KR102297784B1 - Method of generating and utilizing user account and service server and system thereof - Google Patents

Abstract

An embodiment of the present invention provides a service that allows users to simply log in with only e-mail to minimize hurdles (barriers to entry) for users who use the service for the first time in an online service, particularly a mobile service, to induce users to join. The purpose of this is to provide a method for creating and using a user account. In addition, since an embodiment of the present invention provides a more convenient procedure for member registration, payment, and login, it is possible to simplify and facilitate the use of the service.

Description

How to create and use a user account, a service server and a system for it

The present invention relates to a method for creating and using a user account and a system for the same, and more particularly, to a method for creating and using a user account with easy access to a service, and a system for the same.

Conventional online services provide services by varying the types of accessible services depending on whether or not a member has signed up for their own services. In the case of a sales service such as a shopping mall, it is possible to view sold products without membership registration, but in general, membership registration is essential when purchasing. Alternatively, in the case of a service for selling game contents, the service is provided only when membership registration must be accompanied.

This conventional membership registration method is conditional on the user to input various identification information (eg, user ID, password, address, phone number, date of birth, resident number, etc.) at the time of service use. On the other hand, there are cases in which input conditions are minimized so that users can easily sign up because too much identification information is required to be entered. has been

Similarly, there is a cumbersome procedure that requires the user to enter the user ID and password entered at the time of membership registration even when logging in. Meanwhile, in order to solve this problem, in Patent Publication No. 10-2013-0093838 (published on August 23, 2013), authentication information is received from the server instead of the ID and password input method, and the login is performed only by entering it correctly. An automatic login method is disclosed. However, since this method also requires the user to wait for the reception of authentication information and input the authentication information, the login procedure is not convenient.

However, in the case of a mobile service, input through a mobile phone is more laborious than input through a PC, and since the screen operation of the mobile phone is limited, a simpler member registration and log-in method is required to induce subscribers.

An embodiment of the present invention provides a method for creating and using a user account and a system for it, which can induce users to sign up by minimizing hurdles (entry barriers) for users who use the service for the first time in an online service, particularly a mobile service. purpose is to provide

As a technical means for achieving the above-described technical problem, according to a first aspect of the present invention, in the user account creation method performed by the service server, user identification information requesting input of; receiving the user identification information from the user's terminal and generating a user account corresponding to the user identification information; and generating access right information corresponding to the created user account and transmitting the information to the user's terminal, wherein the user identification information is one account belonging to a communication service different from the service provided by the service server. it is information

In addition, the user identification information is any one of an email address of the different communication service, a user ID, or a mobile communication identification number subscribed to by the user.

In addition, the user identification information is selected one of account information previously stored in the terminal or account information directly input by the user through the terminal.

In addition, the method for generating the user account further includes storing the user identification information and the access right information in association with the created user account.

In addition, the user account creation method further includes the step of transmitting a membership registration notification message to the account information of the different communication services appearing in the user identification information.

In addition, the membership registration notification message includes at least one of information on membership registration, identification information of a terminal in which membership registration is performed, information on services provided by the service server, and membership withdrawal means.

In addition, the user account creation method, when the membership withdrawal is performed for the created user account, storing a combination of access right information and user identification information related to the user account withdrawn from membership; and blocking re-registration or reconnection of the terminal through a combination of the stored access right information and user identification information.

Meanwhile, according to the second aspect of the present invention, a method for using a user account is performed by a service server and uses a user account created with user identification information, which is one account information belonging to a communication service different from the service provided by the service server. The method of claim 1 , further comprising: receiving access right information from a terminal of a user who has requested a service to the service server; determining whether the access right information is valid; providing a service through a user account corresponding to the valid access right information to the terminal when it is determined that the access right information is valid; and when it is determined that the access right information is not valid, receives the user identification information from the user's terminal to create a user account or authenticate the user account, and provide a service through the created or authenticated user account to the terminal Including;

In addition, the user identification information is any one of an email address of the different communication service, a user ID, or a mobile communication identification number subscribed to by the user.

In addition, the user identification information providing the service through the generated or authenticated user account may include: receiving the user identification information by requesting the user identification information input to the user's terminal; and searching for a user account corresponding to the user identification information.

In addition, in the step of providing a service through the created or authenticated user account, when a user account corresponding to the user identification information is not found, a new user account corresponding to the input user identification information is created, and the It further includes the step of providing a service through a new user account.

In addition, in the step of providing a service through the created or authenticated user account, when a user account corresponding to the user identification information is searched, the searched user account is authenticated, and when authentication is successful, the authenticated user account is used. It further includes the step of providing a service through.

In addition, authenticating the searched user account, and providing a service through the authenticated user account when authentication is successful. step; and determining that the authentication is successful when a acknowledgment message of the authentication request information is received from the user's terminal. includes

In addition, authenticating the searched user account, and providing a service through the authenticated user account when the authentication is successful may include: transmitting authentication request information as one account information according to the input user identification information; determining whether the authentication confirmation information input by the user into the terminal matches the transmitted authentication request information; and determining that authentication is successful when the determination results are identical.

In addition, the authentication request information is characterized in that it is temporary information that is newly issued every time the connection is made, or OTP (One Time Password) that is valid only within an arbitrary time from the time of issuance.

In addition, the method for using the user account may include: receiving a payment request in relation to a user account for which the service is provided; authenticating the user account for which the payment is requested; and when the authentication is successful, performing the requested payment. further includes

On the other hand, according to the third aspect of the present invention, a communication unit for receiving the access right information from the terminal of the user who requested the service to the service server; When it is determined that the access right information is valid, a service through a user account corresponding to the access right information is provided to the terminal, and when it is determined that the access right information is invalid, the user from the user's terminal a service providing unit that receives identification information, creates a user account or authenticates the user account, and provides a service through the created or authenticated user account; The user identification information is one account information belonging to a communication service different from the service provided by the service server.

