Dynamically Controlling Access to Linked Content in Electronic Communications

§102 §103 §DP

Notice of Pre-AIA or AIA Status The present application, filed on or after March 16, 2013, is being examined under the first inventor to file provisions of the AIA . DETAILED ACTION Currently pending claims are 1 – 20. Double Patenting The nonstatutory double patenting rejection is based on a judicially created doctrine grounded in public policy (a policy reflected in the statute) so as to prevent the unjustified or improper timewise extension of the "right to exclude" granted by a patent and to prevent possible harassment by multiple assignees. See In re Goodman, 11 F.3d 1046, 29 USPQ2d 2010 (Fed. Cir. 1993); In re Longi, 759 F.2d 887, 225 USPQ 645 (Fed. Cir. 1985); In re Van Ornum, 686 F.2d 937, 214 USPQ 761 (CCPA 1982); In re Vogel, 422 F.2d 438, 164 USPQ 619 (CCPA 1970); and In re Thorington, 418 F.2d 528, 163 USPQ 644 (CCPA 1969). A timely filed terminal disclaimer in compliance with 37 CFR 1.321(c) may be used to overcome an actual or provisional rejection based on a nonstatutory double patenting ground provided the conflicting application or patent is shown to be commonly owned with this application. See 37 CFR 1.130(b). Effective January 1, 1994, a registered attorney or agent of record may sign a terminal disclaimer. A terminal disclaimer signed by the assignee must fully comply with 37 CFR 3.73(b). Claims 1 – 20 are rejected under the judicially created doctrine of obviousness-type double patenting as being unpatentable over claims 1 – 20 of U.S. Patent No. 11,468,185 and also claims 1 – 20 of U.S. Patent No. 12,111,941. Although the conflicting claims are not identical, they are not patentably distinct from each other – accordingly, because the listed claims of U.S. Patent virtually contain(s) every element of the listed claims of the instant application and thus anticipate the claim(s) of the instant application. Claim(s) of the instant application therefore is/are not patently distinct from the earlier patent claim(s) and as such is/are unpatentable over obvious-type double patenting. A later patent claim is not patentably distinct from an earlier patent claim if the later claim is obvious over, or anticipated by, the earlier claim. In re Longi, 759 F.2d at 896, 225 USPQ at 651 (affirming a holding of obviousness-type double patenting because the claims at issue were obvious over claims in four prior art patents); In re Berg, 140 F.3d at 1437, 46 USPQ2d at 1233 (Fed. Cir. 1998) (affirming a holding of obviousness type double patenting where a patent application claim to a genus is anticipated by a patent claim to a species within that genus). “ELI LILLY AND COMPANY v BARR LABORATORIES, INC., United States Court of Appeals for the Federal Circuit, ON PETITION FOR REHEARING EN BANC (DECIDED: May 30, 2001)”. In the event the determination of the status of the application as subject to AIA 35 U.S.C. 102 and 103 (or as subject to pre-AIA 35 U.S.C. 102 and 103) is incorrect, any correction of the statutory basis for the rejection will not be considered a new ground of rejection if the prior art relied upon, and the rationale supporting the rejection, would be the same under either status. Claim Rejections - 35 USC § 102 The following is a quotation of the appropriate paragraphs of 35 U.S.C. 102 that form the basis for the rejections under this section made in this Office action: A person shall be entitled to a patent unless – (a)(1) the claimed invention was patented, described in a printed publication, or in public use, on sale or otherwise available to the public before the effective filing date of the claimed invention. Claims 1 – 5, 7 – 11, 13 – 17, 19 & 20 are rejected under 35 U.S.C. 102(a)(1) as being anticipated by Petry et al. (U.S. Patent 2017/0180413). As per claim 1, 13 & 20, Petry teaches a protection computing platform, comprising: at least one hardware processor (Petry: Figure 2); a communication interface (Petry: Figure 2); and memory storing computer-readable instructions that, when executed by the at least one hardware processor, cause the computing platform to (Petry: Figure 2): receive, via the communication interface, from a first user computing device, a first request for a first uniform resource locator associated with a first email message, wherein the first request includes a request for an embedded link rewritten to point to the protection computing platform instead of a first resource corresponding to the first uniform resource locator (Petry: Figure 6 / E-610 & Para [0103], Para [0122] & Para [0128]: (a) requesting (surfing) from a user device to access web content from a URL associated with a selected hyperlink that opens an email attachment / file (Petry: Para [0122] Line 1 – 6), and (b) when the web content is determined by a secure analysis application to be potentially harmful (Petry: Para [0124] Line 1 – 5), the selected (requested) hyperlink can be replaced (rewritten) by a client agent of the secure analysis application with a new hyperlink to access the web content as, instead, rendered on a secure (insulated) web container (Petry: Para [0128] Line 4 – 11)); evaluate the first request for the first uniform resource locator associated with the first email message using one or more isolation criteria (Petry: see above & Para [0106], Para [0123] and Para [0055]: analyzing and evaluating whether the URL associated with the email message corresponding to a malicious (unsafe) site that meets the criteria for isolation – this is consistent with the disclosure of the instant specification (SPEC-PG.PUB: Para [0020] Line 3 – 6)); based on evaluating the first request for the first uniform resource locator associated with the first email message using the one or more isolation criteria, identify that the first request meets at least one isolation condition