WO2007135664A2 - System and method for real-time authentication and notification for inter-personal communications - Google Patents

System and method for real-time authentication and notification for inter-personal communications Download PDF

Info

Publication number
WO2007135664A2
WO2007135664A2 PCT/IL2007/000598 IL2007000598W WO2007135664A2 WO 2007135664 A2 WO2007135664 A2 WO 2007135664A2 IL 2007000598 W IL2007000598 W IL 2007000598W WO 2007135664 A2 WO2007135664 A2 WO 2007135664A2
Authority
WO
WIPO (PCT)
Prior art keywords
user
cellular telephone
message
dating
optionally
Prior art date
Application number
PCT/IL2007/000598
Other languages
French (fr)
Other versions
WO2007135664A3 (en
Inventor
David Shterenberg
Original Assignee
Simple Holding International S.A
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Simple Holding International S.A filed Critical Simple Holding International S.A
Publication of WO2007135664A2 publication Critical patent/WO2007135664A2/en
Publication of WO2007135664A3 publication Critical patent/WO2007135664A3/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities

Definitions

  • the present invention relates to a system and a method for real-time authentication and notification for interpersonal communications, such as for example for a matchmaking or "dating" web site, and in particular, to such a system and method which enable authentication and notification to be performed through virtual identification.
  • Web pages which collectively form the World Wide Web. Web pages are useful for displaying text and graphics, and even animation, video data and audio data. Unsurprisingly, Web pages have also become popular for inter-personal communications, as for matchmaking or "dating" web sites. A large number of Web sites are currently devoted to dating. Among the advantages of such Web sites are the possibility for anonymity and the ability to communicate with many people who are not the regular social sphere of the individual.
  • dating Web sites have many disadvantages. For example, ultimately individuals wish to communicate in real time with a potential partner or "date”. Therefore, many dating Web sites support real time "chat", in which text messages are exchanged, between individuals using the Web site. In order for such real time communication to occur, both parties must be on-line and connected to the Web site at the same time. Such coordination may be difficult to achieve, either through planning or by waiting on-line until the other party also enters the Web site. Unfortunately, currently dating Web- sites do not offer any type of real time notification which would enable the other party to enter the Web site at the appropriate time.
  • Another problem is one of identification and authentication.
  • identifier such as a PIN (personal identification number) or password for example.
  • PIN personal identification number
  • password for example.
  • Unfortunately such systems are not particularly secure; furthermore, many individuals have difficulty remembering their identifier and must then request help from the Web site in order to access it. This difficulty may discourage users from using the dating Web site.
  • authentication and notification are performed through the transmission of messages, more preferably SMS (Short Message Service) messages, although optionally EMS (SMS enhanced message service) messages and/or MMS (multimedia messaging service) messages may be used, alternatively or additionally to SMS messages.
  • SMS Short Message Service
  • EMS SMS enhanced message service
  • MMS multimedia messaging service
  • the user enters the Web site or "logs in” through a process with the user's cellular telephone.
  • the cellular telephone is at least used for authentication of the user but is more preferably also used for identification of the user.
  • the user sends a message from the cellular telephone to a specified number, which in the current example is a SMS message but may optionally be other types of messages as previously described.
  • the message is passed to a server which parses it as well as the cellular telephone number from which it was sent. If the user is already registered, then the user is permitted to enter the Web site; otherwise preferably a registration process is started.
  • notification of interest in real-time communication by another user is also preferably performed through the cellular telephone.
  • a message is sent to the cellular telephone of the second user.
  • the message is not sent directly from the cellular telephone of the first user but rather is sent according to a mechanism provided by the present invention, for example through a server which is in communication with the Web site. Therefore, anonymity is preserved.
  • the second user receives the message, if the second user is interested and available for such communication, the second user then also enters or logs on to the Web site (if the second user has not already done so), and real-time communication may be performed between the users.
  • the user is charged for the use of the Web site and/or its services, including but not limited to, charging for registration, entering the Web site, searching and/or viewing profiles of potential partners, receiving and/or sending a real-time notification to a desired party for communication, viewing or creating enhanced user profiles with additional information (for example optionally including a photograph of the potential partner) and so forth.
  • charging for use of the Web site and/or its associated services is also performed according to the cellular telephone of the user.
  • one or more charges may optionally be added to the cellular telephone bill itself, through the cellular telephone company providing the cellular telephone service to the user.
  • the amount of one or more charges may optionally be deducted from a standing amount obtained from the user, for example through a credit card number provided by the user.
  • such a credit card number is not provided on-line, to avoid objections of many individuals in this regard as described above, but rather is provided off-line through a separate communication channel, including but not limited to, a voice conversation, facsimile, regular mail, other types of delivery of a hard copy (paper) document and so forth.
  • a separate communication channel including but not limited to, a voice conversation, facsimile, regular mail, other types of delivery of a hard copy (paper) document and so forth.
  • charges may be made to the credit card number (provided as described above) at the end of a billing cycle, such as once per month for example.
  • online it is meant that communication is performed through an electronic communication medium, including but not limited to, telephone voice communication through the PSTN (public switched telephone network), cellular telephones or a combination thereof; exchanging information through Web pages according to HTTP (HyperText Transfer Protocol) or any other protocol for communication with and through mark-up language documents; exchanging messages through e-mail (electronic mail), messaging services such as ICQTM for example, and any other type of messaging service; any type of communication using a computational device as previously defined; as well as any other type of communication which incorporates an electronic medium for transmission.
  • PSTN public switched telephone network
  • cellular telephones or a combination thereof
  • HTTP HyperText Transfer Protocol
  • e-mail electronic mail
  • ICQTM electronic mail
  • Implementation of the method and system of the present invention involves performing or completing certain selected tasks or stages manually, automatically, or a combination thereof.
  • several selected stages could be implemented by hardware or by software on any operating system of any firmware or a combination thereof.
  • selected stages of the invention could be implemented as a chip or a circuit.
  • selected stages of the invention could be implemented as a plurality of software instructions being executed by a computer using any suitable operating system.
  • selected stages of the method and system of the invention could be described as being performed by a data processor, such as a computing platform for executing a plurality of instructions.
  • computer network any device featuring a data processor and/or the ability to execute one or more instructions may be described as a computer, including but not limited to a PC (personal computer), a server, a minicomputer, a cellular telephone, a smart phone, a PDA (personal data assistant), a pager, TV decoder, game console, digital music player. Any two or more of such devices in communication with each other, and/or any computer in communication with any other computer, may optionally comprise a "computer network”.
  • PC personal computer
  • server a minicomputer
  • a cellular telephone a smart phone
  • PDA personal data assistant
  • pager TV decoder
  • game console digital music player
  • FIG. 1 is a schematic block diagram of an exemplary system according to the present invention
  • FIG. 2 shows the system of Figure 1 with an additional user
  • FIG. 3 shows an illustrative, non-limiting screenshot of an initial screen for the dating web site according to the present invention
  • FIG. 4 shows an illustrative, non-limiting screenshot of a user profile display for the dating web site according to the present invention
  • FIG. 5 shows an illustrative, non-limiting screenshot of a display to a user after login to the dating web site according to the present invention.
  • the present invention is of a system and a method for system and method for real-time authentication and notification of a user of a Web site for inter-personal communications through the user's cellular telephone.
  • authentication and notification are performed through messaging through the cellular telephone, more preferably by using SMS messages, although optionally other types of messages may be used, additionally or alternatively.
  • the term "dating web site" preferably encompasses any web site for inter-personal communications, as well as optionally any service for inter-personal communications which provides a mechanism for real time notification of a potential partner for communications.
  • Other examples include but are not limited to job or employment web sites, real estate web sites, auction or e-commerce web sites for which inter-personal communications are required and so forth.
  • real time notification optionally and preferably includes any mechanism for notifying a user about a potential partner for communications. More preferably, such a mechanism comprises any type of notification which is separate from the communication channel used by the service for interpersonal communications (for example, for a dating web site, preferably notification is provided through a mechanism other than by display through the user's Web browser). Also more preferably, the mechanism does not require direct user action to receive the notification.
  • such a mechanism comprises an SMS message or other message through a telephone (optionally including SMS messages or other non voice messages sent through any type of telephone, including but not limited to cellular telephones and telephones connected to the PSTN (public switched telephone network), as well as voice message sent through any type of telephone), a message or other notification sent through a beeper or pager, or an e-mail or other message sent through a portable computational device.
  • SMS messages or other non voice messages sent through any type of telephone, including but not limited to cellular telephones and telephones connected to the PSTN (public switched telephone network), as well as voice message sent through any type of telephone
  • PSTN public switched telephone network
  • Figure 1 is a schematic block diagram of an exemplary system according to the present invention. As shown, a system 100 features a user computer
  • a dating site server 104 in communication with a dating site server 104.
  • User computer 102 is optionally and preferably communicating with dating site server 104 according to any suitable communication protocol, including but not limited to exchanging information through Web pages according to HTTP (HyperText Transfer Protocol) or any other protocol for communication with and through mark-up language documents.
  • HTTP HyperText Transfer Protocol
  • Such communication is described herein in terms of Web pages, such that user computer 102 preferably operates a Web browser 106 and dating site server 104 preferably operates as a Web server 108 for operating a Web site.
  • this description is intended as an illustrative example only and is not meant to be limiting in any way.
  • Web browser 106 preferably displays a Web page from Web server 108 which includes instructions for entering or "logging in” to the Web site. As described herein, preferably such a log in process is performed with a cellular telephone 112 of a user 110.
  • the Web page preferably features one or more instructions regarding a cellular telephone number to which the SMS message should be sent, and more preferably also features one or more words or other content to be included in the SMS message.
