Information processing device, program, and method
The information processing device improves telephone authentication security by associating authentication numbers with purpose identification and confirming user responses, preventing fraudulent changes to user registration information.
Patent Information
- Authority / Receiving Office
- JP · JP
- Patent Type
- Applications
- Current Assignee / Owner
- INTEC INC(JP)
- Filing Date
- 2024-12-27
- Publication Date
- 2026-07-09
AI Technical Summary
Existing telephone authentication methods are vulnerable to fraudulent attempts where malicious third parties deceive users into making calls that appear legitimate, allowing unauthorized changes to user registration information.
An information processing device that issues authentication telephone numbers associated with purpose identification information, sends purpose confirmation messages, and determines authentication success based on user responses to these messages, ensuring the call purpose matches the intended authentication purpose.
Enhances the security of telephone authentication by verifying that user calls are made for the correct purpose, preventing fraudulent operations.
Smart Images

Figure 2026115164000001_ABST
Abstract
Description
Technical Field
[0001] The present invention relates to an information processing apparatus, a program, and a method.
Background Art
[0002] As an authentication method for user identification when a user uses some service, telephone authentication using the user's telephone is used. For telephone authentication, for example, there are a method of having the user input a message sent to the user's telephone number from a web browser, a method of making a call to the user's telephone number and checking the user's receiving of the call, a method of having the user make a call to an authentication telephone number, or a method of registering the telephone number that is the calling party when the user makes a call and executing an authentication process based on a call from the registered telephone number (for example, Patent Document 1), etc.
Prior Art Documents
Patent Documents
[0003]
Patent Document 1
Summary of the Invention
Problems to be Solved by the Invention
[0004] A third party may attempt to fraudulently obtain login information for a user other than themselves through phishing via a fake website, and then attempt to change the user's registration information on the server for malicious purposes. In this case, the server may use its authentication system to verify that the change in registration information is not fraudulent, and may request telephone authentication from the user's registered phone number to the third party impersonating the user. In this case, a malicious third party who has received instructions for telephone authentication from the server may attempt to bypass authentication by presenting instructions similar to these instructions to the user on a fake website, causing the user to make a call. If the third party deceives the user and the user makes a call in this way, the authentication system may determine that it is a legitimate call from the user's phone number, potentially allowing the fraudulent operation, such as changing the registration information, to succeed. Therefore, a more secure authentication method is required.
[0005] Therefore, the present invention aims to provide an information processing device, program, and method capable of improving the security of telephone authentication. [Means for solving the problem]
[0006] An information processing device according to one aspect of the present disclosure includes: an authentication request acquisition unit that acquires authentication request information including purpose identification information that identifies the purpose of user authentication by telephone; an issuer that, when authentication request information is acquired, issues an authentication telephone number to be used for authentication, associating it with the purpose identification information; a call receiving unit that accepts calls to the authentication telephone number via a user call terminal; a purpose confirmation unit that, in a call with the user, transmits a purpose confirmation message associated with the purpose identification information to the user call terminal and acquires a response to the purpose confirmation message from the user call terminal; and an authentication determination unit that determines whether the authentication is successful or not based on the purpose identification information and the response.
[0007] A program relating to another aspect of this disclosure causes a computer to perform the following actions: obtain authentication request information including purpose identification information that identifies the purpose of user authentication by telephone and the user's telephone number; when the authentication request information is obtained, issue an authentication telephone number associated with the purpose identification information to be used for authentication; accept a call to the authentication telephone number via a user call terminal; in a call with the user, send a purpose confirmation message associated with the purpose identification information to the user call terminal and obtain a response to the purpose confirmation message from the user call terminal; and determine whether authentication is successful or not based on the purpose identification information and the response.
[0008] Another aspect of the present disclosure involves a computer obtaining authentication request information including purpose identifier information that identifies the purpose of user authentication by telephone and the user's telephone number; issuing an authentication telephone number associated with the purpose identifier information when the authentication request information is obtained; accepting a call to the authentication telephone number via a user call terminal; sending a purpose confirmation message associated with the purpose identifier information to the user call terminal during a call with the user, obtaining a response to the purpose confirmation message from the user call terminal; and determining the success or failure of authentication based on the purpose identifier information and the response. [Effects of the Invention]
[0009] According to the present invention, it is possible to provide an information processing device, program, and method that can improve the security of telephone authentication. [Brief explanation of the drawing]
[0010] [Figure 1] This is a schematic diagram of the telephone authentication system. [Figure 2] This is a block diagram of each device or terminal in a telephone authentication system. [Figure 3] This diagram illustrates the information stored in the telephone authentication device. [Figure 4] This diagram illustrates other information stored in the telephone authentication device. [Figure 5] This diagram illustrates an example of information stored in a service provider's device. [Figure 6] This diagram illustrates the processing flow in a telephone authentication system. [Figure 7] This figure shows an example of a screen displayed on the user's device. [Figure 8] This diagram illustrates the number issuance process in a telephone authentication device. [Figure 9] This diagram illustrates the authentication process in a telephone authentication device. [Figure 10] This is a diagram illustrating user input. [Figure 11] This diagram illustrates an example of an attempt at fraudulent authentication by a third party. [Figure 12] This diagram illustrates an example screen for cases of fraudulent authentication. [Figure 13] This diagram illustrates user input in the event of fraudulent authentication. [Modes for carrying out the invention]
[0011] A preferred embodiment of the present invention will be described with reference to the attached drawings. In each drawing, components denoted by the same reference numerals have the same or similar configuration.
