JP5006677B2 - Invitation-based member service providing system and invitee duplicate registration authentication method - Google Patents

Description

  The present invention relates to a processing technique for eliminating duplicate registration of invitees in a membership service that requires an invitation from a registered member at the time of new member registration.

  Conventionally, a community-type membership service called social networking service (hereinafter referred to as “SNS”) that promotes and supports connections between people is known. SNS offers services such as a function to publish your profile and photos to members, a diary function that allows you to limit the scope of disclosure to members and friends only, and a community function that allows you to decide themes such as hobbies and regions and interact on the bulletin board. It can be used at.

There are SNSs that anyone can freely register when registering new members in this SNS, but there are also SNSs that employ an invitation system in which participation is not possible without an invitation from existing members. A web site disclosed in Non-Patent Document 1 is known as an SNS of this invitation system.
"Social networking service [mixi]", [online], [March 28, 2007 search], Internet <URL: http://mixi.jp/>

  In the above conventional SNS, one member acquires multiple accounts using multiple email addresses for reasons such as “promoting / supporting the connection between people”, which is the original function of the SNS. Duplicate registrations held are prohibited.

  In addition, according to the experiences of the inventors of the present application, a member who has been registered repeatedly uses a plurality of accounts to impersonate another person by impersonating another person, or to conduct commercial activities within the SNS prohibited by the membership rules. There is a high tendency to perform fraudulent activities such as

  Therefore, it is desirable for the SNS administration secretariat to eliminate duplicate registrations in order to provide safe and secure community services to members. However, although the prohibition of duplicate registration is stipulated in the SNS membership rules, etc., it is actually entrusted to the morals of the member, so if you use different email addresses, you can easily register duplicates. It is a fact.

  The present invention has been made in view of such circumstances, and eliminates duplicate registration in which a single member has multiple accounts in a membership system service that requires an invitation from an existing member when registering a new member. An object of the present invention is to provide a service providing system and an authentication method that can be used. It is another object of the present invention to perform fine authentication processing by changing the level of authentication depending on whether the possibility of duplicate registration is expected to be low or if the possibility of duplicate registration is expected to be high.

  In order to solve the above-described problems, a service providing system according to the present invention is a service providing system by a computer that provides a membership system service to registered members on a network, and the computer is an invitee who is an existing member. To the invitation information receiving means for receiving the invitation information including the member ID and the e-mail address of the invitee, and the e-mail indicating that the invitation has been sent to the e-mail address received by the invitation information receiving means. Invitation mail transmission means, new registration information reception means for receiving new registration information including the e-mail address and password of the invitee from the invitee, invitation information received by the invitation information reception means, and new registration information reception means Based on new registration information received by A primary check means for determining whether or not there is a confirmation mail sending means for sending a confirmation mail including a confirmation code to the mobile mail address when the primary check means determines that there is a possibility of duplicate registration, and a confirmation mail New registration information when the confirmation receiving means that receives the confirmation code return from the destination mobile phone and the primary checking means determines that there is no possibility of duplicate registration, or when the confirmation receiving means accepts the confirmation code. Member registration means for performing member registration processing based on the new registration information received by the reception means. According to this invention, when the invitee has the possibility of duplicate registration, it is possible to prevent duplicate registration by performing re-authentication of the invitee.

  Preferably, the confirmation receiving means has a function of acquiring a terminal ID unique to the mobile phone from the destination mobile phone when receiving a confirmation code return from the destination mobile phone of the confirmation mail, and registering as a member The means is characterized in that when the terminal ID acquired by the confirmation receiving means is not registered by a registered member, the member registration processing is performed based on the new registration information received by the new registration information receiving means. According to this invention, it becomes possible to perform the re-authentication process more reliably when the invitee has the possibility of duplicate registration.

  Preferably, the apparatus further comprises a primary checklist storage means for registering a white list, and the primary check means allows the invitee to be registered in duplicate when the invitation information and / or the new registration information corresponds to the white list. It is characterized by having no sex.

  More preferably, the primary checklist storage means registers the domain name as a white list, and the primary check means, when the domain name of the email address included in the new registration information is registered in the white list, Judge that there is no possibility of duplicate registration.

  Preferably, the apparatus further comprises a primary checklist storage means for registering a blacklist, and the primary check means allows the invitee to be registered in duplicate when the invitation information and / or the new registration information corresponds to the blacklist. It is characterized by having a sex.

  More preferably, the primary checklist storage means registers at least one of a member ID, an IP address, and a free mail domain name as a blacklist, and the primary check means is a member of the inviter included in the invitation information. When the ID is registered in the black list, the IP address of the invitation information sender or the IP address of the new registration information sender is registered in the black list. If the domain name of the email address is registered in the black list, it is determined that there is a possibility of duplicate registration.

  In addition, the primary checklist storage means includes the user name of the e-mail address registered by the inviter and the e-mail address of the invitee included in the new registration information as a member registration condition that may be duplicated. If the user name is the same or partly duplicated, the password registered by the invitee and the password of the invitee included in the new registration information are the same or partly duplicated, at least Either of them is registered in the black list, and the primary checking means may cause duplicate registration if the information registered by the inviter and the newly registered information meet the conditions registered in the black list. It is preferable to judge that.