In addition, the user identification information is any one of an email address of the different communication service, a user ID, or a mobile communication identification number subscribed to by the user.

In addition, the service server further includes a storage unit for storing information about the user account corresponding to the access right information and user identification information.

In addition, when it is determined that the access right information is valid, the service providing unit searches for a user account corresponding to the access right information in the storage unit, and provides a service through the searched user account.

In addition, when it is determined that the access right information is not valid, and the user account corresponding to the user identification information received from the user's terminal is not retrieved from the storage unit, the service providing unit is based on the user identification information account creation unit to create a user account; and an account authentication unit configured to authenticate the retrieved user account when it is determined that the access right information is invalid, and a user account corresponding to the user identification information received from the user's terminal is retrieved from the storage unit; further includes

In addition, the account authentication unit transmits the authentication request information to the one account information included in the user identification information, and when a receipt confirmation message of the authentication request information is received from the user's terminal, it is determined as authentication success .

In addition, the account authentication unit transmits the authentication request information to the one account information included in the user identification information, and determines whether the authentication confirmation information input by the user to the terminal matches the transmitted authentication request information, , if the above judgment results are identical, it is determined as authentication success.

In addition, the service server, when receiving a payment request in relation to a user account for which the service is provided, a payment unit that performs payment according to a result of authentication of the user account through the account authentication unit;

In addition, according to a fourth aspect of the present invention, a terminal for transmitting access right information; and when a user account corresponding to the received access right information exists, a service through the user account is provided to the terminal, and when a user account corresponding to the received access right information does not exist, to the terminal and a service server that requests input of user identification information, creates or authenticates a user account using the user identification information, and provides a service, wherein the user identification information is different from the service provided by the service server It is characterized in that it is one account information belonging to the service.

In addition, the terminal, when the service provider of the service server requests the input of the user identification information to create a user account, provides at least one communication service account information pre-stored in the terminal to the user, and according to the user input The provided communication service account information or new communication service account information is transmitted to the service server.

According to any one of the above-described problem solving means of the present invention, an embodiment of the present invention requires only a single piece of information (eg, e-mail address) at the time of mobile and web service membership registration, login, or payment. Since current service users have an antipathy to personal information disclosure and inconvenience when inputting a lot of information, an embodiment of the present invention can lower service users' service use and subscription hurdles by requiring only a single information input.

In addition, since the use procedure is simple at the time of member registration, payment, and login, it is possible to achieve simplification and convenience of service use.

The effects obtainable in the present invention are not limited to the above-mentioned effects, and other effects not mentioned may be clearly understood by those of ordinary skill in the art to which the present invention belongs from the following description. will be.

1 is a configuration diagram for explaining a system for creating and using a user account according to an embodiment of the present invention.
2 is a block diagram illustrating an internal configuration of a terminal according to an embodiment of the present invention.
3 is a block diagram illustrating an internal configuration of a service server according to an embodiment of the present invention.
4 is a flowchart illustrating a user account creation and use method according to an embodiment of the present invention.
5 is a flowchart illustrating a payment method according to an embodiment of the present invention.

DETAILED DESCRIPTION OF THE PREFERRED EMBODIMENTS Hereinafter, embodiments of the present invention will be described in detail with reference to the accompanying drawings so that those of ordinary skill in the art can easily implement them. However, the present invention may be embodied in many different forms and is not limited to the embodiments described herein. And in order to clearly explain the present invention in the drawings, parts irrelevant to the description are omitted, and similar reference numerals are attached to similar parts throughout the specification.

Throughout the specification, when a part is "connected" with another part, this includes not only the case of being "directly connected" but also the case of being "electrically connected" with another element interposed therebetween. . In addition, when a part "includes" a certain component, this means that other components may be further included, rather than excluding other components, unless otherwise stated.

Also, the singular expression used herein may include the plural expression unless the context clearly dictates otherwise. In addition, terms including ordinal numbers such as 1st, 2nd, etc. used in this specification may be used to describe various components, but since the terms are used only for the purpose of distinguishing one component from other components, the above configuration Elements are not limited by the above terms.

Hereinafter, the present invention will be described in detail with reference to the accompanying drawings.

1 is a configuration diagram for explaining a system for creating and using a user account according to an embodiment of the present invention.

As shown in the figure, in an embodiment of the present invention, an online service is provided through a network.

Here, the network N is a local area network (LAN), a wide area network (WAN), a value added network (VAN), a personal area network (PAN), and a mobile communication network. (mobile radio communication network), Wibro (Wireless Broadband Internet), Mobile WiMAX, HSDPA (High Speed Downlink Packet Access), or can be implemented in all types of wired/wireless networks, such as a satellite communication network.

Here, the online service is implemented by providing the remote server to the user terminal through the above-described network, and refers to various web services provided through a web page executed in a web browser or other application programs.

