WO2008154835A1 - Procédé de filtrage du courrier électronique et serveur de courrier électronique - Google Patents
Procédé de filtrage du courrier électronique et serveur de courrier électronique Download PDFInfo
- Publication number
- WO2008154835A1 WO2008154835A1 PCT/CN2008/071199 CN2008071199W WO2008154835A1 WO 2008154835 A1 WO2008154835 A1 WO 2008154835A1 CN 2008071199 W CN2008071199 W CN 2008071199W WO 2008154835 A1 WO2008154835 A1 WO 2008154835A1
- Authority
- WO
- WIPO (PCT)
- Prior art keywords
- whitelist
- address
- index
- data
- Prior art date
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
- H04L63/0227—Filtering policies
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L51/00—User-to-user messaging in packet-switching networks, transmitted according to store-and-forward or real-time protocols, e.g. e-mail
- H04L51/21—Monitoring or handling of messages
- H04L51/212—Monitoring or handling of messages using filtering or selective blocking
Definitions
- Email filtering method device and email server
- the present invention belongs to the field of computer networks, and in particular, to a method for filtering an email, a filtering device for an email, and an email server.
- Filter is a common anti-spam technology, such as anti-spam plug-in on the mail server, anti-spam gateway, anti-spam function on the client, etc., mainly used to identify and process spam at the mail receiving end. , including keyword filtering, black and white lists, hash (Hash) technology, etc.
- the mail server before the sender establishes an IP connection, the mail server first performs IP address filtering to check whether the sender's IP address has been disabled by the system, and if it is disabled, directly disconnects. If not prohibited, receive the mail. After the mail is received, check the recipient's white list to check whether the sender's email address is in the whitelist. If it is in the whitelist, it will not be checked for spam and sent directly to the recipient's mailbox. In this way, because the mail server performs IP address filtering before the sender establishes an IP connection, it is easy to cause the mail in the user white list to be intercepted by mistake, which affects the normal communication of the user.
- the embodiment of the invention provides a method for filtering an email, a filtering device for an email, and an email server, so as to solve the problem of IP address filtering before the sender establishes an IP connection, which may cause the email in the whitelist of the user to be intercepted by mistake. problem.
- an embodiment of the present invention provides a method for filtering an email, where the method includes the following steps: Obtain the sender address information and recipient address information of the mail;
- An embodiment of the present invention provides a filtering device for an email, where the device includes:
- An obtaining unit configured to obtain sender address information and recipient address information of the mail; and a query unit, configured to query the recipient address information when determining that the IP address in the sender address information is prohibited Corresponding white list, and send the query result;
- a whitelist filtering unit configured to filter the email when the email address in the sender address information sent by the query unit is not in the whitelist.
- the embodiment of the invention further provides a filtering device for an email, the device comprising: a forbidden IP address database, configured to store IP address data that is prohibited from being connected;
- a whitelist database for storing email address data that the user is allowed to receive
- An IP address filtering unit configured to obtain sender address information and recipient address information of the mail, and perform IP address filtering on the mail according to the IP address in the sender address information;
- the whitelist filtering unit is configured to: when the IP address of the email fails to be filtered, query the whitelist corresponding to the recipient address information according to the email address in the sender address information, and perform a whitelist check on the email .
- the embodiment of the present invention further provides an email server, wherein the server includes an email filtering device, and the email filtering device includes:
- An obtaining unit configured to obtain sender address information and recipient address information of the mail; and a query unit, configured to query the recipient address information when determining that the IP address in the sender address information is prohibited Corresponding white list, and send the query result;
- a whitelist filtering unit configured to filter the email when the email address in the sender address information sent by the query unit is not in the whitelist.
- the embodiment of the present invention performs IP address filtering after the sender establishes an IP connection, and performs whitelist check on the mail that has not passed the IP filtering, thereby preventing the mail in the user white list from being intercepted by mistake.
- the spam will be processed without affecting the user's normal communication.
- FIG. 1 is a flowchart of an implementation of a method for filtering an email according to an embodiment of the present invention
- FIG. 2 is a structural diagram of an email filtering apparatus according to an embodiment of the present invention.