[0012] Figure 1 shows a block diagram illustrating the outline of the telephone authentication system 10 according to this embodiment. The telephone authentication system 10 comprises a telephone authentication device 101, a user call terminal 201, and a service provider device 301. In the telephone authentication system 10, the telephone authentication device 101, the user call terminal 201, and the service provider device 301 are connected to a network N. Network N is, for example, the internet. In addition, in the telephone authentication system 10, the telephone authentication device 101 and the service provider device 301 communicate through the network N, and the user call terminal 201 and the service provider device 301 communicate through the network N.
[0013] In the telephone authentication system 10, the telephone authentication device 101 and the user communication terminal 201 can be connected through a telephone line. Note that the telephone line may include not only analog lines and digital lines but also an Internet network or a wireless line to which an IP phone or the like can be connected.
[0014] In the telephone authentication system 10, when a user who uses a service provided by the service provider device 301 performs some operation on the service provider device 301, the service provider device 301 requests the telephone authentication device 101 to issue an authentication telephone number. The authentication telephone number issued by the telephone authentication device 101 is presented to the user through the service provider device 301. Authentication is performed when a call is placed from the user communication terminal 201 to the telephone authentication device 101. The telephone authentication device 101 transmits an authentication result in response to an authentication result request from the service provider device 301, and processing corresponding to the authentication result is performed.
[0015] Authentication is performed, for example, when a user performs an operation to change user information registered in the service provider device 301. Alternatively, authentication may be performed when an operation such as initial user registration is first performed on the service provider device 301 or when a user's telephone number is registered. The necessity of telephone authentication can be appropriately set according to the requirements of the administrator of the service provider device 301.
[0016] The telephone authentication device 101 is a server device having a computer that performs predetermined processing by executing a predetermined program stored in the telephone authentication device 101.
[0017] The user call terminal 201 is, for example, a call device used by the user to make a call to the telephone authentication device 101, and is, for example, a smartphone. The user call terminal 201 has the function to browse websites provided by the service provider device 301. The type of website provided by the service provider device 301 is not limited, but in the example described later, it will be explained as an example of a website provided by a credit card company. In this embodiment, the user call terminal 201 in which the calling function and browsing function are integrated into one terminal will be described as an example, but the user call terminal 201 may be a fixed telephone terminal that has only a calling function. If the user call terminal 201 is a fixed telephone terminal, the user will operate a device that can browse websites provided by the service provider device 301 (smartphone, tablet terminal, personal computer, etc.) to browse the website.
[0018] The service provider device 301 is a server device having a computer that performs predetermined processing by executing a predetermined program stored in the storage unit of the service provider device 301. The service provider device 301 is a device that provides services to individual users when the user logs in through a browser. The service provider device 301 is, for example, a device managed by a credit card company and is a device that allows users to change and configure their registration information.
[0019] Referring to Figure 2, the telephone authentication device 101, the user call terminal 201, and the service provider device 301 will be described.
[0020] The telephone authentication device 101 includes a communication unit 1011, a storage unit 1012, an authentication request acquisition unit 1013, a number generation unit 1014, a call receiving unit 1015, a purpose confirmation unit 1016, an authentication determination unit 1017, and an update unit 1018.
[0021] The communications unit 1011 controls the communication conducted through the network N between it and the service provider equipment 301.
[0022] The storage unit 1012 stores various types of information used in processing by the telephone authentication device 101. The storage unit 1012 includes an authentication purpose database 10121 and an authentication telephone number database 10122.
[0023] Referring to Figure 3, the information stored in the Authentication Purpose DB10121 will be explained. The Authentication Purpose DB10121 stores "Business Operator Identification Information," "Purpose Identification Information," "Authentication Purpose," "Purpose Confirmation Message," and "Authentication Judgment Criteria."
[0024] The "business operator identification information" stores information that identifies the business operator who is the administrator of the service provider device 301 and who uses the telephone authentication service using the telephone authentication device 101. In the example in Figure 3, "AAA" corresponding to business operator A and "BBB" corresponding to business operator B are stored as business operator identification information.
[0025] Information identifying the purpose of telephone authentication, i.e., the reason why telephone authentication is required, is stored as "purpose identification information." Purpose identification information is identification information assigned to each business operator. In the example in Figure 3, purpose identification information "1A," "2A," ... "6A," etc., are associated with business operator identification information "AAA" (business operator A), and purpose identification information "1B," "2B," etc., are associated with business operator identification information "BBB" (business operator B). Information indicating the reason why telephone authentication is required is stored as "authentication purpose." In the example in Figure 3, "email address change" is associated with purpose identification information "1A," and "address change" is associated with purpose identification information "2A." The authentication purpose can be arbitrarily set for any purpose identification information. In the example in Figure 3, the authentication purpose of "address change" is associated with purpose identification information "1B," and the authentication purpose of "email address change" is associated with purpose identification information "2B." The association between purpose identification information and authentication purpose may be performed by setting the content selected by each business operator in the telephone authentication device 101.
[0026] The purpose confirmation message, which is sent from the telephone authentication device 101 to the user call terminal 201 during telephone authentication, is stored as a "purpose confirmation message". In the example in Figure 3, the purpose confirmation message corresponding to the authentication purpose being "email address change" is stored as "Message 1". Also, the purpose confirmation message corresponding to the authentication purpose being "address change" is stored as "Message 2". The purpose confirmation message may be audio data, which is the call audio itself during the voice call with the user call terminal 201, or it may be text data that represents the wording of the message itself. If the purpose confirmation message is text data, the voice data can be sent to the user call terminal 201 by the voice reading function of the telephone authentication device 101.