On the other hand, users who use such an online service are provided with the service by using the terminals 100 and 200, where the terminals 100 and 200 are communication terminals that access a remote server through a network, and communicate with other terminals and servers. It may be implemented as a connectable portable terminal. The terminals 100 and 200 may be implemented as a computer, a portable terminal, or a television capable of accessing a remote server through the network N, or connecting to other terminals and servers. Here, the computer includes, for example, a laptop equipped with a web browser (WEB Browser), a desktop, a laptop, and the like, and the portable terminal is, for example, a wireless communication device that ensures portability and mobility. , PCS (Personal Communication System), PDC (Personal Digital Cellular), PHS (Personal Handyphone System), PDA (Personal Digital Assistant), GSM (Global System for Mobile communications), IMT (International Mobile Telecommunication)-2000, CDMA (Code) All kinds of handhelds such as Division Multiple Access)-2000, W-Code Division Multiple Access (W-CDMA), Wireless Broadband Internet (Wibro), Smart Phone, Mobile Worldwide Interoperability for Microwave Access (WiMAX), etc. It may include a (Handheld)-based wireless communication device. In addition, the television may include IPTV (Internet Protocol Television), Internet TV (Internet Television), terrestrial TV, cable TV, and the like.

The service server 300 is a computer that communicates with a remote terminal or other server through a network. At this time, the type of service provided by the service server 300 is not particularly limited. However, the service server 300 in one embodiment of the present invention classifies each user using the service, and accordingly, in order to manage the service usage history and other information of each user, a 'user account' for each user By setting and assigning , users are classified and service history is managed. In addition, the service server 300 according to an embodiment of the present invention is linked with an application server (not shown), and performs functions such as user account creation, management, and login for the application.

At this time, in order for the service server 300 to create a user account for each user and to receive continuous service using the user account, an embodiment of the present invention is 'terminal identification information' and 'user identification information' use the

'Terminal identification information' is information for distinguishing each of the above-described terminals 100 and 200, and is not information selectively input by the user, but is collected through a web browser or an application installed in the terminals 100 and 200. Information transmitted to the service server 300 . The terminal identification information includes a software identifier and a hardware identifier. The hardware identifier is, for example, information stored in a SIM (Subscriber Identity Module) mounted in the terminals 100 and 200 , a device identifier assigned by a manufacturer when the terminals 100 and 200 are manufactured, or a user assigned from a telecommunication company. The received mobile communication identification number or MAC address may be an identifier included in the terminals 100 and 200 . The software identifier is an identification key issued by the service server 300 directly and stored in the local storage area or cookie of the terminals 100 and 200, or the service server 300 is transmitted to the terminals 100 and 200 when the application is logged in. It may be software information granted to the terminals 100 and 200 by the server, such as access right information (eg, an access token).

The 'user identification information' is information for identifying each user who is provided with the online service provided by the service server 300 . The user identification information is a user interface provided in a web page provided to a user through a web browser installed in the terminals 100 and 200 from the service server 300 or a user interface provided by an application program interworking with the service server 300 . Information received or selected from the user through

In other words, the user identification information is one account information belonging to a communication service different from the service provided by the service server 300 . For example, the user identification information includes the email address used by the user, the mobile communication identification number (eg, phone number) of the mobile communication terminal used by the user, the ID of the messenger service such as KakaoTalk or Line, Facebook, Twitter , user account information of social network services such as Kakao Story, etc. The user identification information can identify the user and at the same time can be said to be unique information used to deliver an email or message including specific information to the user in a reachable way.

Hereinafter, the internal configuration of the terminals 100 and 200 and the service server 300 will be reviewed in more detail with reference to FIGS. 2 and 3 . Hereinafter, the terminal will be described with reference to the first terminal 100 , but it is clear that the configuration of the same form and content may be applied to the second terminal 200 . Referring to FIG. 2 , the terminal 100 according to an embodiment of the present invention includes a first communication unit 110 , an input unit 120 , and a first storage unit 130 .

The first communication unit 110 communicates with another terminal or service server 300 through the above-described network (N). Specifically, the first communication unit 110 may transmit user identification information and/or terminal identification information to the service server 300 in order to receive the service provided by the service server 300 .

The input unit 120 allows the user to input user identification information when there is a user identification information input request from the service server 300 . When the terminal 100 is provided with an interface for inputting user identification information, user identification information stored in the first storage unit 130 to be described later may be provided as a list. The user may provide user identification information to the service server 300 by simply selecting user identification information in the list through the input unit 120 or directly inputting user identification information. Meanwhile, the input unit 120 may include a keyboard, a mouse, a touch screen, and the like.

The first storage unit 130 stores user identification information that may be included in the interface when an interface for inputting user identification information is provided to the terminal 100 . The user identification information may be an e-mail address previously input by the user through the terminal 100, a user ID, or the like. Meanwhile, the first storage unit 130 stores terminal identification information and/or other information related to a terminal or a user in addition to the user identification information.

Hereinafter, with reference to FIG. 3 , the internal configuration of the service server 300 according to an embodiment of the present invention will be reviewed in more detail. Referring to FIG. 3 , the service server 300 according to an embodiment of the present invention includes a second communication unit 310 , a second storage unit 320 , and a service providing unit 330 .

The second communication unit 310 receives the user identification information and the terminal identification information requested to the terminal 100 through the network (N). Specifically, the second communication unit 310 transmits a message requesting terminal identification information and user identification information to the terminal 100 when there is a member registration or login request for the service server 300 from the terminal 100 . and receive terminal identification information and user identification information. In addition, the second communication unit 310 may receive user identification information from the terminal 100 in the process of user account authentication and payment, which will be described later.

The second storage unit 320 stores the terminal identification information received through the second communication unit 310 , user identification information, and information about a user account. When the user account is created, the terminal identification information and the user identification information are stored in association with the created user account. The stored terminal identification information and user identification information may be used to identify whether a user is an existing user when the user logs out and then logs in again. For example, the service server 300 requests access right information to the terminal 100, determines whether the access right information is valid, and creates a user account or depending on whether a user account corresponding to the access right information is found. A procedure for logging in, such as authentication, may be performed.