- FIG. 3 is another structural diagram of an email filtering apparatus according to an embodiment of the present invention.
- the IP address is filtered after the sender and the receiver establish an IP connection, and the whitelist check is performed on the mail that has not been filtered by the IP address, so that the mail in the user white list can be prevented from being intercepted by mistake, and the impact is avoided.
- User's normal communication User's normal communication.
- FIG. 1 is a flowchart of implementing an email filtering method according to an embodiment of the present invention. the details are as follows:
- step S101 after the sender establishes an IP connection, the mail server obtains the sender address information and the recipient address information, and the sender address information includes the sender's IP address and the email address thereof;
- step S102 it is checked whether the sender's IP address is prohibited, and if so, step S103 is performed, otherwise, step S105 is performed;
- step S103 the whitelist corresponding to the recipient address information is queried according to the address information of the recipient, and the trusted email address data that is allowed to be received is recorded in the whitelist;
- the whitelist may be set by the recipient, It can be set automatically by the system, the same below, and will not be mentioned here.
- the mail address data in the user white list is stored in a two-stage buffer mode.
- the mail address data in the user white list is divided into memory high speed index data, disk secondary index data, and all white list address data.
- the high-speed index data of the memory is stored in the memory of the mail server, and the whitelist index of the user is stored by using the user identifier as a keyword, and one user can set one or more whitelists.
- the disk secondary index data is stored in a disk such as a hard disk of the mail server, and the user's whitelist index is used as a key to store the latest mail address data that the user is allowed to receive according to a certain record length, according to the user's access time and access frequency. You can update the secondary index data of the disk periodically or irregularly, add new email address data, or delete it. Email address data that is frequently communicated.
- the whitelist address data the email address data in all the whitelists of the user is stored in the whitelist index of the user.
- the mail server queries the recipient's whitelist, it first queries the memory high-speed index data according to the recipient address, and can obtain the recipient's whitelist index, and then query the disk secondary index data according to the obtained whitelist index, and check If the sender's email address is in the whitelist in the disk secondary index data, since the disk secondary index data stores the email address data of the most recent communication that the recipient is allowed to receive, the hit rate of the query can generally be guaranteed. If the disk secondary index data is still not found, query the whitelist address data again to check whether the sender's email address is in the recipient's whitelist.
- the white list set by the user may include one or more mails that the user is allowed to receive.
- Domain address data such as tencent.com, hotmail.com, etc., are sent from the domain address.
- step S104 it is checked whether the sender's mail address is in the recipient's white list, and if so, step S105 is performed, otherwise, step S106 is performed;
- step S105 the mail data is received, and the mail data is sent to the corresponding recipient mailbox;
- the method receives the mail data after the check, and sends the mail data to the corresponding recipient mailbox. If the check fails, step S106 is performed, and the specific implementation is not described again.
- step S106 the sender is sent a mail failure response message, or the mail is directly deleted or filtered.
- the present invention performs IP address filtering after the sender establishes an IP connection, and performs whitelist checking on the mail that has not been filtered by IP, thereby preventing the mail in the user white list from being intercepted by mistake and processing the spam. At the same time, it will not affect the normal communication of the user.
- FIG. 2 is a structural diagram of an e-mail filtering apparatus according to an embodiment of the present invention. For convenience of description, only a part related to an embodiment of the present invention is shown.
- the apparatus is a software unit and a hardware unit disposed in a mail server. Or a combination of hardware and software.
- the IP address database 21 is prohibited for storing IP address data that is prohibited from being connected by the system.
- the whitelist database 22 is configured to store a whitelist set by the user, and the whitelist stores email address data that the user is allowed to receive.
- the white list of the user is stored in a two-level index buffer manner.
- the memory high-speed index database 221 is stored in the memory of the mail server and is used to store the user's whitelist index data with the user identifier as a key.
- the disk secondary index database 222 is stored in the disk of the mail server and is used to store the mail address data of the most recent communication that the user is allowed to receive with the user's whitelist index as a key word.
- the whitelist address database 223 is configured to store email address data in all whitelists of the user by using a whitelist index of the user as a keyword.