  Furthermore, the service providing system temporarily registers new registration information until the member registration means performs the member registration process of the invitee when the primary check means determines that there is a possibility of duplicate registration, It is preferable to provide a function restriction means for providing a limited service to the invitee.

  The service providing system according to the present invention is a computer-based service providing system that provides a membership system service to registered members over a network. The computer receives a member ID and an ID from an invited member who is an existing member. Invitation information reception means for receiving invitation information including the mobile mail address of the inviter, Invitation mail transmission means for sending an email indicating that there was an invitation to the mobile mail address received by the invitation information reception means, From the invitee, new registration information including the invitee's mobile mail address and password is received, and new registration information accepting means for obtaining the invitee's mobile phone-specific terminal ID and the obtained terminal ID are already present. Received by new registration information acceptance means when not registered by registered member And a member registration means for performing a member registration process on the basis of regulations registration information. According to this invention, when registering a new member from a mobile phone, it becomes possible to prevent duplicate registration of invitees without re-authentication processing.

  More preferably, the membership service is a social networking service.

  Further, the duplicate registration authentication method according to the present invention comprises a control means for controlling processing, and in a service providing system for providing a membership service on a network to registered members, authentication of duplicate registration of invitees. And the control means accepts invitation information including the member ID and the e-mail address of the invitee from the existing inviter, and the e-mail address included in the invitation information. , Based on the step of sending an e-mail indicating that there has been an invitation, the step of accepting new registration information including the e-mail address and password of the invitee from the invitee, and the invitation information and the new registration information , The step of performing the primary check process to determine whether the invitee has the possibility of duplicate registration, the result of the primary check process, duplicate A step of sending a confirmation email containing a confirmation code to the mobile mail address, a step of accepting a return of the confirmation code from the mobile phone to which the confirmation email is sent, As a result, when it is determined that there is no possibility of duplicate registration, or when a confirmation code is received, a step of performing member registration processing based on new registration information is provided.

  The program of the present invention causes a computer to execute each processing step of the duplicate registration authentication method of the present invention. The program of the present invention can be installed or loaded on a computer through various recording media such as an optical disk such as a CD-ROM, a magnetic disk, or a semiconductor memory, or via a communication network.

  In this specification and the like, “duplicate registration” means that one member (same person) acquires and holds a plurality of different accounts in the membership service. Further, the “means” does not simply mean a physical means, but includes a case where the function of the means is realized by software. Further, the function of one means may be realized by two or more physical means, or the functions of two or more means may be realized by one physical means.

  According to the service providing system and the authentication method of the present invention, when registering a new member, in a membership service that requires an invitation from an existing member, it is possible to eliminate duplicate registration in which one member has multiple accounts. It becomes possible.

  According to the experience of the inventors of the present application, in the case of an invitation-based SNS, it is known that the possibility of duplicate registration is low when using an email address of a large company or school, etc. By avoiding additional authentication when the domain name is registered in the white list, it is possible to eliminate duplicate registration while reducing the burden on the invitee during membership registration. .

  In addition, according to the experience of the inventors of the present application, in the case of an invitation-based SNS, it is clear that a specific member has a high tendency to invite himself and perform duplicate registration. Imposing strict authentication when the member ID or IP address of the invitee to be registered is registered as a blacklist is effective by eliminating duplicate registration.

  Hereinafter, embodiments of the present invention will be described in detail with reference to the drawings. In addition, the same code | symbol is attached | subjected to the same element and the overlapping description is abbreviate | omitted.

  FIG. 1 is a block diagram showing an overall configuration of an information processing system 100 including a service providing server 10 according to an embodiment of the present invention. As shown in FIG. 1, the information processing system 100 is configured such that a service providing server 10, user terminal devices 20 and 30, and a mobile phone 32 can be connected to a network N.

  The service providing server 10 is an information processing apparatus that provides a social networking service (hereinafter referred to as “SNS”) to a registered member. In the following, a person who has already been registered as a member of the SNS provided by the service providing server is simply referred to as a “member”, and a person who is not registered as a member of the SNS is referred to as a “nonmember”.

  The user terminal devices 20 and 30 are information processing devices such as a personal computer (PC), a personal digital assistant (PDA), or a mobile phone, and can be connected to the service providing server 10 via the network N.

  In the present embodiment, for convenience, an information processing device used by a member of an SNS provided by the service providing server 10 is represented as a user terminal device 20, and an information processing device used by a non-member is represented as a user terminal device 30. The user terminal device 20 used by a member includes at least a web browser, and the user terminal device 30 used by a non-member includes at least a web browser and a function of transmitting / receiving e-mail.

  The mobile phone 32 is a mobile phone (including a PHS terminal) possessed by a non-member and has at least a function of transmitting and receiving e-mails. The mobile phone 32 is given an individual e-mail address (hereinafter referred to as a “mobile e-mail address”) for each device. In the present embodiment, a mobile phone will be described. However, if the terminal device is a kind of terminal device to which an individual e-mail address is assigned for each device, it is portable or has a telephone function. It doesn't matter.

  The network N is a communication line for transmitting and receiving information between the service providing server 10, the user terminal devices 20 and 30, and the mobile phone 32. For example, it may be any of the Internet, a LAN, a dedicated line, a packet communication network, a telephone line, a corporate network, other communication lines, combinations thereof, and the like, regardless of whether they are wired or wireless.