[0027] As "authentication criteria," information is stored that serves as a standard for determining whether a user who has received a purpose confirmation message is making a call for authentication purposes. For example, for purpose confirmation message 1, information is stored indicating that if the user sends a tone signal of "1," authentication is considered successful, and for any other tone signal, authentication is considered unsuccessful. For purpose confirmation message 2, information is stored indicating that if the user sends a tone signal of "2," authentication is considered successful, and for any other tone signal, authentication is considered unsuccessful. The authentication criteria are set according to the content of the purpose confirmation message. Here, the authentication criteria are set dynamically. After receiving a call from a user and confirming that the caller ID and the authentication phone number's expiration date are within the validity period, a random number is assigned to the authentication criteria. This prevents the same authentication criteria from being reused each time authentication is performed, thus allowing for more accurate authentication.
[0028] Referring to Figure 4, the information stored in the Authentication Telephone Number DB 10122 will be explained. The Authentication Telephone Number DB 10122 stores information about the authentication telephone numbers issued in response to requests from the service provider device 301. The Authentication Telephone Number DB 10122 stores the "Authentication Telephone Number," "User Telephone Number," "Purpose Identification Information," "Authentication Purpose," "Authentication Result," and "Authentication Expiration Date."
[0029] The authentication telephone number issued by the numbering unit 1014, described later, is stored as the "authentication telephone number". The authentication telephone number is issued separately for each authentication, and in the example in Figure 4, they are stored as "0800-XXX-1111", "0800-XXX-2222", and "0800-XXX-3333".
[0030] As a "user phone number," the phone number used by the user for telephone authentication, which is included in the information obtained by the telephone authentication device 101 from the service provider device 301 during authentication, is stored. The user phone number is stored in association with each authentication phone number. In the example in Figure 3, the authentication phone number "080...1111" is associated with the user phone number "080...", the authentication phone number "080...2222" is associated with the user phone number "070...", and the authentication phone number "080...3333" is associated with the user phone number "090...".
[0031] The purpose identification information included in the information obtained by the telephone authentication device 101 from the service provider device 301 during authentication is stored as "purpose identification information". The authentication purpose corresponding to the purpose identification information is stored as "authentication purpose". The "authentication purpose" is stored by the telephone authentication device 101 by referring to the authentication purpose DB 10121 according to the purpose identification information obtained from the service provider device 301.
[0032] The authentication result based on a call from the user's phone number to the authentication phone number is stored as the "authentication result." The expiration date of the authentication using the authentication phone number is stored as the "authentication expiration date." The authentication expiration date is set when the number is issued by the numbering unit 1014. The length of the authentication expiration date can be set as appropriate by the business operator or the administrator of the telephone authentication device 101. In the example in Figure 4, the authentication result for authentication using the authentication phone number "0800...1111" is stored as "authentication pending," and the authentication expiration date is stored as "2024 / 12 / 16 20:00:00." The authentication results for authentication using the authentication phone number "0800...2222" are stored as "authentication successful," and the authentication result for authentication using the authentication phone number "0800...3333" is stored as "authentication failed." The authentication results are updated according to the authentication judgment result by the authentication judgment unit 1017 described later. In addition, if the authentication judgment unit 1017 determines that the authentication expiration date has passed, "authentication failed" is also stored.
[0033] Returning to Figure 2, we continue the explanation of each part of the telephone authentication device 101. The authentication request acquisition unit 1013 acquires authentication request information, which includes purpose identification information that identifies the purpose of user authentication by telephone. The authentication request acquisition unit 1013 acquires authentication request information from the service provider device 301. The authentication request information includes service provider identification information, purpose identification information, and the user's telephone number. The authentication request information is transmitted to the authentication request acquisition unit 1013 when the service provider device 301, described later, requests telephone authentication from the telephone authentication device 101.
[0034] When the numbering unit 1014 obtains authentication request information, it issues an authentication telephone number to be used for authentication, associating it with the purpose identification information. The numbering unit 1014 updates the authentication telephone number DB 10122 using the issued authentication telephone number. The numbering unit 1014 may also store the authentication telephone number in association with the user telephone number in addition to the purpose identification information. Furthermore, when the numbering unit 1014 issues an authentication telephone number, it may set an authentication expiration date and update the authentication telephone number DB 10122 in association with the authentication telephone number. The numbering unit 1014 pools multiple telephone numbers, each assigned to a different business operator, and when it obtains authentication request information, it issues an authentication telephone number from the pool. At this time, telephone numbers whose authentication expiration date has passed may be returned to the pool after being judged as authentication failures, so that they can be issued again.
[0035] The call receiving unit 1015 accepts calls to the authentication telephone number via the user's calling terminal. The call receiving unit 1015 accepts calls to the authentication telephone number by controlling communication using the telephone line. The call receiving unit 1015 also determines whether the number making the call is a user telephone number associated with the authentication telephone number. If the call is not made from a user telephone number, the call receiving unit 1015 determines that authentication has failed.
[0036] The purpose confirmation unit 1016, during a call with a user, sends a purpose confirmation message associated with the purpose identification information to the user call terminal 201 and obtains a response to the purpose confirmation message from the user call terminal 201. If the call receiving unit 1015 determines that the call is from a user telephone number, the purpose confirmation unit 1016 refers to the authentication telephone number DB 10122 and identifies the purpose identification information associated with the authentication telephone number or user telephone number. The purpose confirmation unit 1016 refers to the authentication purpose DB 10121 and identifies the purpose confirmation message corresponding to the purpose identification information. The purpose confirmation unit 1016 sends the identified purpose confirmation message to the user call terminal 201.
