Browse Prior Art Database

Method to access securely access web site from mobile phone

IP.com Disclosure Number: IPCOM000015703D
Original Publication Date: 2002-Jul-01
Included in the Prior Art Database: 2003-Jun-21

Publishing Venue

IBM

Abstract

Disclosed is a method to enable secure and easy access to web site from mobile phone without device identification mechanism. Many browsers in mobile phones, especially those in Japan, do not provide device identification or client certificate. These phones pose problems for the web site access control. These phones do not provide device identification/client certificate. User must enter user credentials to authenticate each time logs in. It is difficult to enter complex password from mobile phone. Other use may use the user credentials from other phones because the credentials are not tied to device. Use of truly one-time URL inhibits the use of "back" button, which significantly decline usability. The method described will solve these problems. The method is implemented by the server side software and hardware. In the desirable configuration, IVR with Caller ID function is included. The authentication server, mail sender and Web server is mandatory. The authentication server must be configured to intercept all the requests to web server.