Abstract: Examples of a system and method for transacting media at a self-service terminal (SST), are generally described. A method may include receiving a PIN on a user interface component of a media interface aperture cover. The method may include causing the media interface aperture cover to retract to dispense or receive media through a media interface aperture.

Abstract: A computer-implemented method for managing cryptocurrency is disclosed. A plurality of users are provided with an in-marketplace wallet suitable for storing linked digital tokens that are linked in value to cryptocurrency tokens and are required to transact on a digital marketplace platform. A cryptocurrency reserve is provided for storing cryptocurrency tokens. Responsive to a user purchasing linked digital tokens from a marketplace store, linked digital tokens are transferred to the in-marketplace wallet an equivalent value of cryptocurrency tokens are transferred to the cryptocurrency reserve. Responsive to a user withdrawing a number of linked digital tokens from the in-marketplace wallet, the desired number of linked digital tokens are removed from the user's in-marketplace wallet and an equivalent value of cryptocurrency tokens are transferred from the cryptocurrency reserve to an out-of-marketplace wallet of the user for storing cryptocurrency tokens outside of the marketplace platform.

Abstract: The present disclosure is directed to consolidated token routing. First data corresponding to a request to conduct a first transaction is analyzed. A first token is generated for the first transaction. Second data corresponding to a request to conduct a second transaction is analyzed. A second token is generated for the second transaction. In response to determining that at least a first component of the first data corresponds to a first component of the second data, a routing of the first token and a routing of the second token are consolidated. The consolidation of the token routing includes transmitting the first token and the second token to one or more devices in a single transmission.

Abstract: A biometric heartrate authentication system and method is disclosed that leverages heartrate information collected by heartrate tracking devices to build a heartrate profile for a client. The system further leverages location information collected by existing location information services to determine an activity profile for a client. The activity profile information may be used together with the heartrate profile to generate an expected heartrate range against which a cardholder heartrate may be compared for authentication purposes. Because client heartrate characteristics are generally unique, varying according to the unique activities being performed by the client at any point in time, the system and method thus provide a low cost, non-invasive method for reliably authenticating individuals and securing against fraudulent account accesses.

Abstract: Systems and methods for providing secure application support for NFC devices in both battery on and battery off modes are provided. A first application that requires available host battery supply and a second application that does not require available host battery supply are loaded onto a mobile device. When the second application is enabled, the reader requests user input on a POS device. The first application is enabled when host battery supply is available, and the second application is enabled when no host battery supply is available.

Abstract: The invention relates to systems and methods for providing modular and configurable smart contracts for blockchain applications. The smart contracts may be utilized to retain all transaction attribute values in a world state database of the blockchain-implemented ledger. The systems and methods can further provide for dynamically configurable validation metadata and validation rules for transaction attributes recorded on a blockchain transaction log. The validation metadata and validation rules corresponding to the transaction attributes can be dynamically updated and applied to the transaction attributes to validate or invalidate a transaction.

Abstract: The present disclosure relates to the enforcement of a smart contract execution hierarchy on a blockchain. A method includes receiving a submission of a first smart contract to be appended to a blockchain, comparing a priority value of the first smart contract to a priority value of a second smart contract previously appended to the blockchain, determining based on the comparison that the first smart contract has a lower priority than the second smart contract, comparing the terms of the first smart contract to the terms of the second smart contract, determining at least one of an overlap and a conflict between the terms of the first smart contract and the terms of the second smart contract, resolving any terms of the first smart contract that are determined to overlap or conflict with the terms of the second smart contract, and appending the resolved first smart contract to the blockchain.

Abstract: A system has a storage medium encoded with program instructions, and a processor coupled to access the program instructions. The instructions configure the processor for: receiving a first request at a POS terminal to surrender a previously purchased first asset in exchange for at least a portion of a second asset that was used to purchase the first asset, receiving the private key from the first asset; accessing a set of rules stored in a distributed electronic ledger, the set of rules specifying conditions associated with the first request; transmitting an authorization to return the at least a portion of the second asset in exchange for surrender of the first asset, in the case where the conditions are satisfied; and invalidating the first request in the case where one or more of the conditions are not satisfied.

Abstract: The disclosure extends to methods, systems, and computer program products for identifying transaction data from within aggregated data and suggesting additional services based on the transaction data. The disclosure also extends to methods, systems, and computer based products for discovering transaction attributes within a database of aggregated account data including, aggregating and matching financial account attributes between a plurality of accounts in order to provide additional services to account holders.

Abstract: A biometric heartrate authentication system and method is disclosed that leverages heartrate information collected by heartrate tracking devices to build a heartrate profile for a client. The system further leverages location information collected by existing location information services to determine an activity profile for a client. The activity profile information may be used together with the heartrate profile to generate an expected heartrate range against which a cardholder heartrate may be compared for authentication purposes. Because client heartrate characteristics are generally unique, varying according to the unique activities being performed by the client at any point in time, the system and method thus provide a low cost, non-invasive method for reliably authenticating individuals and securing against fraudulent account accesses.

Abstract: A message processing server includes a message processor and a database of multi-layer tokens. Each token in the database includes a plurality of encrypted data layers. The first layer includes the second layer and a first pointer. The second layer includes a second pointer. The message processor is configured to receive a first authorization message including a first cryptographic key and a second value; decrypt the first layer of one of the tokens with the first key; validate the first pointer by receiving confirmation of the first pointer pointing to a database entry comprising the second value; receive a second authorization message including a second cryptographic key and a third value; decrypt the second layer of the token with the second key; and validate the second pointer by receiving confirmation of the second pointer pointing to a database entry comprising a maximum data value not less than the third value.

