Carrier-free terminal authentication system by means of a mail-back method

US 20010039616A1
Filed: 12/22/2000
Published: 11/08/2001
Est. Priority Date: 05/08/2000
Status: Abandoned Application

First Claim

Patent Images

1. A carrier-free terminal authentication system by means of a mail-back method, comprised of terminals as well as mobile terminals, a web server installed with various applications, a user management database, and a server middleware that controls sessions between the aforementioned terminals as well as mobile terminals and the aforementioned web server, the characteristics of the system being that based on data derived from the aforementioned user management database, the system assigns a parameter to the URL being transmitted to the aforementioned terminal or mobile terminal, and the aforementioned parameter is configured to differ for each user or for each access to the web server, and in the case that the aforementioned middleware authenticates access by a user as legitimate, it creates a webpage exclusive to the user and at the same time boots the mail server and returns an E-mail message to the user containing the URL for the webpage exclusive to the aforementioned user.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

The present invention provides Internet contents providers with a carrier-free authentication method for mobile terminals that use the contents of an unofficial website. The parameter attached to the URL differs each time or within a specific period of time, and moreover, differs from user to user. Therefore, by using this method, even if all the information—URL, user ID and password—should leak out to a third-party user who poses as a legitimate user, a new parameter would be sent to the fraudulent user. The moment the new parameter is sent, the former parameter becomes invalidated. The legitimate user does not know the new parameter that is now in the hands the fraudulent user. Therefore, the URL that the legitimate user accesses will contain the former parameter. When this kind of access occurs, it would be judged as a double log-in, and access by both the fraudulent and legitimate user becomes invalidated.

Citations

5 Claims

1. A carrier-free terminal authentication system by means of a mail-back method, comprised of terminals as well as mobile terminals, a web server installed with various applications, a user management database, and a server middleware that controls sessions between the aforementioned terminals as well as mobile terminals and the aforementioned web server, the characteristics of the system being that based on data derived from the aforementioned user management database, the system assigns a parameter to the URL being transmitted to the aforementioned terminal or mobile terminal, and the aforementioned parameter is configured to differ for each user or for each access to the web server, and in the case that the aforementioned middleware authenticates access by a user as legitimate, it creates a webpage exclusive to the user and at the same time boots the mail server and returns an E-mail message to the user containing the URL for the webpage exclusive to the aforementioned user.
- View Dependent Claims (2, 3, 4, 5)
- - 2. The carrier-free authentication system by means of a mail-back method according to claim 1, wherein its characteristic is that the aforementioned parameter can be made to change after a specified period, and in the case that the aforementioned parameter differs for each access to the aforementioned middleware, the parameter can be invalidated after one use, or in the case that the parameter is made to change after a specific period of time, it can be invalidated after the lapse of the specified time period.
  - 3. The carrier-free authentication system by means of a mail-back method according to claim 1, wherein its characteristic is that the middleware authenticates the legitimacy of an access when a user is making access to the aforementioned application installed in the aforementioned web server, and in the case that there is an access error, transmits a message to the application denoting the type of error, and in the case of specified access errors, allows the user to make use of the application.
  - 4. The carrier-free authentication system by means of a mail-back method according to claim 1, wherein its characteristic is that it is possible to freely configure the aforementioned URL parameter'"'"'s use-history from an environment that does not allow use of the ‘
    - back’
      
      button on the user'"'"'s browser to one that allows multiple uses.
  - 5. The carrier-free authentication system by means of a mail-back method according to claim 1, wherein its characteristic is that the aforementioned middleware creates a page exclusive to a user, and it is possible for the user to receive by E-mail the aforementioned URL embedded with a parameter by simply accessing the bookmarked aforementioned page.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
IDS Incorporated
Original Assignee
IDS Incorporated
Inventors
Maeda, Mariko, Kumagai, Takuya, Nakano, Takashi

Application Number

US09/747,198
Publication Number

US 20010039616A1
Time in Patent Office

Days
Field of Search
US Class Current

713/169
CPC Class Codes

H04L 63/0838 using one-time-passwords

H04L 63/104 Grouping of entities

Carrier-free terminal authentication system by means of a mail-back method

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

5 Claims

Specification

Solutions

Use Cases

Quick Links

Carrier-free terminal authentication system by means of a mail-back method

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

5 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links