Carrier-free terminal authentication system by means of a mail-back method
First Claim
1. A carrier-free terminal authentication system by means of a mail-back method, comprised of terminals as well as mobile terminals, a web server installed with various applications, a user management database, and a server middleware that controls sessions between the aforementioned terminals as well as mobile terminals and the aforementioned web server, the characteristics of the system being that based on data derived from the aforementioned user management database, the system assigns a parameter to the URL being transmitted to the aforementioned terminal or mobile terminal, and the aforementioned parameter is configured to differ for each user or for each access to the web server, and in the case that the aforementioned middleware authenticates access by a user as legitimate, it creates a webpage exclusive to the user and at the same time boots the mail server and returns an E-mail message to the user containing the URL for the webpage exclusive to the aforementioned user.
1 Assignment
0 Petitions
Accused Products
Abstract
The present invention provides Internet contents providers with a carrier-free authentication method for mobile terminals that use the contents of an unofficial website. The parameter attached to the URL differs each time or within a specific period of time, and moreover, differs from user to user. Therefore, by using this method, even if all the information—URL, user ID and password—should leak out to a third-party user who poses as a legitimate user, a new parameter would be sent to the fraudulent user. The moment the new parameter is sent, the former parameter becomes invalidated. The legitimate user does not know the new parameter that is now in the hands the fraudulent user. Therefore, the URL that the legitimate user accesses will contain the former parameter. When this kind of access occurs, it would be judged as a double log-in, and access by both the fraudulent and legitimate user becomes invalidated.
-
Citations
5 Claims
- 1. A carrier-free terminal authentication system by means of a mail-back method, comprised of terminals as well as mobile terminals, a web server installed with various applications, a user management database, and a server middleware that controls sessions between the aforementioned terminals as well as mobile terminals and the aforementioned web server, the characteristics of the system being that based on data derived from the aforementioned user management database, the system assigns a parameter to the URL being transmitted to the aforementioned terminal or mobile terminal, and the aforementioned parameter is configured to differ for each user or for each access to the web server, and in the case that the aforementioned middleware authenticates access by a user as legitimate, it creates a webpage exclusive to the user and at the same time boots the mail server and returns an E-mail message to the user containing the URL for the webpage exclusive to the aforementioned user.
Specification