  • SMS message When user 110 wishes to log in to the Web site, user 110 preferably sends a SMS message through cellular telephone 112 to a particular telephone number, which may optionally be a "specialty" or “shortcut" number that is only accessible through a particular cellular telephone service provider, or may only be accessible through cellular telephones but not through PSTN (public switched telephone network) telephones, for example.
  • a telephone number is the number displayed on the Web site as described above.
  • the SMS message features one or more word(s) or other content, which most preferably is determined according to the Web page from Web server 108 as described above.
  • Cellular telephone 112 is preferably in communication with a SMSC (short message service center) 114.
  • SMSC short message service center
  • SMSC 114 receives the SMS message according to the SMS protocol (as is well known in the art), and passes it to a SMSC/HTTP gateway 116. SMSC 114 determines that this is the correct action according to the telephone number to which the SMS message was addressed, which is associated with transfer by HTTP.
  • a parsing agent 115 at SMSC/HTTP gateway 116 then parses the SMS message, preferably at least parsing the content. Parsing agent 115 preferably operates according to at least one content parsing process, although preferably both processes are combined and performed by one or more parsing agents 115 (of which only one is shown for the sake of clarity and without wishing to be limited in any way). Parsing agent 115 preferably parses regular word expressions according to one parsing process. Such regular word expressions are more preferably determined according to a list or database of such expressions. Parsing agent 115 preferably is able to identify one or more actions to perform according to one or more regular word expressions.
  • parsing agent 115 preferably parses according to another parsing process. This other process preferably includes considering at least one word of the content, but more preferably a plurality of words and most preferably all words. Each such word is preferably considered against all possible words/combinations related to one or more subjects, such as dating for example. If at least one subject is found, then the content is assumed to be related to that subject. If a plurality of subjects is found, then optionally the words are related to each such subject according to their location in the sentence.
  • the subjects are optionally weighted according to the number of words associated with each subject; the subject which has the most associated words is then considered to be the primary subject of the message content.
  • one or more subjects may optionally be considered to be more important than others and so are given a greater weighting. It such be noted that although the above description refers to a "word”, each such "word” may optionally comprise a plurality of words.
  • Parsing agent 115 preferably also parses other message information, as for an SMS message (although as previously noted the present invention is not limited to SMS messages only but instead encompasses other types of messages, preferably including any type of message transmittable according to a cellular telephone protocol).
  • Each such field may optionally and preferably be identified and analyzed according to the appropriate message standard.
  • SMS messages the message standard is the Short Message Service - Point to Point (SMS-PP) according to GSM recommendation 03.40.
  • SMS-PP Short Message Service - Point to Point
  • MMS the appropriate standard is determined according to 3GPP standards.
  • MMS messages the appropriate standard is determined according to 3GPP Technical Specification 23.040.
  • Other message types may optionally be incorporated which have their own appropriate message standards.
  • Non-limiting examples of message fields include content (the actual message), telephone number of the sender and receiver, identification of the sender and receiver.
  • Parsing agent 115 preferably uses at least the telephone number information to determine geographical location of the sender and of the recipient (although it should be noted that if "roaming" is enabled, one or both of the sender or recipient may be located at a geographical location other than that associated with their telephone number). Parsing agent 115 preferably is able to interact with any cellular company equipment and/or software.
  • SMSC/HTTP gateway 116 then transmits the parsed information to dating site server 104, optionally and preferably by using the POST method over the HTTP protocol (which is well known in the art for transferring SMS messages originating from cellular telephones to server-based applications). This method may optionally be customized with different hooks for different interfaces through different cellular telephone companies as is known in the art.
  • the POST is optionally and preferably implemented through HTTP and/or through XML, and could optionally be implemented in various ways as could be determined by one of ordinary skill in the art.
  • the POST method involves the submission of data to the identified resource (ie the data is "posted" to the resource). The data is included in the body of the request.
  • the implementation for XML is as for any XML object.
  • SMS data that comes from and goes to SMSC/HTTP gateway 116 is preferably structured as XML data.
  • at least the following data is transmitted: the cellular number from which the message originated, the content of the message itself, the date and time of transmission.
  • the delivery status of the message and the number to which the message was addressed are also included.
  • Dating site server 104 optionally and preferably features a message processing module 118 for receiving the parsed information.
  • Message processing module 118 preferably receives the identified word(s) and/or other content that were sent with the SMS message from parsing agent 115; alternatively, message processing module 118 may itself perform the parsing function (for example as previously described for parsing agent 115). If the content includes a word or words indicating the intent of user 110 to register, then message processing module 118 preferably sends a command to a user management module 120 to determine whether user 110 is already registered, which includes the cellular telephone number of cellular telephone 112. Alternatively, such registration content may not be required; instead, message processing module 118 may automatically send such information to user management module 120 to determine whether user 110 is already registered.
  • User management module 120 then examines a user database 122 to determine whether the cellular telephone number of cellular telephone 112 is already in user database 122. If the cellular telephone number is already in user database 122, then the log-in process preferably continues as described in greater detail below.
  • user management module 120 sends a command to a user registration module 124 to create a new record for the cellular telephone number.
  • User registration module 124 generates a one time unique code (TOKEN), which is sent to cellular telephone 112, preferably as a SMS message.
  • TOKEN one time unique code
  • the SMS message is optionally and preferably sent to cellular telephone 112 through a reversal of the previously described process, by sending the content of the SMS message and the telephone number of cellular telephone 112 to SMSC/HTTP gateway 116 again optionally and preferably according to the HTTP POST command. SMSC/HTTP gateway 116 then passes this information to SMSC 114, which transmits the SMS message to cellular telephone 112.
  • a billing code is preferably included which supports a charge to the cellular telephone account of cellular telephone 112.
  • This billing code is recognized by SMSC/HTTP gateway 116 and is sent to the billing function of the cellular service provider operating SMSC/HTTP gateway 116 (not shown), so that user 110 will be charged.
  • Each such billing code is preferably related to and/or is triggered by a user action of user 110, such as registering on the system, sending a message and so forth.
  • billing codes are a standard feature, they may vary between cellular telephone companies and as such may require adjustments between companies. However, such adjustments could easily be made by one of ordinary skill in the art.
  • This preferred embodiment enables each service offered by dating site server 104 to be charged to user 110 in a secure manner. It should be noted that such a charge through such a billing code may optionally be added to any message sent to SMSC/HTTP gateway 116, even for messages not sent to cellular telephone 112.
  • User 110 receives the TOKEN through cellular telephone 112 and enters it on the main page of the Web site through Web browser 106.
  • the TOKEN is preferably received by a security module 126 of dating site server 104, which then verifies that the TOKEN is valid, has not been previously used and that user 110 does not have a user profile yet. If the TOKEN is valid, then security module 126 preferably determines a "fingerprint" for Web browser 106, in order to permit future identification of Web browser 106 with a unique identifier.
  • the unique browser identifier is optionally and preferably generated as follows.
  • an identifier of one or more HTTP objects in Web browser 106 and/or some other information which is specific to the software and/or hardware of user computer 102 is preferably obtained, plus a timestamp.
  • This information is then preferably processed according to an algorithm, such as a checksum method which optionally be the MD5 checksum method for example.
  • the resultant information is optionally and preferably stored and/or may be used with a cookie as described in greater detail below as the primary or fall-back method for identification.
  • security module 126 in order to be able to communicate with a software object such as a Web browser object, security module 126 sends a XMLHttpRequest to the XMLHttpRequest object of Web browser 106.
  • XMLHttpRequest is a standard function for web browsers and is a protocol for enabling XML data to be sent between a Web browser and a Web server, shown here as Web browser 106 and security module 126.
  • the implementation of the XMLHttpRequest object by Microsoft Web browsers such as Internet Explorer is known as XMLHTTP object and is provided herein as a non-limiting example.
  • the call to the XMLHttpRequest object then generates a unique identifier for the object, preferably on the server side, for example by security module 126.
  • Security module 126 stores the generated data in user database 122 according to the cellular telephone number of cellular telephone 112.
  • Security module 126 then generates a cookie based on the unique XMLHttpRequest object identifier, which is transmitted to and stored on user computer 102.
  • a specific but non-limiting example of the above process may optionally be performed as follows. This description is provided with regard to the Microsoft implementation of XMLHTTP as an example only and without a wish to be limiting in any way.
  • a JavaScript or other suitable scripting language is preferably used, with a function to call for the XMLHTTP CLSID (class identifier; this is a type of GUID (globally unique identifier) used by Microsoft COM (component object model), and is a pseudorandom number generated according to a particular protocol as an identifier).
  • a call is first made to see whether a XMLHTTP object exists at Web browser 106; if so, then a new instance of this object is created and a separate stack count is maintained for each object (stack identifier).
  • the CLSID may be determined according to the type of object.
  • the current microtime (timestamp of the processor of user computer 102 and/or of dating site server 104) is then recorded.
  • the microtime of dating site server 104 is used; more preferably the CLSID and stack identifier are sent to dating site server 104 for performance of the next part of the method to maintain security.
  • the values of the microtime and of the XMLHTTP CLSID are used together to create a string according to a method such as Base64 for example.
  • An MD5 checksum is preferably then added over the string to validate uniqueness; the result is then preferably stored in user database 122. All of the initial parameters are preferably also stored in user database 122 for performing the reverse process.
  • the seed values for both the Base64 and MD5 processes are the current microtime on top of the CLSID of the XMLHTTP object, as shown according to the following pseudocode: MD5(Base64(Object CLID + MicroTime)).
  • all security related information is stored in some type of encrypted format, such as encryption generated by the MD5 (Message-Digest algorithm 5) method, which may also optionally be used to check the integrity of files, such as for example the integrity of the cookie stored on user computer 102.
  • MD5 Message-Digest algorithm 5
  • a description of the MD5 method may be found in RFC 1321, hereby incorporated by reference as if fully set forth herein.