  FIG. 2 is a block diagram illustrating a configuration of the service providing server 10 according to the present embodiment. As shown in FIG. 2, the service providing server 10 includes a control unit 11 (for example, a processor such as a CPU) for controlling the operation and processing of each unit, and a storage unit 12 (for example, ROM, RAM) for storing information. Etc., a storage device such as a hard disk device), a communication means 13 as a communication interface for transmitting and receiving information via a network, and a bus 14 connecting them.

  The control means 11 further includes an invitation information reception means 111, an invitation mail transmission means 112, a new registration information reception means 113, a primary check means 114, a confirmation mail transmission means 115, a confirmation reception means 116, and a member registration. Means 117, service providing means 118, and function restriction means 119 are provided. The storage unit 12 includes a member information storage unit 121, an invitation information storage unit 122, a primary checklist storage unit 123, and a temporary registration information storage unit 124.

  The invitation information accepting unit 111 is configured so that when a registered member of the SNS tries to invite a non-member's friend or the like to the SNS, the member ID of the member who is the inviter and the non-member who is the invitee It has a function of accepting invitation information including an e-mail address from the user terminal device 20 of the inviter. In this specification, a member who wants to invite a friend or the like is called an “invite”, and a non-member who has received an invitation is called an “invitee”. Further, the invitation information accepting means 111, when the e-mail address of the invitee accepted from the inviter has already been registered in the member information storage means 121, the person who has received the invitation has already been sent to the inviter. It is preferable to notify the SNS that the member has been registered.

  The invitation mail transmission means 112 is an e-mail (hereinafter referred to as an e-mail message) indicating that the inviter has invited the SNS to the e-mail address of the invitee based on the invitation information received by the invitation information receiving means 111. , “Invitation mail”).

  The new registration information accepting unit 113 has a function of accepting new registration information including the e-mail address, password, and profile information of the invitee who intends to newly register with the SNS from the user terminal device 30 of the invitee. Further, the new registration information accepting unit 113 has already registered the e-mail address for the invitee when the e-mail address accepted from the invitee is already registered in the member information storage unit 121. It is preferable to have a function of informing that and re-entering the e-mail address.

  Based on the invitation information received by the invitation information receiving unit 111, the new registration information received by the new registration information receiving unit 113, and the information stored in the storage unit 12, the primary check unit 114 will newly register as a member. The invited person has a function of determining whether or not there is a possibility of duplicate registration. Duplicate registration means that one user has two or more accounts using different e-mail addresses.

  The confirmation mail transmission means 115 is an e-mail for confirming new registration to the SNS addressed to the invitee's mobile phone 32 when the primary check means 114 determines that there is a possibility of duplicate registration. (Hereinafter referred to as “confirmation mail”).

  The confirmation accepting unit 116 has a function of accepting confirmation of new registration in the SNS from the mobile phone 32 that has received the confirmation mail. The confirmation accepting unit 116 also has a function of acquiring the terminal ID when the terminal ID of the mobile phone 32 can be acquired when the confirmation code is received. In this embodiment, when the invitee clicks a link button in the confirmation mail, a confirmation code is transmitted from the mobile phone 32 to the service providing server 10. Upon receipt of the confirmation code, the confirmation accepting unit 116 attempts to obtain the terminal ID from the mobile phone 32. If the terminal ID can be obtained, the terminal ID is obtained on the condition that the obtained terminal ID is unregistered. If it is not possible to obtain the ID, the possibility of duplicate registration of the invitee is determined on the condition that the confirmation code is received, and it is determined whether or not new member registration is permitted.

  The “terminal ID” is unique identification information given to each terminal of the mobile phone, and the terminal device body of the mobile phone can be identified by this terminal ID. More specifically, the terminal ID includes those in which unique identification information is given to the terminal device body of the mobile phone and those in which unique identification information is given to the mobile phone owner. In the former case, when a user changes the model of the mobile phone, the terminal ID is also changed. On the other hand, in the latter case, even if a certain user changes the model of the mobile phone, the terminal ID is inherited by the mobile phone after the model change, so that the terminal ID is not changed. Also, depending on the mobile phone carrier (carrier), the terminal ID that can be obtained from the website registered in the official website of the carrier may differ from the terminal ID that can be obtained from the informal website. Any of the above is included in the “terminal ID” in the present invention.

  The member registration unit 117 has a function of newly registering the invitee as a member. In the new member registration process, a new member ID is issued, and the member ID and the new registration information received by the new registration information receiving unit 113 are registered in the member information storage unit 121 in association with each other. When the confirmation mail transmission means 115 or the like receives the invitee's mobile mail address, the mobile mail address is also registered in the member information storage means 121.

  The service providing means 118 has a function of providing various services (diary, community, etc.) related to SNS to SNS members, that is, members registered in the member information storage means 121.

  The function restriction unit 119 determines that there is a possibility of duplicate registration by the primary check unit 114, and temporarily waits for confirmation of the invitee while temporarily registering the invitee with the SNS and then providing a service to the temporary registrant. It has a limited function.

  The member information storage unit 121 has a function of storing member information of members registered in the SNS. The member information includes a member ID, a password, an e-mail address, a mobile mail address, a surname / first name, a nickname, an address, gender, self-introduction, a mobile phone terminal ID, and the like. As member information, registration of a password and an e-mail address is indispensable, but registration other than that is optional. Information other than the password and the e-mail address can be registered at any time after the service providing server 10 can acquire any time after the member registration.

