WO2008154835A1 - Procédé de filtrage du courrier électronique et serveur de courrier électronique - Google Patents

Procédé de filtrage du courrier électronique et serveur de courrier électronique Download PDF

Info

Publication number
WO2008154835A1
WO2008154835A1 PCT/CN2008/071199 CN2008071199W WO2008154835A1 WO 2008154835 A1 WO2008154835 A1 WO 2008154835A1 CN 2008071199 W CN2008071199 W CN 2008071199W WO 2008154835 A1 WO2008154835 A1 WO 2008154835A1
Authority
WO
WIPO (PCT)
Prior art keywords
whitelist
address
index
data
mail
Prior art date
Application number
PCT/CN2008/071199
Other languages
English (en)
Chinese (zh)
Inventor
Chen Wen
Original Assignee
Tencent Technology(Shenzhen)Company Limited
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Tencent Technology(Shenzhen)Company Limited filed Critical Tencent Technology(Shenzhen)Company Limited
Publication of WO2008154835A1 publication Critical patent/WO2008154835A1/fr

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/02Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
    • H04L63/0227Filtering policies
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L51/00User-to-user messaging in packet-switching networks, transmitted according to store-and-forward or real-time protocols, e.g. e-mail
    • H04L51/21Monitoring or handling of messages
    • H04L51/212Monitoring or handling of messages using filtering or selective blocking

