JP2005056299A - User authentication method, user authentication system, computer program, and program storage medium in WWW service - Google Patents

Abstract

PROBLEM TO BE SOLVED: To provide a method for authenticating a service recipient himself / herself safely and reliably in a WWW service.
A computer system connected to an information communication network and a public telephone network obtains a member ID registered in a member database from a browser terminal, and calls a predetermined telephone number on the browser terminal. And a step of temporarily storing the telephone number of the incoming telephone in association with a predetermined telephone number and temporarily storing the specific authentication code in association with the telephone number of the incoming telephone, The member ID is used as a special member ID after associating a voice notification of the authentication code with the telephone number corresponding to the authentication code sent from the browser terminal and the member ID sent from the browser terminal. In addition to registering in the member database in an identifiable manner, this browser terminal is used as a special member terminal. And a separate steps.
[Selection] Figure 2

Description

  The present invention relates to a method for authenticating a user of a browser terminal who has accessed a computer that provides a WWW service, such as use of a membership Web site, to a user.

  A wide variety of WWW services are provided to computers of an unspecified number of users via the Internet or similar information communication networks. Among the WWW services, there is a membership system service that is provided after the service target person is specified. Since the membership system service is targeted at specific individuals (members) who will be service recipients, server computers that provide WWW services (such as WWW servers) are exactly the same from the computers of many unspecified users who have accessed them. It is necessary to provide services after confirming access from the member's computer. Therefore, a personal authentication procedure is required for authenticating the user of the computer as a member in the communication process with the accessing computer.

  As a personal authentication method, a method in which an individual to be authenticated operates his / her computer and sends an ID and a password as authentication information to a computer performing an authentication procedure. The personal authentication method using an ID and a password is generally implemented by the following configuration and procedure when accessing a membership system website, for example. The WWW server assigns a set of member ID and password to a user (member) to be authenticated, and registers this set in a member database attached thereto. When a computer (browser terminal) equipped with a browser operated by a user designates a predetermined URL and sends an HTTP request to the WWW server, the WWW server includes a web page (hereinafter, login) including a member ID and password input form. Page) as an HTTP response.

  When an HTTP request including the member ID and password entered in the login page form is sent from the browser terminal to the WWW server, the WWW server queries the database for the ID and password. When it is confirmed that the association between the member ID and the password is registered in the database, the browser terminal that sent the authentication information is authenticated as a browser terminal operated by a regular member, and the browser terminal is logged in. Let That is, the process shifts to a predetermined process for providing a WWW service for members, such as returning a Web page (homepage) serving as an entrance to a member-based Web site as an HTTP response. During login, the HTTP request of the browser terminal and the response change are monitored while performing session management using a well-known cookie or the like.

  For example, there are a wide variety of services provided on the membership system website, such as disclosure of paid information, net auctions, mediation of job offers and job seekers. Many of them follow the procedure of disclosing information that can finally identify an individual while receiving service provision while anonymous. In the case of disclosure of paid information, information such as credit card number is presented to the information provider when paying the information provision fee. Will reveal personal information such as contact information and name.

  However, the disclosure of personal information in the WWW service means that the service has reached the final stage without problems. In other words, if any problem occurs before reaching the final stage, the member must be identified promptly, and measures such as warning the member or stopping the use of the service must be taken promptly. I must. However, in the conventional personal authentication, the terminal user is authenticated as a member as long as the accessing browser terminal sends authentication information registered in the member database. Even if it is required to register personal information such as contact information and name along with authentication information, such personal information may be fictitious. Even if the use of the service is stopped for a member who has caused some problem, if the authentication information is newly registered, the service can be provided again.

  Although it may be possible to send the identification information such as account number and credit card number to the browser terminal that has accessed, such as account number and credit card number, such information can be stolen even if you do not actually have a passbook or card It can be obtained by simply registering authentication information in the database and impersonating others. Therefore, there is a need for a more reliable and safe identification method for WWW services.