  The invitation information storage unit 122 has a function of storing the invitation information input from the inviter. The invitation information storage means 122 includes the invitation information including the inviter's member ID and the e-mail address of the invitee, the inviter's first and last name, a message from the inviter to the invitee, and the like. . When the member registration by the member registration unit 117 is completed, it is preferable that the invitation information stored in the invitation information storage unit 122 is deleted.

  The primary checklist storage unit 123 has a function of storing the member ID, e-mail address, domain name, IP address (Internet protocol address), and the like of a specific member designated by the administrator of the service providing server 10 or the like. Specifically, the primary checklist storage unit 123 is a “white list” in which items that are considered to have almost no possibility of duplicate registration or a “white list” in which the possibility of duplicate registration cannot be denied is registered. One of the "blacklists". Whether the primary checklist storage unit 123 is used as a white list or a black list may be appropriately selected by the administrator of the service providing server 10 in view of the service operation status and the like.

  Here, an embodiment in which the primary checklist storage unit 123 is used as a “white list” will be described first. At this time, the administrator or the like registers in advance, for example, the domain name of the listed company, the domain name of the school, etc. as a white list. An embodiment in which the primary checklist storage unit 123 is used as a black list will be described later as another embodiment.

  The temporary registration information storage unit 124 has a function of storing information of a temporary registrant who is temporarily registered in the SNS. The provisional registration information includes provisionally issued provisional member ID, password, e-mail address, mobile mail address, surname / first name, nickname, address, gender, self-introduction, and the like. In addition, provisional registration is performed before regular registration of the invitee in the SNS when the invitee has a possibility of duplicate registration.

  The service providing server 10 may be composed of a single computer or may be composed of a plurality of computers distributed on a network. A single computer may have a plurality of server functions.

  The user terminal devices 20 and 30 according to the present embodiment can use commercially available PCs and are not shown in the figure. For example, a CPU as a control means for controlling the operation and processing of each unit, various types Storage means such as a memory or hard disk device that functions as a work area for storing and processing information, an input interface that receives signals input from input means such as a keyboard and a mouse, and an output interface that outputs signals to output means such as a display device And a communication interface connected to the network N for transmitting and receiving information, and a bus connecting them. The mobile phone 32 in the present embodiment can also use a commercially available mobile phone terminal.

  Next, an overview of the invitation process in the service providing server 10 configured as described above will be described.

  FIG. 3 is a flowchart showing the flow of the invitation process at the time of new member registration by the service providing server 10. FIG. 4 is a timing chart of the invitation process. FIG. 5 is an example of a web page screen displayed on the user terminal device 20 of the inviter. FIG. 6 is an example of an invitation screen displayed on the user terminal device 20 of the inviter. FIG. 7 is an example of a warning image. FIG. 8 is an example of a message entry screen displayed on the user terminal device 20 of the inviter. FIG. 9 is an example of an invitation email sent to the invitee. FIG. 10 is an example of a new registration acceptance screen displayed on the user terminal device 30 of the invitee. FIG. 11 is an example of a new registration screen displayed on the user terminal device 30 of the invitee. FIG. 12 is an example of a confirmation email displayed on the invitee's mobile phone 32. In this embodiment, it is assumed that the inviter accesses the service providing server 10 from the user terminal device 20 via the network N, and has already logged in to the SNS in advance.

  First, the invitation information receiving unit 111 of the service providing server 10 receives invitation information including the e-mail address of the invitee and the member ID of the invitee from the user terminal device 20 (S41). The invitation information is used to send an invitation to the SNS, that is, an invitation mail to the invitee.

  Specifically, for example, the inviter clicks an “invite friend” icon 51 or the like on the SNS screen (FIG. 5) displayed on the output device of the user terminal device 20 using an input device such as a mouse. As a result, a signal indicating that the “invite friend” icon 51 or the like has been clicked, that is, an invitation processing start signal is transmitted from the user terminal device 20 to the service providing server 10.

  Upon receiving this invitation process start signal, the invitation information receiving unit 111 transmits image data of an invitation screen as shown in FIG. 6 to the user terminal device 20. Then, an image as shown in FIG. 6 is displayed on the user terminal device 20 that has received the image data. When the invitee inputs the e-mail address of the invitee in the input box 52 and clicks the “next screen” button 53, the e-mail address of the invitee and the member ID of the invitee are serviced. It is transmitted to the providing server 10. Here, it is preferable that the invitation information receiving unit 111 automatically obtains the member ID of the inviter from the user terminal device 20 using a cookie stored in the user terminal device 20.

  When the invitation information receiving unit 111 receives the e-mail address of the invitee and the member ID of the invitee, the invitation information receiving unit 111 searches whether or not the received e-mail address is already registered in the member information storage unit 121. If it has already been registered, the inviter is informed that the invitee has already registered as a member, and the e-mail address is re-inputted. At this time, the invitation information receiving unit 111 transmits warning image data as shown in FIG. 7 to the user terminal device 20 to prompt the user to re-input the e-mail address of the invitee.