[0037] The purpose confirmation message, in the case of message 1 for changing an email address, is an audio message (Example Message 1) that says, "This phone verification will change your registered email address. Please enter 1 if you agree, or 2 otherwise." This purpose confirmation message includes options to confirm whether the purpose of the call corresponds to the purpose identification information.
[0038] The purpose confirmation message is an audio message (Example Message 2) that says, "This phone authentication will perform one of the following actions. Please enter the number corresponding to the action you wish to perform. 1: Change registered email address, 2: Change registered address, 3: Other changes, 4: Action other than a change." This purpose confirmation message includes multiple options, with option "1" corresponding to the purpose for which the call was made, and options "2", "3", and "4" corresponding to other purposes different from the purpose for which the user made the call.
[0039] The purpose confirmation message is an audio message (Example Message 3) that says, "This phone verification will change your registered email address. Please answer 'Yes' if you agree, or 'No' if you do not." This purpose confirmation message includes options to confirm whether the purpose of the call corresponds to the purpose identification information.
[0040] The purpose confirmation unit 1016 obtains a response to the purpose confirmation message. The response obtained corresponds to the content of the purpose confirmation message. For example, the response to message example 1 is to input 1 as a tone signal if the call was made for the purpose of authenticating an email address change, and 2 otherwise, and the response will be either a tone signal of "1" or a tone signal of "2". The response to message example 2 is to input 1 as a tone signal if the call was made for an email address change, 2 if the call was made for an address change, 3 if the call was made for any other change, and 4 if the call was made for an operation other than a change operation, and the response will be one of the tone signals from "1" to "4". The response to message example 3 is to input "yes" as an audio signal if the call was made for the purpose of authenticating an email address change, and "no" otherwise, and the response will be an audio signal that includes either "yes" or "no".
[0041] The authentication determination unit 1017 determines whether authentication is successful or not based on the purpose identification information and the response. Specifically, the authentication determination unit 1017 determines that authentication is successful if the response indicates that the purpose for which the user made the call corresponds to the purpose identification information, and determines that authentication is unsuccessful if the response indicates that the purpose for which the user made the call does not correspond to the purpose identification information. The authentication determination unit 1017 interprets the response obtained by the purpose confirmation unit 1016. If the response is a tone signal, it determines the number indicated by the tone signal and refers to the authentication purpose DB 10121 to identify the authentication judgment criterion corresponding to the purpose confirmation message sent by the purpose confirmation unit 1016.
[0042] The authentication determination unit 1017 determines whether authentication is successful or unsuccessful based on the authentication criteria. For example, if a tone signal indicating "1" is received as a response to message 1 corresponding to purpose identification information 1A, the user's purpose for calling is to change their email address, which matches the authentication criteria, so the authentication determination unit 1017 determines that authentication is successful. On the other hand, if a tone signal other than "1" is received as a response to message 1 corresponding to purpose identification information 1A, the user's purpose for calling is not to change their email address, so the authentication determination unit 1017 determines that authentication is unsuccessful. The authentication determination unit 1017 updates the authentication result stored in the authentication telephone number DB 10122 according to the authentication determination.
[0043] If the response is an audio signal produced by the user's speech, the authentication determination unit 1017 analyzes the acquired audio signal and identifies the content of the speech signal. Based on the authentication criteria established for the content of the speech, for example, the criterion that authentication is successful if the answer is "yes," the authentication determination unit 1017 makes a determination of whether the authentication is successful or unsuccessful.
[0044] The update unit 1018 updates the purpose identification information associated with each of the business identification pieces. For example, the update unit 1018 receives information to set the purpose identification information associated with each of the business identification pieces, via access from the administrator of the service provider device 301, and updates the purpose identification information associated with each of the business identification pieces based on the received information. This makes it possible to set purpose identification information that meets the business operator's requirements.
[0045] Next, the user call terminal 201 will be described. The user call terminal 201 has a communication unit 2011, a display unit 2012, a call unit 2013, and an input unit 2014. The communication unit 2011 controls communication between the user call terminal 201 and the service provider device 301. The display unit 2012 controls the display of a website provided by the service provider device 301. The call unit 2013 controls the call between the user call terminal 201 and the telephone authentication device 101 via the telephone line. The input unit 2014 controls the input of a response to a purpose confirmation message.
[0046] Next, the service provider device 301 will be described. The service provider device 301 has a communication unit 3011, a storage unit 3012, and a control unit 3013. The communication unit 3011 controls communication between the service provider device 301 and the telephone authentication device 101 and the user call terminal 201. The storage unit 3012 has a user database 30121. The control unit 3013 controls the display of the website screen to be shown on the user call terminal 201.
[0047] Figure 5 shows an example of the information stored in User DB 30121. User DB 30121 stores information about the user, such as "User Identification Information," "User Phone Number," "User Email Address," "User Basic Information," and "Login Password."
[0048] The following information is stored in the service provider device 301 for managing individual users when providing services: "User Identification Information" is stored as the "User Telephone Number" is the telephone number of each individual user; "User Email Address" is the email address of each individual user; "Basic User Information" is the basic information of each individual user, such as their address; and "Login Password" is the password that the user uses to log in to the website provided by the service provider device 301. In the example in Figure 5, the user with user identification information "USER01" has a user telephone number of "080-XXXX-XXXX" and a user email address of "aaa@..." stored in the device.
