RU2679205C1 - Method for saving information to confirm the e-mail message sent - Google Patents

Abstract

FIELD: data processing and transmission.SUBSTANCE: technical result is achieved by sending an electronic message using the SMTP protocol from the mail relay; generating a second hash code of the said message using the sender's address, the recipient's address and the content or part of the contents of the said message received by the said mail relay, using said or another hash function; storing in a database record or verifying the presence of said second hash code in said database; storing in said electronic digital signature database data containing said second hash code.EFFECT: technical result consists in increasing the level of protection against unauthorized recovery of an e-mail message according to the information for confirming the message sent.8 cl, 1 dwg

Description

FIELD OF THE INVENTION

The present invention relates primarily to data transmission techniques and can be used to confirm that an email message has been sent.

State of the art

Most widely in the world, Simple Mail Transfer Protocol or SMTP (RFC 5321) is used to send e-mail messages between e-mail servers. Sometimes an email user needs to prove (for example, for legally relevant actions) that certain information was sent to him at a certain time. In principle, such information may be obtained from an email service provider. But often the provider does not store such information, and in addition, such procedures require the involvement of the provider's staff and are therefore expensive.

In addition to SMTP-based email systems are known that use blockchain technology, for example, Cryptamail (www.cryptamail.com). Such systems securely store all e-mail transactions and confirming the sending of a message is not a problem, but such systems are not compatible with SMTP.

SUMMARY OF THE INVENTION

Thus, it is an object of the present invention to provide a method for storing information for confirming the sending of an e-mail message, which, using the SMTP protocol for transmitting e-mail messages, can confirm the sending of the e-mail message with a high degree of reliability and substantially complicates the unauthorized recovery of the electronic message information from the above mail and change of the mentioned information after its storage.

To achieve the specified technical result, a method of storing information for confirming the sending of an email message is proposed, which consists in receiving an electronic message; using the address of the sender, at least one address of the recipient and the content or part of the content of the message using the public hash function generate the hash code of the message; the hash code is stored in the database record; storing in said database an electronic digital signature of data containing at least said hash code; characterized in that they transmit said electronic message to a mail relay; from the mail relay transmit an electronic message using the SMTP protocol; using the sender address, at least one recipient address and the content or part of the content of the message received by the mail relay, using the mentioned or other hash function form the second hash code of the message; a second hash code is stored in the database record or a second hash code is checked for in the database; store in the database an electronic digital signature of data containing at least a second hash code.

Additionally, for an e-mail message, information about the time of sending the message and / or the size of the message can be recorded in the database.

In order to increase the reliability of the information for confirming the sending of an e-mail message, it is possible to receive the mentioned message transmitted via SMTP; using the sender address, at least one recipient address and the content or part of the content of the message received via SMTP, using the above or another hash function, you can generate a third hash code of the message; then you can save the third hash code in the database record or check the availability of the third hash code in the database; and save in the database an electronic digital signature of data containing at least a third hash code.

In another embodiment, in order to increase the reliability of information when generating an electronic digital signature, one electronic signature or a part of the electronic signature of a record previously recorded in the database can be added to the data for this digital signature.

In this case, the database can be blockchain, or the database can be relational or object.

Finally, the hash code and the second hash code of the message with their respective EDSs can be read publicly.

Brief Description of the Drawings

In FIG. 1 shows a general diagram of a system that implements the method of the present invention.

DETAILED DESCRIPTION OF THE INVENTION

The method of the present invention can be implemented in several ways, which, however, are carried out in a similar way. In FIG. 1 is a typical system diagram that implements a method for storing information to confirm sending an email message. The mail server 1 receives an e-mail message from the source of the electronic message 2. Moreover, the method of generating and transmitting the electronic message from the source 2 to the server 1 can be different. For example, through a mail client such as Thunderbird using the SMTP protocol. Either the system user generates an electronic message through a browser on the Web server, and the Web server sends the electronic message to mail server 1 in the general case in any format understood by mail server 1. Or, source 2 can be a corporate mail server, for example, Microsoft Exchange.

Mail server 1 (equipped with an additional hashing function) receives an electronic message and, based on the e-mail addresses of the sender, recipient (or recipients, if there are several addresses) and the entire contents of the message (or part of the contents of the message, for example, only the text part), receives hash code. That is, it converts an array of input data into a fixed-length bit string using a specific algorithm using a hash function (or a cryptographic hash function). At the same time, the hash function (conversion algorithm) is public and reproducible. By the contents of the letter we mean both the text of the letter and all attached files. It is clear that with a relatively small hash code it is very difficult, and more often impossible, to recover the full content of an electronic message. The contents of the message may be encrypted with a public key.

The mail server sends an e-mail message to another mail server 3 (the recipient mail server) via SMTP via mail relay 5. After sending the message to the recipient server 3, the mail server 1 writes the mentioned hash to one of the blocks of the system blockchain (which is a variant of the distributed database) 4 -the code. In a block, which is a special case of a record in a database, there can be only one hash code, or several hash codes for different messages. Due to the properties of the blockchain technology, changing the information in the block will be very difficult, because the blocks are signed with an electronic digital signature (EDS). In addition, if an electronic signature is used to create an electronic signature from a previously created electronic unit, an associated chain of blocks is formed in which it is difficult to change the content of one without changing the content of the others. If there will be a sufficient number of independent nodes in the blockchain 4 system, then a change is almost impossible.

In principle, if the time stamp line is used in the calculation of the hash code, then it is sufficient to include only the hash code in the system block 4. But for the convenience of comparing the hash code and the corresponding message in system 4, you can also include the sending time in the block (for example, the number of seconds / milliseconds from 01/01/1970). Obviously, the hash codes with a large number of messages will be repeated. But the probability of the appearance of two identical hash codes in the blockchain system 4 at close instants of time is practically zero.

