WO2015151251A1 - Dispositif de fourniture de service de réseau, procédé de fourniture de service de réseau, et programme - Google Patents

Dispositif de fourniture de service de réseau, procédé de fourniture de service de réseau, et programme Download PDF

Info

Publication number
WO2015151251A1
WO2015151251A1 PCT/JP2014/059779 JP2014059779W WO2015151251A1 WO 2015151251 A1 WO2015151251 A1 WO 2015151251A1 JP 2014059779 W JP2014059779 W JP 2014059779W WO 2015151251 A1 WO2015151251 A1 WO 2015151251A1
Authority
WO
WIPO (PCT)
Prior art keywords
telephone
start request
input
network
client terminal
Prior art date
Application number
PCT/JP2014/059779
Other languages
English (en)
Japanese (ja)
Inventor
昇 菱沼
Original Assignee
株式会社あいびし
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 株式会社あいびし filed Critical 株式会社あいびし
Priority to PCT/JP2014/059779 priority Critical patent/WO2015151251A1/fr
Priority to JP2016511264A priority patent/JP6325654B2/ja
Publication of WO2015151251A1 publication Critical patent/WO2015151251A1/fr

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication

Definitions

  • the present invention relates to a network service providing apparatus, a network service providing method, and a program for preventing unauthorized access.
  • Patent Document 1 discloses an authentication system that performs user authentication based on a user ID and a password transmitted from a client terminal.
  • the present invention has been made in view of such a problem, and an object of the present invention is to provide a network service providing apparatus, a network service providing method, and a program that reliably prevent unauthorized access.
  • a network service providing apparatus provides: Number storage means for storing a plurality of telephone numbers for outgoing calls; Service start request receiving means for receiving a service start request for a network service from a client terminal via a network; A telephone call means for calling a registered telephone of a user who is a request source of the service start request with one of the telephone numbers stored in the number storage means; An input screen creating means for creating screen data of an input screen for inputting a part of the telephone number that the telephone calling means makes a telephone call; Input screen transmission means for transmitting the screen data created by the input screen creation means to the client terminal that is the transmission source of the service start request via the network; Receiving means for receiving information input on the input screen from the client terminal that has transmitted the screen data via the network; Whether the access from the client terminal that is the transmission source of the service start request is an unauthorized access by comparing the information received by the receiving means with the telephone number that the telephone calling means makes a call. Discriminating means for
  • the service start request includes related information related to the network service input by the user
  • the input screen creating means creates screen data of an input screen for allowing the telephone calling means to input a part of the local telephone number and a part of the related information transmitted by telephone
  • the determination means may determine whether the access is unauthorized by comparing the information received by the reception means with the local telephone number and the related information that the telephone call means has made a call. Good.
  • the image on which the related information is described may be displayed on the input screen.
  • a part to be input by the user may be marked.
  • an image in which a part other than a part of the telephone number to be input by the user is described may be displayed.
  • the plurality of telephone numbers for outgoing calls may be numbers obtained by adding each subaddress to the local telephone number.
  • a network service providing apparatus provides: A number storing step for storing a plurality of telephone numbers for outgoing calls; A service start request receiving step for receiving a service start request for a network service from a client terminal via a network; A telephone call step of calling a registered telephone of a user who is a request source of the service start request with one of the telephone numbers stored in the number storage step; An input screen creating step for creating screen data of an input screen for inputting a part of the telephone number that is dialed in the telephone call step; An input screen transmission step of transmitting the screen data created in the input screen creation step via the network to a client terminal that is a transmission source of the service start request; Receiving the information input on the input screen from the client terminal that has transmitted the screen data via the network; Whether the access from the client terminal that is the transmission source of the service start request is an unauthorized access by comparing the information received in the receiving step with the telephone number that is dialed in the telephone calling step.
  • a number storing step for storing a plurality of telephone numbers
  • a program provides: Computer Number storage means for storing a plurality of telephone numbers for outgoing calls, Service start request receiving means for receiving a service start request for a network service from a client terminal via a network; A telephone calling means for calling the registered telephone of the user who is the request source of the service start request by one of the telephone numbers stored in the number storage means; An input screen creating means for creating screen data of an input screen for inputting a part of the telephone number that the telephone calling means makes a telephone call; Input screen transmission means for transmitting the screen data created by the input screen creation means to the client terminal that is the transmission source of the service start request via the network; Receiving means for receiving information input on the input screen from the client terminal that has transmitted the screen data via the network; Whether the access from the client terminal that is the transmission source of the service start request is an unauthorized access by comparing the information received by the receiving means with the telephone number that the telephone calling means makes a call. Discriminating means for discriminating, A service