  The inventors of the present application have considered the above problems. Then, we considered that the most reliable and secure authentication method is to present some “thing” that proves the user of the browser terminal that has actually accessed himself / herself. The present invention has been made based on this consideration, and the basic invention thereof is a member ID sent from a browser terminal (a) accessed by a computer system connected to an information communication network and a public telephone network. When the login authentication information including (b) is referred to a member database that manages login authentication information for a large number of members and corresponding information exists, a member ID acquisition step for acquiring the member ID (b); A message indicating that a call is made so as to notify the caller number to a predetermined telephone number is described in the browser terminal (a), and a call guidance page (c) including an authentication code input form is sent. A call origination step, a telephone number (d) of a telephone that has arrived at the predetermined telephone number, and a unique authentication code ( ) And temporarily storing it in association with the telephone number (d), and an authentication code notifying step for notifying the telephone of the telephone number (d) of the authentication code (e) by synthesized speech; When the authentication code (e) corresponding to the telephone number (d) is sent to the browser terminal (a) in the input form of the outgoing call guidance page (c) and sent, the member ID (b) And the telephone number (d) are associated with each other so that the member ID (b) can be identified as the special member ID, and the member ID (b) is registered in the member database, and the browser terminal (a) is used as the special member terminal. This is a personal authentication method in the WWW service including a special member management step for identifying.

  In addition to the above basic invention, the following individual authentication methods are also within the scope of the present invention. A personal authentication method for invalidating a special member management step based on an authentication code when the authentication code is not sent from the terminal within a predetermined time after the transmission guide page is sent to the browser terminal.

  A personal authentication method for invalidating a special member management step based on the authentication code when the authentication code is not sent within a predetermined time after the generation of the authentication code.

  In the login authentication information obtaining step, a login page including a login authentication information input form is sent to the accessing browser terminal (f), and in the calling guidance step, the login authentication sent from the browser terminal (f) is sent. When the member ID (g) in the information corresponds to the special member ID, a transmission guidance page that does not include the authentication code input form is displayed on the browser terminal (f) instead of the transmission guidance page that includes the authentication code input form. In the special member management step, when the member ID (g) of the special member is acquired by the login information acquisition step, the ID (f) is set within a predetermined time after the member ID (f) is acquired. Correspondingly, if there is no incoming call from the telephone with the phone number registered in the member database, the browser terminal (f) Authentication method so as not to identify as a member terminal.

  In the identity authentication method for sending a call guidance page that does not include the authentication code input form, when the caller ID of the telephone that has arrived at the predetermined telephone number is acquired, the call is disconnected without answering the incoming call. Also good.

  When an expiration date is set for the special member ID and the expiration date has passed, the special member ID is managed as a general member ID, and when the special member terminal is identified based on the special member ID before the expiration date, A personal authentication method for extending the expiration date related to an ID.

  The present invention also relates to a computer system connected to an information communication network and a public telephone network, wherein login authentication information including a member ID (b) sent from an accessed browser terminal (a) When the member database managing the login authentication information for the member exists and the corresponding information exists, the member ID acquisition means for acquiring the member ID (b) and the browser terminal (a) are transmitted to a predetermined telephone number. A message text indicating that a call is made so as to notify the user number, and a call guidance means for sending a call guidance page (c) including an authentication code input form, and an incoming call to the predetermined telephone number The telephone number (d) of the telephone set obtained is acquired, and a unique authentication code (e) is generated and stored in association with the telephone number (d). An authentication code generating means, an authentication code notifying means for notifying the telephone of the telephone number (d) of the authentication code (e) by synthetic voice, and the browser terminal (a) are inputted into the input form of the outgoing call guidance page (c) If the authentication code sent is the authentication code (e) corresponding to the telephone number (d), the member ID (b) is associated with the telephone number (d) and the member ID (b) is assigned. In addition to registering the member ID (b) in the member database so that it can be identified as a special member ID, the present invention extends to a personal authentication system including special member management means for identifying the browser terminal (a) as a special member terminal.

  Further, the scope of the present invention also includes a computer program that causes a computer to execute any one of the above-described personal authentication methods and a computer-readable program storage medium that records the computer program.

  According to the personal authentication method of the present invention, when providing a WWW service to a computer of a user who has accessed via the Internet, the user is based on the telephone number actually used by the user of the computer. The person is authenticated. Phones are unlikely to be stolen and presenting a phone number to be authenticated is the same as presenting actual evidence to identify the person, making it safer and more secure. it can.