[0049] Referring to Figure 6, the authentication process by the telephone authentication system 10 will be explained. In Figure 6 and other figures, communication through network N is shown with solid lines, and communication for calls through telephone lines is shown with dashed lines.
[0050] In step S601, the user logs in to the service provider device 301 via the user call terminal 201. During login, for example, login authentication is performed using user identification information and a login password.
[0051] In step S602, the user who successfully logged in sends a request to change registration information to the service provider device 301 via the user call terminal 201. The request to change registration information is, for example, a request to change the email address registered in the service provider device 301.
[0052] In step S603, the service provider device 301 identifies the target of the change based on the change request. For example, the service provider device 301 identifies the target of the change requested by the user as an email address.
[0053] In step S604, the service provider device 301 transmits information to the user call terminal 201 via a website screen displayed on the user call terminal 201 to allow the user to confirm the changes. If the service provider device 301 has stored information that the change target identified in step S603 requires telephone authentication, it transmits information to the user to confirm the changes, including information for accepting input for telephone authentication, on the screen displayed on the user call terminal 201.
[0054] In step S605, an operation for telephone authentication is obtained through the screen displayed on the user call terminal 201. This operation is performed, for example, through the purpose confirmation screen 701 shown in Figure 7. The purpose confirmation screen 701 displays that the registered email address will be changed and shows the email address before and after the change. The purpose confirmation screen 701 also has an authentication request button 7011 for obtaining the operation for telephone authentication. When the user selects the authentication request button 7011, the operation for telephone authentication is obtained.
[0055] In step S606, the service provider device 301 obtains a telephone authentication request from the user call terminal 201.
[0056] In step S607, the service provider device 301 transmits authentication request information to the telephone authentication device 101. At this time, the service provider device 301 transmits authentication request information that includes the service provider's business identification information, the user telephone number stored in the service provider device 301, and purpose identification information corresponding to the purpose of telephone authentication.
[0057] In step S608, the telephone authentication device 101 performs the number issuance process. Details of the number issuance process will be described later.
[0058] In step S609, the authentication telephone number issued is transmitted from the telephone authentication device 101 to the service provider device 301. In step S610, the authentication telephone number is transmitted from the service provider device 301 to the user call terminal 201.
[0059] In step S611, the authentication telephone number is displayed on the user call terminal 201. The authentication telephone number is displayed on the user call terminal 201 as shown in the number display screen 702 in Figure 7. The number display screen 702 displays a message requesting that the user make a call from their registered user telephone number to the number displayed in the number display field 7021.
[0060] The numbering process will be explained with reference to Figure 8. In step S801, the authentication request acquisition unit 1013 acquires authentication request information from the service provider device 301. In step S802, the numbering unit 1014 refers to the purpose identification information included in the authentication request information. For example, if the authentication request information is sent from service provider A for the purpose of changing the email address, the numbering unit 1014 refers to "1A" as the purpose identification information.
[0061] In step S803, the numbering unit 1014 refers to the user telephone number included in the authentication request information.
[0062] In step S804, the numbering unit 1014 issues an authentication telephone number.
[0063] In step S805, the numbering unit 1014 stores the authentication telephone number in association with the purpose identification information and the user telephone number. Specifically, the numbering unit 1014 updates the authentication telephone number DB 10122 to store the authentication telephone number. At this time, the numbering unit 1014 sets the default authentication result to "authentication pending".
[0064] In step S806, the numbering unit 1014 updates the authentication telephone number DB 10122 to set an expiration date for the authentication telephone number.
[0065] Returning to Figure 6, in step S612, the user call terminal 201 makes a call to the authentication telephone number that was issued after the numbering process. The call to the authentication telephone number is routed through the telephone line as a call to the telephone authentication device 101.
[0066] In step S613, the call receiving unit 1015 and the purpose confirmation unit 1016 perform call receiving processing. In the call receiving processing, the call receiving unit 1015 compares the caller's telephone number with the user telephone number associated with the recipient's authentication telephone number and determines whether the call is from the user telephone number associated with the authentication telephone number and whether the authentication expiration date associated with the authentication telephone number has not expired at the time of the call. If the call is not from the user telephone number or the authentication expiration date has expired, the call receiving unit 1015 records the authentication failure and terminates the call. If the call is from the user telephone number and the authentication expiration date has not expired at the time of the call, the purpose confirmation unit 1016 identifies the purpose identification information associated with the user telephone number and the purpose confirmation message corresponding to the purpose identification information. After the call receiving processing, in step S614, a call between the user call terminal 201 and the telephone authentication device 101 is initiated.
[0067] In step S615, the telephone authentication device 101 performs authentication processing. The authentication processing includes sending and receiving information via telephone with the user call terminal 201. The authentication processing will be described later.
[0068] In step S616, the service provider device 301 sends an authentication result request to the telephone authentication device 101 in order to inquire about the authentication result. In step S617, the telephone authentication device 101 sends the authentication result to the service provider device 301, for example, through the authentication determination unit 1017. In step S618, the service provider device 301 sends information to the user call terminal 201 to display a screen showing the authentication result on the user call terminal 201. This completes the authentication by the telephone authentication system 10. The user can then obtain the authentication result through the user call terminal 201.
[0069] The authentication process will be explained with reference to Figure 9. In step S901, the purpose confirmation unit 1016 sends a purpose confirmation message to the user call terminal 201 via the telephone line.