  • unauthorized access can be reliably prevented.
  • FIG. 1 It is a block diagram of the system provided with the network service provision apparatus which concerns on each embodiment of this invention. It is a block diagram which shows the structure of the network service provision apparatus which concerns on each embodiment of this invention. It is a figure which shows the example of the information memorize
  • the network service providing apparatus 10 prevents access (illegal access) from a person who has illegally accessed a computer (hereinafter referred to as “attacker”) and has a legitimate access authority. And provide network services securely.
  • the network service is described as a login service.
  • the login service in the present embodiment means all services for authenticating a user and logging in to a specific service. If the service involves login, services such as SNS (Social Networking Service) and Web mail service are also available. It shall be included in the login service.
  • SNS Social Networking Service
  • Web mail service is also available. It shall be included in the login service.
  • the network service providing apparatus 10 is connected to each client terminal 20 serving as a network service requesting terminal via the Internet 40.
  • Each client terminal 20 is a general computer such as a PC (Personal Computer), and includes a display, a keyboard, a mouse, and the like.
  • the network service providing apparatus 10 is connected via the telephone network 50 to a registered telephone 30 registered in advance based on a designation from the user.
  • the registered telephone 30 is, for example, a smartphone, and includes a touch panel and the like, and has a telephone function and a function for displaying an incoming telephone number.
  • the network service providing apparatus 10 is a server apparatus such as a PC server or a mainframe, for example. As shown in FIG. 2, the network service providing apparatus 10 includes a communication unit 11, a telephone communication unit 12, an external storage device 13, and a control unit 14.
  • the network service providing apparatus 10 may be composed of one computer or a plurality of computers.
  • the network service providing apparatus 10 may include an authentication server that mainly executes user authentication processing and a Web server that provides various services to the authenticated user.
  • the communication unit 11 performs data communication with each client terminal 20 via the Internet 40 under the control of the control unit 14.
  • the communication unit 11 includes a communication interface such as a communication connector, for example.
  • the telephone communication unit 12 performs data communication and voice communication with each registered telephone 30 via the telephone network 50 under the control of the control unit 14.
  • the communication unit 11 includes a communication interface such as a telephone line connection device.
  • the external storage device 13 is a hard disk drive, for example, and stores various data necessary for the network service providing device 10 to operate.
  • the external storage device 13 includes a user information storage unit 131 and a number storage unit 132.
  • the user information storage unit 131 stores information about each user who can use the login service provided by the network service providing apparatus 10. Specifically, as shown in FIG. 3, the user information storage unit 131 stores a user ID, a name, a registered telephone number, and the like for each user.
  • the registered telephone number is information for specifying the user's special telephone 30.
  • the number storage unit 132 stores a plurality of telephone numbers (local telephone numbers) that the network service providing apparatus 10 can call (call). Specifically, as shown in FIG. 4, the number storage unit 132 stores the local telephone number and the in-use flag in association with each other.
  • the in-use flag is a flag indicating whether or not the local telephone number is used for user authentication described later, and indicates that “1” is in use and “0” is not in use. .
  • control unit 14 controls the entire network service providing apparatus 10.
  • the control unit 14 includes, for example, a CPU (Central Processing Unit), a ROM (Read Only Memory), a RAM (Random Access Memory), an RTC (Real Time Clock), and the like.
  • the control unit 14 when receiving the login start request from the client terminal 20, the control unit 14 stores the plurality of local telephone numbers stored in the number storage unit 132 in the registered telephone 30 of the user who has requested the login start request. Make a phone call with one. In addition, the control unit 14 creates screen data of an input screen for inputting a part of the local telephone number transmitted by telephone, and transmits the screen data to the client terminal 20 that is a transmission source of the login start request. In addition, when the control unit 14 receives the number input on the input screen from the client terminal 20 and matches a part of the local telephone number transmitted from the telephone, the login start request from the client terminal 20 is normal. Judge that there is, allow login. Details of these processes performed by the control unit 14 will be described later.
  • each client terminal 20 includes a communication unit 21, an input unit 22, a display unit 23, an external storage device 24, and a control unit 25.
  • the communication unit 11 includes a communication interface, and performs data communication with the network service providing apparatus 10 via the Internet 40 under the control of the control unit 14.
  • the input unit 22 is used to input various information to the client terminal 20, and is a keyboard, a mouse, or the like.