  If the e-mail address of the invitee is not registered in the member information storage unit 121, the invitation process is continued. Then, the invitation information receiving unit 111 transmits image data of a message entry screen as shown in FIG. 8 to the user terminal device 20. The invitee inputs his / her first and last name (may be a nickname) and a message (arbitrary) in the input boxes 54, 55 and 56, and further inputs a confirmation number 57 displayed on the image in the input box 58. When the “send” button 59 is clicked, the inputted data such as the name is sent to the service providing server 10. In this way, the service providing server 10 completes the reception of the message described in the invitation information or the invitation mail from the user terminal device 20.

  Next, the invitation mail transmission unit 112 stores information such as invitation information and a message received from the user terminal device 20 in the invitation information storage unit 122 and transmits an invitation mail to the invitee (S42). At this time, the invitation mail transmission unit 112 generates a message including a message received from the user terminal device 20 as shown in FIG. 9 and individual link information 61 given to each invitation mail, and the user terminal An e-mail (invitation mail) having the generated message as a text is transmitted to the e-mail address of the invitee included in the invitation information received from the device 20.

  The invitation email transmitted to the invitee includes link information 61 including unique identification information given to each invitation email. The link information 61 is a hyperlink to a predetermined URL. When the invitee who has received the invitation mail accesses the service providing server 10 based on the link information 61, new registration information receiving means 113, invitation information corresponding to the unique identification information included in the accessed URL can be extracted from the invitation information storage unit 122.

  When the invitee receives the invitation email and registers with the SNS, the user terminal device 30 accesses the service providing server 10 by clicking on the link information 61 in the invitation email and the new registration processing is performed. Perform (S43).

  Upon receiving access from the user terminal device 30, the new registration information accepting unit 113 takes out invitation information corresponding to the unique identification information included in the accessed URL from the invitation information storage unit 122 and shows it in FIG. 10. The screen data of the new registration acceptance screen including the message to the invitee is transmitted to the user terminal device 30. Although not shown in the figure, the screen data of the new registration acceptance screen includes the top page of the inviter (a page including a profile and the like).

  When the invitee clicks the register now button 62 on the new registration reception screen, the new registration information reception means 113 that has received the signal receives the screen data of the new registration screen as shown in FIG. Send to. The invitee enters new registration information including his / her first / last name, nickname, current address, gender, self-introduction profile information, e-mail address, and password in the input boxes 63, 64, 65, 66, When the “Register” button 67 is clicked, the data of the newly registered information is transmitted to the service providing server 10. In this way, the new registration information receiving unit 113 completes the reception of the new registration information of the invitee from the user terminal device 30.

  The new registration information receiving means 113 transmits the screen data to the user terminal device 30 in a state where the e-mail address of the invitee input by the inviter is input in advance in the input box 64 of the new registration reception screen. It is desirable. However, the invitee can appropriately modify and change the e-mail address entered in the input box 64.

  When the new registration information receiving unit 113 receives the new registration information from the invitee, the new registration information receiving unit 113 searches whether or not the e-mail address included in the received new registration information is already registered in the member information storage unit 121. If it has already been registered, the invitee is notified that the e-mail address entered by the invitee has already been registered, and the e-mail address is re-entered. At this time, the new registration information receiving means 113 transmits warning image data as shown in FIG. 7 to the user terminal device 30 to prompt re-input of the e-mail address.

  If the e-mail address included in the newly registered information is not registered in the member information storage unit 121, the primary check unit 114 performs a primary check process (S44). This primary check process is a process of determining whether or not there is a possibility of duplicate registration when newly registering an invitee. If there is a possibility of duplicate registration, Request further authentication.

  The primary check means 114 is a new check target to be registered based on the invitation information received from the invitee, the new registration information received from the invitee, the member information registered in the member information storage means 121, and the like. Determine whether the inviter has the possibility of duplicate registration. In this embodiment, as described above, the domain names of listed companies and schools are registered as a white list in the primary checklist storage unit 123, so that the e-mail address included in the newly registered information received from the invitee If the domain name of the invitee is registered in the white list, it is determined that there is no possibility of duplicate registration. On the other hand, if it is not registered in the white list, it is unclear whether or not there is a possibility of duplicate registration, but the primary check means 114 determines that there is a possibility of duplication for the time being.

  When it is determined in this primary check process that there is a possibility of duplicate registration (S44: NG), the confirmation mail transmitting means 115 performs a re-authentication process (S45 and S46). Specifically, first, the confirmation mail transmission unit 115 transmits screen data for allowing the user terminal device 30 to enter a mobile mail address. Then, when the mobile e-mail address input by the invitee is received from the user terminal device 30, it is confirmed whether or not the received mobile e-mail address is already registered in the member information storage unit 121 or the temporary registration information storage unit 124. If it is not registered, a mobile mail (confirmation mail) for confirming the new registration in the SNS as shown in FIG. 12 is transmitted to the received mobile mail address (S45), and invited. Waiting for confirmation by the person (S46). In addition, the confirmation mail transmission unit 115 does not include a case where the received mobile mail address is already registered, or the domain name of the received mobile mail address does not include a predetermined mobile mail domain (such as “docomo.ne.jp”). In this case, the invitee is prompted to re-enter the mobile mail address.