[0070] In step S902, the user call terminal 201 obtains input for responding to the purpose confirmation message via the input unit 2014.
[0071] In step S903, the purpose confirmation unit 1016 obtains a response to the purpose confirmation message from the user call terminal 201.
[0072] The acquisition of a response to a purpose confirmation message will be explained with reference to Figure 10. The user hears the message "This phone authentication will change your registered email address. Please enter 1 if you agree, or 2 otherwise" through the user call terminal 201. The user inputs their response as a tone signal through the input screen 1001 of the user call terminal 201. If the user's purpose is to change their email address, the input indicating the response to the purpose confirmation message is "1". In this case, the call unit 2013 transmits the tone signal "1" as a response to the phone authentication device 101.
[0073] Returning to Figure 9, in step S904, the authentication determination unit 1017 determines whether the purpose for which the user made the call corresponds to the purpose identification information.
[0074] In step S905 (step S904: NO), the authentication determination unit 1017 records the authentication failure in association with the authentication telephone number and terminates the call.
[0075] In step S906 (step S904: YES), the authentication determination unit 1017 records the authentication success in association with the authentication telephone number.
[0076] In step S907, the authentication determination unit 1017 sends a message to the user call terminal 201 indicating that authentication was successful. The message is, for example, an audio message saying, "Authentication was successful."
[0077] In step S908, the call is terminated by an operation performed by the user call terminal 201 or by processing performed by the telephone authentication device 101.
[0078] The advantages of telephone authentication using the telephone authentication system 10 will be explained with reference to Figures 11 to 13. Figure 11 shows an example of how to handle a situation where a third party with malicious intent attempts to change registration information without the user's consent. More specifically, it is a case where a third party who has obtained a user's user identification information and login password through a phishing site attempts to change the user's email address in the service provider device 301. Changing the email address is done, for example, to fraudulently use a credit card when credit card usage verification is performed by sending a verification code to the registered email address. If the system is configured so that the verification code for credit card usage is sent to an email address set by a third party, the third party could freely use the card.
[0079] In step S1101, a third party who has obtained the user's user identification information and login password via a phishing site or the like logs in to the service provider device 301 through the third-party terminal 401. At this time, the service provider device 301 cannot detect that the login was made by a third party.
[0080] In step S1102, a request to change registration information is sent from the third-party terminal 401. The change request is, for example, a change of email address.
[0081] In step S1103, the service provider device 301 identifies the target of the change based on the change request. For example, the service provider device 301 identifies the target of the change requested by the user as an email address.
[0082] In step S1104, the service provider device 301 transmits information to the third-party terminal 401 via a website screen displayed on the third-party terminal 401 for the user to confirm the changes. If the service provider device 301 has stored information that the change target identified in step S603 requires telephone authentication, it transmits information to the user to confirm the changes, including information for accepting input for telephone authentication, on the screen displayed on the third-party terminal 401.
[0083] In step S1105, an operation for telephone authentication is obtained through a screen displayed on the third-party terminal 401. This operation is performed, for example, through the purpose confirmation screen 1201 shown in Figure 12. The purpose confirmation screen 1201 displays that the registered email address is to be changed and shows the email addresses before and after the change, and includes an authentication request button 12011 for obtaining the operation for telephone authentication. When the third party selects the authentication request button 12011, the operation for telephone authentication is obtained.
[0084] In step S1106, the service provider device 301 obtains a telephone authentication request from the third-party terminal 401.
[0085] In step S1107, the service provider device 301 transmits authentication request information to the telephone authentication device 101. At this time, the service provider device 301 transmits authentication request information that includes the service provider's business identification information, the user telephone number stored in the service provider device 301, and purpose identification information corresponding to the purpose of telephone authentication.
[0086] In step S1108, the telephone authentication device 101 performs the number issuance process.
[0087] In step S1109, the authentication telephone number issued by the telephone authentication device 101 is transmitted to the service provider device 301. In step S1110, the authentication telephone number is transmitted from the service provider device 301 to the third-party terminal 401. The authentication telephone number transmitted to the third-party terminal 401 is displayed in the number display field 12021 on the number display screen 1202 shown in Figure 12.
[0088] The third party requests the user, via the user call terminal 201, to make a call to the displayed authentication phone number.
[0089] In step S1111, the third-party terminal 401 transmits information about the fraudulent operation screen to the user call terminal 201. The fraudulent operation screen is, for example, the purpose confirmation screen 1203 in Figure 12, and displays a purpose that is different from the purpose of changing the email address, which is recognized by the service provider device 301 and the telephone authentication device 101, such as "We will perform identity verification for account activation."
[0090] In step S1112, a telephone authentication request is sent from the user call terminal 201 to the third-party terminal 401. The request is sent when the authentication request button 12031 on the purpose confirmation screen 1203 is operated.
[0091] In step S1113, the third-party terminal 401 transmits the authentication telephone number obtained in step S1110 to the user calling terminal 201 in order to display the authentication telephone number.
[0092] In step S1114, the user call terminal 201 displays the number display screen 1204. The authentication telephone number is displayed in the number display field 12041 of the number display screen 1204. This number is displayed on the user call terminal 201 at approximately the same time as the acquisition of the authentication telephone number by the third-party terminal 401, so that authentication does not fail due to the expiration of the authentication period based on the authentication telephone number.
[0093] If the user does not realize that the number display screen 1204 is a screen displayed by a third party, in step S1115, a call is made from the user's calling terminal 201 to the telephone authentication device 101.
[0094] In step S1116, the receiving unit 1015 receives a call, and in step S1117, the call begins.