=== Network configuration ===
FIG. 1 is a schematic configuration of a network to which a personal authentication method according to an embodiment of the present invention is applied. In this example, the Internet is taken as an example of the information communication network. A number of browser terminals 3 and a personal authentication system 1 are connected to the Internet 5. The personal authentication system 1 has a basic function as a WWW server and is also connected to a public telephone network 6 for HTTP communication with the browser terminal 3 and communication with a telephone that has arrived at the telephone number of the personal authentication system 1. Based on this, the user of the browser terminal 3 is authenticated. The personal authentication system 1 also has a well-known automatic voice response function, and also has a function of notifying a message by synthetic voice in response to a telephone that has arrived at itself. Note that the personal authentication process itself by the personal authentication system 1 may be executed by a program such as CGI in the WWW server, or may be executed by a computer system separate from the computer system functioning as the WWW server.

  A member-based Web site is constructed in the WWW server, and various WWW services are provided to the browser terminals 3 of members who have accessed the Web site. The member database 2 identifies and manages a large number of members who are users of the WWW service with member IDs, and stores and manages various personal information in association with each member ID. The personal information includes a contact address, a name, and the like, as well as a password necessary for accessing the membership website. If the browser terminal 3 that has accessed the WWW server recognizes that it is the browser terminal 3 of the member, the terminal 3 is guided to the membership website. Further, if the user of the browser terminal 3 who has accessed is authenticated, the browser terminal 3 is recognized as the browser terminal (hereinafter referred to as a special member terminal) of the member who has been authenticated (hereinafter referred to as a special member terminal). Guidance is provided to a website for providing various WWW services prepared for exclusive use.

  As an example of an online auction as a WWW service based on personal authentication, browser terminals other than members are allowed to access only Web pages that list the contents of auction listings. Depending on the qualification of the accessing browser terminal user, such as permitting access to the Web page for accepting listings and allowing special member terminals to access the Web page for accepting bids. To provide an appropriate WWW service.

=== Special Member ===
The identity authentication method of the present invention uses a telephone number used by a member as information for authenticating the identity. In this embodiment, a member having special member qualification is given a sign indicating that it is a special member by setting a flag or the like in the member ID, and in the member database 2, the member ID to which this code is added is used as the special member ID. Identification management. The special member ID is managed in association with the member's mobile phone number. That is, since the mobile phone is a device that is exclusively used for personal use and always carried, the mobile phone number is used as information for personal authentication. Of course, as long as the user can be specified, the telephone number of a general subscriber telephone may be used.

  Furthermore, the personal authentication system 1 sets an expiration date to the qualification as a special member, and resets the code of the special member ID when the expiration date has passed to manage it as a general member ID. Also, if an opportunity for authentication of the person is provided again before the expiration date, the expiration date is extended by using the opportunity as the starting date of the expiration date. Therefore, a member who has obtained the special membership status can continue the special membership status and enjoy a dedicated WWW service by providing an opportunity for personal authentication at any time. If the WWW service provider also increases the chances of personal authentication, the number of special members who can be more credible will be increased and the reliability of the WWW service itself will be improved. As a result, the acquisition of new members can be expected. Providing a WWW service for a fee will contribute to an increase in profits.

=== First identity verification ===
FIG. 2 shows a flowchart of the process of the personal authentication method in this embodiment. FIGS. 3A to 3D are schematic screen views of Web pages sent to the browser terminal 3 that has accessed the personal authentication system 1 during the process. In this embodiment, it is assumed that the member who wants to authenticate himself / herself operates the browser terminal 3 with the mobile phone 4 at hand.

  First, a procedure will be described in which a member first receives identity authentication and is registered as a special member in the database. The member designates a predetermined URL by his / her browser terminal 3 and causes the browser terminal 3 to access the personal authentication system 1. The personal authentication system 1 sends a Web page (login page: FIG. 3A) including a form for inputting login information based on a member ID and a password to the browser terminal 3 that has accessed (s1, s2).

  When the member ID and password are input to a predetermined form (11, 12) and returned as form data in the browser terminal 3 that has received the login page A, it is acquired and the login information is obtained as the member database 2. Inquire at In this embodiment, when it is confirmed that the login information sent from the browser terminal 3 belongs to a member, this confirmation time is stored (s7). Does not perform personal authentication. If the correct combination of member ID and password does not exist in the member database, a Web page (error page) or the like indicating that the login information is re-input may be returned (s5 → s6).