Abstract: A message processing server includes a message processor and a database of multi-layer tokens. Each token in the database includes a plurality of encrypted data layers. The first layer includes a first data pointer. A primary layer includes the first layer and identifies a reference data value. The message processor receives from a communications device an authentication request identifying a first data value, validates the authentication request from the first data value and the reference data value configured in one of the multi-layer tokens, receives a first authorization message including a first cryptographic key, derives a first decrypted data layer from the first cryptographic key and the first encrypted data layer of the one multi-layer token, and validates the first data pointer by receiving confirmation of the first data pointer pointing to a database entry comprising a second data value less than the reference data value.

Abstract: Systems, apparatuses, and methods for performing transactions through mobile communication devices using either telecommunications networks or proximity near-field communications systems are disclosed. A mobile communication device may display an application authentication element. The application authentication element may include a pre-selected authentication element and transaction data associated with a transaction conducted by a mobile communication device. The mobile communication device may obtain the pre-selected authentication element by either transmitting a request to a server computer or retrieving the pre-selected authentication element from a secure memory in the mobile communication device. A user authentication token may be received by the mobile communication device from the user. The mobile communication device may generate a secret token that is derived from the user authentication token. If the secret token is correlated to a secret reference token, then a transaction may be conducted.

Abstract: A method includes initiating, by a computing device, an acquisition process with a merchant server to acquire an item using an exchange item. The method further includes determining, by the merchant server and/or a marketplace server, whether the acquisition process requires verification of the merchant server. When the acquisition process requires verification, the method further includes obtaining, by the marketplace server, a verification signature of the merchant server. The method further includes authenticating, by the marketplace server, the verification signature of the merchant server in accordance with use rules associated with the exchange item. When the verification signature is authenticated, the method further includes facilitating, by the marketplace server, exchange of the secure custody of the exchange item data file between the computing device and the merchant server in accordance with the secure custody protocol to finalize the acquisition process.

Abstract: A method includes initiating, by a computing device, an acquisition process with a merchant server to acquire an item using an exchange item. The method further includes determining, by the merchant server and/or a marketplace server, whether the acquisition process requires verification of the merchant server. When the acquisition process requires verification, the method further includes obtaining, by the marketplace server, a verification signature of the merchant server. The method further includes authenticating, by the marketplace server, the verification signature of the merchant server in accordance with use rules associated with the exchange item. When the verification signature is authenticated, the method further includes facilitating, by the marketplace server, exchange of the secure custody of the exchange item data file between the computing device and the merchant server in accordance with the secure custody protocol to finalize the acquisition process.

Abstract: A server exchanges information between one or more wireless devices to complete a transaction. The server receives second device identifier information from a first wireless device using a wide area network. The second device identifier information was previously provided to the first wireless device using short range wireless communication. The server then uses the second device identifier information to determine additional information concerning an entity or object located in proximity to the second device, and then the server delivers information to the first wireless device based at least in part upon both (a) the second device identifier and (b) a current step in a multiple step process for an ongoing electronic commerce transaction.

Abstract: The present invention provides a method, Web server and computer system for converging a desktop application and a Web application. The method may comprise: in response to a request from a client user for using a target desktop application, starting a desktop application initialization process on the Web server and determining an appropriate corresponding hosting server for the user; preparing and provisioning desktop application environment on the corresponding hosting server and starting the target desktop application; transmitting the corresponding hosting server's address to the client so as to make desktop application interaction between the client and the corresponding hosting server; and in response to the completion of the desktop application interaction, stopping and exiting the target desktop application on the corresponding hosting server.

Abstract: A message processing server includes a message processor, a network interface, and a memory storing a token database of multi-layer tokens. Each token in the database includes a plurality of encrypted data layers. The message processor receives, via the network interface, at least one authorization message that identifies one of the tokens, derives a first decrypted data layer from the first encrypted data layer of the token, and extracts from the first decrypted data layer a second pointer to a secondary database that stores a predetermined data value. The message processor excises the predetermined data value from the secondary database.

Abstract: A method includes sending an encrypted first hash value set to a data provider; receiving an encrypted second hash value set and a double-encrypted first hash value set from the data provider; re-encrypting the received encrypted second hash value set to obtain a double-encrypted second hash value set; calculating an intersection of the double-encrypted first hash value set and the double-encrypted second hash value set to determine one or more shared users shared with the data provider; and recommending or providing a service to the one or more shared users.

Abstract: A soft card provisioning application is instantiated on a device with wireless communications capabilities. A card number for a soft card desired to be provisioned on the device is obtained from a user of the device. An issuer identification number retrieved from the card number is communicated to a provisioning configuration server over an air interface. A provisioning issuer server network address is obtained from the provisioning configuration server based on the issuer identification number. Card issuer specific challenges are presented to the user, and the user's responses to the challenges are received. The challenge responses are communicated to the provisioning issuer server. Soft card image data and personalization data, where the personalization data includes personalized embossed and pre-printed data, are received from the provisioning issuer server over the air interface. The soft card is provisioned for use on the device based on the data received over the air interface.