[0095] In step S1118, the telephone authentication device 101 performs authentication processing. The authentication processing is the same as the process described with reference to Figure 9.
[0096] In step S1119, the service provider device 301 sends an authentication result request to the telephone authentication device 101 in order to inquire about the authentication result. In step S1120, the telephone authentication device 101 sends the authentication result to the service provider device 301 in response to the authentication result request.
[0097] In step S1121, the telephone authentication device 101 notifies the third-party terminal 401 of the authentication result.
[0098] In the authentication process, steps S904 to S908 in Figure 9 determine whether the purpose of telephone authentication corresponds to the purpose identification information obtained from the service provider device 301, and the success or failure of the authentication is recorded.
[0099] If the purpose identification information transmitted to the telephone authentication device 101 via the service provider device 301 by the operation of the third-party terminal 401 is information indicating an email address change, the purpose confirmation message will be a message to confirm whether or not the telephone authentication is for the purpose of changing the email address. As shown in the purpose confirmation screen 1203 of Figure 12, if the user performs telephone authentication for the purpose of account activation, the user will enter a response in the purpose confirmation message indicating that the purpose is different.
[0100] The acquisition of the response to the purpose confirmation message in this case will be explained with reference to Figure 13. The user hears the message "This phone authentication will change your registered email address. Please enter 1 if you agree, or 2 otherwise" through the user call terminal 201. The user inputs the response as a tone signal through the input screen 1301 of the user call terminal 201. A user whose purpose is account activation enters "2" as a response to the purpose confirmation message. In this case, the call unit 2013 sends the tone signal "2" as a response to the phone authentication device 101.
[0101] If a tone signal of "2" is received as a response, the authentication determination unit 1017 determines that the purpose for which the user made the call does not correspond to the purpose identification information, records the authentication failure in association with the authentication telephone number, and terminates the call. Since the authentication result is a failure, the email address change is not performed.
[0102] In the telephone authentication system 10, a purpose confirmation message is sent during telephone authentication, and a response regarding the purpose is obtained. This allows the system to determine that authentication is successful only when the purpose of authentication matches the purpose for which the user made the call. Therefore, even if a third party attempts to fraudulently change the registration information, telephone authentication cannot be bypassed.
[0103] The embodiment of this device has been described above. The telephone authentication device 101 according to this embodiment includes: an authentication request acquisition unit 1013 that acquires authentication request information including purpose identification information that identifies the purpose of user authentication by telephone; an issuer 1014 that, when authentication request information is acquired, issues an authentication telephone number to be used for authentication, associating it with the purpose identification information; a call receiving unit 1015 that accepts calls to the authentication telephone number through the user call terminal 201; a purpose confirmation unit 1016 that, during a call with the user, sends a purpose confirmation message associated with the purpose identification information to the user call terminal 201 and acquires a response to the purpose confirmation message from the user call terminal 201; and an authentication determination unit 1017 that determines whether the authentication is successful or not based on the purpose identification information and the response.
[0104] In the telephone authentication device 101, the authentication telephone number and purpose confirmation message are associated with the purpose identification information included in the authentication request information. By sending the purpose confirmation message to the user call terminal 201 and obtaining a response to the purpose confirmation message, it is possible to determine whether the purpose for which the user made the call corresponds to the purpose identification information. This makes it possible to confirm the purpose of the user's call, so that authentication can be correctly determined even for fraudulent authentication requests based on operations not intended by the user, thereby improving the security of telephone authentication.
[0105] In the telephone authentication device 101, the authentication request acquisition unit 1013 acquires authentication request information, including the user's telephone number stored in the service provider's server, from the service provider's server, which provides services based on authentication. The numbering unit 1014 issues an authentication telephone number, associating it with the purpose identification information and the user's telephone number. The call receiving unit 1015 determines whether the call originates from the user's telephone number. If the call does not originate from the user's telephone number, it determines that authentication has failed. If the call originates from the user's telephone number, the purpose confirmation unit 1016 sends a purpose confirmation message corresponding to the user's telephone number and obtains a response.
[0106] This allows the system to determine if authentication has failed if a call is made to the authentication phone number from a number different from the user's phone number, thus more reliably ensuring that the purpose of the call is confirmed by the user themselves. Furthermore, since the success or failure of authentication can be determined solely by obtaining the response to the purpose confirmation message, it is not always necessary to determine whether the call originated from the user's phone number.
[0107] In the telephone authentication device 101, the purpose confirmation unit 1016 may send a purpose confirmation message that includes one option to confirm whether the purpose for which the user made the call corresponds to the purpose identification information, and obtain a response to the one option.
[0108] This improves user convenience during confirmation, as users only need to enter a response for a single option.
[0109] In the telephone authentication device 101, the purpose confirmation unit 1016 may send a purpose confirmation message containing multiple options, which includes options corresponding to the purpose for which the user made the call and options corresponding to other purposes different from the purpose for which the user made the call, and obtain responses for the multiple options.
[0110] This allows users to select from multiple options and input their responses, reducing the possibility of users accidentally sending unintended responses that could lead to authentication being deemed successful.
[0111] In the telephone authentication device 101, the purpose confirmation unit 1016 may obtain the response to the purpose confirmation message from the user call terminal 201 as an audio signal based on the user's utterance.
[0112] This eliminates the need for users to operate through the input unit 2014, allowing them to input responses in accordance with the flow of the call, thus improving user convenience.