When the user requests login and user account creation and payment to use the service, the service providing unit 330 provides the corresponding service after the user account is created and authenticated using the terminal identification information and user identification information. provided to the user. To this end, the service providing unit includes a login execution unit 331 , an account creation unit 332 , an account authentication unit 333 , and a payment unit 334 .

The login execution unit 331 performs a login for the user account that has requested access to the service server 300 by using the access right information. Specifically, the login execution unit 331 determines whether the terminal identification information of the terminal 100 that has requested the login is already registered in the second storage unit 320 . If registered, a user account corresponding to the registered terminal identification information is searched for, and a login is performed using the searched user account. If it is not registered, a user account creation or user account authentication process is performed to allow login.

Preferably, the login execution unit 331 receives the access right information from the terminal 100, and determines whether the access right information is valid. The access right information is generated by the service server 300 and provided to the terminal 100 when a login for the application is performed. When the logout is performed for the application, the provided access right information is discarded. That is, judging whether the access right information is valid is a procedure in which the service server 300 confirms whether the terminal providing the service and the user are correct. If the access authority information is valid, the login execution unit 331 searches for a user account corresponding to the access authority information and logs in with the searched user account. However, when the access right information is not valid, the login execution unit 331 requests and receives the user identification information input from the terminal 100 for the creation or authentication of the user account.

When the user account corresponding to the user identification information is not retrieved from the second storage unit 320 , the account generator 332 generates a user account corresponding to the user identification information. Meanwhile, the generated user account may correspond to one piece of user identification information, but may correspond to one or more pieces of terminal identification information. This is because one user accesses the service server 300 only through one user account, but can also access the service server 300 through different terminals, respectively.

After the user account is created, the account creation unit 332 may transmit a membership registration notification message to the user's terminal 100 . The membership registration notification message is information to be transmitted to the user's terminal in response to user account creation, and includes information on membership registration, identification information of the terminal on which membership registration is performed, information on services provided by the service server 300, and membership withdrawal It includes information on information and means of withdrawal from membership. The purpose of providing the member withdrawal guide and member withdrawal means is to notify the use of the account by an unauthorized person in order to prevent unauthorized use by a legitimate third party when a user uses a third party's account without permission. As the member withdrawal means, a URL address for moving to the member withdrawal page may be provided. When a user withdraws from membership, a combination of terminal identification information and user identification information associated with the withdrawn user account is stored in the second storage unit 320, which is set when the same user logs in with the same terminal later. This is to block access for a period of time or permanently. Membership registration information included in the membership registration notification message and membership withdrawal information made when the user withdraws from membership may be stored in the second storage unit 320 .

The account authentication unit 333 performs a process of authenticating whether the user account is valid when a user account corresponding to the user identification information is found in the second storage unit 320 and when a payment is requested. The authentication process is performed by generating authentication request information, transmitting it to the user's terminal, receiving the authentication confirmation information input by the user, and determining whether the authentication confirmation information and the authentication request information match. The authentication request information may be, for example, an authentication key or a password, and the authentication key may be composed of a specific character string, a numeric string, or the like. Alternatively, the authentication process may be performed as follows. By sending a link including a URL address as user identification information, when the user clicks on the link, an authentication confirmation page linked to the URL address is provided to the terminal 100, and the authentication confirmation page is received by the service server 300 The authentication can be completed by sending a message.

The payment unit 334 performs payment for a user account that has already been logged in. Specifically, when a user requests payment for a specific service after logging in, authentication is performed through the account authentication unit 333, and payment is performed according to the authentication result. The payment unit 334 may perform payment through terminal identification information connected to the user account, credit card information, financial account information, and the like. Alternatively, the payment unit 334 may perform payment through virtual money (eg, game point, web service point) information associated with the user account.

Hereinafter, a method of creating and using a user account through the system according to an embodiment of the present invention will be described in detail.

(1) Creation of user account

It is assumed that the user wants to create a new user account for the online service provided by the service server 300 through the first terminal 100 . When the user wants to access the online service, since the user does not have an existing user account, a user interface for creating a user account is provided to the first terminal 100 . The user interface is an interface for receiving user identification information (eg, an email address, a user ID, an account of a social network service, etc.). The prior art requires the provision of a myriad of information such as agreement to terms and conditions, phone number, address, name, date of birth, or at least the input of an email address and password to create a user account. It can be a sign-up hurdle. However, an embodiment of the present invention may require the user to input only one user identification information.

The user identification information may be directly input by the user. Alternatively, when the user identification information input window is generated by storing at least one user identification information previously used in the first terminal 100 , the stored at least one user identification information may be recommended. For example, if two different e-mail addresses are registered in the e-mail-related application of the first terminal 100, a list including the two e-mail addresses may be provided to the user. The user can select and enter one of these, or enter another email address by typing directly.

When the user inputs user identification information to the first terminal 100, the first terminal 100 identifies the identification information of the first terminal 100 (hereinafter referred to as "first terminal identification information") and/or user identification The information is transmitted to the service server 300 . As described above, the first terminal identification information is a hardware identifier or a software identifier, preferably, access right information of the first terminal.

The service server 300 creates a new user account for the user, generates access right information, and transmits it to the terminal 100 . The generated access right information is stored in association with user identification information. As a result, the membership registration procedure is completed, and the user can use the service through the first terminal 100 .

Subsequently, the service server 300 transmits a membership registration notification message to the user. The service server 300 transmits a membership registration notification message to the account information indicated by the user identification information input by the user. For example, when the user inputs an email address or Facebook account as user identification information, the service server 300 transmits a membership registration notification message to the email address or Facebook account. In addition, when the user identification information is a mobile communication identification number (ie, a phone number), the message may be transmitted in the form of a text message such as SMS (Short Message Service) or MMS (Multi-media Message Service), and the user identification information If is a messenger service ID such as KakaoTalk, a message may be transmitted in the form of a chat window.