To verify the fact of message transmission, a mail relay 5 has been added to the method of the present invention. In this configuration, the mail server 1 sends a message to the mail relay 5. Relay 5 checks for the presence of a record in the blockchain system with the corresponding hash code (time and / or size). If available, it transmits a message to the server of the recipient 3 and makes an appropriate entry in the blockchain system 4. If not, it discards the message as spam.

If an e-mail user needs confirmation of sending a message, then, knowing the hash function algorithm, he can independently obtain the hash of his message sent once by writing his own program, or receive a hash code using the corresponding web service, presented, for example, system 4 support infrastructure and mail server provider 1. If the message was encrypted with the public key during sending, then encryption is applied to the message content before receiving the hash code.

The information system of blockchain 4 is in the public domain for reading (in any case, hash codes and digital signatures). The presence in system 4 of the corresponding hash code associated with the time the message was sent (either explicitly in the block using a hash code / time pair, or specified by the user based on the time the message was sent, stored in the user's mail client - time stamp line) confirms the sending of electronic Messages from a specific sender to a specific recipient at a specific time. Thus, the user can present the presence of a hash code in the blockchain 4 system that matches the hash code of a particular letter, for example, to forensic experts.

To increase the reliability of confirmation of sending, it is possible to store information on the size of the electronic message in the system unit 4, for example, the size of the message content or the total size of the content with the address length, which will complicate the theoretically possible selection of the message content for the existing hash code.

The blockchain system can be built on the basis of Ethereum or Bitcoin code. And server 1 can be implemented on the basis of an open mail server, for example, Zimbra or iRedMail, to which a hash code generator is added, for example, based on CityHash or algorithms based on GOST R 34.11-2012, and an interface for working with the blockchain platform.

In order to make the confirmation of sending an e-mail message more reliable, it makes sense to use an additional e-mail server, similar to server 1, capable of writing to the blockchain system 4 when an e-mail message is received. If the server of the recipient 3 is able to record the hash code of the received letter, then the appearance of another record in the blockchain system 4 with the same hash code (and close to the time of receipt of the send) prevents the possibility of entering the hash code into the system 4 by server 1 without actually sending the electronic messages. In principle, you can use different hash functions for servers 1 and 3. But both functions are public, and the user can apply the desired one, knowing which of the servers made the record.

In another embodiment, instead of blocking, you can use a database, for example, PostgreSQL or BigChainDB (based on MongoDB). In this case, mail servers 1 or 3 or relay 5 write the hash code in the database record field, which is created before or after the hash code is created. In another option, server 3 or relay 5 may not create a new record, but find in the database a record with the same hash code and the same sending time created by server 1. In addition to the hashcode field, the record (new and old) contains an EDS field (or two EDS fields), identifier (s) of one or several database records created earlier, or you can simply use the EDS of the previous record. The record may also contain a message transmission time field. It is also convenient to have fields for identifiers of the owner of the digital signature.

After the hash code is generated, the mail server or relay generates an EDS of the current database record based on the hash code of one or more EDS (or parts of these EDS) of the records previously recorded in the database, storing links to database records with such EDS in the corresponding fields . You can also use information from the time field and other recording fields. It is clear that if the owners of various digital signatures make entries in the database, it will be very difficult to change the contents of existing records in the database organized in a chain.

Thus, both with the use of blockchain technology and existing databases, using the SMTP protocol for sending e-mail messages, it is possible to implement a method of storing information that confirms the sending of an e-mail message with a high degree of reliability and significantly complicates the unauthorized recovery of the message information from the above e-mail and changing the mentioned information after its storage.

Although the present invention has been described with reference to specific embodiments, it will be apparent to those skilled in the art that these illustrative examples in which various modifications can be made do not limit the scope of the invention defined only by the appended claims.

Claims (17)

1. A method of storing information to confirm sending an e-mail message, which consists in the fact that: - receive an electronic message; - using the sender address, at least one recipient address and the content or part of the content of the message, using the public hash function generate the hash code of the message; - said hash code is stored in a database record; - save in said database an electronic digital signature of data containing at least said hash code; characterized in that: - transmit said electronic message to the mail relay; - from said mail relay, said electronic message is transmitted using the SMTP protocol; - using the sender address, at least one recipient address and the content or part of the contents of the message received by the said mail relay, using the said or other hash functions form a second hash code of the message; - said second hash code is stored in a database record or the presence of said second hash code is checked in said database; - save in said database an electronic digital signature of data containing at least said second hash code. 2. The method according to p. 1, characterized in that for said message, said information about the time of sending said message and / or the size of said message is recorded in said database. 3. The method according to p. 1, characterized in that they receive the message transmitted via SMTP; using the sender address, at least one recipient address and the content or part of the content of the message received via SMTP, using the said or another hash function form the third hash code of the message; said third hash code is stored in a database record or the presence of said third hash code is checked in said database; storing in said database an electronic digital signature of data containing at least said third hash code. 4. The method according to claim 1, characterized in that said data for an electronic digital signature contains at least one electronic signature or a part of the electronic signature of a record previously stored in said database. 5. The method according to p. 1, characterized in that the said database is a blockchain. 6. The method according to p. 1, characterized in that the said database is relational or object. 7. The method according to p. 1, characterized in that said hash code and said corresponding electronic digital signature are in the public domain for reading. 8. The method according to p. 1, characterized in that said second hash code and said corresponding electronic digital signature are in the public domain for reading.

Images