User authentication system and user authentication method

US 20020049915A1
Filed: 09/07/2001
Published: 04/25/2002
Est. Priority Date: 09/08/2000
Status: Active Grant

First Claim

Patent Images

1. A user authentication system having a first terminal apparatus for connecting to an information server through a network line, a second terminal apparatus for connecting to said information server by a communication line independent of said network line, and an authentication server located on said network line, for authenticating a user of said first terminal apparatus when said information server is accessed from said first terminal apparatus through said network line, comprising:

first transmitting means for transmitting a new-issuing request of a password from said second terminal apparatus to said information server through said communication line;

password forming means for forming a new password in said information server in response to the new-issuing request of the password from said first transmitting means;

second transmitting means for transmitting the password formed by said password forming means to said second terminal apparatus through said communication line;

third transmitting means for transmitting the password formed by said password forming means to an authentication server through said network line;

reception notifying means for receiving the password transmitted by said second transmitting means in said second terminal apparatus and notifying the received password;

input means for accepting a password from the user in said first terminal apparatus;

fourth transmitting means for transmitting the password accepted by said input means to said authentication server through said network line; and

authenticating means for performing the user authentication in said authentication server in accordance with a coincidence of at least the password transmitted by said third transmitting means and the password transmitted by said fourth transmitting means.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A user authentication system and a user authenticating method, in which an access from a terminal apparatus to a server by an illegal user other than a specific user can be certainly eliminated by a relatively simple construction using a first terminal apparatus for connecting to an information server through a network line and a second terminal apparatus for connecting to the information server by a communication line independent of the network line.

Citations

44 Claims

1. A user authentication system having a first terminal apparatus for connecting to an information server through a network line, a second terminal apparatus for connecting to said information server by a communication line independent of said network line, and an authentication server located on said network line, for authenticating a user of said first terminal apparatus when said information server is accessed from said first terminal apparatus through said network line, comprising:
- first transmitting means for transmitting a new-issuing request of a password from said second terminal apparatus to said information server through said communication line;
  
  password forming means for forming a new password in said information server in response to the new-issuing request of the password from said first transmitting means;
  
  second transmitting means for transmitting the password formed by said password forming means to said second terminal apparatus through said communication line;
  
  third transmitting means for transmitting the password formed by said password forming means to an authentication server through said network line;
  
  reception notifying means for receiving the password transmitted by said second transmitting means in said second terminal apparatus and notifying the received password;
  
  input means for accepting a password from the user in said first terminal apparatus;
  
  fourth transmitting means for transmitting the password accepted by said input means to said authentication server through said network line; and
  
  authenticating means for performing the user authentication in said authentication server in accordance with a coincidence of at least the password transmitted by said third transmitting means and the password transmitted by said fourth transmitting means.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
- - 2. A system according to claim 1, wherein when the user authentication by said authenticating means is completed, said authentication server guides a destination accessed by said first terminal apparatus to said information server.
  - 3. A system according to claim 1, wherein said authentication server has holding means for receiving the password transmitted by said third transmitting means and holding the received password together with a user identification code which has previously been set and registered.
  - 4. A system according to claim 1, wherein said information server is a home server which is connected to said network line through a relay apparatus by a dial-up connecting method.
  - 5. A system according to claim 4, wherein said network line is a line of the Internet, and said relay apparatus is an apparatus of an Internet service provider.
  - 6. A system according to claim 1, wherein said second terminal apparatus is a mobile terminal apparatus having a telephone function.
  - 7. A system according to claim 3, wherein said input means accepts the user identification code together with the password, said fourth transmitting means transmits the password and the user identification code accepted by said input means to said authentication server through said network line, and said authenticating means executes the user authentication by detecting a coincidence of the user identification code held by said holding means and the user identification code transmitted by said fourth transmitting means and a coincidence of the password transmitted by said third transmitting means and the password transmitted by said fourth transmitting means.
  - 8. A system according to claim 6, wherein said communication line is provided with a telephone exchange apparatus for inhibiting a line connection to said information server from a terminal apparatus other than said mobile terminal apparatus to which a predetermined telephone number has been allocated.

