JP2008269477A - Membership service providing system and newly registered member authentication method - Google Patents

Abstract

An object of the present invention is to perform detailed authentication processing by changing the authentication method depending on whether a newly registered member is in the country or outside the country.
A service providing system according to the present invention acquires an IP address of a user terminal device that has been accessed for new member registration, and uses the IP address to determine whether the user terminal device is located in Japan, or When it is determined that the user terminal device is located outside the country, when the user terminal device is determined to be located in the country, the means for performing authentication processing for the resident in Japan, and when the user terminal device is determined to be located outside the country, And a means for performing member registration processing when new member registration is permitted as a result of authentication.
[Selection] Figure 3

Description

  The present invention relates to a new registered member authentication processing technique in a membership service.

  Conventionally, a community-type membership service called social networking service (hereinafter referred to as “SNS”) that promotes and supports connections between people is known. SNS offers services such as a function to publish your profile and photos to members, a diary function that allows you to limit the scope of disclosure to members and friends only, and a community function that allows you to decide themes such as hobbies and regions and interact on the bulletin board. It can be used at.

There are SNSs that anyone can freely register when registering new members in this SNS, but there are also SNSs that employ an invitation system in which participation is not possible without an invitation from existing members. A web site disclosed in Non-Patent Document 1 is known as an SNS of this invitation system.
"Social networking service [mixi]", [online], [Search April 24, 2007], Internet <URL: http://mixi.jp/>

  By the way, in the above-mentioned SNS, one member acquires a plurality of accounts using a plurality of e-mail addresses for reasons such as “promoting / supporting the connection between people” which is the original function of the SNS. Unauthorized registrations such as duplicate registrations are prohibited.

  In addition, according to the experiences of the inventors of the present application, a member who has been registered repeatedly uses a plurality of accounts to impersonate another person by impersonating another person, or to conduct commercial activities within the SNS prohibited by the membership rules. There is a high tendency to perform fraudulent activities such as

  Therefore, the SNS operating secretariat is required to eliminate illegal registration such as duplicate registration in order to provide safe and secure community services to general members. However, the prohibition of unauthorized registration is stipulated in the SNS membership rules, but it is actually entrusted to the member's morals, and duplicate registration using different e-mail addresses should be eliminated. It is difficult.

  On the other hand, the present applicant has already proposed a system that eliminates unauthorized registration such as duplicate registration by authenticating using a mobile phone at the time of new member registration. However, in this system, since it is assumed that the person who intends to register as a new member possesses a mobile phone that can use the Internet and has a predetermined function, the person who registers as a member is outside the country, A person who cannot use an internet-enabled mobile phone with a function may not be able to register with the SNS.

  The present invention has been made in view of such circumstances, and when a user newly registers as a member in the membership system service, it is possible to eliminate illegal registration such as duplicate registration in which one member has multiple accounts. An object of the present invention is to provide a service providing system and an authentication method that can be used. In particular, it is an object of the present invention to perform fine authentication processing by changing the authentication method depending on whether a newly registered member is in the country or outside the country. Another object of the present invention is to eliminate illegal registration such as duplicate registration even when a new member is registered outside the country.

  In order to solve the above problems, a service providing system according to the present invention is a service providing system for providing a membership service on a network to registered members, and the user terminal device that has been accessed for new member registration. By obtaining an IP (Internet Protocol) address and using the IP address, an access source discriminating unit that discriminates whether the user terminal device is in the country or outside the country, and the access source discriminating unit When it is determined that the terminal device is in the country, the resident authentication unit that performs authentication processing for the resident in Japan and the access source determination unit determine that the user terminal device is out of the country. As a result of the authentication by the foreign resident authentication means that performs the authentication process for and the domestic resident authentication means or the foreign resident authentication means, When the provisions membership is permitted, and a member registration means for performing a member registration process on the basis of the information received from the user terminal. According to this invention, based on the IP address, it is determined whether the person who newly registers as a member is in the country or outside the country, and the authentication method is changed according to the determination result to perform detailed authentication processing. Even if you are outside of Japan, you can register as a member.

