DCT

2:23-cv-00508

DataCloud Tech LLC v. Sophos Ltd

Log In
Key Events
Complaint
complaint

I. Executive Summary and Procedural Information

  • Parties & Counsel:
  • Case Identification: 2:23-cv-00508, E.D. Tex., 11/03/2023
  • Venue Allegations: Venue is alleged to be proper in the Eastern District of Texas because Defendant is a foreign entity that has committed acts of infringement in the District by offering its products and services to customers located there.
  • Core Dispute: Plaintiff alleges that Defendant’s cybersecurity products, including its Android application, public key management systems, website infrastructure, and firewall technology, infringe six patents related to data organization, file synchronization, anonymous network communication, remote file access, cross-platform program scheduling, and network communication through a virtual domain.
  • Technical Context: The patents-in-suit cover fundamental technologies in network security, data management, and distributed systems, which are core components of modern enterprise and consumer cybersecurity platforms.
  • Key Procedural History: The complaint alleges that Defendant was informed of Plaintiff's patent portfolio, including the patents-in-suit, via a letter dated December 13, 2022. This pre-suit notice may be used to support allegations of willful infringement, particularly for conduct occurring after this date.

Case Timeline

Date Event
2000-01-28 U.S. Patent No. 6,651,063 Priority Date
2000-04-04 U.S. Patent No. 7,209,959 Priority Date
2002-12-30 U.S. Patent No. 7,139,780 Priority Date
2003-11-18 U.S. Patent No. 6,651,063 Issues
2006-11-21 U.S. Patent No. 7,139,780 Issues
2007-03-13 U.S. Patent No. 8,370,457 Priority Date
2007-03-23 U.S. Patent No. 7,398,298 Priority Date
2007-04-24 U.S. Patent No. 7,209,959 Issues
2008-07-08 U.S. Patent No. 7,398,298 Issues
2008-12-10 U.S. Patent No. 8,156,499 Priority Date
2012-04-10 U.S. Patent No. 8,156,499 Issues
2013-02-05 U.S. Patent No. 8,370,457 Issues
2022-12-13 Plaintiff allegedly informs Defendant of patent portfolio
2023-11-03 Complaint Filed

II. Technology and Patent(s)-in-Suit Analysis

U.S. Patent No. 6,651,063, “Data Organization And Management System And Method,” Issued Nov. 18, 2003

  • The Invention Explained:
    • Problem Addressed: The patent addresses the difficulty businesses and consumers face in collecting and organizing information from various sources, such as product manuals, service updates, and solicitations, which are often discarded or misplaced. (’063 Patent, col. 1:15-40).
    • The Patented Solution: The invention proposes a system where information providers send data pre-categorized into "information packs" to a recipient's central "User Data Repository." (’063 Patent, Abstract; col. 2:38-44). Each pack includes identifiers for the provider and a generic category, allowing for automatic filing. (’063 Patent, col. 6:27-36). The user can then create custom categories and re-assign information, with the system potentially communicating these custom preferences back to the provider for future automatic filing. (’063 Patent, col. 3:7-12, 45-58).
    • Technical Importance: The technology aimed to shift the burden of initial data categorization from the end-user to the information provider, streamlining information management in an era of increasing digital communication. (’063 Patent, col. 2:5-11).
  • Key Claims at a Glance:
    • Independent Claim 4 Asserted (Compl. ¶23).
    • Essential elements of Claim 4 include:
      • Storing information in an information pack.
      • Associating the pack with a user destination address, a category identifier, and a provider identifier.
      • Communicating the pack to a user data repository.
      • Locating the pack in a repository location reserved for the category identifier.
      • Creating a custom location in the repository.
      • Placing the pack in the custom location and associating a custom category identifier with it.
      • Sending a custom category signal to a processing station associated with the repository.

U.S. Patent No. 7,139,780, “System And Method For Synchronizing Files In Multiple Nodes,” Issued Nov. 21, 2006