  In parallel with or before or after step S45, the service providing server 10 associates temporary registration information including the mobile mail address received in step S45 and the new registration information of the invitee acquired in step S43 with a confirmation code. Temporary registration information may be stored in the temporary registration information storage unit 124 and temporarily registered in the SNS. The function restriction unit 119 of the service providing server 10 allows the temporarily registered invitee to restrict the use of the SNS. For example, a restriction such as allowing the member's top page or the like to be permitted but not allowing writing or participation in the community is assumed.

  In addition, the confirmation mail includes a unique confirmation code assigned to each confirmation mail. For example, a random number may be used as the confirmation code. As shown in FIG. 12, a link 71 including a confirmation code is displayed on the display screen of the mobile phone 32 that has received the confirmation mail. When the invitee clicks this link 71 to select it, the confirmation code is provided by the service. It is transmitted to the server 10.

  When the confirmation receiving unit 116 receives the confirmation code from the mobile phone 32, if the terminal ID can be acquired from the mobile phone 32, the terminal ID of the mobile phone 32 is also acquired. Then, it is confirmed whether or not the acquired terminal ID has already been registered in the member information storage means 121. If it is not registered, the member registration is permitted. On the other hand, if the acquired terminal ID is already registered, member registration is not permitted. This is because, when the terminal ID is already registered, it can be determined that the owner of the mobile phone 32 identified by the terminal ID has already been registered as a member.

  Note that the terminal ID cannot always be acquired from the mobile phone 32. Whether or not the terminal ID can be acquired depends on whether or not the terminal ID is registered in the mobile phone carrier or the official website of each carrier. Therefore, if the terminal ID cannot be obtained from the mobile phone 32, the confirmation accepting unit 116 accepts the member registration upon receipt of the confirmation code.

  The member registration unit 117 acquires the terminal ID when the primary check unit 114 determines that there is no possibility of duplicate registration (S44: OK), or when the confirmation reception unit 116 determines that the member registration is permitted (that is, acquires the terminal ID). When it is possible, when the confirmation code is received and the terminal ID is not registered, or when the confirmation code is received when the terminal ID cannot be acquired (S46: YES), the new member registration process of the invitee is performed. (S47). At this time, the member registration unit 117 newly issues a member ID of the invitee, newly registers the member ID in the member information storage unit 121 in association with the new registration information. Further, when the mobile mail address or terminal ID of the invitee is acquired, these are also registered in the member information storage unit 121 in association with the member ID. If it is determined that there is a possibility of duplicate registration in the primary check process and the use of the SNS is restricted, the temporary registration information stored in the temporary registration information storage unit 124 is deleted at the same time as the member registration process. And remove the usage restrictions. Then, the service providing means 118 provides various services related to the SNS to the member registered.

  Thus, in a service for members such as SNS that adopts an invitation system when registering a new member, if the invitee is on the white list, the member registration is performed without requiring additional authentication using the mobile phone 32. If the whitelist does not apply, the mobile phone 32 can be used for additional member authentication to register as a member. As a result, if it is considered that a single member has two or more accounts and the possibility of duplicate registration is low, no additional authentication is imposed on the invitee. This makes it possible to eliminate duplicate registrations while suppressing this.

  Next, as another embodiment, an embodiment in which the primary checklist storage unit 123 is used as a “black list” will be described.

  Whether the primary checklist storage unit 123 is used as a “white list” or a “black list”, the basic processing flow is the same. Therefore, in the following, a description will be given of parts that differ in processing compared to the above-described embodiment (whitelist embodiment).

  First, the administrator of the service providing server 10 registers a black list in the primary checklist storage unit 123 in advance. In the black list, for example, the member ID of a member suspected of unauthorized registration or a member suspected of promoting unauthorized registration, a specific IP address, a domain name of a free mail address, and the like are registered as a black list. Free mail is an e-mail service provided free of charge via the Internet, etc., and the domain name of the e-mail address included in the new registration information is, for example, “hotmail.com” or “goo.ne.jp”. It is possible to determine whether the domain name is a free mail domain name.

  Also, a condition that cannot deny the possibility of duplicate registration may be registered in the black list. This condition is, for example, when the user name (part before “@”) of the email address of the inviter and the user name of the email address of the invitee are the same or partially overlapping, This is the case where the password of the person in charge and the password of the invitee are the same or partially overlapping.

  When the primary check process is performed in step S44 of FIG. 3, the primary check unit 114 is registered in the invitation information received from the inviter, the new registration information received from the invitee, and the member information storage unit 121. Based on the member information or the like, it is determined whether or not the member registration corresponds to the black list. If the member registration corresponds to the black list, it is determined that there is a possibility of duplicate registration.

  Specifically, when the member ID of the inviter is registered in the black list, the IP address of the invitation information transmission source (user terminal device 20) or the new registration information transmission source (user terminal device 30) If the email address of the invitee is a free email address, the user name of the invitee email address is the same as the username of the invitee email address. Alternatively, in the case of partial overlap, the invitee password and the invitee password are the same or partially duplicated, etc., it is determined that there is a possibility of duplicate registration.

  The subsequent processing is the same as in the above-described embodiment. When the primary check unit 114 determines that there is a possibility of duplicate registration, the re-authentication process (S45 and S46) is performed, and there is no possibility of duplicate registration. If it is determined, the process proceeds to the member registration process in step S47 without performing the re-authentication process.