9. A user authenticating method in a network system having a first terminal apparatus for connecting to an information server through a network line, a second terminal apparatus for connecting to said information server by a communication line independent of said network line, and an authentication server located on said network line, for authenticating a user of said first terminal apparatus when said information server is accessed from said first terminal apparatus through said network line, said method comprises the steps of:
- transmitting a new-issuing request of a password from said second terminal apparatus to said information server through said communication line;
  
  forming a new password in said information server in response to the new-issuing request of the password;
  
  transmitting the password formed in said information server to said second terminal apparatus through said communication line;
  
  transmitting the password formed in said information server to said authentication server through said network line;
  
  receiving the password transmitted from said information server in said second terminal apparatus and notifying the received password;
  
  accepting a password from the user in said first terminal apparatus and transmitting the accepted password to said authentication server through said network line; and
  
  performing the user authentication in said authentication server in accordance with a coincidence of at least the password transmitted from said information server and the password transmitted from said first terminal apparatus.

10. An information server for connecting to a first terminal apparatus through a network line, and for connecting to a second terminal apparatus by a communication line independent of said network line, and for receiving an access from said first terminal apparatus through said network line, comprising:
- password forming means for forming a new password in response to a new-password issuing request transmitted from said second terminal apparatus through said communication line before said information server is accessed from said first terminal apparatus via said network line;
  
  first transmitting means for transmitting the password formed by said password forming means to said second terminal apparatus through said communication line; and
  
  second transmitting means for transmitting the password formed by said password forming means through said network line to an authentication server for performing an authentication with respect to a user of said first terminal apparatus after the password is transmitted by said first transmitting means.

11. An authentication server located on a network line in a network system having a first terminal apparatus for connecting to an information server through said network line and a second terminal apparatus for connecting to said information server by a communication line independent of said network line, for authenticating a user of said first terminal apparatus when said information server is accessed from said first terminal apparatus through said network line, comprises:
- first receiving means for receiving a new password transmitted from said information server through said network line;
  
  second receiving means for receiving a password transmitted from said first terminal apparatus through said network line;
  
  authenticating means for performing the user authentication in accordance with a coincidence of the password received by said first receiving means and the password received by said second receiving means; and
  
  means for guiding an access destination of said first terminal apparatus to said information server when the user authentication by said authenticating means is completed.
- View Dependent Claims (13, 14, 15, 16, 17, 18, 19)
- - 13. A system according to claim 12, wherein when the user authentication by said authenticating means is completed, said authentication server guides a destination accessed by said first terminal apparatus to said information server.
  - 14. A system according to claim 12, wherein said authentication server has holding means for receiving the password transmitted by said second transmitting means and holding the received password together with a user identification code which has previously been set and registered.
  - 15. A system according to claim 12, wherein said information server is a home server which is connected to said network line through a relay apparatus by a dial-up connecting method.
  - 16. A system according to claim 15, wherein said network line is a line of the Internet, and said relay apparatus is an apparatus of an Internet service provider.
  - 17. A system according to claim 12, wherein said second terminal apparatus is a mobile terminal apparatus having a telephone function.
  - 18. A system according to claim 14, wherein said input means accepts the user identification code together with the password, said second transmitting means transmits the password and the user identification code accepted by said input means to said authentication server through said network line, and said authentication means executes the user authentication by detecting a coincidence of the user identification code held by said holding means and the user identification code transmitted by said second transmitting means and a coincidence of the password transmitted by said transmitting/receiving means and the password transmitted by said second transmitting means.
  - 19. A system according to claim 17, wherein said communication line is provided with a telephone exchange apparatus for inhibiting a line connection to said information server from a terminal apparatus other than said mobile terminal apparatus to which a predetermined telephone number has been allocated.

12. A user authentication system having a first terminal apparatus for connecting to an information server through a network line, a second terminal apparatus for connecting to said information server by a communication line independent of said network line, and an authentication server located on said network line, for authenticating a user of said first terminal apparatus an when said information server is accessed from said first terminal apparatus through said network line, comprising:
- password forming means for forming a new password in said second terminal apparatus and notifying the new password;
  
  first transmitting means for transmitting the password formed by said password forming means to said information server through said communication line;
  
  transmitting and receiving means for receiving the password transmitted from said first transmitting means in said information server and, thereafter, transmitting the received password to said authentication server through said network line;
  
  input means for accepting a password from the user in said first terminal apparatus;
  
  second transmitting means for transmitting the password accepted by said input means to said authentication server through said network line; and
  
  authenticating means for performing the user authentication in said authentication server in accordance with a coincidence of at least the password transmitted by said transmitting and receiving means and the password transmitted by said second transmitting means.