  • The Invention Explained:
    • Problem Addressed: The patent identifies the need for file synchronization across multiple local area networks (LANs), particularly in large enterprises with distributed branch offices, to maintain consistency when a file is updated in one location. (’780 Patent, col. 1:12-36). It notes that unneeded synchronization can create excessive network traffic. (’780 Patent, col. 2:54-61).
    • The Patented Solution: The invention describes a system with multiple "local nodes" and a "central node." Each local node has a file server and database, while the central node also has a central file server and a central database that "records all update information on copies of files in all the local file servers." (’780 Patent, col. 2:31-34; col. 4:26-30). When a file is updated on one local node, the system uploads the updated copy to the central file server as the "latest edition," and other local nodes can then download this latest edition as needed. (’780 Patent, col. 2:55-64).
    • Technical Importance: This architecture aims to provide a centralized method for managing file versions across a distributed environment, potentially reducing unnecessary peer-to-peer updates by creating a single source of truth for the latest file edition. (’780 Patent, col. 2:11-14).
  • Key Claims at a Glance:
    • Independent Claim 1 Asserted (Compl. ¶34).
    • Essential elements of Claim 1 include:
      • Storing one copy of each shared file.
      • Creating a first table in each local database to store information on local file copies.
      • Creating a second table in the central database to record all update information.
      • Updating a file copy in one of the local file servers.
      • Adding new update information to the second table.
      • Downloading the updated copy from the local server and uploading it to the central file server as the latest edition.
      • Determining if a file copy in another local server needs to be updated.
      • Downloading the latest edition from the central server to update the other local server if needed.

U.S. Patent No. 7,209,959, “Apparatus, System, And Method For Communicating To A Network Through A Virtual Domain Providing Anonymity To A Client Communicating On The Network,” Issued Apr. 24, 2007

  • Technology Synopsis: The patent describes a method for anonymizing a client's network activity. It uses a "deceiver," a "controller," and a "forwarder" to create a temporary, virtual session where neither the client nor the destination server is aware of the other's true IP address, with the forwarder acting as an intermediary. (Compl. ¶46; ’959 Patent, Abstract).
  • Asserted Claims: Independent Claim 1 is asserted. (Compl. ¶51).
  • Accused Features: The complaint accuses "Sophos Website Infrastructure," including its use of front-end server switches, firewalls, DNS, and routers to manage traffic for its various domains (e.g., sophos.com, support.sophos.com), of infringing the ’959 Patent. (Compl. ¶50, ¶52).

U.S. Patent No. 7,398,298, “Remote Access And Retrieval Of Electronic Files,” Issued Jul. 8, 2008

  • Technology Synopsis: The technology provides a method for remotely controlling data directory structures. It involves a server application that processes requests from users to manage data, with a "profile data store" containing information about user permissions and accessible directory structures. (Compl. ¶57; ’298 Patent, Abstract).
  • Asserted Claims: Independent Claim 13 is asserted. (Compl. ¶62).
  • Accused Features: The complaint accuses "Sophos Central for managing user roles and permissions," alleging that its dashboard acts as the remote management application and its SQL database serves as the profile data store to control user access to functions and data. (Compl. ¶61, ¶63).

U.S. Patent No. 8,156,499, “Methods, Systems And Articles Of Manufacture For Scheduling Execution Of Programs On Computers Having Different Operating Systems,” Issued Apr. 10, 2012

  • Technology Synopsis: The patent discloses a method for scheduling program execution across computers with different operating systems. A central scheduling computer receives a result from a first computer, and based on that result meeting a criterion, it schedules a second program to run on a second computer with a different operating system. (Compl. ¶68; ’499 Patent, Abstract).
  • Asserted Claims: Independent Claim 1 is asserted. (Compl. ¶73).
  • Accused Features: The complaint accuses "Sophos Central for scheduling and executing remote firmware updates." It alleges that the Sophos Central server acts as the scheduling computer, determining from a managed firewall (the first computer) its current firmware version and, if an update is needed, scheduling the firmware update (the second program). (Compl. ¶72-73).

U.S. Patent No. 8,370,457, “Network Communication Through A Virtual Domain,” Issued Feb. 5, 2013

  • Technology Synopsis: This patent, related to the ’959 patent, describes a gateway that establishes a forwarding IP address for a pre-defined combination of a client IP address and a destination IP address. When the gateway identifies a data request matching this combination, it forwards the request using the forwarding IP address. (Compl. ¶78; ’457 Patent, Abstract).
  • Asserted Claims: Independent Claim 9 is asserted. (Compl. ¶83).
  • Accused Features: The complaint accuses "Sophos TLS," specifically the advanced firewall settings in the gateway. It alleges these settings establish a translated IP address (the forwarding IP) for specific client-destination combinations and forward traffic accordingly. (Compl. ¶82, ¶84).

