Patent · US Active

Method and system for reducing reporting of non-malicious electronic messages in a cybersecurity system

US9781149B1 · kind B1 · utility

53Cited by

26References

26Claims

0Family size

Assignee

WOMBAT SECURITY TECHNOLOGIES, INC. · US

Inventors

Alan Himler · Pittsburgh, US
John T. Campbell · Via Enrico Fermi, US
Joseph A. Ferrara · Pittsburgh, US
Trevor T. Hawthorn · East Stroudsburg, US
Norman Sadeh-Koniecpol · Pittsburgh, US
Kurt Wescoe · Pittsburgh, US

Key dates

Filing date	Aug 17, 2016
Grant date	Oct 3, 2017
Priority date	—
Expiry date	Aug 17, 2036

Classification

Technology area (CPC H)Electricity
CPC primaryH04L61/5007
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

An electronic message analysis system of a cybersecurity network assesses whether a received message is a mock malicious message in response to, receiving a user activation action that indicates that the user has reported the received message as a potentially malicious message. The system does this by determining whether any header field of a header section of the message starts with a predetermined key. For any header field that starts with the predetermined key, the system determines whether a value that follows the predetermined key satisfies a trusted sender rule. If the value that follows the predetermined key satisfies the trusted sender rule, the system determines that the received message originated from a trusted sender. If the value that immediately follows the predetermined key does not satisfy the trusted sender rule, the system determines that the received message did not originate from a trusted sender.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.