Definitions

  • Email filtering method device and email server
  • the present invention belongs to the field of computer networks, and in particular, to a method for filtering an email, a filtering device for an email, and an email server.
  • Filter is a common anti-spam technology, such as anti-spam plug-in on the mail server, anti-spam gateway, anti-spam function on the client, etc., mainly used to identify and process spam at the mail receiving end. , including keyword filtering, black and white lists, hash (Hash) technology, etc.
  • the mail server before the sender establishes an IP connection, the mail server first performs IP address filtering to check whether the sender's IP address has been disabled by the system, and if it is disabled, directly disconnects. If not prohibited, receive the mail. After the mail is received, check the recipient's white list to check whether the sender's email address is in the whitelist. If it is in the whitelist, it will not be checked for spam and sent directly to the recipient's mailbox. In this way, because the mail server performs IP address filtering before the sender establishes an IP connection, it is easy to cause the mail in the user white list to be intercepted by mistake, which affects the normal communication of the user.
  • the embodiment of the invention provides a method for filtering an email, a filtering device for an email, and an email server, so as to solve the problem of IP address filtering before the sender establishes an IP connection, which may cause the email in the whitelist of the user to be intercepted by mistake. problem.
  • an embodiment of the present invention provides a method for filtering an email, where the method includes the following steps: Obtain the sender address information and recipient address information of the mail;
  • An embodiment of the present invention provides a filtering device for an email, where the device includes:
  • An obtaining unit configured to obtain sender address information and recipient address information of the mail; and a query unit, configured to query the recipient address information when determining that the IP address in the sender address information is prohibited Corresponding white list, and send the query result;
  • a whitelist filtering unit configured to filter the email when the email address in the sender address information sent by the query unit is not in the whitelist.
  • the embodiment of the invention further provides a filtering device for an email, the device comprising: a forbidden IP address database, configured to store IP address data that is prohibited from being connected;
  • a whitelist database for storing email address data that the user is allowed to receive
  • An IP address filtering unit configured to obtain sender address information and recipient address information of the mail, and perform IP address filtering on the mail according to the IP address in the sender address information;
  • the whitelist filtering unit is configured to: when the IP address of the email fails to be filtered, query the whitelist corresponding to the recipient address information according to the email address in the sender address information, and perform a whitelist check on the email .
  • the embodiment of the present invention further provides an email server, wherein the server includes an email filtering device, and the email filtering device includes:
  • An obtaining unit configured to obtain sender address information and recipient address information of the mail; and a query unit, configured to query the recipient address information when determining that the IP address in the sender address information is prohibited Corresponding white list, and send the query result;
  • a whitelist filtering unit configured to filter the email when the email address in the sender address information sent by the query unit is not in the whitelist.
  • the embodiment of the present invention performs IP address filtering after the sender establishes an IP connection, and performs whitelist check on the mail that has not passed the IP filtering, thereby preventing the mail in the user white list from being intercepted by mistake.
  • the spam will be processed without affecting the user's normal communication.
  • FIG. 1 is a flowchart of an implementation of a method for filtering an email according to an embodiment of the present invention
  • FIG. 2 is a structural diagram of an email filtering apparatus according to an embodiment of the present invention.
  • FIG. 3 is another structural diagram of an email filtering apparatus according to an embodiment of the present invention.
  • the IP address is filtered after the sender and the receiver establish an IP connection, and the whitelist check is performed on the mail that has not been filtered by the IP address, so that the mail in the user white list can be prevented from being intercepted by mistake, and the impact is avoided.
  • User's normal communication User's normal communication.
  • FIG. 1 is a flowchart of implementing an email filtering method according to an embodiment of the present invention. the details are as follows:
  • step S101 after the sender establishes an IP connection, the mail server obtains the sender address information and the recipient address information, and the sender address information includes the sender's IP address and the email address thereof;
  • step S102 it is checked whether the sender's IP address is prohibited, and if so, step S103 is performed, otherwise, step S105 is performed;
  • step S103 the whitelist corresponding to the recipient address information is queried according to the address information of the recipient, and the trusted email address data that is allowed to be received is recorded in the whitelist;
  • the whitelist may be set by the recipient, It can be set automatically by the system, the same below, and will not be mentioned here.
  • the mail address data in the user white list is stored in a two-stage buffer mode.
  • the mail address data in the user white list is divided into memory high speed index data, disk secondary index data, and all white list address data.
  • the high-speed index data of the memory is stored in the memory of the mail server, and the whitelist index of the user is stored by using the user identifier as a keyword, and one user can set one or more whitelists.
  • the disk secondary index data is stored in a disk such as a hard disk of the mail server, and the user's whitelist index is used as a key to store the latest mail address data that the user is allowed to receive according to a certain record length, according to the user's access time and access frequency. You can update the secondary index data of the disk periodically or irregularly, add new email address data, or delete it. Email address data that is frequently communicated.
  • the whitelist address data the email address data in all the whitelists of the user is stored in the whitelist index of the user.
  • the mail server queries the recipient's whitelist, it first queries the memory high-speed index data according to the recipient address, and can obtain the recipient's whitelist index, and then query the disk secondary index data according to the obtained whitelist index, and check If the sender's email address is in the whitelist in the disk secondary index data, since the disk secondary index data stores the email address data of the most recent communication that the recipient is allowed to receive, the hit rate of the query can generally be guaranteed. If the disk secondary index data is still not found, query the whitelist address data again to check whether the sender's email address is in the recipient's whitelist.