Next, it is confirmed whether or not the acquired member ID corresponds to the special member ID. Here, the member ID is not a special member ID. A message sentence 14 indicating that the caller number is sent to the telephone number 15 of the personal authentication system 1 by notifying the caller number on the member's own mobile phone 4 is described, and a form 16 for inputting an authentication code, Is sent to the browser terminal 3 (s8 → s9).
A member who browses the calling guide page B using the browser terminal 3 makes a call to the telephone number 15 described on this page using his mobile phone 4. The telephone line corresponding to the telephone number of the personal authentication system 1 has subscribed to a well-known dial number notification service in a telephone carrier, and the personal authentication system 1 determines the telephone number (caller number) of the telephone received by itself. It can be confirmed before replying. When the personal authentication system 1 receives an incoming call at its own telephone number, it acquires the caller number (s11, s12). Here, if the caller's phone number cannot be obtained because the caller is unknown, etc., a voice message indicating that the caller ID notification state is set in response to the incoming call and the call is re-sent is notified by synthetic voice. May be. Alternatively, if the telephone number cannot be acquired, the call may be disconnected unconditionally. Further, if the user authentication is performed on the premise that only the incoming call from the mobile phone 4 is performed, it is possible to determine whether or not the caller number belongs to the mobile phone in the area code part of the caller number. When a telephone number other than 4 is acquired, the call may be disconnected.

  When the identity authentication system 1 obtains the caller number, the phone number is referred to the member database, and whether or not the corresponding member ID exists, that is, whether or not the telephone user of the caller number is a special member. Confirm. Here, it is assumed that the caller number is not associated with the special member ID. The member ID corresponding to the acquired caller ID generates an authentication code unique to the ID, and the authentication code and the acquired telephone number are associated with each other and temporarily stored (s13 → s14). In the present embodiment, for example, the code is generated based on the date and time of generation of the authentication code and the telephone number. Therefore, this code itself represents the association with the telephone number, and the generation date and the corresponding telephone number can be reversely generated from the authentication code. Note that the authentication code is not limited to this example, and may be a serial number or the like, and is stored in association with a telephone number, and any code system may be adopted as long as a plurality of the same code does not exist at the same date and time. Good.

  When the authentication system generates an authentication code, the personal authentication system 1 responds to the incoming telephone, and notifies the code and a guidance that the code is filled in the authentication code input form on the outgoing call guidance page and sent back by synthetic voice ( s15). The member who calls the personal authentication system while operating the browser terminal 3 enters the authentication code notified by the synthesized voice in the authentication code input form 16 of the outgoing call guide page B, and the send button 17 on this page is displayed on the browser. Instructed by the terminal 3. In this button 17, a link for sending an authentication code as form data to a predetermined CGI of the personal authentication system 1 is set.

  The personal authentication system 1 acquires a corresponding telephone number based on the authentication code sent from the browser terminal 3. In the present embodiment, the code itself is generated based on the date and telephone number, and the personal authentication system 1 reversely generates the date and telephone number from the sent authentication code (s17 → s24, s25). ). Note that the personal authentication system 1 manages a session with the browser terminal 3 that has been accessed using a well-known cookie or the like, and when a certain browser terminal 3 has sent a member ID via the login page A. When the outgoing call guide page B is sent and the authentication code is sent via the outgoing call guide page B, the authentication code is input to the input form of the outgoing call guide page B sent to which browser terminal 3 (S26), and the transmission guide page B recognizes which member ID is acquired and sent to the browser terminal. Thereby, the member ID and the authentication code are associated with each other.

  If the elapsed time from when the member ID is acquired is within the time limit, the member ID associated with the sent authentication code and the caller number acquired when the authentication code is generated are displayed. Corresponding and registering in the member database, the date and time after a predetermined period is set as the expiration date from this registration date and time. Further, a predetermined code is added to this member ID so that it can be identified and managed as a special member ID, and the member who uses the accessed browser terminal is authenticated (s27 → s29 → s31). If the user is authenticated, a Web page (authentication confirmation page: FIG. 3C) stating that fact is sent to the browser terminal (s32). If the user authentication system 1 and the browser terminal 3 continue to maintain the session as it is, the special access only for the special member is permitted by permitting the browser terminal 3 to access a website for the special member. Provide WWW services.

  In this embodiment, there is a time limit from when the member ID is acquired until the authentication code is sent. However, if the same authentication code is not sent within a predetermined time from the time when the authentication code is generated. The authentication code may not be received. Furthermore, in this embodiment, since the generation date / time is included in the authentication code itself, it is out of origin when the authentication code is sent without recording the generation date / time of the authentication code separately. Can be judged.