  • Base64 encoding may optionally be used to obscure security related information and may also optionally be used to protect the integrity of information transmitted between user computer 102 and dating site server 104, as well as for stored information.
  • User 110 is now optionally and preferably requested to enter personal information through Web browser 106, in order to create a user profile.
  • information requested optionally and preferably includes but is not limited to a user nickname (for use with other users of the Web site), gender, gender of desired partner, age of user, age range of desired partner, hobbies and interests of the user, race or religion of user or desired partner, political views and so forth.
  • user 110 may choose to omit some or all of this information.
  • user 110 can access the account of user 110 and start to use the services of the Web site, which are described in greater detail below.
  • user 110 preferably sends a SMS message with cellular telephone 112, again to a cellular telephone number as previously described. Also as previously described, this number may optionally be a "special" or “short-cut” number, optionally with the previously described features.
  • the SMS message is preferably sent and parsed as previously described.
  • User management module 120 determines whether user 110 is already registered according to cellular telephone 112, by examining user database 122. As user 110 is now registered, user management module 120 locates the registration and preferably causes an acknowledgement message to be sent to cellular telephone 112.
  • security module 126 determines the unique browser identifier for Web browser 106 and preferably examines the cookie stored on user computer 102, optionally and preferably through a listener 127.
  • Listener 127 preferably sends the unique browser identifier, the cookie and the IP address of user computer 102 to security module 126 using the GET method of the HTTP protocol.
  • HTTP is stateless so Web browser 106 and other software operating according to HTTP require some type of external stimulus to trigger an action.
  • Listener 127 performs a back office function, by requesting the unique fingerprint from Web browser 106 as described above at least once and preferably a plurality of times, more preferably frequently (for example every few seconds) to make certain that the web browser is identified.
  • a cookie may optionally be requested in place of or in addition to the above fingerprint.
  • listener 127 may optionally and preferably provide a smart trigger, for example to let a user know that someone is viewing his/her profile.
  • a smart trigger for example to let a user know that someone is viewing his/her profile.
  • Various types of triggers are possible, for example according to the length of time that a profile page is viewed. If the user is not on-line (ie able to view the information through a web browser) then listener 127 may optionally cause an SMS message to be sent as described herein.
  • Security module 126 This information is preferably compared by security module 126 to information stored in user database 122 to complete the identification and authentication process.
  • Security module 126 also preferably looks for a LOGIN SMS Message in the SMSLog database table of user database 122 for user 110 as part of the identification and authentication process.
  • Security module 126 then preferably creates the appropriate session identifier and optionally one or more cookies for the current user session.
  • Security module 126 also preferably causes Web browser 106 to start displaying an appropriate Web page, for example by redirecting Web browser 106 to a Web page personalized for user 110.
  • Listener 127 preferably runs in the background and preferably sends the unique browser identifier periodically to security module 126, for example to indicate that the session with Web browser 106 is continuing. According to preferred embodiments of the present invention, optionally such a process enables a time limit to be placed on the amount of time that user 110 may be logged in through Web browser 106 with a single charge. According to this preferred embodiment of the present invention, user 110 is charged for a discrete period of time for being logged onto the Web site. For example, user 110 may be charged for one hour. Once the hour has completed, user 110 may optionally be prompted to send another SMS message through cellular telephone 112 in order to be charged again and to start another hour of use.
  • Such a prompt may optionally be sent as a SMS message to cellular telephone 112 and/or displayed on the Web page by Web browser 106, for example. If user 110 fails to log in through Web browser 106 within one hour from the time that the SMS message is sent, user 110 may optionally be reminded to perform the log in process, or alternatively or additionally may be given a refund for the unused hour.
  • each time security module 126 is notified security module 126 requests that user management module 120 look in user database 122 for a trigger change in the user's record.
  • the data concerning time may optionally be stored in a LOGINj ⁇ CKET field which is a date/time field, so that if the LOGINJTICKET field is not older than the maximum allotted time period according to dating site server 104 microtime, the session with Web browser 106 is maintained.
  • the record of user 110 in user database 122 may also optionally include information about services consumed (for example to permit auditing) as well as the last time that user 110 logged in (or optionally information about a plurality of log-ins may be stored).
  • the SMSLog database table of user database 122 may optionally also store additional information regard SMS message transactions, including but not limited to, the cellular telephone number used, the message body that was sent or received, the direction of the SMS message (whether incoming or outgoing), the date and time of the message, the delivery status of the message (whether it was received), the type of the message (described in greater detail below; it may optionally include but is not limited to a registration message, login message, kiss message, and so forth), and optionally a unique member identifier. If this last is included, then it is also preferably included in the user's record in user database 122.
  • user 110 may choose to view other compatible user profiles, which fit the requested parameters, for example according to age, gender and so forth.
  • User 110 may optionally enter the selected search parameters through Web browser 106.
  • User 110 then preferably views information about each user with matching parameters (the match is also performed according to parameters set by that user as well), optionally including a photograph, user information and a user nickname.
  • user 110 may choose to send a notification to another user having a matching profile, preferably according to the user nickname, as shown with regard to Figure 2. It should be noted that components shown in Figure 1 are assumed to be present in Figure 1, although some were omitted for the sake of clarity only.
  • Figure 2 shows system 100 again, but with an additional user 200, additional user computer 202, Web browser 206 and cellular telephone 212.
  • User 110 preferably enters the user nickname of user 200 from the user profile of user 200, optionally through Web browser
  • user 200 is preferably notified through Web browser 206 and/or through cellular telephone 212, and user 110 and user 200 may then start a chat session if user 200 accepts the invitation.
  • user 200 is able to view the user profile of user 110, again optionally including a photograph, user information and a user nickname, before deciding whether to accept the invitation.
  • SMS message is optionally and preferably sent to cellular telephone 212 by a notification module 204, which preferably sends the content of the SMS message and the telephone number of cellular telephone 212 to SMSC/HTTP gateway 116, optionally and preferably according to the HTTP POST command. SMSC/HTTP gateway 116 then passes this information to SMSC 114, which transmits the SMS message to cellular telephone 212.
  • a billing code may optionally be included as previously described, so as to charge the cellular telephone account of cellular telephone 212.
  • confirmation of the request to send an SMS message by user 110 may optionally be made by sending a return SMS message cellular telephone 112, again to permit a billing code to be entered and the cellular telephone account of cellular telephone 112 to be charged.
  • the content of the SMS message which is sent may optionally be determined automatically or alternatively may be customized by user 110.
  • user 110 may optionally send user 200 a virtual "kiss".
  • the virtual "kiss" is a non-limiting example of a type of message which may be sent between users but without the requirement of communication in real time (although optionally such a message may be sent and received in real time), as an optional but preferred embodiment of the present invention.
  • the virtual "kiss" message may optionally be sent by user 110 through Web browser 106 and Web server 108, and may then be passed to user 200 through Web browser 206, or alternatively through cellular telephone 212.
  • user HO could send the message through cellular telephone 112, and again it could be received by user 200 as above. Distribution could optionally be performed as previously described, depending upon the mechanism used.
  • Figures 3-5 show exemplary, non-limiting illustrative screenshots according to an illustrative implementation of the dating site according to the present invention.
  • Figure 3 shows an illustrative, non-limiting screenshot of an initial screen for the dating web site, which includes instructions for registering and for logging on.
  • Figure 4 shows an illustrative, non-limiting screenshot of a user profile display for the dating web site according to the present invention, including information about the user and optionally a photograph.
  • Figure 5 shows an illustrative, non-limiting screenshot of a display to a user after login to the dating web site according to the present invention.
  • a different gateway may optionally be used than the SMSC gateway, which is part of the cellular telephone operator.
  • a software based gateway may optionally be added to the cellular telephone infrastructure to supply more advanced services and features, for example to use WAP (wireless application protocol), or video conferencing from a Web browser to a cellular telephone (or the reverse, from a cellular telephone to a Web browser).
  • the solution of Figures 1 and 2 may optionally be implemented with the above embodiment of a software gateway. It is not necessary to install software on the user's cellular telephone or change the workflow. Instead, preferably a WAP/UMTS/SMSC gateway implemented for the present invention is installed in the telephone cellular operator. This implementation is preferred for cellular telephone web browsers which use WAP (through GPRS) or UMTS to send and receive web data, because typically cellular telephone operators do not transmit the cellular telephone number through such protocols; this number is necessary for the operation of the present invention.
  • the user may optionally use one or more of a number of different features associated with the dating Web site. These features may optionally include but are not limited to blogs
  • each user has his/her own blog and can optionally comment on other users' blogs, thereby optionally providing an additional mechanism for communication
  • Simple / Advanced searches search any type of possible data for matches
  • Video / Audio / Picture Gallery (each user optionally has a video, audio and picture gallery); Guestbooks (each user has a guest book and can comment on other users' guest books); Smart Matching Algorithm (optionally and preferably every 60 seconds the system perform a matching process for all the profiles in the system against the user pre-defined search, user behavior and some other data and display the best matches for the user),
  • A/V Chat full Audio / Video conferencing chat that can be used as a regular chat, a Voice chat, or full A/V chat; preferably the user can decide which one to use
  • Real Time update for users for every event if the user is not online, the user preferably receives an SMS message, for example: new virtual "kiss", new message, new match to a user based on the profiles of both users, new chat request; if the user
  • the user does not need to download a plug-in to a Web browser or other software for operation by the user's computer.
  • the user also does not need to remember a password or PIN.
  • identification and authentication are preferably performed through the user's cellular telephone, theft or misuse of the user's account by an unauthorized party are effectively limited if not completely blocked.
  • the above described payment system permits "pay as you go" use of the dating web site, as rather than being debited from a prepaid amount, the user is preferably billed for each use by the cellular telephone service provider.
  • the user is not required to subscribe to a monthly service or to make any type of commitment to the dating web site provider.