20. A user authenticating method in a network system having a first terminal apparatus for connecting to an information server through a network line and a second terminal apparatus for connecting to said information server by a communication line independent of said network line, in which an authentication server located on said network line authenticates a user of said first terminal apparatus when said information server is accessed from said first terminal apparatus through said network line, said method comprises the steps of:
- forming a new password by said second terminal apparatus and notifying the new password;
  
  transmitting the password formed by said second terminal apparatus to said information server from said second terminal apparatus through said communication line;
  
  receiving the password transmitted from said second terminal apparatus in said information server and, thereafter, transmitting the received password to said authentication server through said network line;
  
  accepting a password from the user in said first terminal apparatus;
  
  transmitting the password accepted in said first terminal apparatus to said authentication server through said network line; and
  
  performing the user authentication in said authentication server in accordance with a coincidence of at least the password transmitted from said information server and the password transmitted from said first terminal apparatus.

21. An information server for connecting to a first terminal apparatus through a network line, for connecting to a second terminal apparatus by a communication line independent of said network line, and for being accessed from said first terminal apparatus through said network line, comprising:
- receiving means for receiving a new password transmitted from said second terminal apparatus through said communication line before said information server is accessed from said first terminal apparatus via said network line;
  
  first transmitting means for transmitting the password received by said receiving means to said second terminal apparatus through said communication line; and
  
  second transmitting means for transmitting the password formed by password forming means through said network line to an authentication server for authenticating a user of said first terminal apparatus after the password is transmitted by said first transmitting means.

22. An authentication server located on a network line in a network system having a first terminal apparatus for connecting to an information server through said network line and a second terminal apparatus for connecting to said information server by a communication line independent of said network line, for authenticating a user of said first terminal apparatus when said information server is accessed from said first terminal apparatus through said network line, comprises:
- first receiving means for receiving a new password transmitted from said second terminal apparatus through said information server and said network line;
  
  second receiving means for receiving a password transmitted from said first terminal apparatus through said network line;
  
  authenticating means for performing the user authentication in accordance with a coincidence of the password received by said first receiving means and the password received by said second receiving means; and
  
  means for guiding a destination accessed by said first terminal apparatus to said information server when the user authentication by said authenticating means is completed.
- View Dependent Claims (24, 25, 26, 27, 28, 29, 30, 31)
- - 24. A system according to claim 23, wherein when the user authentication by said authenticating means is completed, said authentication server guides a destination accessed by said first terminal apparatus to said information server.
  - 25. A system according to claim 23, wherein said authentication server has holding means for holding the password used in the user authentication by said authenticating means together with a user identification code which has previously been set and registered.
  - 26. A system according to claim 23, wherein said information server is a home server which is connected to said network line through a relay apparatus by a dial-up connecting method.
  - 27. A system according to claim 26, wherein said network line is a line of the Internet, and said relay apparatus is an apparatus of an Internet service provider.
  - 28. A system according to claim 23, wherein said second terminal apparatus is a mobile terminal apparatus having a telephone function.
  - 29. A system according to claim 25, wherein said first terminal apparatus includes second input means for accepting a previous password when the new-issuing request of the password is transmitted by said first transmitting means, said first transmitting means transmits the previous password accepted by said second input means to said authentication server through said network line, said authentication server includes discriminating means for discriminating a coincidence of at least the password held by said holding means and the previous password transmitted by said first transmitting means, and allows said password forming means to form the new password when the coincidence is determined by said discriminating means.
  - 30. A system according to claim 29, wherein said second input means accepts a user identification code together with the previous password, said first transmitting means transmits the previous password and the user identification code accepted by said input means to said authentication server through said network line, and said discriminating means discriminates a coincidence of the user identification code held by said holding means and the user identification code transmitted by said first transmitting means and a coincidence of the password transmitted by said third transmitting means and the password formed by said password forming means.
  - 31. A system according to claim 28, wherein said communicating line is provided with a telephone exchange apparatus for inhibiting a line connection to said information server from a terminal apparatus other than said mobile terminal apparatus to which a predetermined telephone number has been allocated.

