Policy enforcement in a secure data file delivery system

Assignee

• Tumbleweed Communications Corp. · US

Inventors

• Jeffrey C. Smith · Menlo Park, US
• Jean-Christophe Bandini · Cupertino, US

Key dates

Classification

• Technology area (CPC H)Electricity
• CPC primaryH04L67/568
• WIPO fieldDigital communication
• WIPO sectorElectrical engineering

Abstract

A server interacts with a sender to form a package which can include one or more attached data files to be sent to one or more recipients, and the server applies a policy established by a policy authority of the sender to the package. Since the server both forms the package through interaction with the sender and applies the policy, any violations of the policy by the package can be brought to the sender's attention during an interactive session with the sender and before encryption of all or part of the package. As a result, the sender is educated regarding the policy of the sender's policy authority, and the sender can modify the package immediately to comport with the policy. The server delivers the package to the one or more intended recipients by sending notification to each recipient and including in such notification package identification data, e.g., a URL by which the package can be retrieved. The policy of the policy authority can be specified as a list of associations between one or more conditions and one or more actions to be carried out upon satisfaction of the associated conditions.