  • the white list set by the user may include one or more mails that the user is allowed to receive.
  • Domain address data such as tencent.com, hotmail.com, etc., are sent from the domain address.
  • step S104 it is checked whether the sender's mail address is in the recipient's white list, and if so, step S105 is performed, otherwise, step S106 is performed;
  • step S105 the mail data is received, and the mail data is sent to the corresponding recipient mailbox;
  • the method receives the mail data after the check, and sends the mail data to the corresponding recipient mailbox. If the check fails, step S106 is performed, and the specific implementation is not described again.
  • step S106 the sender is sent a mail failure response message, or the mail is directly deleted or filtered.
  • the present invention performs IP address filtering after the sender establishes an IP connection, and performs whitelist checking on the mail that has not been filtered by IP, thereby preventing the mail in the user white list from being intercepted by mistake and processing the spam. At the same time, it will not affect the normal communication of the user.
  • FIG. 2 is a structural diagram of an e-mail filtering apparatus according to an embodiment of the present invention. For convenience of description, only a part related to an embodiment of the present invention is shown.
  • the apparatus is a software unit and a hardware unit disposed in a mail server. Or a combination of hardware and software.
  • the IP address database 21 is prohibited for storing IP address data that is prohibited from being connected by the system.
  • the whitelist database 22 is configured to store a whitelist set by the user, and the whitelist stores email address data that the user is allowed to receive.
  • the white list of the user is stored in a two-level index buffer manner.
  • the memory high-speed index database 221 is stored in the memory of the mail server and is used to store the user's whitelist index data with the user identifier as a key.
  • the disk secondary index database 222 is stored in the disk of the mail server and is used to store the mail address data of the most recent communication that the user is allowed to receive with the user's whitelist index as a key word.
  • the whitelist address database 223 is configured to store email address data in all whitelists of the user by using a whitelist index of the user as a keyword.
  • the user can set one or more mail domain address data in the white list. Messages from this domain address are allowed to be received.
  • the IP address filtering unit 23 obtains the sender address information and the recipient address information of the mail, queries the forbidden IP address database 21 according to the sender's IP address, and performs an IP address for the mail. Filter to check if the sender's IP address is blocked by the system.
  • the whitelist filtering unit 24 queries the whitelist database 22, and performs whitelist checking on the unfiltered mails filtered by the IP address filtering unit 23.
  • the whitelist index query unit 241 queries the memory high speed index database 221 according to the recipient address information to obtain a whitelist index of the recipient.
  • the disk secondary index query unit 242 queries the disk secondary index database 222 according to the obtained whitelist index to check whether the sender's mail address is in the white list in the disk secondary index data.
  • the all-white list query unit 243 queries the all-white list address database 223 to check whether the sender's mail address is in the recipient's all white. Inside the list. Messages that are checked by the whitelist are sent by the mail server to the corresponding recipient's mailbox.
  • the embodiment of the present invention further provides a filtering device for an email, which is shown in FIG. 3, and includes: an obtaining unit 31, a querying unit 32, and a whitelist filtering unit 33.
  • the obtaining unit 31 is configured to obtain sender address information and recipient address information of the mail;
  • the query unit 32 is configured to: when determining that the IP address in the sender address information is prohibited a whitelist corresponding to the recipient address information, and sending a query result;
  • the whitelist filtering unit 33 configured to When the email address in the sender address information sent by the query unit 32 is not in the whitelist, the email is filtered.
  • the device further includes: a whitelist database 34, configured to pre-store the email address data in the whitelist, and the manner of storing includes a two-level index buffering manner.
  • the whitelist database 34 includes: a memory high speed index database 341, a disk secondary index database 342, and an all whitelist address database 343.
  • the memory high speed index database 341 is configured to store a user's whitelist index with a user identifier as a key.
  • the disk secondary index database 342 is configured to store, by using the whitelist index data of the user, a mail address data of a recent communication that the user is allowed to receive; the all whitelist address database 343 is used to The whitelist index data of the user stores the email address data in all the whitelists of the user.
  • the query unit 32 includes: a whitelist index query unit 321, a disk secondary index query unit 322, and an all whitelist query unit 323, wherein the whitelist index query unit 321 is configured to query according to the recipient address information.
  • the memory high-speed index database obtains a whitelist index of the recipient; the disk secondary index query unit 322 is configured to query the disk secondary index according to the whitelist index queried by the whitelist index query unit 321.
  • the whitelist query unit 323, configured to receive the disk 2
  • the level index query unit 322 determines that the sender's email address is not in the white list in the disk secondary index database, queries the entire whitelist address database, and determines whether the sender's email address is received. All whitelisted people.
  • the embodiment of the present invention further provides an email server, where the email server includes a filtering device for the email, and the filtering device of the email includes: an obtaining unit, a query unit, and a whitelist filtering unit.
  • the email server includes a filtering device for the email
  • the filtering device of the email includes: an obtaining unit, a query unit, and a whitelist filtering unit.
  • the IP address is filtered, and the whitelist check is performed on the mail that has not been filtered by the IP, so that the mail in the whitelist of the user is prevented from being intercepted by mistake, and the spam is processed simultaneously. Does not affect the normal communication of the user.
  • the mail address data in the user white list is stored by the two-level index buffering method, so that the query efficiency of the mail address data can be improved.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Hardware Design (AREA)
  • Computer Security & Cryptography (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Information Transfer Between Computers (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