Abstract

A system (100) and a method for real-time authentication and notification of a user of a Web site for inter-personal communications through the user's (110) cellular telephone (112).

Description

SYSTEM AND METHOD FOR REAL-TIME AUTHENTICATION AND
NOTIFICATION FOR INTER-PERSONAL COMMUNICATIONS
RELATIONSHIP TO EXISTING APPLICATIONS
The present application claims priority from US Provisional Application No. 60/801,318, filed on May 18, 2006, the contents of which are hereby incorporated by reference as if fully set forth herein.
FIELD OF THE INVENTION
The present invention relates to a system and a method for real-time authentication and notification for interpersonal communications, such as for example for a matchmaking or "dating" web site, and in particular, to such a system and method which enable authentication and notification to be performed through virtual identification.
BACKGROUND OF THE INVENTION The Internet has enabled computer users all over the world to interact and communicate electronically. One particularly popular mode for communication is through Web pages, which collectively form the World Wide Web. Web pages are useful for displaying text and graphics, and even animation, video data and audio data. Unsurprisingly, Web pages have also become popular for inter-personal communications, as for matchmaking or "dating" web sites. A large number of Web sites are currently devoted to dating. Among the advantages of such Web sites are the possibility for anonymity and the ability to communicate with many people who are not the regular social sphere of the individual.
However, such dating Web sites have many disadvantages. For example, ultimately individuals wish to communicate in real time with a potential partner or "date". Therefore, many dating Web sites support real time "chat", in which text messages are exchanged, between individuals using the Web site. In order for such real time communication to occur, both parties must be on-line and connected to the Web site at the same time. Such coordination may be difficult to achieve, either through planning or by waiting on-line until the other party also enters the Web site. Unfortunately, currently dating Web- sites do not offer any type of real time notification which would enable the other party to enter the Web site at the appropriate time.
Another problem is one of identification and authentication. Currently users of a dating Web site must remember a username and some type of identifier, such as a PIN (personal identification number) or password for example. Unfortunately such systems are not particularly secure; furthermore, many individuals have difficulty remembering their identifier and must then request help from the Web site in order to access it. This difficulty may discourage users from using the dating Web site.
Yet another problem is payment. Many individuals are uncomfortable about using their credit cards for on-line purchases, including for dating Web sites. Although a few micropayment systems, such as PayPal, are available, they are not accepted by many Web sites for payment. Therefore, it would be advantageous if the use of services on dating Web sites could be decoupled from the requirement for use of the credit card itself.
SUMMARY OF THE INVENTION
There is an unmet need for, and it would be highly useful to have, a system and a method for real-time authentication and notification for inter-personal communications through for example "dating" web sites, which would preferably enable authentication and notification to be performed through virtual identification. There is also an unmet need for, and it would be highly useful to have, a system and a method for charging users of web sites or other services for inter-personal communications in a convenient and secure manner. The present invention overcomes these disadvantages of the background art by providing a system and method for real-time authentication and notification of a user of a Web site for inter-personal communications through the user's cellular telephone. Preferably, authentication and notification are performed through the transmission of messages, more preferably SMS (Short Message Service) messages, although optionally EMS (SMS enhanced message service) messages and/or MMS (multimedia messaging service) messages may be used, alternatively or additionally to SMS messages. For the sake of clarity, the description provided herein will center on SMS messages without any intention of being limiting in any way.
According to preferred embodiments of the present invention, the user enters the Web site or "logs in" through a process with the user's cellular telephone. Preferably, the cellular telephone is at least used for authentication of the user but is more preferably also used for identification of the user. Most preferably, the user sends a message from the cellular telephone to a specified number, which in the current example is a SMS message but may optionally be other types of messages as previously described. The message is passed to a server which parses it as well as the cellular telephone number from which it was sent. If the user is already registered, then the user is permitted to enter the Web site; otherwise preferably a registration process is started.
According to other preferred embodiments of the present invention, notification of interest in real-time communication by another user is also preferably performed through the cellular telephone. For example, if one user wishes to communicate in real-time with another user, a message is sent to the cellular telephone of the second user. However, the message is not sent directly from the cellular telephone of the first user but rather is sent according to a mechanism provided by the present invention, for example through a server which is in communication with the Web site. Therefore, anonymity is preserved. Once the second user receives the message, if the second user is interested and available for such communication, the second user then also enters or logs on to the Web site (if the second user has not already done so), and real-time communication may be performed between the users.
Optionally and preferably, the user is charged for the use of the Web site and/or its services, including but not limited to, charging for registration, entering the Web site, searching and/or viewing profiles of potential partners, receiving and/or sending a real-time notification to a desired party for communication, viewing or creating enhanced user profiles with additional information (for example optionally including a photograph of the potential partner) and so forth.
According to still other preferred embodiments of the present invention, charging for use of the Web site and/or its associated services is also performed according to the cellular telephone of the user. For example, one or more charges may optionally be added to the cellular telephone bill itself, through the cellular telephone company providing the cellular telephone service to the user. Alternatively or additionally, the amount of one or more charges may optionally be deducted from a standing amount obtained from the user, for example through a credit card number provided by the user. Preferably, such a credit card number is not provided on-line, to avoid objections of many individuals in this regard as described above, but rather is provided off-line through a separate communication channel, including but not limited to, a voice conversation, facsimile, regular mail, other types of delivery of a hard copy (paper) document and so forth. Also alternatively or additionally, such charges may be made to the credit card number (provided as described above) at the end of a billing cycle, such as once per month for example. By "online", it is meant that communication is performed through an electronic communication medium, including but not limited to, telephone voice communication through the PSTN (public switched telephone network), cellular telephones or a combination thereof; exchanging information through Web pages according to HTTP (HyperText Transfer Protocol) or any other protocol for communication with and through mark-up language documents; exchanging messages through e-mail (electronic mail), messaging services such as ICQ™ for example, and any other type of messaging service; any type of communication using a computational device as previously defined; as well as any other type of communication which incorporates an electronic medium for transmission.
Unless otherwise defined, all technical and scientific terms used herein have the same meaning as commonly understood by one of ordinary skill in the art to which this invention belongs. The materials, methods, and examples provided herein are illustrative only and not intended to be limiting.
Implementation of the method and system of the present invention involves performing or completing certain selected tasks or stages manually, automatically, or a combination thereof. Moreover, according to actual instrumentation and equipment of preferred embodiments of the method and system of the present invention, several selected stages could be implemented by hardware or by software on any operating system of any firmware or a combination thereof. For example, as hardware, selected stages of the invention could be implemented as a chip or a circuit. As software, selected stages of the invention could be implemented as a plurality of software instructions being executed by a computer using any suitable operating system. In any case, selected stages of the method and system of the invention could be described as being performed by a data processor, such as a computing platform for executing a plurality of instructions.
Although the present invention is described with regard to a "computer" on a
"computer network", it should be noted that optionally any device featuring a data processor and/or the ability to execute one or more instructions may be described as a computer, including but not limited to a PC (personal computer), a server, a minicomputer, a cellular telephone, a smart phone, a PDA (personal data assistant), a pager, TV decoder, game console, digital music player. Any two or more of such devices in communication with each other, and/or any computer in communication with any other computer, may optionally comprise a "computer network".
BRIEF DESCRIPTION OF THE DRAWINGS
The invention is herein described, by way of example only, with reference to the accompanying drawings. With specific reference now to the drawings in detail, it is stressed that the particulars shown are by way of example and for purposes of illustrative discussion of the preferred embodiments of the present invention only, and are presented in order to provide what is believed to be the most useful and readily understood description of the principles and conceptual aspects of the invention. In this regard, no attempt is made to show structural details of the invention in more detail than is necessary for a fundamental understanding of the invention, the description taken with the drawings making apparent to those skilled in the art how the several forms of the invention may be embodied in practice.