  In this way, in a service for members such as SNS that adopts an invitation system when registering a new member, if the invitee is on the black list, the member is subjected to additional authentication using the mobile phone 32. If the user is registered and does not correspond to the black list, the member can be registered without performing additional authentication using the mobile phone 32. This eliminates duplicate registration because it can impose additional stricter authentication on invitees when there is no possibility that the invitee's registration is fraudulent. Can be achieved.

  The present invention is not limited to the above-described embodiment, and can be implemented in various other forms without departing from the gist of the present invention. For this reason, the said embodiment is only a mere illustration in all points, and is not interpreted limitedly. For example, the above-described processing steps can be executed in any order or in parallel as long as there is no contradiction in the processing contents.

  In the above embodiment, the service providing server 10 has been described as providing SNS. However, not only SNS but also member registration is required for using the service, and an invitation from a registered member is required when newly registering a member. It is applicable to services that require

  In the above embodiment, when a member invites a non-member, the login to the service providing server 10 is premised. However, it is needless to say that an invitation from the member may be accepted without logging in. Moreover, although the example which clicks the "invite friend" icon 51 and starts the invitation process was shown in the said embodiment, you may start an invitation process by various methods besides this. Furthermore, in this embodiment, based on information such as cookies recorded in the user terminal device 20, the member ID of the inviter is automatically transmitted to the service providing server 10, but the inviter has entered a key. The member ID may be transmitted to the service providing server 10.

  Furthermore, in the above embodiment, a screen for inputting a mobile mail address only when there is a possibility of duplicate registration is generated separately from a new registration screen (FIG. 11) for inputting new registration information. Although the description has been made on the assumption that an e-mail address is input, an input box for inputting a mobile e-mail address is added to the new registration screen shown in FIG. You may enable it to input simultaneously.

  In the above embodiment, the e-mail address and the mobile mail address of the invitee have been distinguished from each other. However, in the new registration process S43, the invitee may register the mobile mail address. In this case, the confirmation mail transmitting means 115 may transmit the confirmation mail to the mobile mail address registered in the new registration process S43, omitting the process of receiving the mobile mail address in step S45.

  Further, when the invitee newly registers as a member, the mobile phone 32 accesses the service providing server 10 to perform the new registration processing S43. When the new registration processing S43 is performed, the mobile phone 32 If the acquired terminal ID is not already registered in the member information storage unit 121, it is determined that the possibility of duplicate registration is low, and the re-authentication processes S45 and S46 are performed. Alternatively, the member registration process S47 may be executed.

  Further, the primary check unit 114 may determine the possibility of duplicate registration by a method different from the method described in the above embodiment.

1 is a block diagram illustrating an overall configuration of an information processing system 100 including a service providing server 10. FIG. 2 is a block diagram illustrating a configuration of a service providing server 10. FIG. It is a flowchart which shows the flow of the invitation process at the time of the new member registration by the service provision server. It is a timing chart of an invitation process. It is an example of the web page screen displayed on the user terminal device 20 of an inviter. It is an example of the invitation screen displayed on the user terminal device 20 of an inviter. It is an example of a warning image. It is an example of the message entry screen displayed on the user terminal device 20 of an inviter. It is an example of the invitation mail sent to the invitee. It is an example of the new registration reception screen displayed on the user terminal device 30 of an invitee. It is an example of the new registration screen displayed on the user terminal device 30 of an invitee. It is an example of the confirmation mail displayed on the cellular phone 32 of the invitee.

Explanation of symbols

10 Service provision server (service provision system)
DESCRIPTION OF SYMBOLS 11 Control means 12 Storage means 13 Communication means 20 User terminal device 30 User terminal device 32 Cellular phone 100 Information processing system 111 Invitation information reception means 112 Invitation mail transmission means 113 New registration information reception means 114 Primary check means 115 Confirmation mail transmission means 116 Confirmation acceptance means 117 Member registration means 118 Service provision means 119 Function restriction means 121 Member information storage means 122 Invitation information storage means 123 Primary checklist storage means 124 Temporary registration information storage means N Network

Claims (13)