III. The Accused Instrumentality

  • Product Identification: Sophos Android App (’063 Patent) and Sophos Public Key Systems (’780 Patent). (Compl. ¶14).
  • Functionality and Market Context:
    • The Sophos Android App is alleged to provide a method for storing and controlling access to data by uploading information to servers. (Compl. ¶24). This information is stored in a location reserved for a specific category identifier (e.g., a "data" directory), and a "custom category identifier" (e.g., a digital signature of the APK file) is used to identify subsequent information packs (e.g., app updates) that should be stored in the same location. (Compl. ¶24).
    • The Sophos Public Key Systems are alleged to provide a method for synchronizing files (e.g., public keys) between a central node and multiple local nodes (e.g., user devices). (Compl. ¶35). The complaint alleges this system uses databases on both local and central nodes to manage file versions, downloading updated files from a local server to a central server, which then serves as the source for updating other local nodes. (Compl. ¶35).
    • The complaint alleges that the provision and sale of the Sophos Public Key Systems is a source of revenue and a business focus for the Defendant. (Compl. ¶39).

IV. Analysis of Infringement Allegations

No probative visual evidence provided in complaint.

'063 Patent Infringement Allegations

Claim Element (from Independent Claim 4) Alleged Infringing Functionality Complaint Citation Patent Citation
storing information to be provided in an information pack The Sophos Android App stores information by "uploading to servers/saving image files." ¶24 col. 6:27-36
associating with said information pack at least a user destination address... a category identifier; associating with said information pack a provider identifier An address of a data repository, a category identifier (e.g., "data" directory), and a provider identifier (Sophos) are associated with the information. ¶24 col. 6:20-46
communicating said information pack by means of a network to said user data repository The information pack is sent to and stored in the specified data repository. ¶24 col. 6:20-26
locating said information pack in a location of said user data repository... reserved for information corresponding to a category to which said category identifier corresponds The information is stored in a custom location reserved for the specified category identifier. ¶24 col. 7:1-9
creating a custom location in said user data repository; placing said information pack in said custom location A file folder in the Sophos Android application is specifically created for the information. ¶24 col. 9:11-23
associating a custom category identifier with said information pack A custom category identifier, such as the digital signature of the application, is assigned to the information pack. ¶24 col. 9:48-58
sending a custom category signal to a processing station uniquely associated with said user data repository... The custom category identifier is subsequently used to identify other information packs (e.g., app updates from the same author) that should be stored in the same location. ¶24 col. 9:24-34
  • Identified Points of Contention:
    • Scope Questions: A central question may be whether the general act of "uploading to servers/saving image files" constitutes storing information in an "information pack" as contemplated by the patent, which describes a structured data object containing specific identifiers. (Compl. ¶24; ’063 Patent, col. 6:27-36). Similarly, does a file's digital signature function as the claimed "custom category identifier" used to trigger a "custom category signal" for subsequent filing?
    • Technical Questions: The complaint's theory relies on equating an application's digital signature with a "custom category identifier." (Compl. ¶24). A factual dispute may arise over whether the Android OS's signature verification process for app updates actually performs the claimed function of sending a "custom category signal to a processing station" to direct storage location, as opposed to simply verifying authenticity.

'780 Patent Infringement Allegations

Claim Element (from Independent Claim 1) Alleged Infringing Functionality Complaint Citation Patent Citation
storing one copy of each file that is shared between the local nodes One copy of each file (e.g., a key) is stored and shared between local nodes (e.g., devices on a network). ¶35 col. 2:48-50
creating a first table in each of the local databases to store information on copies of files in its respective local file server A first table is created in local databases to store information on file copies (e.g., the databases with the key). ¶35 col. 2:50-52
creating a second table in the central database to record all update information on copies of files in all the local file servers A second table is created in the central database to record update information for all devices. ¶35 col. 2:52-55
updating a copy of a file in one of the local file servers A file is updated in one of the devices using Sophos Public Key Systems. ¶35 col. 2:55-56
adding a new item of update information on the file in the second table New update information is added to the second table. ¶35 col. 2:56-57
downloading the updated copy of the file from said one of the local file servers, and uploading the updated copy of the file to the central file server as the latest edition of the file The updated copy of the file (e.g., the key) is downloaded from the local server and uploaded to the central file server as the latest version. ¶35 col. 2:57-60
determining whether a required copy of the file in another of the local file servers needs to be updated The system determines if another local server needs to be updated. ¶35 col. 2:60-62
downloading the latest edition of the file from the central file server to update said another of the local file servers The latest edition is downloaded from the central server to update the other local server. ¶35 col. 2:62-64
  • Identified Points of Contention:
    • Scope Questions: The complaint applies the claim, which describes a general file synchronization method, to "Sophos Public Key Systems." (Compl. ¶33, ¶35). A dispute may arise over whether a system for managing and distributing cryptographic keys performs the specific steps of the claimed method, or if its operation is technically distinct. For example, does a key management system involve "downloading the updated copy... from said one of the local file servers" to the central server, or does the central server generate and push keys outward?
    • Technical Questions: The infringement allegation appears to be a high-level mapping of the claim steps onto the accused system's general function. (Compl. ¶35). The case may require evidence demonstrating that the Sophos system actually creates and uses a "first table" on local devices and a "second table" centrally with the specific functions recited in the claim.

