Patents by Inventor Frank Byrum
Frank Byrum has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Publication number: 20180352000Abstract: Architecture that employs encryption and storage of encryption keys to protect trusted client message content from an untrusted third-party hosted service. Each trusted user machine is configured to optionally apply security to messages. Rules determine when automatic protection is applied and the level of protection to apply. The trusted client automatically downloads the rules (or rules policies) from a trusted rules service and caches the rules locally. During composition, the rules analyze the message and automatically apply security template(s) to the message. The security template(s) encrypt the body of the message, but not the headers or subject. The untrusted message service processes the header and delivers the message to the correct recipient. The hosted service cannot view the contents of the message body, and only intended recipients of the protected message can view the message body. Offline protection is supported, and the user can override protection by the rules.Type: ApplicationFiled: July 23, 2018Publication date: December 6, 2018Applicant: Microsoft Technology Licensing, LLCInventors: Edward T. Banti, Frank Byrum, Mayerber L. Carvalho Neto, James R. Knibb, Palash Biswas, Christopher Barnes
-
Patent number: 10044763Abstract: Architecture that employs encryption and storage of encryption keys to protect trusted client message content from an untrusted third-party hosted service. Each trusted user machine is configured to optionally apply security to messages. Rules determine when automatic protection is applied and the level of protection to apply. The trusted client automatically downloads the rules (or rules policies) from a trusted rules service and caches the rules locally. During composition, the rules analyze the message and automatically apply security template(s) to the message. The security template(s) encrypt the body of the message, but not the headers or subject. The untrusted message service processes the header and delivers the message to the correct recipient. The hosted service cannot view the contents of the message body, and only intended recipients of the protected message can view the message body. Offline protection is supported, and the user can override protection by the rules.Type: GrantFiled: August 7, 2017Date of Patent: August 7, 2018Assignee: Microsoft Technology Licensing, LLCInventors: Edward T. Banti, Frank Byrum, Mayerber L. Carvalho Neto, James R. Knibb, Palash Biswas, Christopher Barnes
-
Patent number: 9917828Abstract: An email security system is described that allows users within different organizations to securely send email to one another. The email security system provides a federation server on the Internet or other unsecured network accessible by each of the organizations. Each organization provides identity information to the federation server. When a sender in one organization sends a message to a recipient in another organization, the federation server provides the sender's email server with a secure token for encrypting the message to provide secure delivery over the unsecured network.Type: GrantFiled: May 6, 2014Date of Patent: March 13, 2018Assignee: MICROSOFT TECHNOLOGY LICENSING, LLCInventors: Frank Byrum, Mayank Mehta, Chandresh Jain, Ladislau Conceicao, Brian Kress, Greg Gourevitch, Michael Nelte, Chris Barnes
-
Publication number: 20170359386Abstract: Architecture that employs encryption and storage of encryption keys to protect trusted client message content from an untrusted third-party hosted service. Each trusted user machine is configured to optionally apply security to messages. Rules determine when automatic protection is applied and the level of protection to apply. The trusted client automatically downloads the rules (or rules policies) from a trusted rules service and caches the rules locally. During composition, the rules analyze the message and automatically apply security template(s) to the message. The security template(s) encrypt the body of the message, but not the headers or subject. The untrusted message service processes the header and delivers the message to the correct recipient. The hosted service cannot view the contents of the message body, and only intended recipients of the protected message can view the message body. Offline protection is supported, and the user can override protection by the rules.Type: ApplicationFiled: August 7, 2017Publication date: December 14, 2017Applicant: Microsoft Technology Licensing, LLCInventors: Edward T. Banti, Frank Byrum, Mayerber L. Carvalho Neto, James R. Knibb, Palash Biswas, Christopher Barnes
-
Patent number: 9756080Abstract: Architecture that employs encryption and storage of encryption keys to protect trusted client message content from an untrusted third-party hosted service. Each trusted user machine is configured to optionally apply security to messages. Rules determine when automatic protection is applied and the level of protection to apply. The trusted client automatically downloads the rules (or rules policies) from a trusted rules service and caches the rules locally. During composition, the rules analyze the message and automatically apply security template(s) to the message. The security template(s) encrypt the body of the message, but not the headers or subject. The untrusted message service processes the header and delivers the message to the correct recipient. The hosted service cannot view the contents of the message body, and only intended recipients of the protected message can view the message body. Offline protection is supported, and the user can override protection by the rules.Type: GrantFiled: July 6, 2016Date of Patent: September 5, 2017Assignee: Microsoft Technology Licensing, LLCInventors: Edward T. Banti, Frank Byrum, Mayerber L. Carvalho Neto, James R. Knibb, Palash Biswas, Christopher Barnes