- the user can set one or more mail domain address data in the white list. Messages from this domain address are allowed to be received.
- the IP address filtering unit 23 obtains the sender address information and the recipient address information of the mail, queries the forbidden IP address database 21 according to the sender's IP address, and performs an IP address for the mail. Filter to check if the sender's IP address is blocked by the system.
- the whitelist filtering unit 24 queries the whitelist database 22, and performs whitelist checking on the unfiltered mails filtered by the IP address filtering unit 23.
- the whitelist index query unit 241 queries the memory high speed index database 221 according to the recipient address information to obtain a whitelist index of the recipient.
- the disk secondary index query unit 242 queries the disk secondary index database 222 according to the obtained whitelist index to check whether the sender's mail address is in the white list in the disk secondary index data.
- the all-white list query unit 243 queries the all-white list address database 223 to check whether the sender's mail address is in the recipient's all white. Inside the list. Messages that are checked by the whitelist are sent by the mail server to the corresponding recipient's mailbox.
- the embodiment of the present invention further provides a filtering device for an email, which is shown in FIG. 3, and includes: an obtaining unit 31, a querying unit 32, and a whitelist filtering unit 33.
- the obtaining unit 31 is configured to obtain sender address information and recipient address information of the mail;
- the query unit 32 is configured to: when determining that the IP address in the sender address information is prohibited a whitelist corresponding to the recipient address information, and sending a query result;
- the whitelist filtering unit 33 configured to When the email address in the sender address information sent by the query unit 32 is not in the whitelist, the email is filtered.
- the device further includes: a whitelist database 34, configured to pre-store the email address data in the whitelist, and the manner of storing includes a two-level index buffering manner.
- the whitelist database 34 includes: a memory high speed index database 341, a disk secondary index database 342, and an all whitelist address database 343.
- the memory high speed index database 341 is configured to store a user's whitelist index with a user identifier as a key.
- the disk secondary index database 342 is configured to store, by using the whitelist index data of the user, a mail address data of a recent communication that the user is allowed to receive; the all whitelist address database 343 is used to The whitelist index data of the user stores the email address data in all the whitelists of the user.
- the query unit 32 includes: a whitelist index query unit 321, a disk secondary index query unit 322, and an all whitelist query unit 323, wherein the whitelist index query unit 321 is configured to query according to the recipient address information.
- the memory high-speed index database obtains a whitelist index of the recipient; the disk secondary index query unit 322 is configured to query the disk secondary index according to the whitelist index queried by the whitelist index query unit 321.
- the whitelist query unit 323, configured to receive the disk 2
- the level index query unit 322 determines that the sender's email address is not in the white list in the disk secondary index database, queries the entire whitelist address database, and determines whether the sender's email address is received. All whitelisted people.
- the embodiment of the present invention further provides an email server, where the email server includes a filtering device for the email, and the filtering device of the email includes: an obtaining unit, a query unit, and a whitelist filtering unit.
- the email server includes a filtering device for the email
- the filtering device of the email includes: an obtaining unit, a query unit, and a whitelist filtering unit.
- the IP address is filtered, and the whitelist check is performed on the mail that has not been filtered by the IP, so that the mail in the whitelist of the user is prevented from being intercepted by mistake, and the spam is processed simultaneously. Does not affect the normal communication of the user.
- the mail address data in the user white list is stored by the two-level index buffering method, so that the query efficiency of the mail address data can be improved.
