Electrical computers and digital processing systems: multicomput – Computer conferencing – Demand based messaging
Reexamination Certificate
1998-08-14
2002-03-12
Dinh, Dung C. (Department: 2183)
Electrical computers and digital processing systems: multicomput
Computer conferencing
Demand based messaging
C709S225000, C709S245000, C713S170000, C713S176000, C713S180000
Reexamination Certificate
active
06356935
ABSTRACT:
FIELD OF THE INVENTION
The present invention relates electronic user identification, and more specifically, to an apparatus and method for an authenticated electronic userid.
BACKGROUND OF THE INVENTION
Electronic mail, or “e-mail” has become one of the most popular forms of point-to-point communication for people with access to the Internet. An e-mail system typically comprises a database server, a local area network (LAN) and/or a modem bank, and an internet gateway. A user, who communicates with others via e-mail is typically given a user identification, or “userid” that permanently and uniquely identifies that user with the database server. The server typically has its own identity too, for example, the server is sometimes referred to as a host and the identity is called a “host name”, or in some circles, a “domain name.” When a user desires to check their e-mail, the user logs onto the e-mail system and e-mail messages are displayed on a terminal device or personal computer. A great advantage of e-mail over traditional mail, which accounts, in part, for its surge in popularity, is that messages can be delivered significantly faster, messages can be easily distributed to significantly more recipients, and it is, generally, less expensive for the user than regular mail, or “snail mail.”
However, the very properties which make e-mail so appealing over snail mail to a regular user can also create annoyances. The low cost, the ability for wide distribution and speed of e-mail make it particularly attractive to unsolicited bulk e-mail advertisers. Unsolicited bulk e-mail (“UBE”) has fast become the advertising medium of choice for startup and sham companies looking to quickly and cheaply advertise their wares to a large audience. Frequently, such companies employ an application called a robot that searches electronic databases on the Internet (e.g., Yahoo, Lycos, AltaVista, etc.) for certain keywords that identify the demographics of a target market. From the database “hits”, a list of uniform resource locators (“URLs”) for both websites and bulletin boards is compiled. The robot then methodically loads and scans the hypertext markup language source (“html”) or ASCII text pages identified by the URLs and harvests e-mail addresses. The e-mail addresses are then added into a distribution list to which e-mail advertisements, or UBE messages, are spooled out.
The ease with which e-mail addresses can be harvested not only from the various Internet search engines, but also from the “to:”, “from:” and “cc:” fields in an e-mail messages (e.g., a joke circulating the internet could have been forwarded to hundreds of unique e-mail addresses) and newsgroups has caused a proliferation of UBE. Eventually, these messages litter the e-mail of a user's “inbox” and the user must sift and sort the junk messages from the important messages.
Another problem associated with the traditional e-mail address paradigm is that a user may only wish to communicate once, or on a per-reply basis with another user. Whereas in trusted communications, such as inter-organization and personal communications, a single address is desired, in other scenarios, a restricted use e-mail address is desired. For example, an individual may only desire a single or temporary communication with a particular user, rather than giving the particular user a permanent e-mail address.
Known examples of filtering UBE messages and other non-trusted communications include querying incoming messages for certain unwanted sender addresses (e.g., the sender's e-mail address) and/or contextual keywords or phrases in the message body. For example, see U.S. Pat. No. 5,619,648, invented by Canale et al., which discloses such a system. Similarly, e-mail messages from known UBE sender domain names can be explicitly blocked.
However, a problem with query and filter techniques is that the e-mail addresses must often be explicitly defined each time a new bulk mailer sends UBE. Further still, a domain name (as well as the e-mail address) is easily manipulated or “spoofed” by the originating bulk mailer. For example, the America On-Line “AOL” service domain name is often mimicked because many e-mail users will not block mail from the “aol.com” host because they know many people who subscribe to the AOL service. Furthermore, contextual query and filter techniques are prone to error and are difficult, if not impossible to setup correctly. Certainly, legitimate and potentially important messages will slip through the cracks with such systems.