  In addition, the service providing system includes an IP address correspondence table that stores an IP address and information indicating whether the IP address is domestic or foreign in association with each other, and the access source determination unit includes a user terminal device. It is preferable to determine whether the user terminal device is in the country or outside the country by collating the IP address acquired from the above with an IP address correspondence table.

  Furthermore, the domestic resident authentication means preferably performs user authentication using a mobile phone. Moreover, it is preferable that the foreign resident authentication means performs user authentication without using a mobile phone. According to this invention, unauthorized registration is more accurately eliminated by performing additional authentication using a mobile phone for domestic residents, and a mobile phone is not used for foreign residents. Can eliminate fraudulent registration.

  Preferably, the membership service is a social networking service.

  The authentication method according to the present invention is a method for authenticating a newly registered member in a service providing system using a computer that provides a membership service on a network to registered members. Here, the computer acquires the IP address of the user terminal device that has been accessed for new member registration, and uses the IP address to determine whether the user terminal device is in the country or outside the country. When the determination step determines that the user terminal device is in the country, the domestic resident authentication step for performing authentication processing for domestic residents and the determination step indicate that the user terminal device is outside the country. If it is determined that the new member registration is permitted as a result of the authentication in the foreign resident authentication step and the domestic resident authentication step or the foreign resident authentication step for performing the authentication process for the foreign resident, the user terminal device And a member registration process based on the information received from.

  The program of the present invention causes a computer to execute each processing step of the duplicate registration authentication method of the present invention. The program of the present invention can be installed or loaded on a computer through various recording media such as an optical disk such as a CD-ROM, a magnetic disk, or a semiconductor memory, or via a communication network.

  In this specification and the like, “duplicate registration” means that one member (same person) acquires and holds a plurality of different accounts in the membership service. Further, the “means” does not simply mean a physical means, but includes a case where the function of the means is realized by software. Further, the function of one means may be realized by two or more physical means, or the functions of two or more means may be realized by one physical means.

  According to the service providing system and the authentication method of the present invention, it is possible to eliminate illegal registration such as duplicate registration in which one member has a plurality of accounts. In particular, it is possible to perform fine authentication processing by changing the authentication method depending on whether a newly registered member is in the country or outside the country. Further, even when a new member is registered outside the country, it is possible to eliminate unauthorized registration such as duplicate registration.

  Hereinafter, embodiments of the present invention will be described in detail with reference to the drawings. In addition, the same code | symbol is attached | subjected to the same element and the overlapping description is abbreviate | omitted.

  FIG. 1 is a block diagram showing an overall configuration of an information processing system 100 including a service providing server 10 according to an embodiment of the present invention. As shown in FIG. 1, the information processing system 100 is configured such that a service providing server 10, user terminal devices 20 and 30, and a mobile phone 32 can be connected to a network N.

  The service providing server 10 is an information processing apparatus that provides a social networking service (hereinafter referred to as “SNS”) to a registered member. In the following, a person who has already been registered in the SNS provided by the service providing server 10 is simply referred to as “member”, and a person who has not registered as a member in the SNS is referred to as “non-member”.

  The user terminal devices 20 and 30 are information processing devices such as a personal computer (PC), a personal digital assistant (PDA), or a mobile phone, and can be connected to the service providing server 10 via the network N.

  In the present embodiment, for convenience, an information processing device used by a member of an SNS provided by the service providing server 10 is represented as a user terminal device 20, and an information processing device used by a non-member is represented as a user terminal device 30. The user terminal devices 20 and 30 include at least a web browser. The user terminal device 30 used by non-members can use at least e-mail.

  The mobile phone 32 is a mobile phone (including a PHS terminal) owned by a non-member, and each device has an identifier (hereinafter referred to as “terminal ID”) that can individually identify each device at least in Japan. ing. Although the present embodiment will be described as a mobile phone, if it is a terminal device of a kind to which an individual identifier is assigned for each device, whether it is portable or has a telephone function. It doesn't matter.

  The network N is a communication line for transmitting and receiving information between the service providing server 10, the user terminal devices 20 and 30, and the mobile phone 32. For example, it may be any of the Internet, a LAN, a dedicated line, a packet communication network, a telephone line, a corporate network, other communication lines, combinations thereof, and the like, regardless of whether they are wired or wireless.