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Hardware Design (AREA)
- Computer Security & Cryptography (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Information Transfer Between Computers (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CNA2007100749706A CN101150535A (zh) | 2007-06-15 | 2007-06-15 | 一种电子邮件的过滤方法、装置及设备 |
CN200710074970.6 | 2007-06-15 |
Publications (1)
Publication Number | Publication Date |
---|---|
WO2008154835A1 true WO2008154835A1 (fr) | 2008-12-24 |
Family
ID=39250883
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
PCT/CN2008/071199 WO2008154835A1 (fr) | 2007-06-15 | 2008-06-05 | Procédé de filtrage du courrier électronique et serveur de courrier électronique |
Country Status (2)
Country | Link |
---|---|
CN (1) | CN101150535A (fr) |
WO (1) | WO2008154835A1 (fr) |
Cited By (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN102045310A (zh) * | 2009-10-14 | 2011-05-04 | 上海可鲁系统软件有限公司 | 一种工业互联网入侵检测和防御方法及其装置 |
CN110430118A (zh) * | 2019-06-19 | 2019-11-08 | 平安银行股份有限公司 | 账单邮件管理方法、装置、计算机设备及计算机可读存储介质 |
Families Citing this family (15)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101150535A (zh) * | 2007-06-15 | 2008-03-26 | 腾讯科技(深圳)有限公司 | 一种电子邮件的过滤方法、装置及设备 |
US8554141B2 (en) | 2010-06-24 | 2013-10-08 | Broadcom Corporation | Method and system for multi-stage device filtering in a bluetooth low energy device |
CN103179024B (zh) * | 2013-03-18 | 2016-01-20 | 北京二六三企业通信有限公司 | 邮件过滤方法及装置 |
CN103942282B (zh) * | 2014-04-02 | 2018-01-02 | 新浪网技术(中国)有限公司 | 一种样本数据获取方法、装置及系统 |
CN106170945B (zh) * | 2014-08-04 | 2019-10-22 | 华为技术有限公司 | 通信拦截的方法、装置、服务器和用户设备 |
CN105847123A (zh) * | 2016-04-19 | 2016-08-10 | 乐视控股(北京)有限公司 | 垃圾邮件识别方法及装置 |
CN107800673A (zh) * | 2016-09-07 | 2018-03-13 | 武汉安天信息技术有限责任公司 | 一种白名单的维护方法及装置 |
CN109714242A (zh) * | 2017-10-25 | 2019-05-03 | 北京二六三企业通信有限公司 | 垃圾邮件的识别方法和装置 |
CN108664640A (zh) * | 2018-05-16 | 2018-10-16 | 苏州达家迎信息技术有限公司 | 信息处理方法、存储介质和终端设备 |
CN109376998B (zh) * | 2018-09-20 | 2024-02-06 | 平安科技(深圳)有限公司 | 绩效数据管理方法、装置、计算机设备及存储介质 |
CN109471974A (zh) * | 2018-11-02 | 2019-03-15 | 北京字节跳动网络技术有限公司 | 过滤第三方网页广告的方法、装置、电子设备及存储介质 |
CN110417643B (zh) * | 2019-07-29 | 2021-10-08 | 世纪龙信息网络有限责任公司 | 邮件处理方法和装置 |
CN112311933B (zh) * | 2020-10-27 | 2021-10-15 | 杭州天宽科技有限公司 | 敏感信息屏蔽方法及系统 |
CN114070644B (zh) * | 2021-11-26 | 2024-04-02 | 天翼数字生活科技有限公司 | 一种垃圾邮件拦截方法、装置、电子设备及存储介质 |
CN114679426B (zh) * | 2022-05-27 | 2022-09-02 | 太平金融科技服务(上海)有限公司深圳分公司 | 邮件拦截方法、装置、设备及存储介质 |
Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN1547143A (zh) * | 2003-12-03 | 2004-11-17 | 勇 陈 | 防垃圾邮件的方法 |
CN1738447A (zh) * | 2004-08-17 | 2006-02-22 | 朗迅科技公司 | 移动通信设备垃圾邮件的过滤 |
US20060168033A1 (en) * | 2004-12-21 | 2006-07-27 | Lucent Technologies, Inc. | Spam white list |
CN101150535A (zh) * | 2007-06-15 | 2008-03-26 | 腾讯科技(深圳)有限公司 | 一种电子邮件的过滤方法、装置及设备 |
-
2007
- 2007-06-15 CN CNA2007100749706A patent/CN101150535A/zh active Pending
-
2008
- 2008-06-05 WO PCT/CN2008/071199 patent/WO2008154835A1/fr active Application Filing
Patent Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN1547143A (zh) * | 2003-12-03 | 2004-11-17 | 勇 陈 | 防垃圾邮件的方法 |
CN1738447A (zh) * | 2004-08-17 | 2006-02-22 | 朗迅科技公司 | 移动通信设备垃圾邮件的过滤 |
US20060168033A1 (en) * | 2004-12-21 | 2006-07-27 | Lucent Technologies, Inc. | Spam white list |
CN101150535A (zh) * | 2007-06-15 | 2008-03-26 | 腾讯科技(深圳)有限公司 | 一种电子邮件的过滤方法、装置及设备 |