  • the user operates the input unit 22 to input a user ID necessary for login and a part of the incoming telephone number of his / her registered telephone 30.
  • the display unit 23 is a liquid crystal display, for example, and outputs various information under the control of the control unit 25. For example, a login screen and an input screen described later are displayed on the display unit 23.
  • the external storage device 24 is, for example, a hard disk drive, and stores various data necessary for the client terminal 20 to operate.
  • the external storage device 24 stores screen data for a login screen.
  • the control unit 25 controls the entire client terminal 20.
  • the control unit 25 includes, for example, a CPU, ROM, RAM, RTC, and the like.
  • a user who wants to use the login service (hereinafter also referred to as “login user”) operates the input unit 22 of the client terminal 20 to display a login screen as shown in FIG.
  • the login user operates the input unit 22, inputs his / her user ID on the login screen, and clicks the login button.
  • the control unit 25 of the client terminal 20 transmits a login start request including the input user ID to the network service providing apparatus 10.
  • the control unit 14 of the network service providing apparatus 10 determines whether or not the user ID included in the received login start request is stored in the user information storage unit 131 (Ste S101). If the user ID is not stored (step S101; No), the process ends as a login error.
  • step S101 when the user ID is stored (step S101; Yes), the control unit 14 sets the in-use flag to “0” (used) from the local telephone number stored in the number storage unit 132. 1) is randomly selected (step S102). At this time, the control unit 14 changes the in-use flag of the selected own situation telephone number to “1” (in use).
  • control unit 14 specifies the registered telephone 30 of the login user (step S103). Specifically, the control unit 14 may specify the registered telephone number of the registered telephone 30 associated with the user ID included in the received login start request with reference to the user information storage unit 131.
  • control unit 14 makes a telephone call to the registered telephone 30 identified in step S103 using the local telephone number selected in step S102 (step S104). This process is performed in order to leave a telephone number in the incoming call history of the registered telephone 30. For this reason, the control unit 14 disconnects the telephone call immediately after making the telephone call (so-called one cut). In addition, after disconnecting, the control unit 14 sets the in-use flag of the local telephone number that has made a call to “0” (not used).
  • control unit 14 creates screen data of an input screen for allowing the logged-in user to input a part of the local telephone number that has been dialed in Step S104 (Step S105).
  • the logged-in user is caused to input the last 4 digits of the local phone number that made the call.
  • the input screen includes an operation explanation image P1, a number input field P2 for inputting a part (the last four digits) of the telephone number of the local station that made the call, and an OK button P3.
  • the control unit 14 includes various data such as image data of the operation explanation image P1, data defining the number input field P2, and a program defining the processing content when the OK button P3 is pressed as screen data of the input screen.
  • the operation explanation image P1 is an image in JPEG (Joint Photographic Experts Group) or GIF (Graphics Interchange Format) format, and describes an operation necessary for the user to perform login authentication.
  • the user ID (U0001) displayed on the operation explanation image P1 may be acquired from the received login start request.
  • the user name (Taro Aibishi) displayed in the operation explanation image P1 is stored in the user information storage unit 131 and is associated with the user ID included in the received login start request. And it is sufficient.
  • the telephone number (03-3235) other than the last four digits displayed on the operation explanation image P1 may be the local telephone number that has been transmitted in step S104.
  • control unit 14 transmits (replies) the screen data of the input screen created in step S105 to the client terminal 20 that has transmitted the received service start request (step S106).
  • the control unit 25 of the client terminal 20 displays an input screen as shown in FIG. 8 on the display unit 23 based on the received screen data.
  • the other part (03-3235) of the incoming telephone number of the registered telephone 30 to which the lower four digits are to be input is displayed with an underline. Therefore, the user can easily know the incoming telephone number to which the last four digits are to be entered from the incoming call history of his registered telephone 30.
  • the user inputs this number in the number input field P2 on the input screen via the input unit 22 of the client terminal 20, and presses the OK button P3.
  • the control unit 25 of the client terminal 20 transmits the input number to the network service providing apparatus 10.
  • the control unit 14 of the network service providing apparatus 10 transmits the screen data to the client terminal 20 in step S106, and then the number input from the client terminal 20 on the input screen within a certain time (for example, within 10 minutes). It is determined whether or not (a part of the incoming telephone number) has been received (step S107).
  • step S107 When the number is received within a certain time (step S107; Yes), the control unit 14 compares the received number with the local telephone number that is transmitted in step S104, and accesses from the client terminal 20 Whether or not is unauthorized access (step S108). Specifically, the control unit 14 may determine that the access is unauthorized when the received number does not match the last four digits of the local phone number that originated the call.
  • step S108 If it is determined that the access is not unauthorized (step S108; No), the control unit 14 starts a login service for the login user. Thereafter, the control unit 14 continuously executes various processes corresponding to the started login service, for example, by displaying a menu screen.