The member registration notification message includes information such as information on membership registration, identification information of the terminal that performed membership registration, information on the online service (name and service content) for which the member is registered, and the means of withdrawal from membership. For example, the service server 300 uses the message "010-1234-5678" and mail@mail.co.kr through the mobile phone number to send the message "You have joined the online game 'Let's play Friend'" to account creation. It can be sent to the used mail@mail.co.kr. Here, 010-1234-5678 means terminal identification information. In addition, the member registration notification message may provide a member withdrawal URL as a member withdrawal means. When the user clicks on the member withdrawal URL, the service server 300 may immediately withdraw or invalidate the corresponding user account. When the service server 300 performs membership withdrawal processing by user request, in order to prevent repeated membership registration attempts with the combination of the same terminal identification information and user identification information, the service server 300 processes membership withdrawal The combination of terminal identification information and user identification information is stored. If a member registration or log-in is attempted in the future with the same combination, the service server 300 may not create a user account for a certain period of time or permanently, or may block log-in.

The user account creation method according to an embodiment of the present invention requires only one piece of information (ie, user identification information) and does not require input of a password or the like. In this case, the validity of the user identification information is also not required. For example, it does not ask whether the e-mail address entered by the user when registering for membership is his or her own. Thus, in such a case, a third party may use the account with another person's email address. As a supplement to this, the member sign-up notification message includes the member withdrawal method and is sent. Therefore, if the real user of the e-mail address receives a message for membership registration of a service that has not been used, in order to prevent unfair use by a third party, the member can withdraw from membership according to the membership withdrawal guide included in the membership registration notification message. In case of membership withdrawal, the use of the same account may be blocked.

(2) Use of user account - Service server access (login)

(2-1) To the terminal where the account was created to log in case

It is assumed that the user creates a user account through the first terminal 100 and then requests a login to the corresponding service through the first terminal 100 again. In this case, the service server 300 receives the first access right information from the first terminal 100, and determines whether the first access right information is valid. Since the first access right information is issued when the first terminal 100 previously created the user account, it may be determined to be valid. As it is determined that the first access right information is valid, the service server 300 logs in with a user account corresponding to the first access right information. That is, when the user reconnects to the corresponding service through the terminal for which the account is created, the service server 300 automatically logs in so that the user can use the service quickly.

(2-2) to a new terminal to log in case

However, when the user requests to log in to the second terminal 200 (ie, a new terminal) instead of the first terminal 100 , a slightly different process is performed. In this case, the service server 300 receives the access right information (hereinafter referred to as "second access right information") of the second terminal 200 from the second terminal 200, and the second access right information is valid. decide whether Since the user previously logged in through the first terminal, the access right information of the first terminal is valid, and the second access right information is not issued by the service server 300, so it may be determined to be invalid. If it is determined that the second access right information is not valid, or if the access right information is not received, the service server 300 requests the second terminal 200 to input user identification information for membership registration or member authentication. do. This is because, since a user with a user account may log in to another terminal, it is difficult to clearly determine whether the user who requested the login is a service subscriber based only on the result of determining the access right information.

If the user is not a subscriber to the service (that is, when a user account corresponding to user identification information is not searched), the service server 300 performs a membership registration procedure, and in this case, the membership registration procedure is "(1) creation of a user account" " Same as mentioned above.

When the user is a service subscriber (that is, when a user account corresponding to user identification information is searched for), the service server 300 performs an authentication procedure for an existing user account.

Then, the service server 300 transmits the authentication request information to the account included in the user identification information. The authentication request information may be a password, an authentication key, and an authentication confirmation page, and may be sent in an appropriate form according to the type of account included in the user identification information. For example, it may be sent in the form of an e-mail, a short message, or other third party service message. The authentication request information may be a temporary password newly issued whenever an authentication procedure is performed, for example, it may be an OTP (One Time Password) that is authenticated only when it is input within an arbitrary time (eg, several minutes). In this case, the authentication request information may be composed of a specific numeric string, character string, or the like. Next, when the user inputs authentication confirmation information having the same content as the authentication request information received in his/her account through the second terminal 200 , the authentication confirmation information is transmitted to the service server 300 . The service server 300 determines whether the authentication request information and the authentication confirmation information match, and if they match, it is determined as authentication success, and when they do not match, it is determined as authentication failure.

Alternatively, when the URL address is included in the message for the authentication request and the user clicks the URL address, an authentication confirmation page may be provided to the browser. In this case, as the authentication confirmation page is provided and a message indicating that the authentication request information has been received to the service server 300 is transmitted to the service server 300 , it may be determined that the authentication has been successful.

In the case of authentication success, the service server 300 issues new access right information for the authenticated user account so that the user can use the service, transmits it to the second terminal 200, and logs in. The new access right information may be stored in association with the authenticated user account and user identification information to be used at a later login. In this case, the access right information previously stored in association with the user account may be deleted or stored as it is. On the other hand, in case of authentication failure, login is not performed.

Also, the service server 300 may transmit an authentication result notification message to the user account requesting authentication. The authentication result notification message may include information on authentication success or authentication failure, the name and content of the online service, and information on membership withdrawal. In the case of the member withdrawal guide, as mentioned above, the member withdrawal URL may be included.

(3) Use of user account - payment

If the user wants to use payment or other payment-like services after logging in, these services are performed through additional authentication procedures. Payment includes payment using currency or points, and in the case of currency, payment may be made through cash, credit card, mobile phone, or the like.