  FIG. 2 is a block diagram illustrating a configuration of the service providing server 10 according to the present embodiment. As shown in FIG. 2, the service providing server 10 includes a control unit 11 (for example, a processor such as a CPU) for controlling the operation and processing of each unit, and a storage unit 12 (for example, ROM, RAM) for storing information. Etc., a storage device such as a hard disk device), a communication means 13 as a communication interface for transmitting and receiving information via a network, and a bus 14 connecting them.

  The control unit 11 further includes an invitation information reception unit 111, an invitation mail transmission unit 112, a new registration information reception unit 113, an access source determination unit 114, a domestic resident authentication unit 115, and a foreign resident authentication unit 116. And member registration means 117 and service providing means 118. The storage unit 12 includes a member information storage unit 121, an invitation information storage unit 122, an IP (Internet Protocol) address correspondence table 123, a white list 124, and a black list 125.

  The invitation information accepting unit 111 is configured so that when a registered member of the SNS tries to invite a non-member's friend or the like to the SNS, the member ID of the member who is the inviter and the non-member who is the invitee It has a function of accepting invitation information including an e-mail address from the user terminal device 20 of the inviter. In this specification, a member who wants to invite a friend or the like is called an “invite”, and a non-member who has received an invitation is called an “invitee”. Further, the invitation information accepting means 111, when the e-mail address of the invitee accepted from the inviter has already been registered in the member information storage means 121, the person who has received the invitation has already been sent to the inviter. It is preferable to notify the SNS that the member has been registered.

  Based on the invitation information received by the invitation information reception unit 111, the invitation mail transmission unit 112 transmits an email (hereinafter referred to as “invitation to the SNS) from the invitee to the e-mail address of the invitee. It has a function of transmitting an “invitation mail”.

  The new registration information accepting unit 113 has a function of accepting new registration information including the e-mail address, password, and profile information of the invitee who intends to newly register with the SNS from the user terminal device 30 of the invitee. Further, the new registration information accepting unit 113 has already registered the e-mail address for the invitee when the e-mail address accepted from the invitee is already registered in the member information storage unit 121. It is preferable to have a function of informing that and re-entering the e-mail address.

  Based on the IP address of the user terminal device 30 used by the user who has accessed the service providing server 10, the access source determination unit 114 determines whether the user terminal device 30 is in the country or outside the country. It has a function. In the present embodiment, the location where the user terminal device 30 is located is determined with reference to the IP address correspondence table 123 in which the IP address is associated with the location.

  It is preferable that the access source determination unit 114 accurately determine whether the geographical location where the user terminal device 30 is installed is located in Japan or outside the country. It is not necessary to determine the location where the user terminal device 30 is located strictly and accurately. It suffices if the user terminal device 30 can be classified with a certain degree of accuracy based on the IP address, whether it is located in the country or outside the country.

  The domestic resident authentication means 115 authenticates that there is no fraud such as duplicate registration for the domestic resident when it is determined that the IP address of the user terminal device 30 of the invitee is domestic. It has a function. The domestic resident authentication means 115 preferably performs authentication using the mobile phone 32 as necessary.

  The foreign resident authentication means 116 confirms that there is no fraud such as duplicate registration for the foreign resident when it is determined that the IP address of the user terminal device 30 of the invitee is foreign (other than domestic). Has a function to authenticate. This foreign resident authentication means 116 preferably performs authentication without using the mobile phone 32.

  The member registration unit 117 has a function of newly registering the invitee as a member. In the new member registration process, a new member ID is issued, and the member ID and the new registration information received by the new registration information receiving unit 113 are registered in the member information storage unit 121 in association with each other.

  The service providing means 118 has a function of providing various services (diary, community, etc.) related to SNS to SNS members, that is, members registered in the member information storage means 121.