  • step S107; No when the number is not received within a certain time (step S107; No), or when it is determined that the access is unauthorized (step S108; Yes), the control unit 14 forcibly terminates the process as an error. Thereby, the login user cannot perform the process regarding the subsequent login service.
  • the network service providing apparatus 10 when the network service providing apparatus 10 according to the first embodiment receives the login start request from the client terminal 20, the user who is the request source of the service start request with the local telephone number selected from the plurality of local station telephone numbers.
  • the registered telephone 30 is called. Then, the user cannot perform login authentication unless he / she inputs a part of the incoming telephone number transmitted to his / her registered telephone 30. Therefore, even if a third party illegally obtains the user ID of the user and attempts to log in as a legitimate user, it cannot know the incoming telephone number of the registered telephone 30 and therefore can pass the authentication. Therefore, unauthorized access can be prevented.
  • the user's registered telephone 30 receives an incoming call from the local station telephone number held by the network service providing apparatus 10. Therefore, the user can immediately know that unauthorized access using his / her user ID has been attempted by looking at this incoming call display, and can promptly take measures such as contacting the management center. .
  • the network service providing apparatus 10 holds a plurality of local phone numbers, and makes a call to the registered telephone 30 using one randomly selected number from these, and a part thereof Is used as a password. Therefore, the incoming call number that the user must input to log in changes each time, and the security can be further improved.
  • the network service is described as a login service.
  • the second embodiment is different from the first embodiment in that the network service is a transfer service. Note that the configuration of the network service providing apparatus 10 according to the second embodiment is substantially the same as that of the first embodiment, and a description thereof will be omitted.
  • a user who wants to use the transfer service (hereinafter also referred to as “transfer user”) operates the input unit 22 of the client terminal 20 to transmit a login request including his / her user ID to the network service providing apparatus 10.
  • the control unit 14 of the network service providing apparatus 10 creates screen data of the transfer request screen, It transmits to the client terminal 20 of the transmission source.
  • the control unit 25 of the client terminal 20 that has received the screen data causes the display unit 23 to display a transfer request screen as shown in FIG.
  • the transfer user operates the input unit 22 to input the transfer details (bank name, branch name, subject, account number, amount, recipient name) on the transfer request screen, and clicks the transfer button.
  • the control unit 14 of the client terminal 20 transmits a transfer start request including the input information to the network service providing apparatus 10 via the Internet 40.
  • the control unit 14 of the network service providing apparatus 10 uses the local phone number stored in the number storage unit 132, as in the first embodiment, from the in-use flag. 1 randomly selects one's own phone number with “0” (step S201). And the control part 14 specifies the registration telephone 30 of a transfer user with reference to the user information storage part 131 similarly to Embodiment 1 (step S202). Specifically, the control unit 14 may specify the registered telephone number associated with the user ID included in the received login request from the user information storage unit 131. Then, the control unit 14 makes a telephone call to the specified registered telephone 30 using the own situation telephone number selected in step S201 (step S203).
  • control unit 14 makes a transfer confirmation screen (input screen) for allowing the transfer user to input a part of the local telephone number that is transmitted in step S203 and a part of the transfer contents included in the received transfer start request.
  • Screen data is created (step S204).
  • the user is made to input the last four digits of the local phone number that made the call and the second and fifth digits of the account number.
  • the transfer confirmation screen of the second embodiment has an account number input field P4 in addition to the operation explanation image P1, the telephone number input field P2, and the OK button P3.
  • the operation explanation image P1 is a JPEG or GIF format image or the like, and describes the transfer contents such as the bank name and the account number, and the description of the operation necessary for the user to complete the transfer process. In addition, what is necessary is just to acquire the transfer content described in the operation description image P1 from the received transfer start request. Furthermore, in this example, in order to inform the user of the number to be entered in the account number input field P4, a part of the account number (in this example, the second digit and the fifth digit) is surrounded by a frame. The control unit 14 stores the number enclosed in a frame in a RAM or the like when creating image data of the operation explanation image P1.
  • control unit 14 transmits (replies) the screen data created in step S ⁇ b> 204 to the client terminal 20 that has transmitted the received transfer start request (step S ⁇ b> 205). ).
  • the control unit 25 of the client terminal 20 displays a transfer confirmation screen as shown in FIG. 11 on the display unit 23 based on the received screen data.
  • the transfer contents requested by the user are described in the operation explanation image P1
  • the operation explanation image P1 is image data
  • the user can immediately know tampering by looking at the transfer contents of the operation explanation image P1.