-
Publication number: 20160337405Abstract: Architecture that employs encryption and storage of encryption keys to protect trusted client message content from an untrusted third-party hosted service. Each trusted user machine is configured to optionally apply security to messages. Rules determine when automatic protection is applied and the level of protection to apply. The trusted client automatically downloads the rules (or rules policies) from a trusted rules service and caches the rules locally. During composition, the rules analyze the message and automatically apply security template(s) to the message. The security template(s) encrypt the body of the message, but not the headers or subject. The untrusted message service processes the header and delivers the message to the correct recipient. The hosted service cannot view the contents of the message body, and only intended recipients of the protected message can view the message body. Offline protection is supported, and the user can override protection by the rules.Type: ApplicationFiled: July 6, 2016Publication date: November 17, 2016Applicant: Microsoft Technology Licensing, LLCInventors: Edward T. Banti, Frank Byrum, Mayerber L. Carvalho Neto, James R. Knibb, Palash Biswas, Christopher Barnes
-
Patent number: 9418244Abstract: Architecture that employs encryption and storage of encryption keys to protect trusted client message content from an untrusted third-party hosted service. Each trusted user machine is configured to optionally apply security to messages. Rules determine when automatic protection is applied and the level of protection to apply. The trusted client automatically downloads the rules (or rules policies) from a trusted rules service and caches the rules locally. During composition, the rules analyze the message and automatically apply security template(s) to the message. The security template(s) encrypt the body of the message, but not the headers or subject. The untrusted message service processes the header and delivers the message to the correct recipient. The hosted service cannot view the contents of the message body, and only intended recipients of the protected message can view the message body. Offline protection is supported, and the user can override protection by the rules.Type: GrantFiled: January 29, 2015Date of Patent: August 16, 2016Assignee: MICROSOFT TECHNOLOGY LICENSING, LLCInventors: Edward T. Banti, Frank Byrum, Mayerber L. Carvalho Neto, James R. Knibb, Palash Biswas, Christopher Barnes
-
Publication number: 20150186675Abstract: Architecture that employs encryption and storage of encryption keys to protect trusted client message content from an untrusted third-party hosted service. Each trusted user machine is configured to optionally apply security to messages. Rules determine when automatic protection is applied and the level of protection to apply. The trusted client automatically downloads the rules (or rules policies) from a trusted rules service and caches the rules locally. During composition, the rules analyze the message and automatically apply security template(s) to the message. The security template(s) encrypt the body of the message, but not the headers or subject. The untrusted message service processes the header and delivers the message to the correct recipient. The hosted service cannot view the contents of the message body, and only intended recipients of the protected message can view the message body. Offline protection is supported, and the user can override protection by the rules.Type: ApplicationFiled: January 29, 2015Publication date: July 2, 2015Applicant: MICROSOFT TECHNOLOGY LICENSING, LLCInventors: Edward T. Banti, Frank Byrum, Mayerber L. Carvalho Neto, James R. Knibb, Palash Biswas, Christopher Barnes
-
Patent number: 8978091Abstract: Architecture that employs encryption and storage of encryption keys to protect trusted client message content from an untrusted third-party hosted service. Each trusted user machine is configured to optionally apply security to messages. Rules determine when automatic protection is applied and the level of protection to apply. The trusted client automatically downloads the rules (or rules policies) from a trusted rules service and caches the rules locally. During composition, the rules analyze the message and automatically apply security template(s) to the message. The security template(s) encrypt the body of the message, but not the headers or subject. The untrusted message service processes the header and delivers the message to the correct recipient. The hosted service cannot view the contents of the message body, and only intended recipients of the protected message can view the message body. Offline protection is supported, and the user can override protection by the rules.Type: GrantFiled: January 20, 2009Date of Patent: March 10, 2015Assignee: Microsoft Technology Licensing, LLCInventors: Edward T. Banti, Frank Byrum, Mayerber L. Carvalho Neto, James R. Knibb, Palash Biswas, Christopher Barnes