=== Re-authentication ===
The personal authentication system 1 searches the member database at any time and resets the code added to the special member ID that has reached the expiration date to change to a general member ID. If the special member authenticates himself / herself before the expiration date is reached, the expiration date is reset from this authentication opportunity. The re-authentication procedure will be described below.

  When the member ID and password are sent from the browser terminal 3 that sent the login page A and the identity authentication system 1 recognizes that the member ID is a special member ID, the user authentication system 1 does not include an authentication code input form. The page (FIG. 3D) is sent to this browser terminal (s1 to s5 → s7, s8 → s10). The special member who browses the outgoing call guide page D calls the telephone number 15 of the personal authentication system 1 by his / her mobile phone 4. The personal authentication system 1 acquires the caller number, and if the number is associated with the special member ID, the call is disconnected without answering the incoming call (s11 to s13 → s16). As a result, call charges are not charged. Further, instead of the button 17 for sending the authentication code as form data to the transmission guide page D that does not include the authentication code input form, a confirmation button 18 for taking confirmation from the special member that the transmission guide page D has been viewed. There is. When this button 18 is instructed on the browser terminal 3, the instruction information is sent to the identity verification system 1. When the person confirmation system 1 acquires this confirmation information, it identifies the origination guide page D that is the source, and identifies the special member ID associated with the page D. Then, the starting date and time of the expiration date of the corresponding special member ID is updated to the current date and time, and the personal authentication confirmation page C is returned (s17 → s18 to s20 → s22, s23). Note that the expiration date may be extended as appropriate, for example, the expiration date is postponed for a predetermined period, instead of updating the date and time when the expiration date is calculated. Further, this re-authentication procedure may not be provided, and the user authentication may be performed in the same procedure as the initial user authentication every time.

=== Timing of personal authentication ===
The personal authentication procedure does not have to start from a procedure of sending login information via a dedicated login page as in the above embodiment. Generally, when a browser terminal accesses a membership system website, login information is always sent to a computer having a member database search function. Therefore, for example, when a Web page for general members and a Web page for special members are mixed in a Web site and a browser terminal that has sent login information tries to obtain a Web page for special members, it is sent. An information page may be sent, and at that time, personal authentication may be performed. In addition, since it is possible to recognize whether the accessing browser terminal is a special member terminal at the time when the login information is sent, the special member terminal may be permitted to browse the Web page for the special member unconditionally. . Of course, a member ID and password input form may be provided on the outgoing call guide page, and the browser terminal may simultaneously send the login authentication information and the authentication code to the personal authentication system.

  The association between the member ID and the telephone number may be maintained even after the expiration date. When the expiration date has passed, the special member ID may be changed to the member ID. Then, when the member's browser terminal whose ID type has been changed accesses after the expiration date has passed, the user authentication system may be called again to authenticate the user and reset the expiration date.

=== Personal Authentication Related Services ===
Regarding the WWW service related to the personal authentication, the frequency of the personal authentication procedure may be disclosed on the membership website. For example, when a member trades with a special member in an online auction, the creditworthiness of the partner can be estimated by knowing the authentication frequency of the partner.

  Further, when the user is authenticated with a plurality of telephone numbers for the same member ID, this may be disclosed. That is, changing the telephone number frequently means deliberately making it difficult for the person to be identified, and attention can be paid when dealing with this member.

  When the authentication code is notified by the automatic voice response system, since the member of the other party of the call has already been specified, it is possible to provide not only this code but also a voice service specialized for this member. For example, if the membership fee is also taken from a general member and the membership fee is delinquent, the fact may be notified. Alternatively, if hobbies and the like are registered as personal information in the member database, it may be possible to make a voice notification of appropriate information regarding the hobbies of the members.

  The present invention authenticates the person based on the telephone number. Therefore, when a person who has obtained identity authentication pays a certain amount of money to a WWW service provider, etc., if the identity authentication system is linked with the communication charge billing system of the telephone carrier, the telephone carrier will pay the price. A business model that collects the money can also be considered. For example, when the personal authentication method of the present invention is adopted on the website of an electronic store, when a consumer who has acquired the personal authentication performs online shopping at the electronic store, the payment fee for the shopping is paid to the telephone carrier. Charges consumers with monthly communications charges. Of course, if both parties are special members and are using the same telephone carrier's telephone at internet auctions, etc., the telephone carrier will collect the payment price from the successful bidder, and from the communication fee of the exhibitor The payment can be exchanged by subtracting the payment amount or charging the excess difference to the account from which the communication fee is deducted.