In the drawings:
FIG. 1 is a schematic block diagram of an exemplary system according to the present invention; FIG. 2 shows the system of Figure 1 with an additional user;
FIG. 3 shows an illustrative, non-limiting screenshot of an initial screen for the dating web site according to the present invention;
FIG. 4 shows an illustrative, non-limiting screenshot of a user profile display for the dating web site according to the present invention; and FIG. 5 shows an illustrative, non-limiting screenshot of a display to a user after login to the dating web site according to the present invention. DESCRIPTION OF THE PREFERRED EMBODIMENTS
The present invention is of a system and a method for system and method for real-time authentication and notification of a user of a Web site for inter-personal communications through the user's cellular telephone. As described herein, preferably authentication and notification are performed through messaging through the cellular telephone, more preferably by using SMS messages, although optionally other types of messages may be used, additionally or alternatively. The term "dating web site" preferably encompasses any web site for inter-personal communications, as well as optionally any service for inter-personal communications which provides a mechanism for real time notification of a potential partner for communications. Other examples include but are not limited to job or employment web sites, real estate web sites, auction or e-commerce web sites for which inter-personal communications are required and so forth.
According to preferred embodiments of the present invention, real time notification optionally and preferably includes any mechanism for notifying a user about a potential partner for communications. More preferably, such a mechanism comprises any type of notification which is separate from the communication channel used by the service for interpersonal communications (for example, for a dating web site, preferably notification is provided through a mechanism other than by display through the user's Web browser). Also more preferably, the mechanism does not require direct user action to receive the notification. Optionally and most preferably, such a mechanism comprises an SMS message or other message through a telephone (optionally including SMS messages or other non voice messages sent through any type of telephone, including but not limited to cellular telephones and telephones connected to the PSTN (public switched telephone network), as well as voice message sent through any type of telephone), a message or other notification sent through a beeper or pager, or an e-mail or other message sent through a portable computational device. The principles and operation of the present invention may be better understood with reference to the drawings and the accompanying description.
Referring now to the drawings, Figure 1 is a schematic block diagram of an exemplary system according to the present invention. As shown, a system 100 features a user computer
102 in communication with a dating site server 104. User computer 102 is optionally and preferably communicating with dating site server 104 according to any suitable communication protocol, including but not limited to exchanging information through Web pages according to HTTP (HyperText Transfer Protocol) or any other protocol for communication with and through mark-up language documents. For the purpose of clarity only and without any intention of being limiting, such communication is described herein in terms of Web pages, such that user computer 102 preferably operates a Web browser 106 and dating site server 104 preferably operates as a Web server 108 for operating a Web site. It should also be noted that although technical description is provided herein for a number of different protocols and methods used in support of the present invention, this description is intended as an illustrative example only and is not meant to be limiting in any way.
Web browser 106 preferably displays a Web page from Web server 108 which includes instructions for entering or "logging in" to the Web site. As described herein, preferably such a log in process is performed with a cellular telephone 112 of a user 110. The Web page preferably features one or more instructions regarding a cellular telephone number to which the SMS message should be sent, and more preferably also features one or more words or other content to be included in the SMS message.
When user 110 wishes to log in to the Web site, user 110 preferably sends a SMS message through cellular telephone 112 to a particular telephone number, which may optionally be a "specialty" or "shortcut" number that is only accessible through a particular cellular telephone service provider, or may only be accessible through cellular telephones but not through PSTN (public switched telephone network) telephones, for example. Preferably, such a telephone number is the number displayed on the Web site as described above. More preferably, the SMS message features one or more word(s) or other content, which most preferably is determined according to the Web page from Web server 108 as described above. Cellular telephone 112 is preferably in communication with a SMSC (short message service center) 114. SMSC 114 receives the SMS message according to the SMS protocol (as is well known in the art), and passes it to a SMSC/HTTP gateway 116. SMSC 114 determines that this is the correct action according to the telephone number to which the SMS message was addressed, which is associated with transfer by HTTP. A parsing agent 115 at SMSC/HTTP gateway 116 then parses the SMS message, preferably at least parsing the content. Parsing agent 115 preferably operates according to at least one content parsing process, although preferably both processes are combined and performed by one or more parsing agents 115 (of which only one is shown for the sake of clarity and without wishing to be limited in any way). Parsing agent 115 preferably parses regular word expressions according to one parsing process. Such regular word expressions are more preferably determined according to a list or database of such expressions. Parsing agent 115 preferably is able to identify one or more actions to perform according to one or more regular word expressions.
If no regular word expressions are identified or if one or more words remain in the content of the message after identification of one or more regular word expressions, parsing agent 115 preferably parses according to another parsing process. This other process preferably includes considering at least one word of the content, but more preferably a plurality of words and most preferably all words. Each such word is preferably considered against all possible words/combinations related to one or more subjects, such as dating for example. If at least one subject is found, then the content is assumed to be related to that subject. If a plurality of subjects is found, then optionally the words are related to each such subject according to their location in the sentence. Alternatively or additionally, if a plurality of subjects is found, then the subjects are optionally weighted according to the number of words associated with each subject; the subject which has the most associated words is then considered to be the primary subject of the message content. Also alternatively or additionally, one or more subjects may optionally be considered to be more important than others and so are given a greater weighting. It such be noted that although the above description refers to a "word", each such "word" may optionally comprise a plurality of words.
Parsing agent 115 preferably also parses other message information, as for an SMS message (although as previously noted the present invention is not limited to SMS messages only but instead encompasses other types of messages, preferably including any type of message transmittable according to a cellular telephone protocol). Each such field may optionally and preferably be identified and analyzed according to the appropriate message standard. For example, for SMS messages, the message standard is the Short Message Service - Point to Point (SMS-PP) according to GSM recommendation 03.40. For MMS messages, the appropriate standard is determined according to 3GPP standards. For EMS messages, the appropriate standard is determined according to 3GPP Technical Specification 23.040. Other message types may optionally be incorporated which have their own appropriate message standards.
Non-limiting examples of message fields include content (the actual message), telephone number of the sender and receiver, identification of the sender and receiver. Parsing agent 115 preferably uses at least the telephone number information to determine geographical location of the sender and of the recipient (although it should be noted that if "roaming" is enabled, one or both of the sender or recipient may be located at a geographical location other than that associated with their telephone number). Parsing agent 115 preferably is able to interact with any cellular company equipment and/or software.
SMSC/HTTP gateway 116 then transmits the parsed information to dating site server 104, optionally and preferably by using the POST method over the HTTP protocol (which is well known in the art for transferring SMS messages originating from cellular telephones to server-based applications). This method may optionally be customized with different hooks for different interfaces through different cellular telephone companies as is known in the art. The POST is optionally and preferably implemented through HTTP and/or through XML, and could optionally be implemented in various ways as could be determined by one of ordinary skill in the art. For example when implemented through HTTP, the POST method involves the submission of data to the identified resource (ie the data is "posted" to the resource). The data is included in the body of the request. The implementation for XML is as for any XML object.
SMS data that comes from and goes to SMSC/HTTP gateway 116 is preferably structured as XML data. Preferably, at least the following data is transmitted: the cellular number from which the message originated, the content of the message itself, the date and time of transmission. Optionally and preferably, the delivery status of the message and the number to which the message was addressed (the latter information is preferably included if there are multiple cellular telephone numbers associated with dating site server 104) are also included.