-
Publication number: 20140245000Abstract: An email security system is described that allows users within different organizations to securely send email to one another. The email security system provides a federation server on the Internet or other unsecured network accessible by each of the organizations. Each organization provides identity information to the federation server. When a sender in one organization sends a message to a recipient in another organization, the federation server provides the sender's email server with a secure token for encrypting the message to provide secure delivery over the unsecured network.Type: ApplicationFiled: May 6, 2014Publication date: August 28, 2014Applicant: MICROSOFT CORPORATIONInventors: Frank Byrum, Mayank Mehta, Chandresh Jain, Ladislau Conceicao, Brian Kress, Greg Gourevitch, Michael Nelte, Chris Barnes
-
Patent number: 8732452Abstract: An email security system is described that allows users within different organizations to securely send email to one another. The email security system provides a federation server on the Internet or other unsecured network accessible by each of the organizations. Each organization provides identity information to the federation server. When a sender in one organization sends a message to a recipient in another organization, the federation server provides the sender's email server with a secure token for encrypting the message to provide secure delivery over the unsecured network.Type: GrantFiled: June 23, 2008Date of Patent: May 20, 2014Assignee: Microsoft CorporationInventors: Frank Byrum, Mayank Mehta, Chandresh Jain, Ladislau Conceicao, Brian Kress, Greg Gourevitch, Michael Nelte, Chris Barnes
-
Patent number: 8621205Abstract: Certificate remoting and recovery may be provided. A computer may identify required security certificates and determine whether at least one required security certificate is not available. If the certificate is not available, the computer may identify a peer server and request the missing certificate from the peer server. The computer may also be operative to receive certificate management instructions from other computers.Type: GrantFiled: February 12, 2010Date of Patent: December 31, 2013Assignee: Microsoft CorporationInventors: Steven Quentin Hubbell, Frank Byrum, Ladislau Conceicao, Trevor William Freeman, Jeffrey Brian Kay, Matthias Leibmann
-
Publication number: 20110202759Abstract: Certificate remoting and recovery may be provided. A computer may identify required security certificates and determine whether at least one required security certificate is not available. If the certificate is not available, the computer may identify a peer server and request the missing certificate from the peer server. The computer may also be operative to receive certificate management instructions from other computers.Type: ApplicationFiled: February 12, 2010Publication date: August 18, 2011Applicant: MICROSOFT CORPORATIONInventors: STEVEN QUENTIN HUBBELL, FRANK BYRUM, LADISLAU CONCEICAO, TREVOR WILLIAM FREEMAN, JEFFREY BRIAN KAY, MATTHIAS LEIBMANN
-
Publication number: 20100186062Abstract: Architecture that employs encryption and storage of encryption keys to protect trusted client message content from an untrusted third-party hosted service. Each trusted user machine is configured to optionally apply security to messages. Rules determine when automatic protection is applied and the level of protection to apply. The trusted client automatically downloads the rules (or rules policies) from a trusted rules service and caches the rules locally. During composition, the rules analyze the message and automatically apply security template(s) to the message. The security template(s) encrypt the body of the message, but not the headers or subject. The untrusted message service processes the header and delivers the message to the correct recipient. The hosted service cannot view the contents of the message body, and only intended recipients of the protected message can view the message body. Offline protection is supported, and the user can override protection by the rules.Type: ApplicationFiled: January 20, 2009Publication date: July 22, 2010Applicant: Microsoft CorporationInventors: Edward T. Banti, Frank Byrum, Mayerber L. Carvalho Neto, James R. Knibb, Palash Biswas, Christopher Barnes
-
Publication number: 20090319781Abstract: An email security system is described that allows users within different organizations to securely send email to one another. The email security system provides a federation server on the Internet or other unsecured network accessible by each of the organizations. Each organization provides identity information to the federation server. When a sender in one organization sends a message to a recipient in another organization, the federation server provides the sender's email server with a secure token for encrypting the message to provide secure delivery over the unsecured network.Type: ApplicationFiled: June 23, 2008Publication date: December 24, 2009Applicant: MICROSOFT CORPORATIONInventors: Frank Byrum, Mayank Mehta, Chandresh Jain, Ladislau Conceicao, Brian Kress, Greg Gourevitch, Michael Nelte, Chris Barnes
-
