Using successive levels of authentication in online commerce
First Claim
1. A method comprising:
- performing following acts on a network server;
receiving a communication from a mobile terminal operated by a client;
performing a first authentication of the mobile terminal and/or the client;
in response to the first authentication being successful, delivering a first service to the client;
after delivering the first service to the client, sending an offer for a second service to the mobile terminal;
receiving an acceptance message for the second service from the mobile terminal;
performing a second authentication of the mobile terminal and/or the client;
in response to receiving the acceptance message for the second service from the mobile terminal and to the second authentication being successful, delivering the second service to the client;
wherein the first authentication and the second authentication use different authentication techniques;
wherein the second authentication comprise;
randomly selecting one of a finite number of telecommunication addresses by which the network server is accessible;
using the randomly selected telecommunication address in an offer message from the network server to the mobile terminal;
authenticating the mobile terminal and/or the client if a reply message to the offer message is received from the mobile terminal at the randomly selected telecommunication address.
13 Assignments
0 Petitions
Accused Products
Abstract
A method comprising performing following acts on a network server: receiving a communication from a client terminal operated by a client; performing a first authentication of the client terminal or client; in response to the first authentication, delivering a first service to the client; after delivering the first service, sending an offer for a second service to the client terminal; receiving an acceptance message for the second service from the client terminal; performing a second authentication of the client terminal and/or the client; in response to receiving the acceptance message for the second service from the client terminal and to the second authentication being successful, delivering a second service to the client; wherein the first authentication and the second authentication use different authentication techniques. Other aspects include a programmed data processing apparatus for carrying out the method and a tangible program carrier instructing the apparatus to perform the acts.
87 Citations
25 Claims
-
1. A method comprising:
-
performing following acts on a network server; receiving a communication from a mobile terminal operated by a client; performing a first authentication of the mobile terminal and/or the client; in response to the first authentication being successful, delivering a first service to the client; after delivering the first service to the client, sending an offer for a second service to the mobile terminal; receiving an acceptance message for the second service from the mobile terminal; performing a second authentication of the mobile terminal and/or the client; in response to receiving the acceptance message for the second service from the mobile terminal and to the second authentication being successful, delivering the second service to the client; wherein the first authentication and the second authentication use different authentication techniques; wherein the second authentication comprise; randomly selecting one of a finite number of telecommunication addresses by which the network server is accessible; using the randomly selected telecommunication address in an offer message from the network server to the mobile terminal; authenticating the mobile terminal and/or the client if a reply message to the offer message is received from the mobile terminal at the randomly selected telecommunication address. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 25)
-
-
9. A method comprising:
-
performing following acts on a network server; receiving a communication from a mobile terminal operated by a client; performing a first authentication of the mobile terminal and/or the client; in response to the first authentication being successful, delivering a first service to the client; after delivering the first service to the client, sending an offer for a second service to the mobile terminal; receiving an acceptance message for the second service from the mobile terminal; performing a second authentication of the mobile terminal and/or the client; in response to receiving the acceptance message for the second service from the mobile terminal and to the second authentication being successful, delivering a second service to the client; wherein the first authentication and the second authentication use different authentication techniques, wherein the second service comprises content delivered from an online content repository, and wherein the content delivered from an online content repository is associated with user interface elements for recommending the delivered content to other users. - View Dependent Claims (10)
-
-
11. A method comprising:
-
performing following acts on a network server; receiving a communication from a mobile terminal operated by a client; performing a first authentication of the mobile terminal and/or the client; in response to the first authentication being successful, delivering a first service to the client; after delivering the first service to the client, sending an offer for a second service to the mobile terminal; receiving an acceptance message for the second service from the mobile terminal; performing a second authentication of the mobile terminal and/or the client; in response to receiving the acceptance message for the second service from the mobile terminal and to the second authentication being successful, delivering a second service to the client; wherein the first authentication and the second authentication use different authentication techniques, wherein the second service comprises content delivered from an online content repository, and wherein the content delivered from an online content repository is associated with user interface elements for making a user-selectable donation to a publisher of the delivered content. - View Dependent Claims (12, 14, 15)
-
-
13. A data processing system comprising:
-
a memory system that stores program code instructions and data; a processing system including at least one processing unit, wherein the processing system executes at least a portion of the program code instructions and processes the data; a set of network interfaces for acting as a node and for communicating with other nodes in one or more telecommunication networks; wherein the memory system comprises program code instructions executable by the processing system, wherein execution of the program code instructions causes the processing system to; receive a communication from a mobile terminal operated by a client; perform a first authentication of the mobile terminal and/or the client; in response to the first authentication being successful, deliver a first service to the client; after delivering the first service to the client, send an offer for a second service to the mobile terminal; receive an acceptance message for the second service from the mobile terminal; perform a second authentication of the mobile terminal and/or the client; in response to receiving the acceptance message for the second service from the mobile terminal and to the second authentication being successful, deliver a second service to the client; wherein the first authentication and the second authentication use different authentication techniques; wherein the second authentication comprises; randomly selecting one of a finite number of telecommunication addresses by which the network server is accessible; using the randomly selected telecommunication address in an offer message from the network server to the mobile terminal; authenticating the mobile terminal and/or the client if a reply message to the offer message is received from the mobile terminal at the randomly selected telecommunication address. - View Dependent Claims (16, 17, 18, 19, 20)
-
-
21. A data processing system comprising:
-
a memory system that stores program code instructions and data; a processing system including at least one processing unit, wherein the processing system executes at least a portion of the program code instructions and processes the data; a set of network interface for acting as a node and for communicating with other nodes in one or more telecommunication networks; wherein the memory system comprises program code instructions executable by the processing system, wherein execution of the program code instructions causes the processing system to; receive a communication from a mobile terminal operated by a client; perform a first authentication of the mobile terminal and/or the client; in response to the first authentication being successful, deliver a first service to the client; after delivering the first service to the client, send an offer for a second service to the mobile terminal; receive an acceptance message for the second service from the mobile terminal; perform a second authentication of the mobile terminal and/or the client; in response to receiving the acceptance message for the second service from the mobile terminal and to the second authentication being successful, deliver a second service to the client; wherein the first authentication and the second authentication use different authentication techniques; and wherein the content delivered from an online content repository is associated with user interface elements for recommending the delivered content to other users. - View Dependent Claims (22)
-
-
23. A data processing system comprising:
-
a memory system that stores program code instructions and data; a processing system including at least one processing unit, wherein the processing system executes at least a portion of the program code instructions and processes the data; a set of network interfaces for acting as a node and for communicating with other nodes in one or more telecommunication networks; wherein the memory system comprises program code instructions executable by the processing system, wherein execution of the program code instructions causes the processing system to; receive a communication from a mobile terminal operated by a client; perform a first authentication of the mobile terminal and/or the client; in response to the first authentication being successful, deliver a first service to the client; after delivering the first service to the client, send an offer for a second service to the mobile terminal; receive an acceptance message for the second service from the mobile terminal; perform a second authentication of the mobile terminal and/or the client; in response to receiving the acceptance message for the second service from the mobile terminal and to the second authentication being successful, deliver a second service to the client; wherein the first authentication and the second authentication use different authentication techniques wherein the second service comprises content delivered from an online content repository; and wherein the content delivered from an online content repository is associated with user interface elements for making a user-selectable donation to a publisher of the delivered content. - View Dependent Claims (24)
-
Specification