associated with the one or more isolation criteria (Petry: see above & Figure 4 / E-420, Para [0109], Para [0111] and Para [0055]: identifying whether the request meets an isolation condition by checking the associated risk level against a security threshold and using a secure web container for protection (see above)); and in response to identifying that the first request meets the at least one isolation condition associated with the one or more isolation criteria, initiate a browser mirroring session with the first user computing device to provide the first user computing device with limited access to a first resource corresponding to the first uniform resource locator associated with the first email message (Petry: see above & Figure 4 / E-420, Para [0110] / [0109] / [0111], Para [0124], Para [0114], Para [0055] and Para [0065] / [0096]: upon determining the access of the URL content as requested is potentially harmful and that meets the isolation condition, initializing a secure (insulated) web container to access the URL content from the web server that serves as a separate and secure proxy web browsing section (Para [0124] & [0055] / [0065]), which constitutes a browser mirroring session, as recited, such that the associated URL link is routed and re-directed to another protected platform (Petry: see above & Para [0106]) – this is consistent with the disclosure of the instant specification (SPEC-PG.PUB: Para [0039]: using an isolation server during a browser mirroring section), and providing limited access to the user device such as restricting downloading shared file(s), specifying a time period for which the data may be shared with another user while only allowing the user to view the content from a particular web server (Para [0065] & Para [0096]). As per claim 2 and 14, Petry teaches wherein the embedded link was rewritten by an email filtering engine hosted on the computing platform (Petry: see above & Para [0106]: routing and re-directing to another (protected) computing platform). As per claim 3 and 15, Petry teaches determining whether the first resource corresponding to the first uniform resource locator associated with the first email message is a file sharing site (Petry: see above & Para [0096]: a file sharing website). As per claim(s) 4 & 16, the claims contain(s) similar limitations to claim(s) 1 and thus is/are rejected with the same rationale. As per claim 5 and 17, Petry teaches determining whether the first resource corresponding to the first uniform resource locator associated with the first email message is a potentially malicious site comprises determining whether the first resource corresponding to the first uniform resource locator associated with the first email message is a potentially malicious site using a URL defense (UD) tool hosted on the computing platform (Petry: see above & Para [0106] Line 1 – 4: using an automated tool to determine whether the URL associated with the first email message is a potentially malicious). As per claim 7 and 19, Petry teaches cross-referencing a data table identifying specific resources to be opened using browser mirroring (Petry: see above & Para [0063]: providing a cross-reference of a list of data such as the containers, egress nodes, web servers associated with the identified resource (URL web content) to be stored at a cloud-based storage platform so as to enable the user to access the data). As per claim 8, Petry teaches to scan the first resource using a live analysis service that is configured to analyze information received from the first resource while a user of the first user computing device is accessing the first resource and return an indication of whether the first resource is safe or malicious (Petry: see above & Para [0065] Line 9 – 12: providing a live analysis service, wherein while the security scanning (i.e. analyzing whether the resource is safe or malicious (SPEC-PG.PUB: Para [0107]) is executed in a sandbox environment provided by the secure web container, the user is still allowed and enabled to view and interact with content from the web server). As per claim 9, Petry teaches scanning user-authenticated content received from the first resource after the user of the first user computing device is authenticated by the first resource (Petry: see above & Para [0097] Line 4 – 8: as the scanning (i.e. analyzing whether the resource is safe or malicious (SPEC-PG.PUB: Para [0107]) and data accessing (viewing the content by the user) can be activated simultaneously (see claim 8), the teaching of Petry to authenticate the user before accessing data also clearly renders an implication of the scanning can be performed after the user has been authenticated (Para [0097] Line 4 – 8)). As per claim 10, Petry teaches to receive, from the live analysis service, an indication that the first resource is safe; and in response to receiving the indication that the first resource is safe from the live analysis service, provide a user-selectable option to break out of isolation (Petry: see above & Para [0107]: upon determining the URL content is safe, the user is enabled to access the resource data via an unsecure browser (i.e. break-out the secure isolation requirements). As per claim 11, Petry teaches to receive, from the live analysis service, an indication that the first resource is malicious; and in response to receiving the indication that the first resource is malicious from the live analysis service, store data captured from the first resource (Petry: see above & Para [0065], Para [0141] & Para [0097] Line 4 – 8:: (a) providing a security service that allows data transcode to be executed in a sandbox for security analysis and meantime, still allows the user to view and interact with content from the web server – such a security service indeed constitutes as a live analysis service and (b) the data