US2012288071A1PendingUtilityA1

System and Method for Authenticating Users of Online Services

47
Assignee: CHATTERJEE KOUSHIKPriority: Sep 14, 2006Filed: Jul 23, 2012Published: Nov 15, 2012
Est. expirySep 14, 2026(~0.2 yrs left)· nominal 20-yr term from priority
H04L 63/08H04L 2209/80H04L 9/3226H04L 9/3271H04L 9/321H04L 2209/56
47
PatentIndex Score
0
Cited by
0
References
0
Claims

Abstract

A method and system for verifying authenticity of an online usage of a user may include sending a message in an electronic communication to an electronic message address of a user, interactively communicating with the user a request for a response including at least a portion of the message sent to the user, and determining if a response to the request from the user matches at least a portion of the message sent to the user. The message may include a personal identification number used for verification. A certification link or authentication code may be provided to the user for posting on a website or within an email. The certification link or authentication code, optionally displaying an indicia, may enable other users to have confidence that the user whose website other users access or whose emails other users receive are authentic and not someone impersonating the user.

Claims

exact text as granted — not AI-modified
1 . A method for authenticating a user of an online service, said method comprising:
 accessing a database on a network, the database including a name, electronic message address, and a telephone number of a user;   sending, in a first electronic communication to an electronic message address associated with the user as stored in the database, a personal identification number;   placing a first call to the user at a telephone number associated with the user as stored in the database;   in response to receiving no answer to the first call at the telephone number associated with the user, leaving a message informing the user of a particular time for a scheduled call-back and placing a second call to the user at the telephone number associated with the user at the particular time;   in response to the user answering at least one of the calls, requesting from the user at least a portion of the personal identification number in the first electronic communication to the user;   receiving a response code from the user in response to the request;   confirming a match of at least a portion of the personal identification number and response code; and   determining that the user is authentic based on confirming a match of at least a portion of the personal identification member and response code.   
     
     
         2 . The method according to  claim 1 , further comprising sending a verification code in a second electronic communication to the electronic message address. 
     
     
         3 . The method according to  claim 1 , wherein sending a first electronic communication to an electronic message address includes sending an email. 
     
     
         4 . The method according to  claim 1 , wherein sending a first electronic communication to an electronic address includes sending one of a text message and an instant message. 
     
     
         5 . The method according to  claim 1 , wherein receiving includes receiving a signal in the form of a dual-tone multiple frequency. 
     
     
         6 . The method according to  claim 1 , wherein receiving includes receiving a signal in the form of a voice signal. 
     
     
         7 . The method according to  claim 1 , wherein receiving includes receiving a signal in the form of an ASCII text. 
     
     
         8 . The method according to  claim 1 , further comprising providing users with an electronic input form for entry of user information for use in performing an authentication, the input form including name, electronic message address, and telephone number text entry fields. 
     
     
         9 . The method according to  claim 8 , wherein providing users with an electronic input form includes providing a caller ID text entry field. 
     
     
         10 . The method according to  claim 9 , further comprising verifying that a caller ID received from a user matches at least in part a caller ID associated with the telephone number. 
     
     
         11 . The method according to  claim 1 , further comprising providing a certification link to the user in response to confirming a match of at least a portion of the personal identification number and response code. 
     
     
         12 . The method according to  claim 11 , wherein providing a communication link enables the user to include the communication link on a website. 
     
     
         13 . The method according to  claim 1 , further comprising:
 prompting the user with random information; and   confirming that the user submits the random information in response to the prompt.   
     
     
         14 . A system for authenticating a user of an online service, such system comprising:
 a database and communication with a network, the database including a name, electronic message address, and telephone number of the user; and   at least one processor executing software, said at least one processor in communication with said database and the software configured to:
 access the database; 
 send a personal identification number in a first electronic communication to an electronic message address associated with the user as stored in the database; 
 place a first call the user at a telephone number associated with the user as stored in the database; 
 in response to receiving no answer to the first call at the telephone number associated with the user, leave a message informing the user of a particular time for a scheduled call-back and place a second call to the user at the telephone number associated with the user at the scheduled call-back time; 
 in response to the user answering at least one of the calls, request from the user at least a portion of the personal identification number sent in the first electronic communication to the user; 
 receive a response code from the user in response to the request; 
 confirm a match of at least a portion of the personal identification number and response code; and 
 determining that the user is authentic based on confirming a match of at least a portion of the personal identification number and response code. 
   
     
     
         15 . The system according to  claim 14 , wherein the software is further configured to send a verification code in a second electronic communication to the electronic message address. 
     
     
         16 . The system according to  claim 14 , wherein the electronic message address is an email address. 
     
     
         17 . The system according to  claim 14 , wherein the electronic message address is at least one of a text message address and an instant message address. 
     
     
         18 . The system according to  claim 14 , wherein the software is configured to receive the code in the form of a dual-tone multiple frequency. 
     
     
         19 . The system according to  claim 14 , wherein the software is further configured to receive the verification code as a signal in the form of a voice signal. 
     
     
         20 . The system according to  claim 14 , wherein the software is further configured to provide users with an electronic input form for entry of user information for use in performing an authentication, the electronic input form including name, electronic message address, and telephone number text entry fields. 
     
     
         21 . The system according to  claim 20 , wherein the software is further configured to provide users with an electronic input form further including providing a caller ID text entry field. 
     
     
         22 . The system according to  claim 21 , wherein the software is further configured to verify that a caller ID received from a user at least in part matches a caller ID associated with the telephone number. 
     
     
         23 . The system according to  claim 14 , wherein the software is further configured to provide a certification link to the user in response to confirming a match of at least a portion of the personal identification number and response code. 
     
     
         24 . The system according to  claim 14 , wherein the software is further configured to provide a communication link that enables a user to include the communication link on a website or email. 
     
     
         25 . The system according to  claim 14 , wherein the software is further configured to:
 prompt the user with random information; and   confirm that the user submits the random information in response to the prompt.

Cited by (0)

No later patents cite this yet.

References (0)

No backward citations on record.