23. A user authentication system having a first terminal apparatus for connecting to an information server through a network line, a second terminal apparatus for connecting to said information server by a communication line independent of said network line and an authentication server located on said network line, for authenticating a user of said first terminal apparatus when said information server is accessed from said first terminal apparatus through said network line, comprising:
- first transmitting means for transmitting a new-issuing request of a password in said first terminal apparatus to said authentication server through said network line;
  
  password forming means for forming a new password in said authentication server in response to the new-issuing request of the password from said first transmitting means;
  
  second transmitting means for transmitting the password formed by said password forming means to said first terminal apparatus through said network line;
  
  reception notifying means for receiving the password transmitted by said second transmitting means, in said first terminal apparatus and notifying it;
  
  input means for accepting a password from the user in said second terminal apparatus;
  
  third transmitting means for transmitting the password accepted by said input means to said information server through said communication line;
  
  transmitting and receiving means for receiving the password transmitted from said third transmitting means in said information server and, thereafter, transmitting the received password to said authentication server through said network line; and
  
  authenticating means for performing the user authentication in said authentication server in accordance with a coincidence of at least the password transmitted by said third transmitting means and the password formed by said password forming means.

32. A user authenticating method in a network system having a first terminal apparatus for connecting to an information server through a network line and a second terminal apparatus for connecting to said information server by a communication line independent of the network line, and an authentication server located on said network line, for authenticating a user of said first terminal apparatus when said information server is accessed from said first terminal apparatus through said network line, said method comprises the steps of:
- transmitting a new-issuing request of a password from said first terminal apparatus to said authentication server through said network line;
  
  forming a new password in said authentication server in response to the new-issuing request of the password from said first terminal apparatus;
  
  transmitting the password formed in said authentication server to said first terminal apparatus through said network line;
  
  receiving the password transmitted from said authentication server in said first terminal apparatus and notifying the received password;
  
  accepting a password from the user in said second terminal apparatus;
  
  transmitting the password accepted in said second terminal apparatus to said information server through said communication line;
  
  receiving the password transmitted from said second terminal apparatus in said information server and, thereafter, transmitting the received password to said authentication server through said network line; and
  
  performing the user authentication in said authentication server in accordance with a coincidence of at least the password transmitted from said information server and the formed password.

33. An authentication server located on a network line in a network system having a first terminal apparatus for connecting to an information server through said network line and a second terminal apparatus for connecting to said information server by a communication line independent of said network line, for authenticating a user of said first terminal apparatus when said information server is accessed from said first terminal apparatus through said network line, comprises:
- password forming means for forming a new password in response to a new-password issuing request transmitted from said first terminal apparatus through said network line before said information server is accessed from said first terminal apparatus through said network line;
  
  first transmitting means for transmitting the password formed by said password forming means to said first terminal apparatus through the network line;
  
  receiving means for receiving the password transmitted from said second terminal apparatus through said information server and said network line;
  
  authenticating means for performing the user authentication in accordance with a coincidence of the password received by said receiving means and the password formed by said password forming means; and
  