associated security measures can be appropriately saved (stored) in a storage mapping unit and as such (c) the scanning (i.e. analyzing whether the resource is safe or malicious (SPEC-PG.PUB: Para [0107]) and data accessing (viewing the content by the user) can be activated simultaneously). Claim Rejections - 35 USC § 103 The following is a quotation of 35 U.S.C. 103 which forms the basis for all obviousness rejections set forth in this Office action: A patent for a claimed invention may not be obtained, notwithstanding that the claimed invention is not identically disclosed as set forth in section 102 of this title, if the differences between the claimed invention and the prior art are such that the claimed invention as a whole would have been obvious before the effective filing date of the claimed invention to a person having ordinary skill in the art to which the claimed invention pertains. Patentability shall not be negated by the manner in which the invention was made. Claims 6 and 18 are rejected under 35 U.S.C.103 as being unpatentable over Petry et al. (U.S. Patent 2017/0180413), in view of Chen (U.S. Patent 8,544,090). As per claim 6 and 18, Chen (& Petry) teaches determining whether the first resource corresponding to the first uniform resource locator associated with the first email message is a file having a predetermined file extension (Chen: Abstract & Col. 1 Line 59 – Col. 2 Line 2: in response to determining that the target URL associated with an executable file extension (i.e. .exe), removing the presented URL from the display and indicating as not accessible by the user device accordingly). It would have been obvious to a person of ordinary skill in the art before the effective filing date of the claimed invention was made to propose the modification of determining whether the first resource corresponding to the first uniform resource locator associated with the first email message is a file having a predetermined file extension because Chen teaches to alternatively, effectively and securely removing the presented URL from the display and indicating as not accessible by the user device in response to determining that the target URL associated with an executable file extension (see above) within the Petry’s system of upon determining the access of the URL content as requested is potentially harmful and that meets the isolation condition, initializing a secure (insulated) web container to isolate the target URL with limited access to the URL content from the web server (see above). Claim 12 is rejected under 35 U.S.C.103 as being unpatentable over Petry et al. (U.S. Patent 2017/0180413), in view of Hulten (U.S. Patent 2007/0192855). As per claim 12, Hulten (& Petry) teaches that in response to receiving the indication that the first resource is malicious from the live analysis service, provide the data captured from the first resource to a machine learning engine to train one or more machine learning models to recognize other malicious resources (Hulten: Abstract & Para [0006], Para [0141] and Para [0091] – [0094]: in response to receiving a reported data source indicating that a site may be a phishing site, aggregating the reports and applying a predictive machine learning model to the captured data for preventing the malicious attacks). It would have been obvious to a person of ordinary skill in the art before the effective filing date of the claimed invention was made to propose the modification of providing the data captured from the first resource to a machine learning engine to train one or more machine learning models to recognize other malicious resources because Hulten teaches to alternatively, effectively and securely to aggregate the reports and apply a predictive machine learning model to the captured data for preventing the malicious attacks in response to receiving a reported data source indicating that a site may be a phishing site (see above) within the Petry’s system of upon determining the access of the URL content as requested is potentially harmful and that meets the isolation condition, initializing a secure (insulated) web container to isolate the target URL with limited access to the URL content from the web server (see above). Any inquiry concerning this communication or earlier communications from the examiner should be directed to LONGBIT CHAI whose telephone number is (571)272-3788. The examiner can normally be reached Monday - Friday 9:00am-5:00pm. Examiner interviews are available via telephone, in-person, and video conferencing using a USPTO supplied web-based collaboration tool. To schedule an interview, applicant is encouraged to use the USPTO Automated Interview Request (AIR) at http://www.uspto.gov/interviewpractice. If attempts to reach the examiner by telephone are unsuccessful, the examiner’s supervisor, Lynn D. Feild can be reached on 571-272-2092. The fax phone number for the organization where this application or proceeding is assigned is 571-273-8300. Information regarding the status of published or unpublished applications may be obtained from Patent Center. Unpublished application information in Patent Center is available to registered users. To file and manage patent submissions in Patent Center, visit: https://patentcenter.uspto.gov. Visit https://www.uspto.gov/patents/apply/patent-center for more information about Patent Center and https://www.uspto.gov/patents/docx for information about filing in DOCX format. For additional questions, contact the Electronic Business Center (EBC) at 866-217-9197 (toll-free). If you would like assistance from a USPTO Customer Service Representative, call 800-786-9199 (IN USA OR CANADA) or 571-272-1000. --------------------------------------------------- /Longbit Chai/ Longbit Chai E.E. Ph.D. Primary Examiner, Art Unit 2431 No. #2593 – 2025 ---------------------------------------------------