Using successive levels of authentication in online commerce

US 9,171,307 B2
Filed: 02/12/2014
Issued: 10/27/2015
Est. Priority Date: 08/21/2002
Status: Expired due to Term

First Claim

Patent Images

1. A method comprising:

performing following acts on a network server;

receiving a communication from a mobile terminal operated by a client;

performing a first authentication of the mobile terminal and/or the client;

in response to the first authentication being successful, delivering a first service to the client;

after delivering the first service to the client, sending an offer for a second service to the mobile terminal;

receiving an acceptance message for the second service from the mobile terminal;

performing a second authentication of the mobile terminal and/or the client;

in response to receiving the acceptance message for the second service from the mobile terminal and to the second authentication being successful, delivering the second service to the client;

wherein the first authentication and the second authentication use different authentication techniques;

wherein the second authentication comprise;

randomly selecting one of a finite number of telecommunication addresses by which the network server is accessible;

using the randomly selected telecommunication address in an offer message from the network server to the mobile terminal;

authenticating the mobile terminal and/or the client if a reply message to the offer message is received from the mobile terminal at the randomly selected telecommunication address.

View all claims

13 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method comprising performing following acts on a network server: receiving a communication from a client terminal operated by a client; performing a first authentication of the client terminal or client; in response to the first authentication, delivering a first service to the client; after delivering the first service, sending an offer for a second service to the client terminal; receiving an acceptance message for the second service from the client terminal; performing a second authentication of the client terminal and/or the client; in response to receiving the acceptance message for the second service from the client terminal and to the second authentication being successful, delivering a second service to the client; wherein the first authentication and the second authentication use different authentication techniques. Other aspects include a programmed data processing apparatus for carrying out the method and a tangible program carrier instructing the apparatus to perform the acts.

87 Citations

25 Claims

1. A method comprising:
- performing following acts on a network server;
  
  receiving a communication from a mobile terminal operated by a client;
  
  performing a first authentication of the mobile terminal and/or the client;
  
  in response to the first authentication being successful, delivering a first service to the client;
  
  after delivering the first service to the client, sending an offer for a second service to the mobile terminal;
  
  receiving an acceptance message for the second service from the mobile terminal;
  
  performing a second authentication of the mobile terminal and/or the client;
  
  in response to receiving the acceptance message for the second service from the mobile terminal and to the second authentication being successful, delivering the second service to the client;
  
  wherein the first authentication and the second authentication use different authentication techniques;
  
  wherein the second authentication comprise;
  
  randomly selecting one of a finite number of telecommunication addresses by which the network server is accessible;
  
  using the randomly selected telecommunication address in an offer message from the network server to the mobile terminal;
  
  authenticating the mobile terminal and/or the client if a reply message to the offer message is received from the mobile terminal at the randomly selected telecommunication address.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 25)
- - 2. The method according to claim 1, wherein the first authentication and the second authentication utilize automatic detection of one or more telecommunication addresses used in communication between the network server and the mobile terminal.
  - 3. The method according to claim 2, wherein the telecommunication addresses are selected from a list that comprise a terminal identifier in a mobile cellular network, an e-mail address and a social network identity.
  - 4. The method according to claim 1, wherein the second service comprises setting up an online wallet for the client, and wherein the network server receives instructions to debit the online wallet for future services to the client.
  - 5. The method according to claim 1, wherein the second service comprises products delivered from one or more vending machines, and wherein the first service comprises a limited number of one or more products delivered from the one or more vending machines.
  - 6. The method according to claim 5, wherein the limited number is not more than 10.
  - 7. The method according to claim 1, wherein the second service comprises resources needed for transportation and/or accommodation, and wherein the first service comprises one or more advisory services related to the needed resources.
  - 8. The method according to claim 1, wherein the second service differs from the first service with respect to one or more of nature, quantity, unit value, method of payment, service provider, time of delivery, method of delivery, and user.
  - 25. A non-transitory computer program embodying computer program instructions for instructing an electronic data processing system acting as a network server to carry out the acts recited in claim 1.