  • the user inputs the last four digits of the incoming call number in the number input field P2, as in the first embodiment.
  • the user inputs the second and fifth digit numbers (that is, “25” in this example) of the account numbers surrounded by a frame in the operation explanation image P1 in the account number input field P4.
  • the user presses the OK button P3 via the input unit 22.
  • the control unit 25 of the client terminal 20 transmits these input numbers to the network service providing apparatus 10.
  • control unit 14 of the network service providing apparatus 10 transmits the screen data to the client terminal 20 in step S ⁇ b> 205, and then confirms the transfer from the client terminal 20 within a certain time (for example, within 10 minutes). It is determined whether or not the numbers entered on the screen (part of the telephone number and part of the account number) have been received (step S206).
  • the control unit 14 receives the received number (part of the telephone number and part of the account number), the local telephone number that is transmitted by telephone in step S203, and It compares with the account number of the transfer content requested
  • control unit 14 performs a process for transferring the specified amount to the specified bank account based on the transfer content requested by the transfer user (step S208). .
  • control part 14 may transmit the transfer content to the server of the bank which is not shown in figure, and this server may perform an actual transfer process. The process ends here.
  • step S206 when the number is not received within a certain time (step S206; No), or when it is determined that the access is unauthorized (step S207; Yes), the control unit 14 forcibly terminates the process as an error. Thereby, the transfer requested by the transfer user is not performed.
  • the transfer content such as the account number requested by the user is displayed as an image image (operation explanation image P1) on the transfer confirmation screen (input screen). Therefore, it is difficult for a third party to tamper with the transfer contents in the image as compared with the transfer contents displayed as text data or the like, and illegal transfer due to a man-in-the-middle attack or the like can be prevented.
  • the user also includes a part of the account number surrounded by a frame displayed in the operation explanation image P1 in addition to a part of the incoming telephone number transmitted to his registered telephone 30.
  • a part of the incoming telephone number transmitted to his registered telephone 30 must be entered as a password. Since this account number mark (frame) is displayed in the image, it is difficult for a third party to determine which number is marked by unauthorized access, and to improve security Is possible.
  • the network service providing apparatus 10 may randomly change the incoming telephone number part to be input every time processing is performed.
  • the second and fifth digits of the account number entered by the user included in the service start request are entered on the transfer confirmation screen in order to receive the transfer service authentication. It was necessary to do.
  • other parts of the account number, part of the amount, part of the bank name or branch name may be entered, and related information related to the network service entered by the user included in the service start request Any part may be input as long as it is a part of (transfer contents in the second embodiment).
  • a part of the credit number input by the user included in the service start request may be input for authentication.
  • the network service providing apparatus 10 may randomly change the part to which the related information is input every time processing is performed.
  • the network service providing apparatus 10 selects one of a plurality of local telephone numbers stored in the number storage unit 132 when receiving a service start request, and registers the registered telephone of the requesting user. 30 was called and the number was entered by the user as a password.
  • the number storage unit 132 may further store a plurality of sub-addresses that can be used from the local telephone number in association with the local telephone number. Then, upon receiving the service start request, the network service providing apparatus 10 selects a set that is not in use of the local telephone number and the subaddress stored in the number storage unit 132, and sets “03-3235-1111 * 12345”.
  • the registered telephone 30 may be called by a number to which a subaddress is assigned, and the user may be allowed to input the subaddress portion as a password.
  • the network service providing apparatus 10 can hold only a small number of local telephone numbers, it is possible to make a call with many different numbers using sub-addresses, so it is possible to maintain high security. It becomes.
  • the network service providing apparatus 10 may be realized by a dedicated system or an ordinary computer system.
  • the network service providing apparatus 10 is configured by storing and distributing a program for performing the above-described operation in a computer-readable recording medium, installing the program in a computer, and executing the above-described processing. May be.
  • the program may be stored in a disk device provided in a server device on a network such as the Internet so that it can be downloaded to a computer.
  • the above functions may be realized by cooperation between the OS and application software. In this case, a part other than the OS may be stored and distributed in a medium, or a part other than the OS may be stored in a server device and downloaded to a computer.
  • the present invention can be suitably used for a login system, a transfer system, and the like.
  • 10 network service providing devices 20 client terminals, 30 registered telephones, 40 Internet, 50 telephone networks, 11, 21 communication units, 12 telephone communication units, 13, 24 external storage units, 131 user information storage units, 132 number storage units, 14, 25 control unit, 22 input unit, 23 display unit