  The member information storage unit 121 stores member information of members registered in the SNS. The member information includes a member ID, a password, an e-mail address, a mobile mail address, a surname / first name, a nickname, an address, gender, self-introduction, a mobile phone terminal ID, and the like. As member information, registration of a password and an e-mail address is indispensable, but registration other than that is optional. Information other than the password and the e-mail address can be registered at any time after the service providing server 10 can acquire any time after the member registration.

  Invitation information storage means 122 stores invitation information input from the inviter. The invitation information storage means 122 includes the invitation information including the inviter's member ID and the e-mail address of the invitee, the inviter's first and last name, a message from the inviter to the invitee, and the like. . When the member registration by the member registration unit 117 is completed, it is preferable that the invitation information stored in the invitation information storage unit 122 is deleted.

  The IP address correspondence table 123 stores an IP address and its location in association with each other. Here, the location is at least information about whether it is in Japan or outside of Japan (outside of Japan), and by referring to the IP address correspondence table 123, the IP address of a device or the like located in Japan on the network N The IP address of a device or the like located outside the country can be discriminated. In addition, the information of such a correspondence table may use list information provided periodically by a third party.

  In the white list 124, conditions for which it is considered that the possibility of duplicate registration is low when domestic residents are registered as members are registered in advance. For example, domain names that are considered to be less likely to be illegally used, such as listed companies and schools, are registered in the white list 124. In addition, according to the experience of the inventors of the present application, in the case of invitation-based SNS, it is known that the possibility of duplicate registration is low when using an email address of a listed company or school, etc. By avoiding additional authentication when a subscriber's domain name is registered in the whitelist, it is possible to eliminate duplicate registration while reducing the burden on the invitee during membership registration become.

  In the black list 125, conditions that are considered to be highly likely to be duplicated are registered in advance when a foreign resident is registered as a member. For example, IP addresses that have been fraudulently registered before are registered in the black list 125. In addition, according to the experience of the inventors of the present application, in the case of an invitation-based SNS, it has been found that a specific member has a high tendency to repeatedly perform duplicate registration or the like. It is expected that unauthorized registration is likely to be attempted again via the address.

  The service providing server 10 may be composed of a single computer or may be composed of a plurality of computers distributed on a network.

  The user terminal devices 20 and 30 in the present embodiment can use commercially available PCs, and although not shown, for example, a CPU as a control means for controlling the operation and processing of each unit, storage of various information A storage function such as a memory or a hard disk device that functions as a work area for processing, an input interface that receives a signal input from an input means such as a keyboard or a mouse, an output interface that outputs a signal to an output means such as a display device, network N And a communication interface for transmitting and receiving information, and a bus connecting them. The mobile phone 32 in this embodiment can also use a commercially available mobile phone terminal.

  Next, an overview of the invitation process in the service providing server 10 configured as described above will be described.

  FIG. 3 is a flowchart showing the flow of invitation and new member registration processing by the service providing server 10. FIG. 4 is a timing chart of the invitation and new member registration processing. FIG. 5 is an example of a screen displayed on the user terminal device 20 of the inviter. FIG. 6 is an example of an invitation email sent to the invitee. Here, a case where the SNS member A (invitee) invites a non-member B (invitee) will be described as an example.

  The member A logs in to the SNS provided by the service providing server 10 from the user terminal device 20 via the network N, and then starts the invitation process by clicking an “invite friend” icon. Thereafter, the member A follows the instruction on the screen (see FIG. 5) displayed on the user terminal device 20 and includes an e-mail address of the nonmember B (invitee) to be invited and the member ID of the member A Information is transmitted to the service providing server 10. In addition, it is preferable that the service providing server 10 automatically obtains the member ID of the member A using a cookie stored in the user terminal device 20.

  When the invitation information receiving unit 111 of the service providing server 10 receives the email address of the invitee and the member ID of the member A, the received email address of the invitee is already registered in the member information storage unit 121. If it is already registered, the member A is notified that the invitee has already been registered.

  On the other hand, if the e-mail address of the invitee is not registered, the invitation process is continued. The member A then inputs the surname / first name (may be a nickname) of the inviter and a message (arbitrary) in accordance with the instructions on the screen sequentially displayed on the user terminal device 20, and transmits them to the service providing server 10. In this way, the service providing server 10 completes the reception of the message described in the invitation information or the invitation mail from the user terminal device 20 (S41).

