the recipient. Based on these determinations, the process is able to instruct components in the EMS to accept, redirect, refuse, modify, defer, or otherwise dispose of the connection request, the delivery attempt, or the message. Associated methods for managing the transmission of electronic messages are also disclosed.

摘要翻译： 本发明提供了一种电子消息管理系统（EMS），其包括实时反馈回路，其中从进入连接尝试，传出尝试和消息内容分析的电子消息中收集数据，并写入集中式数据矩阵。 单独的进程访问数据矩阵并分析该数据的趋势。 检测到的数据模式，趋势或行为是基于收件人的配置参数。 基于这些确定，该过程能够指示EMS中的组件接受，重定向，拒绝，修改，延迟或以其他方式处理连接请求，传递尝试或消息。 还公开了用于管理电子消息传输的相关方法。

公开(公告)号：US08346880B2

公开(公告)日：2013-01-01

申请号：US13270112

申请日：2011-10-10

申请人： Peter K. Lund ,  Scott M. Petry ,  Craig S. Croteau ,  Kenneth K. Okumura ,  Dorion A. Carroll

发明人： Peter K. Lund ,  Scott M. Petry ,  Craig S. Croteau ,  Kenneth K. Okumura ,  Dorion A. Carroll

IPC分类号： G06F15/16

CPC分类号： H04L67/327 ,  G06Q10/107 ,  H04L51/12 ,  H04L63/0236 ,  H04L63/068 ,  H04L63/126 ,  H04L67/2819 ,  H04L67/306

摘要： Disclosed herein are filtering systems and methods that employ an electronic message source reputation system. The source reputation system maintains a pool of source Internet Protocol (IP) address information, in the form of a Real-Time Threat Identification Network (“RTIN”) database, which can provide the reputation of source IP addresses, which can be used by customers for filtering network traffic. The source reputation system provides for multiple avenues of access to the source reputation information. Examples of such avenues can include Domain Name Server (DNS)-type queries, servicing routers with router-table data, or other avenues.

摘要翻译： 这里公开了采用电子消息源信誉系统的过滤系统和方法。 源信誉系统以实时威胁识别网络（RTIN）数据库的形式维护源IP地址信息池，其可以提供源IP地址的信誉，可以由客户使用 过滤网络流量。 源信誉系统提供了访问源信誉信息的多种途径。 这种途径的示例可以包括域名服务器（DNS）类型查询，具有路由器表数据的服务路由器或其他途径。

公开(公告)号：US07792909B2

公开(公告)日：2010-09-07

申请号：US11381511

申请日：2006-05-03

申请人： Peter K. Lund ,  Scott M. Petry ,  Craig S. Croteau ,  Kenneth K. Okumura ,  Dorion A. Carroll

发明人： Peter K. Lund ,  Scott M. Petry ,  Craig S. Croteau ,  Kenneth K. Okumura ,  Dorion A. Carroll

IPC分类号： G06F15/16

CPC分类号： H04L67/327 ,  G06Q10/107 ,  H04L51/12 ,  H04L63/0236 ,  H04L63/068 ,  H04L63/126 ,  H04L67/2819 ,  H04L67/306

摘要： Disclosed herein are filtering systems and methods that employ an electronic message source reputation system. The source reputation system maintains a pool of source Internet Protocol (IP) address information, in the form of a Real-Time Threat Identification Network (“RTIN”) database, which can provide the reputation of source IP addresses, which can be used by customers for filtering network traffic. The source reputation system provides for multiple avenues of access to the source reputation information. Examples of such avenues can include Domain Name Server (DNS)-type queries, servicing routers with router-table data, or other avenues.

摘要翻译： 这里公开了采用电子消息源信誉系统的过滤系统和方法。 源信誉系统以“实时威胁识别网络”（“RTIN”）数据库的形式维护了源IP地址信息池，可以提供源IP地址的信誉，可以由 客户过滤网络流量。 源信誉系统提供了访问源信誉信息的多种途径。 这种途径的示例可以包括域名服务器（DNS）类型查询，具有路由器表数据的服务路由器或其他途径。

公开(公告)号：US07668951B2

公开(公告)日：2010-02-23

申请号：US11137110

申请日：2005-05-25

申请人： Peter K. Lund ,  Scott M. Petry ,  Craig S. Croteau ,  Kenneth K. Okumura ,  Dorion A. Carroll

发明人： Peter K. Lund ,  Scott M. Petry ,  Craig S. Croteau ,  Kenneth K. Okumura ,  Dorion A. Carroll

IPC分类号： G06F15/173 ,  G06F15/16

CPC分类号： H04L67/327 ,  G06Q10/107 ,  H04L51/12 ,  H04L63/0236 ,  H04L63/068 ,  H04L63/126 ,  H04L67/2819 ,  H04L67/306

摘要： Disclosed herein are filtering systems and methods that employ an electronic message source reputation system. The source reputation system maintains a pool of source Internet Protocol (IP) address information, in the form of a Real-Time Threat Identification Network (“RTIN”) database, which can provide the reputation of source IP addresses, which can be used by customers for filtering network traffic. The source reputation system provides for multiple avenues of access to the source reputation information. Examples of such avenues can include Domain Name Server (DNS)-type queries, servicing routers with router-table data, or other avenues.

公开(公告)号：US20090064329A1

公开(公告)日：2009-03-05

申请号：US12146333

申请日：2008-06-25

申请人： Kenneth K. Okumura ,  Adam S. Dawes ,  Peter K. Lund ,  Erik S. Chen ,  Dmitriy Y. Larin ,  Carl S. Gutekunst ,  James Cunningham ,  Scott M. Petry

发明人： Kenneth K. Okumura ,  Adam S. Dawes ,  Peter K. Lund ,  Erik S. Chen ,  Dmitriy Y. Larin ,  Carl S. Gutekunst ,  James Cunningham ,  Scott M. Petry

IPC分类号： G06F21/00

CPC分类号： H04L63/145 ,  H04L51/12 ,  H04L63/102

摘要： The zero-hour quarantine comprises a tool for flagging potentially harmful messages/files prior to having an anti-virus signature published for a particular virus. The suspect file is sent to the zero-hour quarantine and periodically scanned, giving time for creation of a signature file that would then detect the virus. An example method may include receiving and examining a message for attributes indicative of its undesirability, and assigning a threat score to the message. The method may comprise disposing of the message by comparing the threat score to first and second thresholds, and the message sent to a permanent quarantine if the threat score passes the first threshold. The message is sent to the zero-hour quarantine if the assigned threat score does not pass the second threshold but passes the second threshold, or is delivered to the recipient if the assigned threat score does not pass the first or second threshold.

摘要翻译： 在为特定病毒发布防病毒签名之前，零时隔离区包含用于标记潜在有害消息/文件的工具。 可疑文件被发送到零小时的隔离区并定期扫描，为创建一个随后可以检测病毒的签名文件提供时间。 示例性方法可以包括接收和检查指示其不期望的属性的消息，以及向该消息分配威胁分数。 该方法可以包括通过将威胁分数与第一和第二阈值进行比较来处理消息，以及如果威胁分数通过第一阈值则将消息发送到永久隔离。 如果所分配的威胁分数没有通过第二阈值但是通过了第二个阈值，则该消息被发送到零小时隔离，或者如果所分配的威胁分数没有通过第一或第二阈值，则该消息被传送到接收者。