La présente invention concerne un procédé de filtrage du courrier électronique, un dispositif de filtrage du courrier électronique et un serveur de courrier électronique. Le procédé implique l'obtention des informations d'adresse d'expéditeur et de destinataire ; si l'adresse IP dans lesdites informations d'adresse d'expéditeur se trouve dans la liste d'adresses interdites, la demande d'une liste blanche correspondant aux informations d'adresse de destinataire ; si l'adresse de courrier électronique dans les informations d'adresse d'expéditeur n'est pas dans la liste blanche, le filtrage dudit courrier électronique. Le dispositif de filtrage de courrier électronique comprend une unité d'obtention, une unité demanderesse et une unité de filtrage de la liste blanche et le serveur de courrier électronique comprend le dispositif de filtrage du courrier électronique.
PCT/CN2008/071199 2007-06-15 2008-06-05 Procédé de filtrage du courrier électronique et serveur de courrier électronique WO2008154835A1 (fr)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CNA2007100749706A CN101150535A (zh) 2007-06-15 2007-06-15 一种电子邮件的过滤方法、装置及设备
CN200710074970.6 2007-06-15

Publications (1)

Publication Number Publication Date
WO2008154835A1 true WO2008154835A1 (fr) 2008-12-24

Family

ID=39250883

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2008/071199 WO2008154835A1 (fr) 2007-06-15 2008-06-05 Procédé de filtrage du courrier électronique et serveur de courrier électronique

Country Status (2)

Country Link
CN (1) CN101150535A (fr)
WO (1) WO2008154835A1 (fr)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102045310A (zh) * 2009-10-14 2011-05-04 上海可鲁系统软件有限公司 一种工业互联网入侵检测和防御方法及其装置
CN110430118A (zh) * 2019-06-19 2019-11-08 平安银行股份有限公司 账单邮件管理方法、装置、计算机设备及计算机可读存储介质

Families Citing this family (15)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101150535A (zh) * 2007-06-15 2008-03-26 腾讯科技(深圳)有限公司 一种电子邮件的过滤方法、装置及设备
US8554141B2 (en) 2010-06-24 2013-10-08 Broadcom Corporation Method and system for multi-stage device filtering in a bluetooth low energy device
CN103179024B (zh) * 2013-03-18 2016-01-20 北京二六三企业通信有限公司 邮件过滤方法及装置
CN103942282B (zh) * 2014-04-02 2018-01-02 新浪网技术(中国)有限公司 一种样本数据获取方法、装置及系统
CN106170945B (zh) * 2014-08-04 2019-10-22 华为技术有限公司 通信拦截的方法、装置、服务器和用户设备
CN105847123A (zh) * 2016-04-19 2016-08-10 乐视控股(北京)有限公司 垃圾邮件识别方法及装置
CN107800673A (zh) * 2016-09-07 2018-03-13 武汉安天信息技术有限责任公司 一种白名单的维护方法及装置
CN109714242A (zh) * 2017-10-25 2019-05-03 北京二六三企业通信有限公司 垃圾邮件的识别方法和装置
CN108664640A (zh) * 2018-05-16 2018-10-16 苏州达家迎信息技术有限公司 信息处理方法、存储介质和终端设备
CN109376998B (zh) * 2018-09-20 2024-02-06 平安科技(深圳)有限公司 绩效数据管理方法、装置、计算机设备及存储介质
CN109471974A (zh) * 2018-11-02 2019-03-15 北京字节跳动网络技术有限公司 过滤第三方网页广告的方法、装置、电子设备及存储介质
CN110417643B (zh) * 2019-07-29 2021-10-08 世纪龙信息网络有限责任公司 邮件处理方法和装置
CN112311933B (zh) * 2020-10-27 2021-10-15 杭州天宽科技有限公司 敏感信息屏蔽方法及系统
CN114070644B (zh) * 2021-11-26 2024-04-02 天翼数字生活科技有限公司 一种垃圾邮件拦截方法、装置、电子设备及存储介质
CN114679426B (zh) * 2022-05-27 2022-09-02 太平金融科技服务(上海)有限公司深圳分公司 邮件拦截方法、装置、设备及存储介质