Dating site server 104 optionally and preferably features a message processing module 118 for receiving the parsed information. Message processing module 118 preferably receives the identified word(s) and/or other content that were sent with the SMS message from parsing agent 115; alternatively, message processing module 118 may itself perform the parsing function (for example as previously described for parsing agent 115). If the content includes a word or words indicating the intent of user 110 to register, then message processing module 118 preferably sends a command to a user management module 120 to determine whether user 110 is already registered, which includes the cellular telephone number of cellular telephone 112. Alternatively, such registration content may not be required; instead, message processing module 118 may automatically send such information to user management module 120 to determine whether user 110 is already registered. User management module 120 then examines a user database 122 to determine whether the cellular telephone number of cellular telephone 112 is already in user database 122. If the cellular telephone number is already in user database 122, then the log-in process preferably continues as described in greater detail below.
However, if the cellular telephone number of cellular telephone 112 is not already in user database 122, then user management module 120 sends a command to a user registration module 124 to create a new record for the cellular telephone number. User registration module 124 generates a one time unique code (TOKEN), which is sent to cellular telephone 112, preferably as a SMS message. The SMS message is optionally and preferably sent to cellular telephone 112 through a reversal of the previously described process, by sending the content of the SMS message and the telephone number of cellular telephone 112 to SMSC/HTTP gateway 116 again optionally and preferably according to the HTTP POST command. SMSC/HTTP gateway 116 then passes this information to SMSC 114, which transmits the SMS message to cellular telephone 112.
According to preferred embodiments of the present invention, each time a message is passed from dating site server 104 to SMSC/HTTP gateway 116, a billing code is preferably included which supports a charge to the cellular telephone account of cellular telephone 112. This billing code is recognized by SMSC/HTTP gateway 116 and is sent to the billing function of the cellular service provider operating SMSC/HTTP gateway 116 (not shown), so that user 110 will be charged. Each such billing code is preferably related to and/or is triggered by a user action of user 110, such as registering on the system, sending a message and so forth. Although such billing codes are a standard feature, they may vary between cellular telephone companies and as such may require adjustments between companies. However, such adjustments could easily be made by one of ordinary skill in the art. This preferred embodiment enables each service offered by dating site server 104 to be charged to user 110 in a secure manner. It should be noted that such a charge through such a billing code may optionally be added to any message sent to SMSC/HTTP gateway 116, even for messages not sent to cellular telephone 112.
User 110 receives the TOKEN through cellular telephone 112 and enters it on the main page of the Web site through Web browser 106. The TOKEN is preferably received by a security module 126 of dating site server 104, which then verifies that the TOKEN is valid, has not been previously used and that user 110 does not have a user profile yet. If the TOKEN is valid, then security module 126 preferably determines a "fingerprint" for Web browser 106, in order to permit future identification of Web browser 106 with a unique identifier.
According to preferred embodiments of the present invention, the unique browser identifier is optionally and preferably generated as follows. Generally, an identifier of one or more HTTP objects in Web browser 106 and/or some other information which is specific to the software and/or hardware of user computer 102 is preferably obtained, plus a timestamp. This information is then preferably processed according to an algorithm, such as a checksum method which optionally be the MD5 checksum method for example. The resultant information is optionally and preferably stored and/or may be used with a cookie as described in greater detail below as the primary or fall-back method for identification. According to optional but preferred embodiments of the present invention, in order to be able to communicate with a software object such as a Web browser object, security module 126 sends a XMLHttpRequest to the XMLHttpRequest object of Web browser 106. XMLHttpRequest is a standard function for web browsers and is a protocol for enabling XML data to be sent between a Web browser and a Web server, shown here as Web browser 106 and security module 126. The implementation of the XMLHttpRequest object by Microsoft Web browsers such as Internet Explorer is known as XMLHTTP object and is provided herein as a non-limiting example. The call to the XMLHttpRequest object then generates a unique identifier for the object, preferably on the server side, for example by security module 126. Security module 126 stores the generated data in user database 122 according to the cellular telephone number of cellular telephone 112. Security module 126 then generates a cookie based on the unique XMLHttpRequest object identifier, which is transmitted to and stored on user computer 102.
A specific but non-limiting example of the above process may optionally be performed as follows. This description is provided with regard to the Microsoft implementation of XMLHTTP as an example only and without a wish to be limiting in any way. A JavaScript or other suitable scripting language is preferably used, with a function to call for the XMLHTTP CLSID (class identifier; this is a type of GUID (globally unique identifier) used by Microsoft COM (component object model), and is a pseudorandom number generated according to a particular protocol as an identifier). Preferably, a call is first made to see whether a XMLHTTP object exists at Web browser 106; if so, then a new instance of this object is created and a separate stack count is maintained for each object (stack identifier). The CLSID may be determined according to the type of object.
The current microtime (timestamp of the processor of user computer 102 and/or of dating site server 104) is then recorded. Preferably the microtime of dating site server 104 is used; more preferably the CLSID and stack identifier are sent to dating site server 104 for performance of the next part of the method to maintain security. The values of the microtime and of the XMLHTTP CLSID are used together to create a string according to a method such as Base64 for example. An MD5 checksum is preferably then added over the string to validate uniqueness; the result is then preferably stored in user database 122. All of the initial parameters are preferably also stored in user database 122 for performing the reverse process. The seed values for both the Base64 and MD5 processes are the current microtime on top of the CLSID of the XMLHTTP object, as shown according to the following pseudocode: MD5(Base64(Object CLID + MicroTime)).
For security reasons, preferably all security related information is stored in some type of encrypted format, such as encryption generated by the MD5 (Message-Digest algorithm 5) method, which may also optionally be used to check the integrity of files, such as for example the integrity of the cookie stored on user computer 102. A description of the MD5 method may be found in RFC 1321, hereby incorporated by reference as if fully set forth herein. Base64 encoding may optionally be used to obscure security related information and may also optionally be used to protect the integrity of information transmitted between user computer 102 and dating site server 104, as well as for stored information. User 110 is now optionally and preferably requested to enter personal information through Web browser 106, in order to create a user profile. For example, information requested optionally and preferably includes but is not limited to a user nickname (for use with other users of the Web site), gender, gender of desired partner, age of user, age range of desired partner, hobbies and interests of the user, race or religion of user or desired partner, political views and so forth. Of course, user 110 may choose to omit some or all of this information.
Once the information has been entered to the user profile, user 110 can access the account of user 110 and start to use the services of the Web site, which are described in greater detail below.
If user 110 wishes to log in again, user 110 preferably sends a SMS message with cellular telephone 112, again to a cellular telephone number as previously described. Also as previously described, this number may optionally be a "special" or "short-cut" number, optionally with the previously described features. The SMS message is preferably sent and parsed as previously described. User management module 120 determines whether user 110 is already registered according to cellular telephone 112, by examining user database 122. As user 110 is now registered, user management module 120 locates the registration and preferably causes an acknowledgement message to be sent to cellular telephone 112. When user 110 now tries to enter the Web site through Web browser 106, security module 126 determines the unique browser identifier for Web browser 106 and preferably examines the cookie stored on user computer 102, optionally and preferably through a listener 127. Listener 127 preferably sends the unique browser identifier, the cookie and the IP address of user computer 102 to security module 126 using the GET method of the HTTP protocol. HTTP is stateless so Web browser 106 and other software operating according to HTTP require some type of external stimulus to trigger an action. Listener 127 performs a back office function, by requesting the unique fingerprint from Web browser 106 as described above at least once and preferably a plurality of times, more preferably frequently (for example every few seconds) to make certain that the web browser is identified. A cookie may optionally be requested in place of or in addition to the above fingerprint. Once user 110 has logged on, listener 127 may optionally and preferably cause Web browser 106 to display a personal profile page of user 110 for example.
Preferably there are multiple different types of listener 127, or a single listener 127 for multiple functions, for example for different types of triggering events such as user login, a new view of a profile page for user 110, sending of a message to user 110 and so forth. Listener 127 may optionally and preferably provide a smart trigger, for example to let a user know that someone is viewing his/her profile. Various types of triggers are possible, for example according to the length of time that a profile page is viewed. If the user is not on-line (ie able to view the information through a web browser) then listener 127 may optionally cause an SMS message to be sent as described herein. This information is preferably compared by security module 126 to information stored in user database 122 to complete the identification and authentication process. Security module 126 also preferably looks for a LOGIN SMS Message in the SMSLog database table of user database 122 for user 110 as part of the identification and authentication process. Security module 126 then preferably creates the appropriate session identifier and optionally one or more cookies for the current user session. Security module 126 also preferably causes Web browser 106 to start displaying an appropriate Web page, for example by redirecting Web browser 106 to a Web page personalized for user 110.