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Software Systems (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Telephonic Communication Services (AREA)

Abstract

Selon l'invention, lors de la réception d'une demande d'initiation d'ouverture de session provenant d'un terminal client (20), un dispositif de fourniture de service de réseau (10) utilise l'un d'une pluralité de numéros stockés de téléphone personnel pour effectuer un appel téléphonique sortant vers un téléphone enregistré (30) d'un utilisateur, qui est le demandeur de la demande d'initiation de service. En outre, le dispositif de fourniture de service de réseau (10) crée des données d'écran pour un écran d'entrée dans lequel une partie du numéro de téléphone personnel à partir duquel l'appel téléphonique sortant a été effectué doit être entré, et transmet les données d'écran au terminal client (20), qui a été la source de transmission de la demande d'initiation de service. Le dispositif de fourniture de service de réseau (10) reçoit alors, en provenance du terminal client (20), un numéro qui a été entré dans l'écran d'entrée, et si le numéro coïncide avec la partie du numéro de téléphone personnel à partir duquel l'appel téléphonique sortant a été effectué, le dispositif de fourniture de service de réseau (10) approuve l'ouverture de session provenant du terminal client (20).
PCT/JP2014/059779 2014-04-02 2014-04-02 Dispositif de fourniture de service de réseau, procédé de fourniture de service de réseau, et programme WO2015151251A1 (fr)