When the user requests payment to the service server 300 to purchase a specific service, the service server 300 receives the request and then proceeds with the authentication procedure. The authentication procedure may be performed in the same manner as the authentication procedure mentioned in "2) Use of user account - service server 300 access (login)". Specifically, the service server 300 may transmit the authentication request information to the logged-in user account. Subsequently, the user may view the received authentication request information and input the same value to the terminal and transmit it to the service server 300 . The service server 300 may determine whether the authentication request information and the authentication confirmation information match, and if they match, it may be regarded as authentication success, and if they do not match, it may be regarded as authentication failure. In this case, the process of transmitting the authentication result message to the logged-in user account and the contents included in the authentication result message may be the same as described above.

In the case of successful authentication, the service server 300 provides payment methods (eg, cash payment, credit card payment, mobile phone payment) to the user, and may proceed with payment using the payment method selected by the user. In case of authentication failure, the service server 300 does not proceed with payment.

As mentioned above, one embodiment of the present invention does not require the validity of user identification information at the time of membership registration. may be In order to compensate for this problem, an embodiment of the present invention requires authentication of the initially input user identification information when making a payment or logging in to another terminal. In this case, if authentication is not successful, payment or login becomes impossible, so that correct user identification information input can be induced. For example, if a user who executes a game application by creating an account with another person's email address tries to log in to another terminal, the user will not be able to use the application unless he or she creates a new account in the other terminal. If you create a , you will start the game from scratch. In this case, since the result of resetting the accumulated game performance is caused, the user is induced to input valid user identification information. In addition, even if such a user wants to pay for the item, the payment will not be made. Accordingly, an embodiment of the present invention can compensate for the problem of not checking the validity of user identification information by inducing the user to start the game again with the correct account through the authentication procedure.

On the other hand, if the user continues to use the service with only one terminal, there is a problem that the user may continue to use the account of a third party without permission because the server does not require an authentication procedure. In order to solve this problem, in one embodiment of the present invention, the user's service access time exceeds a predetermined time, or the user's service use level (eg, in the case of a game application, a stage level moved according to the progress of the game) is constant. When the level is reached, an additional embodiment for performing an authentication procedure may be further included.

In the embodiment described above, the user identification information may most preferably be an 'e-mail address'. This is because e-mail addresses are managed by individual users using passwords, and in particular, they are widely used regardless of terminals such as PCs and mobiles, and in particular, e-mail addresses are strongly dependent on the individual user rather than the terminal itself.

In addition, after the user account is created in the present invention, the user can set and use an 'alias' of the corresponding user account separately, and accordingly, the user identification information can be prevented from being exposed to others.

Hereinafter, the above-described embodiment of the present invention will be described in a stepwise summary with reference to FIGS. 4 and 5 . 4 is described from the perspective of the service server 300 .

When a user requests access to the service server 300 through an arbitrary terminal, the service server 300 receives access right information from the terminal (S100).

The login execution unit 331 of the service server 300 determines whether the access right information is valid (S101). The access right information is valid when the service server 300 has previously issued it, and the access right information that is not issued by the service server 300 or the access right information after logging out from the service server 300 is invalid. The access right information is stored in the second storage unit 320 . On the other hand, an embodiment of the present invention receives other terminal identification information from the terminal in addition to the access right information in steps S100 and S101, and determines whether the received other terminal identification information is registered in the service server 300, thereby controlling the access of the terminal. It can also be verified.

When the access authority information is valid, the login execution unit 331 searches the second storage unit 320 for a user account corresponding thereto (S102).

Next, the login execution unit 331 performs a login with the searched user account (S108), and provides a service corresponding to the logged-in account (S109). In this way, the steps following the sequence of S100 to S102, S107 to S109 are "2-1) access to the terminal that created the account" among "2) use of user account - service server 300 access (login)" It corresponds to the operation of the part.

If it is determined that the access right information is invalid in step S101, the service server 300 requests input of user identification information to the user's terminal (S103). At this time, the service server 300 does not require a password input.

Then, the service server 300 receives the user identification information, and searches the second storage unit 320 whether a user account corresponding to the received user identification information exists (S104).

The account creation unit 332 of the service server 300 creates a user account based on the received user identification information (S105).

Next, the second communication unit 310 of the service server 300 transmits a membership registration notification message to the user's terminal (S106). As described above, the membership registration notification message may include information on membership registration, the name and content of the subscribed online service, and information on withdrawal from membership.

Then, the service server 300 generates new access right information and transmits it to the terminal (S107). In this case, the user identification information and the new access right information for the user account are stored in association with each other.

The service server 300 performs a login through the created user account (S108), and provides a service corresponding to the logged-in account (S109).

Steps following the sequence of S100, S101, S103 to S109 correspond to the operation of "1) Creation of a user account" described above.

When the user account corresponding to the user identification information is searched for in the second storage unit 320 in step S104, the service server 300 transmits the authentication request information to the account information according to the user identification information (S110). For example, when the user identification information is an e-mail address, the account authentication unit 333 transmits authentication request information such as a password to the e-mail address.

The account authenticator 333 determines whether the value received from the user's terminal matches the sent authentication request information (S111). For example, the user will see the password sent from the service server 300 and input the same character string (or numeric string, etc.) to the terminal, and the terminal transmits the password entered by the user to the service server 300 . At this time, the account authentication unit 333 determines whether the transmitted password and the received password are the same.