V. Key Claim Terms for Construction

For the ’063 Patent:

  • The Term: "information pack"
  • Context and Importance: The entire infringement theory for the ’063 patent hinges on whether user-generated content like saved image files or application updates within the Sophos Android App can be considered an "information pack." (Compl. ¶24). The definition will determine if the accused functionality falls within the scope of the claim.
  • Intrinsic Evidence for Interpretation:
    • Evidence for a Broader Interpretation: The patent states that the information can be in "digital form" and can include "product and service guides and updates, solicitations, mail (U.S., electronic, and voice), and the like." (’063 Patent, col. 1:24-27). This suggests the term is not limited to a specific data format.
    • Evidence for a Narrower Interpretation: The specification explicitly describes the Information Pack 18 as "consisting of Static Information 20 and/or Dynamic Information 22, a First Identifier 24, also called a Provider Identifier... and a Category Identifier 26." (’063 Patent, col. 6:27-33). This language may support an argument that an "information pack" must contain these specific, structured components, not just raw data like an image file.

For the ’780 Patent:

  • The Term: "central file server"
  • Context and Importance: The claim requires downloading an updated file from a local server and "uploading the updated copy of the file to the central file server as the latest edition." (Compl. ¶35). The nature and function of the accused "central node" in the Sophos Public Key System is critical. If the central system generates new keys and pushes them, rather than receiving updated files from local nodes, the infringement theory may fail.
  • Intrinsic Evidence for Interpretation:
    • Evidence for a Broader Interpretation: The patent describes the system in general terms of "local nodes" and a "central node" connected by a network, without limiting the specific hardware or software configuration. (’780 Patent, col. 3:31-40). This could support reading the term on any centralized server in a hub-and-spoke architecture.
    • Evidence for a Narrower Interpretation: The claim requires a specific data flow: an update occurs locally, and that updated file is then uploaded to the central server. (’780 Patent, col. 2:55-60). The detailed description states the "synchronization program downloads updated copies of files from the relevant local file servers, and updates the central file server accordingly." (’780 Patent, col. 2:37-39). This could support a narrower definition requiring the central server's primary role in this step to be passive reception of updates originating from local nodes.

VI. Other Allegations

  • Indirect Infringement: The complaint alleges that Sophos induces infringement of the ’780 patent. (Compl. ¶37). The basis for this allegation is that Sophos encourages, enables, and "instructs its customers on how to use Sophos Public Key Systems in ways that infringe," citing information brochures, promotional materials, and other information available on its website. (Compl. ¶38, ¶40).
  • Willful Infringement: The complaint alleges that Sophos had knowledge of the ’780 patent as of December 13, 2022, from a letter sent by Plaintiff. (Compl. ¶39). It alleges that despite this knowledge, Sophos continued to encourage and instruct customers to use the accused systems in an infringing manner. (Compl. ¶39). The prayer for relief seeks a finding of willfulness and treble damages specifically for infringement of the ’780 patent. (Compl. ¶88.D).

VII. Analyst’s Conclusion: Key Questions for the Case

  1. A central issue will be one of definitional scope and analogy: Can claim terms rooted in general data management, such as the ’063 patent's "information pack," be construed to cover the functional components of a modern mobile security application, like an APK's digital signature? Similarly, can the general "file synchronization" method of the ’780 patent be read onto the specific operations of a public key infrastructure system?
  2. A key evidentiary question will be one of technical operation: Beyond high-level functional similarities, what evidence will show that the accused Sophos products perform the specific, ordered steps required by the asserted claims? For example, for the ’780 patent, is there proof that an updated file is first downloaded from a local device to the central server, as claimed, or does the data flow in the opposite direction?
  3. A third question relates to intent and knowledge: For the allegations of indirect and willful infringement of the ’780 patent, the case will examine what specific actions Sophos took after the alleged notice date of December 13, 2022. Did its user manuals, support documents, or other materials available after that date actively instruct users to perform the patented method, thereby demonstrating the specific intent required for inducement?