System and Method for Authenticating Users of Online Services

US 20120288071A1
Filed: 07/23/2012
Published: 11/15/2012
Est. Priority Date: 09/14/2006
Status: Abandoned Application

First Claim

Patent Images

1. A method for authenticating a user of an online service, said method comprising:

accessing a database on a network, the database including a name, electronic message address, and a telephone number of a user;

sending, in a first electronic communication to an electronic message address associated with the user as stored in the database, a personal identification number;

placing a first call to the user at a telephone number associated with the user as stored in the database;

in response to receiving no answer to the first call at the telephone number associated with the user, leaving a message informing the user of a particular time for a scheduled call-back and placing a second call to the user at the telephone number associated with the user at the particular time;

in response to the user answering at least one of the calls, requesting from the user at least a portion of the personal identification number in the first electronic communication to the user;

receiving a response code from the user in response to the request;

confirming a match of at least a portion of the personal identification number and response code; and

determining that the user is authentic based on confirming a match of at least a portion of the personal identification member and response code.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method and system for verifying authenticity of an online usage of a user may include sending a message in an electronic communication to an electronic message address of a user, interactively communicating with the user a request for a response including at least a portion of the message sent to the user, and determining if a response to the request from the user matches at least a portion of the message sent to the user. The message may include a personal identification number used for verification. A certification link or authentication code may be provided to the user for posting on a website or within an email. The certification link or authentication code, optionally displaying an indicia, may enable other users to have confidence that the user whose website other users access or whose emails other users receive are authentic and not someone impersonating the user.

Citations

25 Claims

1. A method for authenticating a user of an online service, said method comprising:
- accessing a database on a network, the database including a name, electronic message address, and a telephone number of a user;
  
  sending, in a first electronic communication to an electronic message address associated with the user as stored in the database, a personal identification number;
  
  placing a first call to the user at a telephone number associated with the user as stored in the database;
  
  in response to receiving no answer to the first call at the telephone number associated with the user, leaving a message informing the user of a particular time for a scheduled call-back and placing a second call to the user at the telephone number associated with the user at the particular time;
  
  in response to the user answering at least one of the calls, requesting from the user at least a portion of the personal identification number in the first electronic communication to the user;
  
  receiving a response code from the user in response to the request;
  
  confirming a match of at least a portion of the personal identification number and response code; and
  
  determining that the user is authentic based on confirming a match of at least a portion of the personal identification member and response code.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
- - 2. The method according to claim 1, further comprising sending a verification code in a second electronic communication to the electronic message address.
  - 3. The method according to claim 1, wherein sending a first electronic communication to an electronic message address includes sending an email.
  - 4. The method according to claim 1, wherein sending a first electronic communication to an electronic address includes sending one of a text message and an instant message.
  - 5. The method according to claim 1, wherein receiving includes receiving a signal in the form of a dual-tone multiple frequency.
  - 6. The method according to claim 1, wherein receiving includes receiving a signal in the form of a voice signal.
  - 7. The method according to claim 1, wherein receiving includes receiving a signal in the form of an ASCII text.
  - 8. The method according to claim 1, further comprising providing users with an electronic input form for entry of user information for use in performing an authentication, the input form including name, electronic message address, and telephone number text entry fields.
  - 9. The method according to claim 8, wherein providing users with an electronic input form includes providing a caller ID text entry field.
  - 10. The method according to claim 9, further comprising verifying that a caller ID received from a user matches at least in part a caller ID associated with the telephone number.
  - 11. The method according to claim 1, further comprising providing a certification link to the user in response to confirming a match of at least a portion of the personal identification number and response code.
  - 12. The method according to claim 11, wherein providing a communication link enables the user to include the communication link on a website.
  - 13. The method according to claim 1, further comprising:
    - prompting the user with random information; and
      
      confirming that the user submits the random information in response to the prompt.

14. A system for authenticating a user of an online service, such system comprising:
- a database and communication with a network, the database including a name, electronic message address, and telephone number of the user; and
  
  at least one processor executing software, said at least one processor in communication with said database and the software configured to;
  
  access the database;
  
  send a personal identification number in a first electronic communication to an electronic message address associated with the user as stored in the database;
  
  place a first call the user at a telephone number associated with the user as stored in the database;
  
  in response to receiving no answer to the first call at the telephone number associated with the user, leave a message informing the user of a particular time for a scheduled call-back and place a second call to the user at the telephone number associated with the user at the scheduled call-back time;
  
  in response to the user answering at least one of the calls, request from the user at least a portion of the personal identification number sent in the first electronic communication to the user;
  
  receive a response code from the user in response to the request;
  
  confirm a match of at least a portion of the personal identification number and response code; and
  
  determining that the user is authentic based on confirming a match of at least a portion of the personal identification number and response code.
- View Dependent Claims (15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25)
- - 15. The system according to claim 14, wherein the software is further configured to send a verification code in a second electronic communication to the electronic message address.
  - 16. The system according to claim 14, wherein the electronic message address is an email address.
  - 17. The system according to claim 14, wherein the electronic message address is at least one of a text message address and an instant message address.
  - 18. The system according to claim 14, wherein the software is configured to receive the code in the form of a dual-tone multiple frequency.
  - 19. The system according to claim 14, wherein the software is further configured to receive the verification code as a signal in the form of a voice signal.
  - 20. The system according to claim 14, wherein the software is further configured to provide users with an electronic input form for entry of user information for use in performing an authentication, the electronic input form including name, electronic message address, and telephone number text entry fields.
  - 21. The system according to claim 20, wherein the software is further configured to provide users with an electronic input form further including providing a caller ID text entry field.
  - 22. The system according to claim 21, wherein the software is further configured to verify that a caller ID received from a user at least in part matches a caller ID associated with the telephone number.
  - 23. The system according to claim 14, wherein the software is further configured to provide a certification link to the user in response to confirming a match of at least a portion of the personal identification number and response code.
  - 24. The system according to claim 14, wherein the software is further configured to provide a communication link that enables a user to include the communication link on a website or email.
  - 25. The system according to claim 14, wherein the software is further configured to:
    - prompt the user with random information; and
      
      confirm that the user submits the random information in response to the prompt.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
CenturyLink Intellectual Property LLC (Lumen Technologies, Inc.)
Original Assignee
CenturyLink Intellectual Property LLC (Lumen Technologies, Inc.)
Inventors
Chatterjee, Koushik

Application Number

US13/555,999
Publication Number

US 20120288071A1
Time in Patent Office

Days
Field of Search
US Class Current

379/88.13
CPC Class Codes

H04L 2209/56   Financial cryptography, e.g...

H04L 2209/80   Wireless

H04L 63/08   for authentication of entit...

H04L 9/321   involving a third party or ...

H04L 9/3226   using a predetermined code,...

H04L 9/3271   using challenge-response

System and Method for Authenticating Users of Online Services

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

Citations

25 Claims

Specification

Solutions

Use Cases

Quick Links

System and Method for Authenticating Users of Online Services

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

25 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links