Priority Applications (2)

Application Number Priority Date Filing Date Title
PCT/JP2014/059779 WO2015151251A1 (fr) 2014-04-02 2014-04-02 Dispositif de fourniture de service de réseau, procédé de fourniture de service de réseau, et programme
JP2016511264A JP6325654B2 (ja) 2014-04-02 2014-04-02 ネットワークサービス提供装置、ネットワークサービス提供方法、及びプログラム

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
PCT/JP2014/059779 WO2015151251A1 (fr) 2014-04-02 2014-04-02 Dispositif de fourniture de service de réseau, procédé de fourniture de service de réseau, et programme

Publications (1)

Publication Number Publication Date
WO2015151251A1 true WO2015151251A1 (fr) 2015-10-08

Family

ID=54239614

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/JP2014/059779 WO2015151251A1 (fr) 2014-04-02 2014-04-02 Dispositif de fourniture de service de réseau, procédé de fourniture de service de réseau, et programme

Country Status (2)

Country Link
JP (1) JP6325654B2 (fr)
WO (1) WO2015151251A1 (fr)

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2016212781A (ja) * 2015-05-13 2016-12-15 日本電信電話株式会社 認証サーバ、認証システム、認証方法及びプログラム
WO2021171607A1 (fr) * 2020-02-28 2021-09-02 日本電気株式会社 Terminal d'authentification, système de gestion d'entrée/sortie, procédé de gestion d'entrée/sortie, et programme
WO2022215183A1 (fr) * 2021-04-07 2022-10-13 昇 菱沼 Système de fourniture de service, procédé d'enregistrement d'informations personnelles et programme

Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2001283121A (ja) * 2000-03-28 2001-10-12 Nec Corp サーバ装置、クライアント装置及びそれらを用いた通信回線ショッピングシステム
JP2002298054A (ja) * 2001-03-29 2002-10-11 J-Phone East Co Ltd 利用者認証方法、決済方法、利用者認証用情報処理方法、決済用情報処理方法、利用者認証用情報処理システム、決済用情報処理システム、及びプログラム
JP2005316660A (ja) * 2004-04-28 2005-11-10 Fuji Xerox Co Ltd 認証装置、認証方法及びプログラム
EP1919157A1 (fr) * 2006-11-06 2008-05-07 Axalto SA Procédé et systéme d'autentification utilisant un seul message
WO2008153096A1 (fr) * 2007-06-12 2008-12-18 Mobitechno Co., Ltd. Système de transaction financière
WO2009011436A1 (fr) * 2007-07-18 2009-01-22 Hirokazu Yoshida Système d'authentification d'individu utilisant un terminal mobile sans fil
JP2009205542A (ja) * 2008-02-28 2009-09-10 Fujitsu Ltd 個人認証システム、個人認証方法および個人認証プログラム

Patent Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2001283121A (ja) * 2000-03-28 2001-10-12 Nec Corp サーバ装置、クライアント装置及びそれらを用いた通信回線ショッピングシステム
JP2002298054A (ja) * 2001-03-29 2002-10-11 J-Phone East Co Ltd 利用者認証方法、決済方法、利用者認証用情報処理方法、決済用情報処理方法、利用者認証用情報処理システム、決済用情報処理システム、及びプログラム
JP2005316660A (ja) * 2004-04-28 2005-11-10 Fuji Xerox Co Ltd 認証装置、認証方法及びプログラム
EP1919157A1 (fr) * 2006-11-06 2008-05-07 Axalto SA Procédé et systéme d'autentification utilisant un seul message
WO2008153096A1 (fr) * 2007-06-12 2008-12-18 Mobitechno Co., Ltd. Système de transaction financière
WO2009011436A1 (fr) * 2007-07-18 2009-01-22 Hirokazu Yoshida Système d'authentification d'individu utilisant un terminal mobile sans fil
JP2009205542A (ja) * 2008-02-28 2009-09-10 Fujitsu Ltd 個人認証システム、個人認証方法および個人認証プログラム