  means for guiding a destination accessed by said first terminal apparatus to said information server when the user authentication by said authenticating means is completed
- View Dependent Claims (35, 36, 37, 38, 39, 40, 41, 42)
- - 35. A system according to claim 34, wherein when the user authentication by said authenticating means is completed, said authentication server guides a destination accessed by said first terminal apparatus to said information server.
  - 36. A system according to claim 34, wherein said authentication server has holding means for holding the password used in the user authentication by said authenticating means together with a user identification code which has previously been set and registered.
  - 37. A system according to claim 34, wherein said information server is a home server which is connected to said network line through a relay apparatus by a dial-up connecting method.
  - 38. A system according to claim 37, wherein said network line is a line of the Internet, and said relay apparatus is an apparatus of an Internet service provider.
  - 39. A system according to claim 34, wherein said second terminal apparatus is a mobile terminal apparatus having a telephone function.
  - 40. A system according to claim 36, wherein said first terminal apparatus includes second input means for accepting a previous password, said first transmitting means transmits the previous password accepted by said second input means to said authentication server through said network line, said authentication server includes discriminating means for discriminating a coincidence of at least the password held by said holding means and the previous password transmitted by said first transmitting means, and receives the new password transmitted by said first transmitting means when the coincidence is determined by said discriminating means.
  - 41. A system according to claim 40, wherein said second input means accepts a user identification code together with the previous password, said first transmitting means transmits the previous password and the user identification code accepted by said input means to said authentication server through said network line, and said discriminating means discriminates a coincidence of the user identification code held by said holding means and the user identification code transmitted by said first transmitting means and a coincidence of the password held by said holding means and the previous password transmitted by said first transmitting means.
  - 42. A system according to claim 39, wherein said communicating line is provided with a telephone exchange apparatus for inhibiting a line connection to said information server from a terminal apparatus other than said mobile terminal apparatus to which a predetermined telephone number has been allocated.

34. A user authentication system having a first terminal apparatus for connecting to an information server through a network line, a second terminal apparatus for connecting to said information server by a communication line independent of said network line, and an authentication server located on said network line, for authenticating a user of said first terminal apparatus when said information server is accessed from said first terminal apparatus through said network line, comprising:
- password forming means for forming a new password by said first terminal apparatus and notifying the new password;
  
  first transmitting means for transmitting the password formed by said password forming means to said authentication server through said network line;
  
  input means for accepting a password from the user in said second terminal apparatus;
  
  second transmitting means for transmitting the password accepted by said input means to said information server through said communication line;
  
  transmitting and receiving means for receiving the password transmitted from said first transmitting means in said information server and, thereafter, transmitting the received password to said authentication server through said network line; and
  
  authenticating means for performing the user authentication in said authentication server in accordance with a coincidence of at least the password transmitted by said transmitting and receiving means and the password transmitted by said second transmitting means.

43. A user authenticating method in a network system having a first terminal apparatus for connecting to an information server through a network line and a second terminal apparatus for connecting to said information server by a communication line independent of said network line, in which an authentication server located on said network line authenticates a user of said first terminal apparatus when the information server is accessed from said first terminal apparatus through said network line, said method comprises the steps of:
- forming a new password in said first terminal apparatus and notifying the new password;
  
  transmitting the password formed in said first terminal apparatus to an authentication server through said network line;
  
  accepting a password from the user in said second terminal apparatus;
  
  transmitting the password received in said second terminal apparatus to said information server through said communication line;
  
  receiving the password transmitted from said second terminal apparatus in said information server and, thereafter, transmitting the received password to said authentication server through said network line; and
  
  performing the user authentication in said authentication server in accordance with a coincidence of at least the password transmitted from said information server and the password transmitted from said first terminal apparatus.

44. An authentication server located on a network line in a network system having a first terminal apparatus for connecting to an information server through said network line and a second terminal apparatus for connecting to said information server by a communication line independent of said network line, for authenticating a user of said first terminal apparatus when said information server is accessed from said first terminal apparatus through said network line, comprises:
- first receiving means for receiving a password formed newly and transmitted in said first terminal apparatus through said network line;
  
  second receiving means for receiving the password transmitted from said second terminal apparatus through said information server and said network line;
  
  authenticating means for performing the user authentication in accordance with a coincidence of the password received by said first receiving means and the password received by said second receiving means; and
  
  means for guiding a destination accessed by said first terminal apparatus to said information server when the user authentication by said authenticating means is completed.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Pioneer Corporation
Original Assignee
Pioneer Corporation
Inventors
Yasushi, Mitsuo, Yanagidaira, Masatoshi

Granted Patent

US 6,817,519 B2
Time in Patent Office

Days
Field of Search
US Class Current

713/202
CPC Class Codes

H04L 63/083 using passwords cryptograph...

User authentication system and user authentication method

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

44 Claims

Specification

Solutions

Use Cases

Quick Links

User authentication system and user authentication method

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

44 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links