9. A method comprising:
- performing following acts on a network server;
  
  receiving a communication from a mobile terminal operated by a client;
  
  performing a first authentication of the mobile terminal and/or the client;
  
  in response to the first authentication being successful, delivering a first service to the client;
  
  after delivering the first service to the client, sending an offer for a second service to the mobile terminal;
  
  receiving an acceptance message for the second service from the mobile terminal;
  
  performing a second authentication of the mobile terminal and/or the client;
  
  in response to receiving the acceptance message for the second service from the mobile terminal and to the second authentication being successful, delivering a second service to the client;
  
  wherein the first authentication and the second authentication use different authentication techniques,wherein the second service comprises content delivered from an online content repository, andwherein the content delivered from an online content repository is associated with user interface elements for recommending the delivered content to other users.
- View Dependent Claims (10)
- - 10. The method according to claim 9, wherein the second service differs from the first service with respect to one or more of nature, quantity, unit value, method of payment, service provider, time of delivery, method of delivery, and user.

11. A method comprising:
- performing following acts on a network server;
  
  receiving a communication from a mobile terminal operated by a client;
  
  performing a first authentication of the mobile terminal and/or the client;
  
  in response to the first authentication being successful, delivering a first service to the client;
  
  after delivering the first service to the client, sending an offer for a second service to the mobile terminal;
  
  receiving an acceptance message for the second service from the mobile terminal;
  
  performing a second authentication of the mobile terminal and/or the client;
  
  in response to receiving the acceptance message for the second service from the mobile terminal and to the second authentication being successful, delivering a second service to the client;
  
  wherein the first authentication and the second authentication use different authentication techniques, wherein the second service comprises content delivered from an online content repository, andwherein the content delivered from an online content repository is associated with user interface elements for making a user-selectable donation to a publisher of the delivered content.
- View Dependent Claims (12, 14, 15)
- - 12. The method according to claim 11, wherein the second service differs from the first service with respect to one or more of nature, quantity, unit value, method of payment, service provider, time of delivery, method of delivery, and user.
  - 14. The data processing system according to claim 12, wherein the first authentication and the second authentication utilize automatic detection of one or more telecommunication addresses used in communication between the network server and the mobile terminal.
  - 15. The data processing system according to claim 14, wherein the telecommunication addresses are selected from a list that comprise a terminal identifier in a mobile cellular network, an e-mail address and a social network identity.

13. A data processing system comprising:
- a memory system that stores program code instructions and data;
  
  a processing system including at least one processing unit, wherein the processing system executes at least a portion of the program code instructions and processes the data;
  
  a set of network interfaces for acting as a node and for communicating with other nodes in one or more telecommunication networks;
  
  wherein the memory system comprises program code instructions executable by the processing system, wherein execution of the program code instructions causes the processing system to;
  
  receive a communication from a mobile terminal operated by a client;
  
  perform a first authentication of the mobile terminal and/or the client;
  
  in response to the first authentication being successful, deliver a first service to the client;
  
  after delivering the first service to the client, send an offer for a second service to the mobile terminal;
  
  receive an acceptance message for the second service from the mobile terminal;
  
  perform a second authentication of the mobile terminal and/or the client;
  
  in response to receiving the acceptance message for the second service from the mobile terminal and to the second authentication being successful, deliver a second service to the client;
  
  wherein the first authentication and the second authentication use different authentication techniques;
  
  wherein the second authentication comprises;
  
  randomly selecting one of a finite number of telecommunication addresses by which the network server is accessible;
  
  using the randomly selected telecommunication address in an offer message from the network server to the mobile terminal;
  
  authenticating the mobile terminal and/or the client if a reply message to the offer message is received from the mobile terminal at the randomly selected telecommunication address.
- View Dependent Claims (16, 17, 18, 19, 20)
- - 16. The data processing system according to claim 13, wherein the second service comprises setting up an online wallet for the client, and wherein the network server receives instructions to debit the online wallet for future services to the client.
  - 17. The data processing system according to claim 13, wherein the second service comprises products delivered from one or more vending machines, and wherein the first service comprises a limited number of one or more products delivered from the one or more vending machines.
  - 18. The data processing system according to claim 17, wherein the limited number is not more than 10.
  - 19. The data processing system according to claim 13, wherein the second service comprises resources needed for transportation and/or accommodation, and wherein the first service comprises one or more advisory services related to the needed resources.
  - 20. The data processing system according to claim 13, wherein the second service differs from the first service with respect to one or more of nature, quantity, unit value, method of payment, service provider, time of delivery, method of delivery, and user.