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2016212781A (ja) * 2015-05-13 2016-12-15 日本電信電話株式会社 認証サーバ、認証システム、認証方法及びプログラム
WO2021171607A1 (fr) * 2020-02-28 2021-09-02 日本電気株式会社 Terminal d'authentification, système de gestion d'entrée/sortie, procédé de gestion d'entrée/sortie, et programme
WO2022215183A1 (fr) * 2021-04-07 2022-10-13 昇 菱沼 Système de fourniture de service, procédé d'enregistrement d'informations personnelles et programme

Also Published As

Publication number Publication date
JP6325654B2 (ja) 2018-05-16
JPWO2015151251A1 (ja) 2017-04-13

Similar Documents

Publication Publication Date Title
US10136315B2 (en) Password-less authentication system, method and device
CN104092542B (zh) 一种账号登录方法、装置及系统
US20180130056A1 (en) Method and system for transaction security
US20200366675A1 (en) Communication system and computer readable storage medium
JPWO2011083867A1 (ja) 認証装置、認証方法、及び、プログラム
JP2007058469A (ja) 認証システム、認証サーバ、認証方法および認証プログラム
JP6430689B2 (ja) 認証方法、端末およびプログラム
US20180241745A1 (en) Method and system for validating website login and online information processing
JP6325654B2 (ja) ネットワークサービス提供装置、ネットワークサービス提供方法、及びプログラム
JP5218547B2 (ja) 認証装置、認証方法、およびデータ利用方法
JP7079528B2 (ja) サービス提供システム及びサービス提供方法
JP6584824B2 (ja) 取引システム、取引方法、ならびに、情報記録媒体
JP5670001B1 (ja) 取引システム、取引方法、ならびに、情報記録媒体
JP6307610B2 (ja) データ改竄検知装置、データ改竄検知方法、及びプログラム
JP6714551B2 (ja) 認証鍵共有システム及び端末間鍵コピー方法
JP6115884B1 (ja) サービス提供システム、認証装置、及びプログラム
JP5660454B2 (ja) プライバシを保障した機器間接続方法
JP6080282B1 (ja) 認証処理システム、認証補助サーバ及びウェブ表示プログラム
WO2017134922A1 (fr) Système de fourniture de service, dispositif d'authentification et programme associé
JP6336383B2 (ja) 取引システム
WO2023079625A1 (fr) Système d'authentification, procédé d'authentification et programme
JP5495333B2 (ja) 認証装置、認証システム、認証方法、およびプログラム
JP2008176449A (ja) 相互認証システム及び相互認証方法
JP5750560B1 (ja) 取引システム、取引方法、ならびに、情報記録媒体
KR20130050333A (ko) 발신 내용 정보를 제공하는 본인 인증 보안 시스템 및 그 방법

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 14888285

Country of ref document: EP

Kind code of ref document: A1

ENP Entry into the national phase

Ref document number: 2016511264

Country of ref document: JP

Kind code of ref document: A

NENP Non-entry into the national phase

Ref country code: DE

32PN Ep: public notification in the ep bulletin as address of the adressee cannot be established

Free format text: NOTING OF LOSS OF RIGHTS PURSUANT TO RULE 112(1) EPC (EPO FORM 1205 DATED 17/01/2017)

122 Ep: pct application non-entry in european phase

Ref document number: 14888285

Country of ref document: EP

Kind code of ref document: A1