Listener 127 preferably runs in the background and preferably sends the unique browser identifier periodically to security module 126, for example to indicate that the session with Web browser 106 is continuing. According to preferred embodiments of the present invention, optionally such a process enables a time limit to be placed on the amount of time that user 110 may be logged in through Web browser 106 with a single charge. According to this preferred embodiment of the present invention, user 110 is charged for a discrete period of time for being logged onto the Web site. For example, user 110 may be charged for one hour. Once the hour has completed, user 110 may optionally be prompted to send another SMS message through cellular telephone 112 in order to be charged again and to start another hour of use. Such a prompt may optionally be sent as a SMS message to cellular telephone 112 and/or displayed on the Web page by Web browser 106, for example. If user 110 fails to log in through Web browser 106 within one hour from the time that the SMS message is sent, user 110 may optionally be reminded to perform the log in process, or alternatively or additionally may be given a refund for the unused hour.
Optionally and more preferably, each time security module 126 is notified, security module 126 requests that user management module 120 look in user database 122 for a trigger change in the user's record. For example, the data concerning time may optionally be stored in a LOGINjπCKET field which is a date/time field, so that if the LOGINJTICKET field is not older than the maximum allotted time period according to dating site server 104 microtime, the session with Web browser 106 is maintained. The record of user 110 in user database 122 may also optionally include information about services consumed (for example to permit auditing) as well as the last time that user 110 logged in (or optionally information about a plurality of log-ins may be stored).
The SMSLog database table of user database 122 may optionally also store additional information regard SMS message transactions, including but not limited to, the cellular telephone number used, the message body that was sent or received, the direction of the SMS message (whether incoming or outgoing), the date and time of the message, the delivery status of the message (whether it was received), the type of the message (described in greater detail below; it may optionally include but is not limited to a registration message, login message, kiss message, and so forth), and optionally a unique member identifier. If this last is included, then it is also preferably included in the user's record in user database 122.
According to preferred embodiments of the present invention, user 110 may choose to view other compatible user profiles, which fit the requested parameters, for example according to age, gender and so forth. User 110 may optionally enter the selected search parameters through Web browser 106. User 110 then preferably views information about each user with matching parameters (the match is also performed according to parameters set by that user as well), optionally including a photograph, user information and a user nickname.
According to preferred embodiments of the present invention, user 110 may choose to send a notification to another user having a matching profile, preferably according to the user nickname, as shown with regard to Figure 2. It should be noted that components shown in Figure 1 are assumed to be present in Figure 1, although some were omitted for the sake of clarity only.
Figure 2 shows system 100 again, but with an additional user 200, additional user computer 202, Web browser 206 and cellular telephone 212. User 110 preferably enters the user nickname of user 200 from the user profile of user 200, optionally through Web browser
106 or alternatively through cellular telephone 112 as an SMS message. If user 200 is on-line
(logged on to dating site server 104), then user 200 is preferably notified through Web browser 206 and/or through cellular telephone 212, and user 110 and user 200 may then start a chat session if user 200 accepts the invitation. Preferably, user 200 is able to view the user profile of user 110, again optionally including a photograph, user information and a user nickname, before deciding whether to accept the invitation.
If user 200 is off-line, then preferably user 200 is notified of the invitation by user 110 as follows. An SMS message is optionally and preferably sent to cellular telephone 212 by a notification module 204, which preferably sends the content of the SMS message and the telephone number of cellular telephone 212 to SMSC/HTTP gateway 116, optionally and preferably according to the HTTP POST command. SMSC/HTTP gateway 116 then passes this information to SMSC 114, which transmits the SMS message to cellular telephone 212. A billing code may optionally be included as previously described, so as to charge the cellular telephone account of cellular telephone 212. Optionally and preferably, confirmation of the request to send an SMS message by user 110 may optionally be made by sending a return SMS message cellular telephone 112, again to permit a billing code to be entered and the cellular telephone account of cellular telephone 112 to be charged. The content of the SMS message which is sent may optionally be determined automatically or alternatively may be customized by user 110. If user 110 wishes to indicate interest to user 200 but does not wish to communicate in real time, for example by chatting, user 110 may optionally send user 200 a virtual "kiss". The virtual "kiss" is a non-limiting example of a type of message which may be sent between users but without the requirement of communication in real time (although optionally such a message may be sent and received in real time), as an optional but preferred embodiment of the present invention. The virtual "kiss" message may optionally be sent by user 110 through Web browser 106 and Web server 108, and may then be passed to user 200 through Web browser 206, or alternatively through cellular telephone 212. Optionally user HO could send the message through cellular telephone 112, and again it could be received by user 200 as above. Distribution could optionally be performed as previously described, depending upon the mechanism used. Figures 3-5 show exemplary, non-limiting illustrative screenshots according to an illustrative implementation of the dating site according to the present invention. Figure 3 shows an illustrative, non-limiting screenshot of an initial screen for the dating web site, which includes instructions for registering and for logging on. Figure 4 shows an illustrative, non-limiting screenshot of a user profile display for the dating web site according to the present invention, including information about the user and optionally a photograph. Figure 5 shows an illustrative, non-limiting screenshot of a display to a user after login to the dating web site according to the present invention.
According to optional but preferred embodiments of the present invention, a different gateway may optionally be used than the SMSC gateway, which is part of the cellular telephone operator. A software based gateway may optionally be added to the cellular telephone infrastructure to supply more advanced services and features, for example to use WAP (wireless application protocol), or video conferencing from a Web browser to a cellular telephone (or the reverse, from a cellular telephone to a Web browser).
According to optional but preferred embodiments of the present invention, the solution of Figures 1 and 2 may optionally be implemented with the above embodiment of a software gateway. It is not necessary to install software on the user's cellular telephone or change the workflow. Instead, preferably a WAP/UMTS/SMSC gateway implemented for the present invention is installed in the telephone cellular operator. This implementation is preferred for cellular telephone web browsers which use WAP (through GPRS) or UMTS to send and receive web data, because typically cellular telephone operators do not transmit the cellular telephone number through such protocols; this number is necessary for the operation of the present invention.
According to other optional but preferred embodiments of the present invention, the user may optionally use one or more of a number of different features associated with the dating Web site. These features may optionally include but are not limited to blogs
(preferably each user has his/her own blog and can optionally comment on other users' blogs, thereby optionally providing an additional mechanism for communication); Simple / Advanced searches (search any type of possible data for matches); Video / Audio / Picture Gallery (each user optionally has a video, audio and picture gallery); Guestbooks (each user has a guest book and can comment on other users' guest books); Smart Matching Algorithm (optionally and preferably every 60 seconds the system perform a matching process for all the profiles in the system against the user pre-defined search, user behavior and some other data and display the best matches for the user), A/V Chat (full Audio / Video conferencing chat that can be used as a regular chat, a Voice chat, or full A/V chat; preferably the user can decide which one to use), Real Time update for users (for every event if the user is not online, the user preferably receives an SMS message, for example: new virtual "kiss", new message, new match to a user based on the profiles of both users, new chat request; if the user is online, the events are preferably displayed in the application itself, through the user's Web browser as previously described).
Among the many advantages of the present invention, it should be noted that the user does not need to download a plug-in to a Web browser or other software for operation by the user's computer. The user also does not need to remember a password or PIN. Furthermore, as identification and authentication are preferably performed through the user's cellular telephone, theft or misuse of the user's account by an unauthorized party are effectively limited if not completely blocked. Also, the above described payment system permits "pay as you go" use of the dating web site, as rather than being debited from a prepaid amount, the user is preferably billed for each use by the cellular telephone service provider. Thus, the user is not required to subscribe to a monthly service or to make any type of commitment to the dating web site provider.
While the invention has been described with respect to a limited number of embodiments, it will be appreciated that many variations, modifications and other applications of the invention may be made.