  Next, the invitation mail transmission means 112 of the service providing server 10 stores the invitation information and message information received from the user terminal device 20 in the invitation information storage means 122 and receives the invitation mail as shown in FIG. It transmits to the inviter B (S42). At this time, the service providing server 10 generates a message including the message received from the user terminal device 20, and transmits the generated message to the email address of the invitee B included in the invitation information received in step S41. Send e-mail (invitation mail) as the main text.

  The invitation email transmitted to the invitee includes link information 61 including unique identification information given to each invitation email. The link information 61 is a hyperlink to a predetermined URL. When the invitee who has received the invitation mail accesses the service providing server 10 based on the link information 61, new registration information receiving means 113, invitation information corresponding to the unique identification information included in the accessed URL can be extracted from the invitation information storage unit 122.

  When the invitee B receives the invitation email and registers with the SNS, the invitee B accesses the service providing server 10 from the user terminal device 30 by clicking on the link information 61 in the invitation email, etc. Registration processing is started (S43).

  At this time, when the service providing server 10 receives access from the user terminal device 30, the service providing server 10 acquires the IP address of the user terminal device 30 that has accessed, and the IP address is a domestic address or a foreign address. Is discriminated (S44).

  If it is determined that the IP address of the access source is domestic, authentication processing for domestic residents is performed (S45). On the other hand, if it is determined that the IP address is outside the country, authentication processing for foreign residents is performed (S46).

  Based on the result of the authentication process for the domestic resident or the foreign resident, the member registration process or non-registration process of the invitee B is executed (S47). That is, when authentication is successful, it is considered that the possibility of duplicate registration or the like is low, and therefore, a new member registration process for invitee B is executed. On the other hand, if authentication fails, it is considered that there is a high possibility of duplicate registration or the like, so the new member registration process is interrupted and the process is terminated without newly registering the invitee B as a member.

  When registering a new member, the member registration unit 117 newly issues a member ID of the invitee, newly registers the member ID in the member information storage unit 121 in association with the new registration information. Further, when the mobile mail address or terminal ID of the invitee is acquired, these are also registered in the member information storage unit 121 in association with the member ID.

  Next, when it is determined in step S44 that the user terminal device 30 is domestic, that is, when it is determined that the invitee B is a domestic resident, an authentication process for a domestic resident ( S45) will be described.

  FIG. 7 is a flowchart showing an example of the flow of authentication processing for domestic residents. FIG. 8 is an example of a new registration screen displayed on the user terminal device 30 of the invitee. FIG. 9 is an example of a confirmation mail displayed on the invitee's mobile phone 32.

  The invitee B inputs various information (new registration information) necessary for the new registration process in accordance with instructions on the screens sequentially displayed on the user terminal device 30. For example, since a new registration form as shown in FIG. 8 is displayed on the user terminal device 30, a nickname, a mobile mail address, etc. are input using this form. The input new registration information is transmitted to the service providing server 10, and the new registration information receiving means 113 receives the new registration information sent from the user terminal device 30 (S81).

  Next, based on the received new registration information, it is determined whether or not the invitee B satisfies the conditions registered in the white list 124 (S82). For example, since the main name of the listed company or school is registered in the white list 124, it is confirmed whether or not the domain name of the email address of the invitee B is registered in the white list 124. If the invitee B meets the conditions of the white list 124, it is determined that the possibility of duplicate registration is low, and the new member registration of the invitee B is permitted (S84).

  On the other hand, if the conditions of the white list 124 are not met, additional authentication using the mobile phone 32 is performed (S83).

  In the additional authentication process using the mobile phone 32, first, the mobile mail for confirming the new registration in the SNS as shown in FIG. 9 for the mobile mail address included in the new registration information received in step S81. Send (confirmation email). In this confirmation mail, a link 71 including a confirmation code generated by a random number is displayed. When the invitee B selects this link 71, the confirmation code is transmitted to the service providing server 10.