Thus, there is a need for a unique method and apparatus for authenticating electronic messages that is capable of controlling UBE and other forms of electronic messages that clutter communication applications such as electronic mail.
SUMMARY OF THE INVENTION
An apparatus and method for an authenticated electronic userid is provided. According to one embodiment, an electronic message system generates an authenticated electronic userid for a local user that comprises an adapted digital signature. The adapted digital signature, with other identifiers, provides temporary or restricted electronic message privileges to a remote user.
According to one embodiment, the adapted digital signature grants privileges to a particular remote user for access to a single local user on the message system. However, according to another embodiment, the adapted digital signature grants privileges to a number of remote users from a particular host for access to one or more local users on the message system.
In one embodiment, a process for creating an authenticated electronic userid comprises the acts of generating an adapted digital signature based on an originator key and a portion of a remote userid, and concatenating the adapted digital signature with originator information to form the authenticated electronic userid.
In another embodiment, a process for authenticating an adapted digital signature comprises the acts of extracting a local userid and remote user information from an incoming electronic message; comparing the local userid to a list of local users; verifying the adapted digital signature is valid; and then granting access to an electronic service if the adapted digital signature is valid.
As a result of the techniques described herein, UBE and other forms of unsolicited or undesired electronic messages are filtered in a more controlled manner than prior methods, and a local user will not need to remove UBE messages from their messaging application.
REFERENCES:
patent: 4281215 (1981-07-01), Atalla
patent: 4309569 (1982-01-01), Merkle
patent: 4405829 (1983-09-01), Rivest et al.
patent: 4713780 (1987-12-01), Schultz et al.
patent: 4881264 (1989-11-01), Merkle
patent: 4934846 (1990-06-01), Gilham
patent: 4977595 (1990-12-01), Ohta et al.
patent: 5093918 (1992-03-01), Heyen et al.
patent: 5142577 (1992-08-01), Pastor
patent: 5204961 (1993-04-01), Barlow
patent: 5224164 (1993-06-01), Elsner
patent: 5231668 (1993-07-01), Kravitz
patent: 5307412 (1994-04-01), Vobach
patent: 5319710 (1994-06-01), Atalla et al.
patent: 5349649 (1994-09-01), Iijima
patent: 5351293 (1994-09-01), Michener et al.
patent: 5367573 (1994-11-01), Quimby
patent: 5371796 (1994-12-01), Avarne
patent: 5377354 (1994-12-01), Scannell et al.
patent: 5432852 (1995-07-01), Leighton et al.
patent: 5434918 (1995-07-01), Kung et al.
patent: 5440634 (1995-08-01), Jones et al.
patent: 5473691 (1995-12-01), Menezes et al.
patent: 5479514 (1995-12-01), Klonowski
patent: 5493692 (1996-02-01), Theimer et al.
patent: 5537475 (1996-07-01), Micali
patent: 5539826 (1996-07-01), Dwork et al.
patent: 5542046 (1996-07-01), Carlson et al.
patent: 5592553 (1997-01-01), Guski et al.
patent: 5604803 (1997-02-01), Aziz
patent: 5606668 (1997-02-01), Shwed
patent: 5619648 (1997-04-01), Canale et al.
patent: 5638446 (1997-06-01), Rubin
patent: 5732137 (1998-03-01), Aziz
patent: 5740361 (1998-04-01), Brown
patent: 5751813 (1998-05-01), Dorenbos
patent: 5751814 (1998-05-01), Kafri
patent: 5754659 (1998-05-01), Sprunk et al.
patent: 5764762 (1998-06-01), Kazmierczak et al.
pate
Dinh Dung C.
Lyon & Lyon LLP
Xircom Wireless, Inc.
LandOfFree
Apparatus and method for an authenticated electronic userid does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Apparatus and method for an authenticated electronic userid, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Apparatus and method for an authenticated electronic userid will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-2852378