Cited By (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN102045310A (zh) * | 2009-10-14 | 2011-05-04 | 上海可鲁系统软件有限公司 | 一种工业互联网入侵检测和防御方法及其装置 |
CN110430118A (zh) * | 2019-06-19 | 2019-11-08 | 平安银行股份有限公司 | 账单邮件管理方法、装置、计算机设备及计算机可读存储介质 |
CN110430118B (zh) * | 2019-06-19 | 2023-08-29 | 平安银行股份有限公司 | 账单邮件管理方法、装置、计算机设备及计算机可读存储介质 |
Also Published As
Publication number | Publication date |
---|---|
CN101150535A (zh) | 2008-03-26 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
WO2008154835A1 (fr) | Procédé de filtrage du courrier électronique et serveur de courrier électronique | |
US10699246B2 (en) | Probability based whitelist | |
US8849921B2 (en) | Method and apparatus for creating predictive filters for messages | |
US7299361B1 (en) | Remote e-mail scanning system and method | |
US7756930B2 (en) | Techniques for determining the reputation of a message sender | |
US8135779B2 (en) | Method, system, apparatus, and software product for filtering out spam more efficiently | |
US8566406B2 (en) | Filtering of electronic mail messages destined for an internal network | |
US10178060B2 (en) | Mitigating email SPAM attacks | |
KR101109817B1 (ko) | 이메일 메시지 인증 방법 및 장치 | |
WO2005112596A2 (fr) | Procede et systeme destines a fournir une adresse de courrier electronique jetable | |
EP1702443A1 (fr) | Systeme et procede de filtrage de messages de reseau | |
US8103627B1 (en) | Bounce attack prevention based on e-mail message tracking | |
JP2012511842A (ja) | 電子メッセージング統合エンジン | |
US8590002B1 (en) | System, method and computer program product for maintaining a confidentiality of data on a network | |
US8249560B2 (en) | Sending method, receiving method, and system for email transfer by short message | |
CA2484509C (fr) | Methode et systeme pour le filtrage de messages electroniques | |
US20090210500A1 (en) | System, computer program product and method of enabling internet service providers to synergistically identify and control spam e-mail | |
US7627635B1 (en) | Managing self-addressed electronic messages | |
WO2010127586A1 (fr) | Système de boîte de courriel ainsi que procédé de sortie et dispositif pour courriels de système correspondant | |
JP4322495B2 (ja) | 迷惑メール抑止装置、迷惑メール抑止方法、及び迷惑メール抑止プログラム | |
KR101043550B1 (ko) | 불필요하고 요청되지 않은 전자 메시지를 감소시키는 방법 | |
JP4185462B2 (ja) | メール装置 | |
JP2002330175A (ja) | メールサーバと電子メールサービスシステムおよび電子メール送受信制御方法ならびにそのプログラムと記録媒体 | |
JP2009188960A (ja) | 期限付きアドレス変換機能を有する電子メールサーバ | |
US20070180034A1 (en) | Method and system for filtering communication |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
DPE2 | Request for preliminary examination filed before expiration of 19th month from priority date (pct application filed from 20040101) | ||
121 | Ep: the epo has been informed by wipo that ep was designated in this application |
Ref document number: 08757610 Country of ref document: EP Kind code of ref document: A1 |
|
NENP | Non-entry into the national phase |
Ref country code: DE |
|
WWE | Wipo information: entry into national phase |
Ref document number: 7423/CHENP/2009 Country of ref document: IN |
|
32PN | Ep: public notification in the ep bulletin as address of the adressee cannot be established |
Free format text: NOTING OF LOSS OF RIGHTS PURSUANT TO RULE 112(1) EPC OF 220410 |
|
122 | Ep: pct application non-entry in european phase |
Ref document number: 08757610 Country of ref document: EP Kind code of ref document: A1 |