[0113] The telephone authentication device 101 includes a storage unit 1012 in which the authentication request information includes business operator identification information that identifies a business operator that provides services based on authentication, and purpose identification information is stored associated with each of the business operator identification information, and the purpose confirmation unit 1016 transmits a purpose confirmation message based on the business operator identification information and the purpose identification information.
[0114] This makes it possible to set purpose confirmation messages that correspond to business operator identification information and purpose identification information, thus enabling the setting of purpose confirmation messages that are appropriate to the needs of businesses.
[0115] The telephone authentication device 101 may further include an update unit 1018 that updates purpose identification information associated with each of the business operator identification pieces.
[0116] This will enable businesses to update purpose identification information to better suit their needs, thereby improving convenience for them.
[0117] In the telephone authentication device 101, the numbering unit 1014 issues an authentication telephone number by associating it with an authentication expiration date, and the call receiving unit 1015 determines that authentication has failed if it receives a call to an authentication telephone number whose authentication expiration date has passed. This makes it possible to determine whether authentication is possible or not according to the authentication expiration date.
[0118] In the telephone authentication device 101, the authentication determination unit 1017 may invalidate the authentication telephone number used for authentication after successful authentication. This prevents the authentication telephone number from being reused, thereby improving the security of authentication. [Explanation of Symbols]
[0119] 10...Telephone authentication system, 101...Telephone authentication device, 201...User call terminal, 301...Service provider equipment, 401...Third-party terminal, 1013...Authentication request acquisition unit, 1014...Number issuance unit, 1015...Call receiving unit, 1016...Purpose confirmation unit, 1017...Authentication determination unit, 1018...Update unit
Claims
1. An authentication request acquisition unit acquires authentication request information including purpose identification information that identifies the purpose of user authentication by telephone, When the aforementioned authentication request information is obtained, the numbering unit issues an authentication telephone number to be used for authentication, associating it with the purpose identification information. A call receiving unit that accepts calls to the aforementioned authentication telephone number via a user call terminal, In a call with the user, the purpose confirmation unit transmits a purpose confirmation message associated with the purpose identification information to the user call terminal and obtains a response to the purpose confirmation message from the user call terminal. An information processing apparatus comprising: an authentication determination unit that determines whether the authentication is successful or not based on the aforementioned purpose identification information and the aforementioned response.
2. An information processing apparatus according to claim 1, The authentication request acquisition unit acquires the authentication request information, which further includes the user's telephone number stored in the service provider's server, from the service provider's server of the service provider that provides the service based on the authentication. The numbering unit issues the authentication telephone number in association with the purpose identification information and the user telephone number. The receiving unit determines whether the call is from the user's telephone number, and if the call is not from the user's telephone number, it determines that the authentication has failed. The purpose confirmation unit is an information processing device that, when the call is made from the user's telephone number, sends the purpose confirmation message corresponding to the user's telephone number and obtains the response.
3. An information processing apparatus according to claim 1, The purpose confirmation unit transmits a purpose confirmation message that includes one option for confirming whether the purpose for which the user made the call corresponds to the purpose identification information, and obtains a response to the one option.
4. An information processing apparatus according to claim 1, The purpose confirmation unit transmits a purpose confirmation message containing multiple options, each option having options corresponding to the purpose for which the user made the call and options corresponding to other purposes different from the purpose for which the user made the call, and obtains responses to the multiple options.
5. An information processing apparatus according to claim 1, The purpose confirmation unit is an information processing device that acquires a response to the purpose confirmation message from the user call terminal as an audio signal based on the user's utterance.
6. An information processing apparatus according to claim 1, The authentication request information includes business identification information that identifies a business that provides services based on the authentication, A storage unit in which the purpose identification information is stored in association with each of the business operator identification pieces, Furthermore, The purpose confirmation unit is an information processing device that transmits the purpose confirmation message based on the business operator identification information and the purpose identification information.
7. An information processing apparatus according to claim 6, An information processing device further comprising an update unit for updating the purpose identification information associated with each of the aforementioned business identification pieces.
8. An information processing apparatus according to claim 1, The numbering unit issues the authentication telephone number by associating the authentication expiration date with the authentication telephone number, The aforementioned call receiving unit is an information processing device that determines that the authentication has failed when it receives a call to an authentication telephone number whose authentication period has expired.
9. An information processing apparatus according to claim 1, The authentication determination unit is an information processing device that invalidates the authentication telephone number used for the authentication after the authentication is successful.
10. On the computer, To obtain authentication request information including purpose identification information that identifies the purpose of user authentication by telephone, and the user's telephone number, When the aforementioned authentication request information is obtained, the authentication telephone number used for the authentication is issued in association with the aforementioned purpose identification information. Accepting calls to the aforementioned authentication telephone number via the user's calling terminal, In a call with the user, a purpose confirmation message associated with the purpose identification information is sent to the user call terminal, and a response to the purpose confirmation message is obtained from the user call terminal. A program that determines whether authentication is successful or not based on the aforementioned purpose identification information and the aforementioned response.
11. Computers To obtain authentication request information including purpose identification information that identifies the purpose of user authentication by telephone, and the user's telephone number, When the aforementioned authentication request information is obtained, the authentication telephone number used for the authentication is issued in association with the aforementioned purpose identification information. Accepting calls to the aforementioned authentication telephone number via the user's calling terminal, In a call with the user, a purpose confirmation message associated with the purpose identification information is sent to the user call terminal, and a response to the purpose confirmation message is obtained from the user call terminal. A method comprising determining the success or failure of authentication based on the aforementioned purpose identification information and the aforementioned response.