The account authentication unit 333 transmits an authentication result notification indicating authentication success or authentication failure to the terminal according to the determination result (S112, S113). If the authentication request information transmitted by the account authentication unit 333 matches the received authentication confirmation information, the account authentication unit 333 considers the authentication successful, and generates new access right information and transmits it to the terminal (S107). On the other hand, the authentication procedure is performed in such a way that, in addition to the form shown in the drawing, a link including a URL address is transmitted as account information according to user identification information and an authentication confirmation page is provided when the user clicks the link. may be Next, the login performing unit 331 performs a login with the searched account (S108), and provides a service corresponding to the logged-in account (S109). On the other hand, if the two authentication request information do not match, the service server 300 regards it as authentication failure and terminates it as it is, and at this time, the login is blocked.

Steps following the sequence of S100 to S104 and S110 to S112 correspond to the operation of the "2-2) access to a new terminal" part of "2) use of user account - service server 300 access (login)" .

Meanwhile, with reference to FIG. 5 , a payment method according to an embodiment of the present invention will be described in detail. 5 is also described from the perspective of the service server 300 .

First, when a user requests a currency payment or point payment to purchase a service through the terminal, the service server 300 receives such a request (S200).

The service server 300 transmits authentication request information using user identification information (S201). For example, the service server 300 sends the password to the email address input by the user.

The service server 300 receives the authentication confirmation information input and transmitted by the user, and the service server 300 determines whether the authentication confirmation information and the authentication request information match (S202). Through this, the login execution unit 331 of the service server 300 determines authentication success or authentication failure, and the authentication result is notified according to the determination result (S203a, S203b).

If authentication is successful, payment is performed (S204), and if authentication fails, payment is not performed and is terminated. The authentication procedure of S201 to S203 is the same as that of S111 to S114 shown in FIG. 4 .

The method for generating and using a user account according to the embodiment described with reference to FIGS. 4 to 5 may also be implemented in the form of a recording medium including instructions executable by a computer, such as a program module executed by a computer. Computer-readable media can be any available media that can be accessed by a computer and includes both volatile and nonvolatile media, removable and non-removable media. Also, computer-readable media may include both computer storage media and communication media. Computer storage media includes both volatile and nonvolatile, removable and non-removable media implemented in any method or technology for storage of information such as computer readable instructions, data structures, program modules or other data. Communication media typically includes computer readable instructions, data structures, program modules, or other data in a modulated data signal such as a carrier wave, or other transport mechanism, and includes any information delivery media.

The description of the present invention described above is for illustration, and those of ordinary skill in the art to which the present invention pertains can understand that it can be easily modified into other specific forms without changing the technical spirit or essential features of the present invention. will be. Therefore, it should be understood that the embodiments described above are illustrative in all respects and not restrictive. For example, each component described as a single type may be implemented in a dispersed form, and likewise components described as distributed may be implemented in a combined form.

The scope of the present invention is indicated by the following claims rather than the above detailed description, and all changes or modifications derived from the meaning and scope of the claims and their equivalent concepts should be interpreted as being included in the scope of the present invention. do.

100: first terminal 110: first communication unit
120: input unit 130: first storage unit
200: second terminal 300: service server
310: second communication unit 320: second storage unit
331: login execution unit 331: service provision unit
332: account creation unit 333: account authentication unit
334: payment unit

Claims (26)