21. A data processing system comprising:
- a memory system that stores program code instructions and data;
  
  a processing system including at least one processing unit, wherein the processing system executes at least a portion of the program code instructions and processes the data;
  
  a set of network interface for acting as a node and for communicating with other nodes in one or more telecommunication networks;
  
  wherein the memory system comprises program code instructions executable by the processing system, wherein execution of the program code instructions causes the processing system to;
  
  receive a communication from a mobile terminal operated by a client;
  
  perform a first authentication of the mobile terminal and/or the client;
  
  in response to the first authentication being successful, deliver a first service to the client;
  
  after delivering the first service to the client, send an offer for a second service to the mobile terminal;
  
  receive an acceptance message for the second service from the mobile terminal;
  
  perform a second authentication of the mobile terminal and/or the client;
  
  in response to receiving the acceptance message for the second service from the mobile terminal and to the second authentication being successful, deliver a second service to the client;
  
  wherein the first authentication and the second authentication use different authentication techniques; and
  
  wherein the content delivered from an online content repository is associated with user interface elements for recommending the delivered content to other users.
- View Dependent Claims (22)
- - 22. The data processing system according to claim 21, wherein the second service differs from the first service with respect to one or more of nature, quantity, unit value, method of payment, service provider, time of delivery, method of delivery, and user.

23. A data processing system comprising:
- a memory system that stores program code instructions and data;
  
  a processing system including at least one processing unit, wherein the processing system executes at least a portion of the program code instructions and processes the data;
  
  a set of network interfaces for acting as a node and for communicating with other nodes in one or more telecommunication networks;
  
  wherein the memory system comprises program code instructions executable by the processing system, wherein execution of the program code instructions causes the processing system to;
  
  receive a communication from a mobile terminal operated by a client;
  
  perform a first authentication of the mobile terminal and/or the client;
  
  in response to the first authentication being successful, deliver a first service to the client;
  
  after delivering the first service to the client, send an offer for a second service to the mobile terminal;
  
  receive an acceptance message for the second service from the mobile terminal;
  
  perform a second authentication of the mobile terminal and/or the client;
  
  in response to receiving the acceptance message for the second service from the mobile terminal and to the second authentication being successful, deliver a second service to the client;
  
  wherein the first authentication and the second authentication use different authentication techniques wherein the second service comprises content delivered from an online content repository; and
  
  wherein the content delivered from an online content repository is associated with user interface elements for making a user-selectable donation to a publisher of the delivered content.
- View Dependent Claims (24)
- - 24. The data processing system according to claim 23, wherein the second service differs from the first service with respect to one or more of nature, quantity, unit value, method of payment, service provider, time of delivery, method of delivery, and user.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Smartcom Labs OY
Original Assignee
Bookit Oy Ajanvarauspalvelu
Inventors
Salonen, Jukka
Primary Examiner(s)
Gelin, Jean

Application Number

US14/179,468
Publication Number

US 20140164269A1
Time in Patent Office

622 Days
Field of Search

455/412.1, 455/412.2, 455/414.1, 455/414.2, 455/414.4, 455/415, 455/417, 455/466, 455/424, 455/445, 455/410, 455/411, 705/1, 705/3, 705/4, 705/5, 705/6, 709/220, 709/221, 709/222, 709/224, 709/245, 709/227
US Class Current

1/1
CPC Class Codes

G06Q 10/02   Reservations, e.g. for tick...

G06Q 10/109   Time management, e.g. calen...

G06Q 30/0185   Product, service or busines...

H04L 51/48   Message addressing, e.g. ad...

H04M 3/42382   Text-based messaging servic...

H04W 12/069   using certificates or pre-s...

Using successive levels of authentication in online commerce

First Claim

13 Assignments

0 Petitions

Accused Products

Abstract

87 Citations

25 Claims

Specification

Solutions

Use Cases

Quick Links

Using successive levels of authentication in online commerce

First Claim

13 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

87 Citations

25 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links