  Subsequently, when the service providing server 10 receives the confirmation code from the mobile phone 32, if the terminal ID can be acquired from the mobile phone 32, the service providing server 10 also acquires the terminal ID of the mobile phone 32. Then, it is confirmed whether or not the acquired terminal ID has already been registered in the member information storage unit 121. If it has not been registered, it is determined that the possibility of duplicate registration is low, and the invitee B's new Member registration is permitted (S84). On the other hand, if the acquired terminal ID is already registered, member registration is not permitted (S85). This is because when the terminal ID is already registered, the owner (invitee B) of the mobile phone 32 identified by the terminal ID can be determined to have already been registered as a member. Since the terminal ID cannot always be acquired from the mobile phone 32, if the terminal ID cannot be acquired, new member registration may be permitted upon receipt of the confirmation code.

  In this way, in the authentication process for domestic residents, whether or not a member can be registered is determined by white list authentication and additional authentication using a mobile phone. Since additional authentication using the terminal ID of the mobile phone is performed, duplicate registration can be eliminated as much as possible. Further, in the present embodiment, additional authentication by the mobile phone is omitted when authentication by the white list is first performed and there is no need to perform authentication by the terminal ID. As a result, when the identity of the invitee is clear and the possibility of duplicate registration is low, the new registration process can be performed more easily.

  Next, when it is determined in step S44 that the user terminal device 30 is foreign, that is, when it is determined that the invitee B is a foreign resident, an authentication process for a foreign resident ( S46) will be described.

  FIG. 10 is a flowchart showing an example of the flow of authentication processing for a resident outside of Japan. In the authentication process for foreign residents, it is first determined whether or not the IP address of the user terminal device 30 is registered in the black list 125 (S91). In this black list 125, IP addresses that have been illegally registered before, such as duplicate registration, are registered. If the IP address of the user terminal device 30 is registered in the black list 125, a new one is displayed. Member registration is not permitted (S92).

  On the other hand, if the IP address of the user terminal device 30 is not registered in the black list 125, new member registration is permitted (S93). In this case, since a new registration form or the like as shown in FIG. 8 is sequentially displayed on the user terminal device 30, the invitee B inputs new registration information and transmits it to the service providing server 10 (S94).

  As described above, in the authentication process for the resident outside the country, it is determined whether or not the member can be registered by the blacklist authentication. This blacklist authentication is based on an empirical rule that fraudulent users are often a handful of specific users, and that the same user often commits fraud such as repeated registration. .

  As in the present embodiment, when foreign resident authentication processing is performed using a blacklist of IP addresses, if one IP address is shared by a plurality of terminal devices, one of the IP addresses is fraudulent, If it is registered in the black list, it cannot be denied that there is a possibility that a new member registration of another user who shares the same IP address is rejected. However, in the case of an SNS provided for domestic use, there are not many members of overseas residents, and it is expected that there are at most only a few users who are members of the SNS among those belonging to the same organization. The In this way, when several members share at most one IP address, even if member registration is rejected in units of IP addresses, it is assumed that there is very little problem. Under such circumstances, even a relatively coarse authentication method called black list authentication using an IP address functions effectively, and it is possible to easily and effectively eliminate member registrations suspected of fraud. There is a special effect that you can.

  The present invention is not limited to the above-described embodiment, and can be implemented in various other forms without departing from the gist of the present invention. For this reason, the said embodiment is only a mere illustration in all points, and is not interpreted limitedly. For example, the above-described processing steps can be executed in any order or in parallel as long as there is no contradiction in the processing contents.

  In the above embodiment, the service providing server 10 is described as providing the SNS. However, the present invention is not limited to the SNS, but can be applied to a service that requires member registration for using the service.

  In the above embodiment, when a member invites a non-member, the login to the service providing server 10 is premised. However, it is needless to say that the invitation from the member may be accepted without logging in. Moreover, although the example which clicks the "invite friend" icon 51 and starts the invitation process was shown in the said embodiment, you may start the invitation process by various methods besides this. Furthermore, in this embodiment, based on information such as cookies recorded in the user terminal device 20, the member ID of the inviter is automatically transmitted to the service providing server 10, but the inviter has entered a key. The member ID may be transmitted to the service providing server 10.