In the user account creation method performed by the service server,
requesting input of user identification information to a user who has requested a subscription to a service provided by the service server;
receiving the user identification information from the user's terminal and generating a user account corresponding to the user identification information;
in response to the created user account, issuing a software identifier unique to the user account and transmitting it to the user's terminal;
storing the user identification information and the software identifier in association with the created user account;
receiving a software identifier from the user's terminal when a service provision is requested from the user's terminal through the user account;
determining whether the software identifier is valid;
if it is determined that the software identifier is valid, providing a service through the user account corresponding to the valid software identifier to the terminal;
when it is determined that the software identifier is valid, issuing a new software identifier unique to the user account and transmitting it to the user's terminal; and
and storing the user identification information in association with a new software identifier for the user account;
The user identification information is one account information belonging to a communication service different from the service provided by the service server, the user account creation method. The method of claim 1,
The user identification information is
Any one of an e-mail address of the different communication service, a user ID, or a mobile communication identification number subscribed to by the user, a user account creation method. The method of claim 1,
The user identification information is
A method for generating a user account, which is one selected from among the account information previously stored in the terminal or account information directly input by the user through the terminal. delete The method of claim 1,
The user account creation method includes:
The method further comprising the step of transmitting a membership registration notification message to the account information of the different communication service appearing in the user identification information. 6. The method of claim 5,
The member registration notification message is,
A method for creating a user account comprising at least one of information on membership registration, identification information of a terminal in which membership registration is performed, information on services provided by the service server, and membership withdrawal means. 6. The method of claim 5,
The user account creation method includes:
storing a combination of a software identifier and user identification information associated with the user account for which membership has been withdrawn when membership withdrawal has been performed for the created user account; and
blocking re-registration or reconnection of the terminal through a combination of the stored software identifier and user identification information;
A user account creation method further comprising a. In the method of using a user account that is performed by a service server and provides a service using a user account generated using user identification information, which is account information belonging to a communication service different from the service provided by the service server,
issuing a unique software identifier to each user account, and storing the issued software identifier in association with user identification information of a corresponding user account;
receiving a software identifier from a terminal of a user who has requested a service provision through the user account to the service server;
determining whether the software identifier is valid;
if it is determined that the software identifier is valid, providing a service through a user account corresponding to the valid software identifier to the terminal, and issuing a new software identifier unique to the user account and transmitting it to the user's terminal;
When it is determined that the software identifier is not valid, the user identification information is received from the user's terminal to create a user account or authenticate the user account, and a service through the created or authenticated user account is provided to the terminal and issuing a new software identifier unique to the newly created or authenticated user account and transmitting it to the user's terminal; and
and storing the new software identifier in association with the user identification information for the user account when a new software identifier is issued. 9. The method of claim 8,
The user identification information is
Any one of an email address of the different communication service, a user ID, or a mobile communication identification number subscribed to by the user, a method of using a user account. 9. The method of claim 8,
The step of providing a service through the created or authenticated user account comprises:
receiving the user identification information by requesting input of the user identification information to the user's terminal; and
searching for a user account corresponding to the user identification information;
How to use a user account further comprising a. 11. The method of claim 10,
The step of providing a service through the created or authenticated user account comprises:
When a user account corresponding to the user identification information is not found, creating a new user account corresponding to the input user identification information and providing a service through the new user account Way. 11. The method of claim 10,
The step of providing a service through the created or authenticated user account comprises:
When a user account corresponding to the user identification information is found, authenticating the searched user account, and providing a service through the authenticated user account when the authentication is successful. 13. The method of claim 12,
Authenticating the searched user account, and providing a service through the authenticated user account when authentication is successful,
transmitting authentication request information to one account information according to the input user identification information; and
determining that the authentication is successful when a acknowledgment message of the authentication request information is received from the user's terminal;
How to use a user account, including. 13. The method of claim 12,
Authenticating the searched user account, and providing a service through the authenticated user account when authentication is successful,
transmitting authentication request information to one account information according to the input user identification information;
determining whether the authentication confirmation information input by the user into the terminal matches the transmitted authentication request information; and
determining that authentication is successful when the determination results are identical;
How to use a user account, including. 15. The method of claim 14,
The method of using a user account, characterized in that the authentication request information is temporary information that is newly issued every time it is accessed or is an OTP (One Time Password) that is valid only within an arbitrary time from the time of issuance.
9. The method of claim 8,
How to use the user account,
receiving a payment request in relation to a user account for which the service is provided;
authenticating the user account for which the payment is requested; and
if the authentication is successful, performing the requested payment;
User account usage method, characterized in that it further comprises. The software identifier issued for the user account created in response to the user identification information of each user and the user identification information are stored in association with the corresponding user account, and when a new software identifier is issued for the user account, the new software identifier and a storage unit for storing the user identification information in association with a corresponding user account;
a communication unit for receiving a software identifier from a terminal of a user who has requested a service provision through a user account to a service server;
A user account corresponding to the user identification information received from a user requesting subscription to the service provided by the service server is created, and a unique software identifier is issued to the created user account to the terminal of the user who requested the subscription to the service. and, when it is determined that the software identifier is valid, a service through the user account corresponding to the software identifier is provided to the terminal, and a new software identifier unique to the user account corresponding to the software identifier is issued to the user. transmitted to the terminal, and when it is determined that the software identifier is not valid, receives the user identification information from the user's terminal, creates a user account or authenticates the user account, and provides a service through the created or authenticated user account and a service providing unit that issues a new software identifier unique to the newly created or authenticated user account and transmits it to the user's terminal;
The user identification information is one account information belonging to a communication service different from the service provided by the service server, the service server. 18. The method of claim 17,
The user identification information is
Any one of an e-mail address of the different communication service, a user ID, or a mobile communication identification number subscribed to by the user, the service server. delete 18. The method of claim 17,
The service provider,
When it is determined that the software identifier is valid, the storage unit searches for a user account corresponding to the software identifier, and provides a service through the searched user account. 18. The method of claim 17,
The service provider,
When it is determined that the software identifier is not valid and a user account corresponding to the user identification information received from the user's terminal is not retrieved from the storage unit, an account creation for generating a user account based on the user identification information wealth; and
an account authentication unit for authenticating the searched user account when it is determined that the software identifier is invalid and a user account corresponding to the user identification information received from the user's terminal is retrieved from the storage unit;
A service server further comprising a. 22. The method of claim 21,
The account authentication unit,
A service server that transmits authentication request information to the one account information included in the user identification information, and determines that authentication is successful when a message confirming receipt of the authentication request information is received from the user's terminal. 22. The method of claim 21,
The account authentication unit,
Transmitting authentication request information to the one account information included in the user identification information,
It is determined whether the authentication confirmation information input by the user to the terminal matches the transmitted authentication request information,
A service server that determines the authentication success if the determination result is consistent. 22. The method of claim 21,
The service server is
a payment unit that, when receiving a payment request in relation to a user account for which the service is provided, performs payment according to a result of authentication of the user account through the account authentication unit;
A service server further comprising a. a terminal for receiving and storing the software identifier issued from the following service server, and transmitting the software identifier when requesting a service to the service server; and
When a user account corresponding to the received software identifier exists, the service through the user account is provided to the terminal, and a new software identifier unique to the user account is issued and transmitted to the terminal, and the received software identifier When there is no user account corresponding to , a service through a user account created or authenticated by requesting input of user identification information to the terminal and creating or authenticating a user account using the user identification information received from the terminal a service server that provides to the terminal, issues a new software identifier unique to a newly created or authenticated user account, and transmits it to the terminal; and
The service server is
The software identifier issued for the user account created in response to the user identification information of each user and the user identification information are stored in association with the corresponding user account, and when a new software identifier is issued for the user account, the new software identifier and storing the user identification information in association with a corresponding user account;
The user account creation and use system, characterized in that the user identification information is one account information belonging to a communication service different from the service provided by the service server. 26. The method of claim 25,
The terminal is
When the service provider of the service server requests to input the user identification information to create a user account,
A user account creation and use system for providing at least one communication service account information previously stored in the terminal to the user, and transmitting the provided communication service account information or new communication service account information to the service server according to a user input.

Images