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1547143A (zh) * 2003-12-03 2004-11-17 勇 陈 防垃圾邮件的方法
CN1738447A (zh) * 2004-08-17 2006-02-22 朗迅科技公司 移动通信设备垃圾邮件的过滤
US20060168033A1 (en) * 2004-12-21 2006-07-27 Lucent Technologies, Inc. Spam white list
CN101150535A (zh) * 2007-06-15 2008-03-26 腾讯科技(深圳)有限公司 一种电子邮件的过滤方法、装置及设备

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1547143A (zh) * 2003-12-03 2004-11-17 勇 陈 防垃圾邮件的方法
CN1738447A (zh) * 2004-08-17 2006-02-22 朗迅科技公司 移动通信设备垃圾邮件的过滤
US20060168033A1 (en) * 2004-12-21 2006-07-27 Lucent Technologies, Inc. Spam white list
CN101150535A (zh) * 2007-06-15 2008-03-26 腾讯科技(深圳)有限公司 一种电子邮件的过滤方法、装置及设备

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102045310A (zh) * 2009-10-14 2011-05-04 上海可鲁系统软件有限公司 一种工业互联网入侵检测和防御方法及其装置
CN110430118A (zh) * 2019-06-19 2019-11-08 平安银行股份有限公司 账单邮件管理方法、装置、计算机设备及计算机可读存储介质
CN110430118B (zh) * 2019-06-19 2023-08-29 平安银行股份有限公司 账单邮件管理方法、装置、计算机设备及计算机可读存储介质

Also Published As

Publication number Publication date
CN101150535A (zh) 2008-03-26

Similar Documents

Publication Publication Date Title
WO2008154835A1 (fr) Procédé de filtrage du courrier électronique et serveur de courrier électronique
US10699246B2 (en) Probability based whitelist
US8849921B2 (en) Method and apparatus for creating predictive filters for messages
US7299361B1 (en) Remote e-mail scanning system and method
US7756930B2 (en) Techniques for determining the reputation of a message sender
US8135779B2 (en) Method, system, apparatus, and software product for filtering out spam more efficiently
US8566406B2 (en) Filtering of electronic mail messages destined for an internal network
US10178060B2 (en) Mitigating email SPAM attacks
KR101109817B1 (ko) 이메일 메시지 인증 방법 및 장치
WO2005112596A2 (fr) Procede et systeme destines a fournir une adresse de courrier electronique jetable
EP1702443A1 (fr) Systeme et procede de filtrage de messages de reseau
US8103627B1 (en) Bounce attack prevention based on e-mail message tracking
JP2012511842A (ja) 電子メッセージング統合エンジン
US8590002B1 (en) System, method and computer program product for maintaining a confidentiality of data on a network
US8249560B2 (en) Sending method, receiving method, and system for email transfer by short message
CA2484509C (fr) Methode et systeme pour le filtrage de messages electroniques
US20090210500A1 (en) System, computer program product and method of enabling internet service providers to synergistically identify and control spam e-mail
US7627635B1 (en) Managing self-addressed electronic messages
WO2010127586A1 (fr) Système de boîte de courriel ainsi que procédé de sortie et dispositif pour courriels de système correspondant
JP4322495B2 (ja) 迷惑メール抑止装置、迷惑メール抑止方法、及び迷惑メール抑止プログラム
KR101043550B1 (ko) 불필요하고 요청되지 않은 전자 메시지를 감소시키는 방법
JP4185462B2 (ja) メール装置
JP2002330175A (ja) メールサーバと電子メールサービスシステムおよび電子メール送受信制御方法ならびにそのプログラムと記録媒体
JP2009188960A (ja) 期限付きアドレス変換機能を有する電子メールサーバ
US20070180034A1 (en) Method and system for filtering communication

Legal Events

Date Code Title Description
DPE2 Request for preliminary examination filed before expiration of 19th month from priority date (pct application filed from 20040101)
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 08757610

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

WWE Wipo information: entry into national phase

Ref document number: 7423/CHENP/2009

Country of ref document: IN

32PN Ep: public notification in the ep bulletin as address of the adressee cannot be established

Free format text: NOTING OF LOSS OF RIGHTS PURSUANT TO RULE 112(1) EPC OF 220410

122 Ep: pct application non-entry in european phase

Ref document number: 08757610

Country of ref document: EP

Kind code of ref document: A1