METHOD AND SYSTEM FOR AUTHENTICATION
First Claim
1. An authentication service system performing user authentication by using a short message service (SMS), comprising:
- an authentication service component; and
a verification component,wherein the authentication service component transfers use information received as basic authentication information to the verification component, confirms an IP address which is access information of a mobile device accessed for the user authentication, and transfers the confirmed IP address of the mobile device and an SMS authentication value input from the mobile device to the verification component, andthe verification component generates the SMS authentication value to be used for authenticating the corresponding user to correspond to the transferred user information and transmits the generated SMS authentication value to a registered mobile device corresponding to the corresponding user information, confirms the IP address which a communication company allocates to the registered mobile device, and verifying whether the user authentication is appropriate according to whether the SMS authentication value transferred from the authentication service component and the generated SMS authentication value coincide with each other and whether the IP address transferred from the authentication service component and the confirmed IP address allocated by the communication company coincide with each other.
1 Assignment
0 Petitions
Accused Products
Abstract
An authentication system performing user-centered authentication may include: an authentication service component acting as an authentication procedure of an online service server; and a mobile authentication agent component acting as the authentication procedure of an access terminal which accesses the online service server. Herein, the authentication service component may confirm a mobile authentication agent component corresponding to user information input from the access terminal as basic authentication information, transmit an authentication password value to each of the confirmed mobile authentication agent component and the online service server which the access terminal intends to access, and transmit an authentication success message to the online service server when a password verification value or an authentication agreement value corresponding to the authentication password value is received from the mobile authentication agent component.
-
Citations
14 Claims
-
1. An authentication service system performing user authentication by using a short message service (SMS), comprising:
-
an authentication service component; and a verification component, wherein the authentication service component transfers use information received as basic authentication information to the verification component, confirms an IP address which is access information of a mobile device accessed for the user authentication, and transfers the confirmed IP address of the mobile device and an SMS authentication value input from the mobile device to the verification component, and the verification component generates the SMS authentication value to be used for authenticating the corresponding user to correspond to the transferred user information and transmits the generated SMS authentication value to a registered mobile device corresponding to the corresponding user information, confirms the IP address which a communication company allocates to the registered mobile device, and verifying whether the user authentication is appropriate according to whether the SMS authentication value transferred from the authentication service component and the generated SMS authentication value coincide with each other and whether the IP address transferred from the authentication service component and the confirmed IP address allocated by the communication company coincide with each other. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. An authentication system performing user-centered authentication, comprising:
-
an authentication service component acting as an authentication procedure of an online service server; and a mobile authentication agent component acting as the authentication procedure of an access terminal which accesses the online service server, wherein the authentication service component confirms a mobile authentication agent component corresponding to user information input from the access terminal as basic authentication information, transmits an authentication password value to each of the confirmed mobile authentication agent component and the online service server which the access terminal intends to access, and transmits an authentication success message to the online service server when a password verification value or an authentication agreement value corresponding to the authentication password value is received from the mobile authentication agent component. - View Dependent Claims (8, 9, 10, 11, 12, 13, 14)
-
Specification