It is a network block diagram to which the personal authentication method in the Example of this invention is applied. It is an implementation procedure figure of the said authentication method. It is the screen schematic displayed on a browser terminal in the process of the said implementation procedure.

Explanation of symbols

1 Personal Authentication System 2 Member Database 3 Browser Terminal 4 Mobile Phone 5 Internet 6 Public Telephone Network

Claims (9)

By a computer system connected to the information communication network and the public telephone network,
When the login authentication information including the member ID (b) sent from the accessed browser terminal (a) is referred to the member database managing the login authentication information for a large number of members, and the corresponding information exists, A member ID obtaining step for obtaining a member ID (b);
A message text indicating that a call is made to notify a caller number to a predetermined telephone number is described, and a call guidance page (c) including an authentication code input form is sent to the browser terminal (a). Outgoing guidance step;
An authentication code generating step of acquiring a telephone number (d) of a telephone that has arrived at the predetermined telephone number, generating a unique authentication code (e), and temporarily storing it in association with the telephone number (d);
An authentication code notification step of notifying the telephone of the telephone number (d) of the authentication code (e) by synthesized voice;
When the authentication code (e) corresponding to the telephone number (d) is sent to the browser terminal (a) in the input form of the outgoing call guidance page (c) and sent, the member ID (b) And the telephone number (d) are associated with each other so that the member ID (b) can be identified as the special member ID, and the member ID (b) is registered in the member database, and the browser terminal (a) is used as the special member terminal. A special member management step to identify;
A personal authentication method in a WWW service.   3. The special member management step based on the authentication code is invalidated if the authentication code is not sent from the terminal within a predetermined time after sending the call guide page to the browser terminal. A personal authentication method in the WWW service.   3. The special member management step based on the authentication code is invalidated if the authentication code is not sent within a predetermined time after generating the authentication code. A personal authentication method in the WWW service.   4. The login authentication information acquisition step according to claim 1, wherein in the login authentication information acquisition step, a login page including an input form of login authentication information is sent to the accessing browser terminal (f). When the member ID (g) in the login authentication information sent from (f) corresponds to the special member ID, an authentication code input form is included in place of the transmission guide page including the authentication code input form. A non-calling guidance page is sent to the browser terminal (f), and in the special member management step, when the member ID (g) of the special member is acquired by the login information acquisition step, the member ID (f) is acquired. If there is no incoming call from the telephone of the telephone number registered in the member database corresponding to this ID (f) within a predetermined time , Authentication method in WWW services, characterized in that does not identify the browser terminal (f) as a special member terminal.   5. The personal authentication method in the WWW service according to claim 4, wherein when a caller ID of a telephone that has arrived at the predetermined telephone number is acquired, the call is disconnected without responding to the incoming call.   In any one of Claims 1-5, when an expiration date is set for the special member ID and the expiration date has passed, the special member ID is managed as a general member ID, and the special member ID before the expiration date has passed. When a special member terminal is identified based on the ID, the validity period for the ID is extended. A computer system connected to an information communication network and a public telephone network,
When the login authentication information including the member ID (b) sent from the accessing browser terminal (a) is referred to the member database that manages the login authentication information for a large number of members, and corresponding information exists, Member ID acquisition means for acquiring the member ID (b);
A message text indicating that a call is made to notify a caller number to a predetermined telephone number is described, and a call guidance page (c) including an authentication code input form is sent to the browser terminal (a). Outgoing guidance means;
An authentication code generating means for acquiring a telephone number (d) of a telephone that has arrived at the predetermined telephone number, and generating a unique authentication code (e) and temporarily storing it in association with the telephone number (d);
Authentication code notifying means for notifying the telephone of the telephone number (d) of the authentication code (e) by synthesized voice;
When the authentication code (e) corresponding to the telephone number (d) is sent to the browser terminal (a) in the input form of the outgoing call guidance page (c) and sent, the member ID (b) And the telephone number (d) are associated with each other so that the member ID (b) can be identified as the special member ID, and the member ID (b) is registered in the member database, and the browser terminal (a) is used as the special member terminal. Special member management means to identify;
A personal authentication system characterized by including   A computer program for causing a computer to execute the personal authentication method according to claim 1. A computer-readable program storage medium in which the computer program according to claim 8 is recorded.

Images