  Furthermore, in the above embodiment, when determining whether the IP address is domestic or overseas, it is determined by referring to the IP address correspondence table 123. However, the network administrator uses WHOIS or DNS. Information and a host name may be acquired, and thereby the location of the connection source may be determined from the registered organization name or host name. Further, the IP address correspondence table 123 may use what is stored in the external database of the service providing server 10.

  Moreover, in the said embodiment, the example which judges the propriety of member registration using a white list and a mobile telephone was shown as an authentication process for domestic residents. Moreover, the example which judges the propriety of member registration using a black list was shown as an authentication process for foreign residents. These are more preferable authentication methods, but are not limited to these authentication methods, and various other authentication methods can be appropriately employed.

1 is a block diagram illustrating an overall configuration of an information processing system 100 including a service providing server 10. FIG. 2 is a block diagram showing a configuration of a service providing server 10. FIG. It is a flowchart which shows the flow of the invitation by the service provision server 10, and a new member registration process. It is a timing chart of an invitation and a new member registration process. It is an example of the screen displayed on the user terminal device 20 of an inviter. It is an example of the invitation mail sent to the invitee. It is a flowchart which shows an example of the flow of the authentication process for domestic residents. It is an example of the new registration screen displayed on the user terminal device 30 of an invitee. It is an example of the confirmation mail displayed on the cellular phone 32 of the invitee. It is a flowchart which shows an example of the flow of the authentication process for foreign residents.

Explanation of symbols

10 Service provision server (service provision system)
DESCRIPTION OF SYMBOLS 11 Control means 12 Storage means 13 Communication means 20 User terminal device 30 User terminal device 32 Cellular phone 100 Information processing system 111 Invitation information reception means 112 Invitation mail transmission means 113 New registration information reception means 114 Access source discrimination means 115 Domestic resident authentication Means 116 Overseas resident authentication means 117 Member registration means 118 Service provision means 121 Member information storage means 122 Invitation information storage means 123 IP address correspondence table 124 White list 125 Black list N network

Claims (8)

A service providing system that provides membership services to registered members over the network,
Access source discriminating means for obtaining an IP address of a user terminal device that has been accessed for new member registration and discriminating whether the user terminal device is in the country or outside the country using the IP address. When,
When it is determined that the user terminal device is in the country by the access source determination unit, a domestic resident authentication unit that performs an authentication process for a domestic resident,
When it is determined by the access source determination means that the user terminal device is outside the country, an overseas resident authentication means that performs an authentication process for a foreign resident,
As a result of authentication by the domestic resident authentication means or the foreign resident authentication means, when new member registration is permitted, member registration means for performing member registration processing based on information received from the user terminal device;
A service providing system comprising: The service providing system includes:
An IP address correspondence table for storing an IP address and information indicating whether the IP address is domestic or foreign in association with each other;
The access source determination means includes
By checking the IP address acquired from the user terminal device in the IP address correspondence table, it is determined whether the user terminal device is in the country or outside the country,
The service providing system according to claim 1. The domestic resident authentication means performs user authentication using a mobile phone.
The service providing system according to claim 1 or 2, characterized in that The foreign resident authentication means performs user authentication without using a mobile phone.
The service providing system according to any one of claims 1 to 3, wherein   5. The service providing system according to claim 1, wherein the membership service is a social networking service. A method of authenticating a newly registered member in a computer service providing system that provides a membership system service to registered members over a network,
The computer is
A determination step of acquiring an IP address of a user terminal device that has been accessed for new member registration, and determining whether the user terminal device is located in or outside the country using the IP address;
When it is determined by the determination step that the user terminal device is in the country, a domestic resident authentication step for performing an authentication process for a domestic resident,
When it is determined by the determination step that the user terminal device is out of the country, an overseas resident authentication step for performing an authentication process for the resident outside the country,
As a result of authentication in the domestic resident authentication step or the foreign resident authentication step, when new member registration is permitted, performing a member registration process based on information received from the user terminal device;
An authentication method comprising:   A program for causing a computer to execute the authentication method according to claim 6.   A computer-readable recording medium on which the program according to claim 7 is recorded.

Images