Claims

What is claimed is:
1. A method for authentication of user for a dating web site, comprising:
Sending a message by the user through a cellular telephone; and Authenticating the user according to a cellular telephone number associated with the cellular telephone by the dating web site.
2. The method of claim 1, further comprising: sending a token to the cellular telephone of the user; and entering said token to a web browser for said authentication.
3. The method of claim 2, further comprising:
Identifying said web browser by the dating web site upon receipt of said token.
4. The method of claim 3, wherein said identifying said web browser is performed according to at least one of a cookie or a unique identifier from a web browser object associated with said web browser.
5. The method of any of claims 2-4, wherein after entering said token to said web browser, the user is permitted to access said dating site for a limited period of time.
6. The method of any of claims 1-5, further comprising:
Sending a message by the user to at least one other user of the dating site.
7. The method of claim 6, wherein if said at least one other user is not logged in, said at least one other user receives said message through a cellular telephone of said at least one other user.
8. A method for real time notification of a user of a dating web site for communication with a second user, comprising: Sending a message to a cellular telephone of the user regarding communication by the second user; and
Initiating communication by the user with the second user according to said cellular telephone message.
9. A method for charging a user of a dating web site, comprising:
Selecting a dating web site service by the user; and
Charging a cellular telephone account of the user according to said selecting.
10. The method of claim 9, wherein said selecting further comprises:
Sending a message through said cellular telephone of the user to the dating web site.
11. The method of claim 10, wherein said selecting further comprises: Receiving a token from the dating web site; and
Entering said token to a web browser of the user.
12. The method of claim 11, wherein said token is received through said cellular telephone of the user.
13. The method of claim 12, wherein said token is received in a message selected from the group consisting of an EMS message, an SMS message and a MMS message.
14. A method for authentication of user for an intrapersonal communication web site, comprising:
Sending a message by the user through a cellular telephone; and Authenticating the user according to a cellular telephone number associated with the cellular telephone by the dating web site.
PCT/IL2007/000598 2006-05-18 2007-05-17 System and method for real-time authentication and notification for inter-personal communications WO2007135664A2 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US80131806P 2006-05-18 2006-05-18
US60/801,318 2006-05-18

Publications (2)

Publication Number Publication Date
WO2007135664A2 true WO2007135664A2 (en) 2007-11-29
WO2007135664A3 WO2007135664A3 (en) 2009-04-16

Family

ID=38723690

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/IL2007/000598 WO2007135664A2 (en) 2006-05-18 2007-05-17 System and method for real-time authentication and notification for inter-personal communications

Country Status (1)

Country Link
WO (1) WO2007135664A2 (en)

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6594502B1 (en) * 1999-08-27 2003-07-15 Singles Advantage Dating system
US20050198534A1 (en) * 2004-02-27 2005-09-08 Matta Johnny M. Trust inheritance in network authentication

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6594502B1 (en) * 1999-08-27 2003-07-15 Singles Advantage Dating system
US20050198534A1 (en) * 2004-02-27 2005-09-08 Matta Johnny M. Trust inheritance in network authentication

Also Published As

Publication number Publication date
WO2007135664A3 (en) 2009-04-16

Similar Documents

Publication Publication Date Title
US11257082B2 (en) Payment system and method
US20090006202A1 (en) System and method for providing identity-based services
EP1958401B1 (en) Message modification apparatus and method
US9432425B2 (en) Method and system for downloading content
US20100146259A1 (en) Multi factor authorisations utilising a closed loop information management system
US20080293380A1 (en) Messeaging service
WO2012142133A1 (en) Sms-initiated mobile registration
WO2000068818A1 (en) Signalling apparatus and method
TW200845715A (en) Combined payment and communication service method and system
JP2005209083A (en) Service system, and communication system and communication method using the same
CN103442084B (en) Data box system capable of providing data exchanging, acquiring and sensing service and use method of data box system
TW200849959A (en) Immediate communication system and method based on WAP
JP4372936B2 (en) Proxy management method and agent device
CN100397822C (en) Advertisement information transfering method
JP2010165189A (en) Advertisement providing device, terminal device, method of providing advertisement, and program
JP4276022B2 (en) User authentication method, user authentication system, computer program, and program storage medium in WWW service
KR20030063791A (en) System for Processing Clients Certification and Event Information by Mixing the Wire·Wireless Network
KR20010103240A (en) certification of contents/attestation method using internet
US20100180323A1 (en) Stateful server based social networking using mobile devices
WO2007135664A2 (en) System and method for real-time authentication and notification for inter-personal communications
KR20060011752A (en) Mobile contents providing method
KR101507958B1 (en) Method for Providing Mobile Webpage for Loading Mobile Messenger
KR20070021289A (en) System for Processing Certificate Information
KR20070120675A (en) The method for providing credit card usage list using by multimedia message service
KR20080093951A (en) System for providing certificate

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 07736338

Country of ref document: EP

Kind code of ref document: A2

NENP Non-entry into the national phase in:

Ref country code: DE

32PN Ep: public notification in the ep bulletin as address of the adressee cannot be established

Free format text: NOTING OF LOSS OF RIGHTS PURSUANT TO RULE 112(1) EPC OF 240409

122 Ep: pct application non-entry in european phase

Ref document number: 07736338

Country of ref document: EP

Kind code of ref document: A2