Secure calling card and authentication process
First Claim
Patent Images
1. A method executed by a provider of authorizing provision of service to a user comprising:
- a first step of interacting with said user to receive an ID from said user and with a database to receive an ordered list of characters associated with said ID that were selected by said provider;
a second step of interacting with said user to receive from said user information responsive to requests placed to said user in the course of said interacting, including the sub-steps of generating a predetermined number of random numbers;
for each random number so generated (a) requesting said user to provide a responsive string of characters that is related to said random number, (b) receiving said responsive string of characters from said user, and (c) flagging a number in said ordered list corresponding to said random number; and
a third step of authorizing said provision of service when said information received in response to said request corresponds to a subset of entries in said ordered list of characters that is associated with said requests placed to said user, provided that said service is a permitted service for a user who provides said ID.
5 Assignments
0 Petitions
Accused Products
Abstract
Service is authorized through a process that employs a randomly sequenced table lookup that is based on predetermined information that was randomly assigned. In one embodiment, a calling card is issued with a table having a plurality of entries, with each entry comprising one or more digits. When wishing to make a call, the customer enters his/her ID. That ID is communicated to the service provider, based on that ID the provider retrieves from a database a table of the information that the customer has, and proceeds to request that the customer enter information pursuant to a random selection by the service provider.
16 Citations
3 Claims
-
1. A method executed by a provider of authorizing provision of service to a user comprising:
-
a first step of interacting with said user to receive an ID from said user and with a database to receive an ordered list of characters associated with said ID that were selected by said provider;
a second step of interacting with said user to receive from said user information responsive to requests placed to said user in the course of said interacting, including the sub-steps of generating a predetermined number of random numbers;
for each random number so generated (a) requesting said user to provide a responsive string of characters that is related to said random number, (b) receiving said responsive string of characters from said user, and (c) flagging a number in said ordered list corresponding to said random number; and
a third step of authorizing said provision of service when said information received in response to said request corresponds to a subset of entries in said ordered list of characters that is associated with said requests placed to said user, provided that said service is a permitted service for a user who provides said ID. - View Dependent Claims (2)
-
-
3. A method of authorizing provision of service to a user comprising the steps of:
-
receiving a ID from said user;
accessing a database to retrieve N ordered lists of characters associated with said ID, where N is an integer;
generating a predetermined number of random numbers;
for each random number created in said step of generating (a) requesting said user to provide a responsive set of characters that is related to said random number said requesting, which provides said random number, forming a challenge, (b) receiving said responsive set of characters from said user, and (c) flagging a number in each of said N ordered lists corresponding to said random number; and
authorizing said provision of service when the set of responsive numbers received in response to said challenges matches a corresponding set of flagged numbers in any of said N ordered lists of numbers, provided that said service is a permitted service for a user who is associated with the ordered list that matches.
-
Specification
-
- Resources
Litigation Campaign Assessment
Thank you for your request. You will receive a custom alert email when the Litigation Campaign Assessment is available.
×
-
Current AssigneeRakuten, Inc. (Rakuten Group, Inc.)
-
Original AssigneeAT&T Corporation (AT&T, Inc.)
-
InventorsKaplan, Alan Edward
-
Primary Examiner(s)Barron, Gilberto
-
Assistant Examiner(s)Zand, Kambiz
-
Application NumberUS09/558,236Time in Patent Office1,653 DaysField of Search713/202, 713/172, 713/182, 713/183, 380/268US Class Current726/9CPC Class CodesG06Q 20/342 Cards defining paid or bill...G07F 7/025 by means, e.g. cards, provi...G07F 7/08 by coded identity card or c...G07F 7/122 Online card verificationH04L 9/3271 using challenge-responseH04M 15/47 Fraud detection or preventi...H04M 15/48 Secure or trusted billing, ...H04M 17/00 Prepayment of wireline comm...H04M 17/02 Coin-freed or check-freed s...H04M 17/026 Constructional featuresH04M 17/103 using SIMs (USIMs) or calli...H04M 2017/12 using calling, telephone cr...H04M 2215/0148 Fraud detection or preventi...H04M 2215/0156 Secure and trusted billing,...H04M 2215/2026 Wireless network, e.g. GSM,...H04M 2215/32 Involving wireless systemsH04M 3/382 using authorisation codes o...H04M 3/387 using subscriber identifica...H04W 4/24 Accounting or billing