Patent number: 7631318Abstract: Systems and methods for providing digital rights management services are disclosed. Such a system includes a service program that provides a processing framework for performing a digital rights management service, such as publishing or licensing rights managed digital content. A plurality of plug-in components are provided, each of which performs a respective task associated with the digital rights management service. The plug-in components are integrated into the processing framework according to predefined sets of interface rules.Type: GrantFiled: June 28, 2002Date of Patent: December 8, 2009Assignee: Microsoft CorporationInventors: Scott C. Cottrille, Peter David Waxman, Vinay Krishnaswamy, Chandramouli Venkatesh, Attilla Narin, Gregory Kostal, Prashant Malik, Vladimir Yarmolenko, Frank Byrum, Thomas K. Lindeman
-
Patent number: 7523310Abstract: In a system for distributing and licensing rights-managed digital content, the way in which content is distributed and licensed can be affected by the trust relationships that are established between the various servers that participate in the system. In a typical system, a license server licenses content to particular identities, and an identity server defines those identities by issuing certificates for those identities. The license server issues licenses to identities that have been issued by trusted identity servers. Also, the license server can issue a license on behalf of any entity whose private key it holds. Thus, in one embodiment, the universe of people to whom the license server can issue licenses can be expanded by adding new identity servers to the list of trusted identity servers. In another embodiment, exceptions to the general trust of an identity server can be carved out by creating an exclusion list, which excludes particular identity certificate (e.g.Type: GrantFiled: June 28, 2002Date of Patent: April 21, 2009Assignee: Microsoft CorporationInventors: Attilla Narin, Peter David Waxman, Thomas K. Lindeman, Frank Byrum
-
Publication number: 20060123025Abstract: A digital rights management system for the distribution, protection and use of electronic content. The system includes a client architecture which receives content, where the content is preferably protected by encryption and may include a license and individualization features. Content is protected at several levels, including: no protection; source-sealed; individually-sealed (or “inscribed”); source-signed; and fully-individualized (or “owner exclusive”). The client also includes and/or receives components which permit the access and protection of the encrypted content, as well as components that allow content to be provided to the client in a form that is individualized for the client. In some cases, access to the content will be governed by a rights construct defined in the license bound to the content.Type: ApplicationFiled: January 25, 2006Publication date: June 8, 2006Applicant: Microsoft CorporationInventors: Marco DeMello, Attila Narin, Venkateshaiah Setty, Pavel Zeman, Vinay Krishnaswamy, John Manferdelli, Frank Byrum, Leroy Keely, Yoram Yaacovi, Jeffrey Alger
-
Publication number: 20050097057Abstract: A digital rights management system for the distribution, protection and use of electronic content. The system includes a client architecture which receives content, where the content is preferably protected by encryption and may include a license and individualization features. Content is protected at several levels, including: no protection; source-sealed; individually-sealed (or “inscribed”); source-signed; and fully-individualized (or “owner exclusive”). The client also includes and/or receives components which permit the access and protection of the encrypted content, as well as components that allow content to be provided to the client in a form that is individualized for the client. In some cases, access to the content will be governed by a rights construct defined in the license bound to the content.Type: ApplicationFiled: November 10, 2004Publication date: May 5, 2005Applicant: Microsoft CorporationInventors: Marco DeMello, Attila Narin, Venkateshaiah Setty, Pavel Zeman, Vinay Krishnaswamy, John Manferdelli, Frank Byrum, Leroy Keely, Yoram Yaacovi, Jeffrey Alger
-
Publication number: 20050097056Abstract: A digital rights management system for the distribution, protection and use of electronic content. The system includes a client architecture which receives content, where the content is preferably protected by encryption and may include a license and individualization features. Content is protected at several levels, including: no protection; source-sealed; individually-sealed (or “inscribed”); source-signed; and fully-individualized (or “owner exclusive”). The client also includes and/or receives components which permit the access and protection of the encrypted content, as well as components that allow content to be provided to the client in a form that is individualized for the client. In some cases, access to the content will be governed by a rights construct defined in the license bound to the content.Type: ApplicationFiled: November 9, 2004Publication date: May 5, 2005Applicant: Microsoft CorporationInventors: Marco DeMello, Attila Narin, Venkateshaiah Setty, Pavel Zeman, Vinay Krishnaswamy, John Manferdelli, Frank Byrum, Leroy Keely, Yoram Yaacovi, Jeffrey Alger