A computer-based service providing system that provides membership services to registered members over a network,
The computer
Invitation information receiving means for receiving invitation information including the member ID and the e-mail address of the invitee from an inviter who is an existing member;
Invitation mail transmitting means for transmitting an email indicating that there was an invitation to the email address received by the invitation information receiving means;
New registration information receiving means for receiving new registration information including the email address and password of the invitee from the invitee;
Primary check means for determining whether or not the invitee has a possibility of duplicate registration based on the invitation information received by the invitation information receiving means and the new registration information received by the new registration information receiving means; ,
A confirmation email sending means for sending a confirmation email containing a confirmation code to the mobile email address of the invitee acquired in advance when the primary check means determines that there is a possibility of duplicate registration;
Confirmation accepting means for accepting a return of a confirmation code from the destination mobile phone of the confirmation email;
Member registration processing based on new registration information received by the new registration information receiving means when the primary checking means determines that there is no possibility of duplicate registration or when the confirmation receiving means receives a confirmation code Member registration means to
A primary checklist storage means for registering a member ID or IP address as a blacklist;
Equipped with a,
The primary check means includes
If the inviter's member ID included in the invitation information is registered in the blacklist, or
If the IP address of the invitation information is registered in the black list,
Determines that there is a possibility of duplicate registration,
A service providing system characterized by that . The confirmation receiving means
A function of acquiring a terminal ID unique to the mobile phone from the destination mobile phone when receiving a confirmation code return from the destination mobile phone of the confirmation mail;
The member registration means
Instead of the case where the confirmation accepting unit accepts the confirmation code, when the terminal ID acquired by the confirmation accepting unit is not registered by the registered member, the new registration information accepted by the new registration information accepting unit Based on the membership registration process,
The service providing system according to claim 1. A primary checklist storage means for registering a whitelist;
With
The primary check means determines that the invitee has no possibility of duplicate registration when the invitation information and / or the new registration information corresponds to a whitelist.
The service providing system according to claim 1 or 2, characterized in that The primary checklist storage means registers a domain name as a white list,
The primary check means determines that there is no possibility of duplicate registration when the domain name of the email address included in the new registration information is registered in the white list.
The service providing system according to claim 3. Said primary check list storage means is capable of registering the domain of-free e-mail as a black list,
The primary check means includes
If the source of the IP address of the previous Symbol new registration information is registered in the black list, or said if the domain name of the invitee's e-mail address that is included in the new registration information is registered in the black list ,
Also, it is determined that there is a possibility of duplicate registrations,
The service providing system according to claim 1 . The primary checklist storage means is a member registration condition with the possibility of duplicate registration,
When the user name of the e-mail address registered by the inviter and the user name of the e-mail address of the invitee included in the new registration information are the same or partially overlapping,
If the password registered by the invitee and the password of the invitee included in the new registration information are the same or partially overlapping,
Blacklist at least one of the
The primary check means determines that there is a possibility of duplicate registration when the information registered by the inviter and the new registration information meet the conditions registered in the blacklist.
The service providing system according to any one of claims 1 to 5, wherein When the primary check means determines that there is a possibility of duplicate registration, the new registration information is provisionally registered until the member registration means performs the member registration process of the invitee, and the invited Function restriction means for providing limited services to users,
Service providing system according to any of claims 1 to 6, further comprising a. A computer-based service providing system that provides membership services to registered members over a network,
The computer
Invitation information receiving means for receiving invitation information including the member ID and the mobile mail address of the invitee from an inviter who is an existing member;
Invitation email sending means for sending an email indicating that there was an invitation to the mobile mail address accepted by the invitation information acceptance means;
New registration information receiving means for receiving new registration information including the invitee's mobile mail address and password from the invitee, and acquiring the invitee's mobile phone-specific terminal ID;
A primary checklist storage means for registering a member ID or IP address as a blacklist;
The obtained terminal ID rather been registered by the registered member, and none of the source IP address of the member ID and the invitation information invitees included in the invitation information is registered in the black list a member registration means for performing a member registration process on the basis of a case have, new registration information accepted by the new registration information receiving means,
A service providing system comprising:   A computer-based service providing system that provides membership services to registered members over a network,
  The computer
  Invitation information receiving means for receiving invitation information including the member ID and the e-mail address of the invitee from an inviter who is an existing member;
  Invitation mail transmitting means for transmitting an email indicating that there was an invitation to the email address received by the invitation information receiving means;
  New registration information receiving means for receiving new registration information including the email address and password of the invitee from the invitee;
  Primary check means for determining whether or not the invitee has a possibility of duplicate registration based on the invitation information received by the invitation information receiving means and the new registration information received by the new registration information receiving means; ,
  Member registration means for performing member registration processing based on new registration information received by the new registration information receiving means when the primary check means determines that there is no possibility of duplicate registration;
  A primary checklist storage means for registering a member ID or IP address as a blacklist;
With
  The primary check means includes
  If the inviter's member ID included in the invitation information is registered in the blacklist, or
  If the IP address of the invitation information is registered in the black list,
Determines that there is a possibility of duplicate registration,
A service providing system characterized by that.   The service providing system according to claim 1, wherein the membership service is a social networking service. In a service providing system using a computer that provides a membership service on the network to registered members, a method of authenticating duplicate registration of invitees,
The computer is
Tep for accepting invitation information including the member ID and the e-mail address of the invitee from the existing inviter,
Sending an email indicating that there was an invitation to the email address included in the invitation information;
Receiving from the invitee new registration information including the invitee's email address and password;
Performing a primary check process for determining whether the invitee has a possibility of duplicate registration based on the invitation information and the new registration information;
When it is determined that there is a possibility of duplicate registration as a result of the primary check process, a step of sending a confirmation email containing a confirmation code to the invitee's mobile email address acquired in advance ;
Receiving a confirmation code return from the confirmation-destination mobile phone;
As a result of the primary check process, when it is determined that there is no possibility of duplicate registration, or when the confirmation code is received, performing a member registration process based on the new registration information;
Is to execute
The service providing system includes a primary checklist storage unit that registers a member ID or IP address as a blacklist,
The primary check process includes
If the inviter's member ID included in the invitation information is registered in the blacklist, or
If the IP address of the invitation information is registered in the black list,
Is to determine the possibility of duplicate registration,
A duplicate registration authentication method characterized by that .   A program for causing a computer to execute the duplicate registration authentication method according to claim 11.   A computer-readable recording medium on which the program according to claim 12 is recorded.

Images