Abstract: In an implementation, processing blockchain-based data is described. Data to be stored in a blockchain network is received at one or more processing devices of a blockchain node. A determination is made that an attribute of the data is of a particular type. In response to determining that the attribute of the data is of the particular type, a digest representing the data is generated. The digest is smaller in size than the data. The data is stored at a storage location in accordance with a mapping relationship between the digest and a first identifier of the data. An encrypted version of the digest is generated, by the one or more processing devices for storage on the blockchain network, using a private key of a public-private key pair corresponding to a second identifier of the data.

Abstract: Techniques for establishing entitlement to a computer program product are provided, and include providing a client identity in a registration process to produce an entitlement file, obtaining an encoded version of a computer program product, and transforming the computer program product into an installation product in a computer storage medium, wherein the installation product comprises the entitlement file to establish entitled use of the computer program product.

Abstract: A system for using a dynamic temporary credential with a portable communication device for use in a transaction with an electronic control point (e.g. point of sale, NFC access point) wherein the portable communication device has a geo-location module (e.g. GPS). The system has a centralized module that receives the portable communication device's current geo-location and transmits the dynamic temporary credential to the portable communication device and provides predictive transaction information—including the dynamic temporary credential and portable communication device's geo-location—to an authorization system operably associated with the electronic control point. The dynamic temporary credential has a predetermined time to live, which allows for the recycling of the dynamic credential, such recycling may take into account the geo-location for which the credential has been recently issued. A method for using a dynamic temporary credential with a portable communication device is also disclosed.

Abstract: A secure element with a user security domain thereon, the user security domain constituted of: a security domain control circuitry; an encoder/decoder functionality responsive to the security domain control circuitry; and a secured keys storage in communication with the security domain control circuitry, the encoder/decoder functionality arranged to: encode data responsive to at least one first key stored on the secured keys storage, and output an encoded data; and decode received data responsive to at least one second key stored on the secured keys storage, and output a decoded data.

Abstract: A registration accepting unit accepts registration of a card. A storage unit stores use permission information indicating a disabled state of use permission of the registered card. An instruction accepting unit accepts a use permission enabling instruction of the card from a user terminal. A providing unit provides the user terminal with code information associated with the card for which the use permission enabling instruction has been issued. A changing unit enables the use permission of the card, for which the use permission enabling instruction has been issued and which is stored in the use permission information, for a predetermined period. When receiving the code information from an in-store device installed in a stored, a notifying unit notifies the facility device of whether the use permission of the right that is stored in the use permission information in association with the code information is enabled or disabled.

Abstract: In one embodiment, a system for license management includes logic adapted for arranging entitlement slots under a plurality of licenses, each entitlement slot being configured for affording entitlement to use of an instance of a software application during a particular time frame, logic adapted for determining a license use signature from recorded license attribution information, logic adapted for receiving a notification of an instance not attributed to a license, and logic adapted for attributing the non-attributed instance to one of the plurality of licenses as a function of the license use signature, wherein each license has an entitlement value defining a maximum number of entitlement slots that may be attributed to that license during the time frame and any given instance of the software application may consume any number of the entitlement slots including zero entitlement slots.

Abstract: Security and convenience are provided by a system, apparatus, method, and computer program product that stores two or more encryption keys that correspond to two or more levels of authentication. The encryption keys may be encrypted and decrypted utilizing an endorsement key and trusted computing techniques. Or the encryption keys may be stored in a secure manner utilizing key protection techniques, such as cryptographic camouflaging. A first encryption key is recovered automatically for the first level of authentication. And input is requested to recover the second encryption key for the second level of authentication.

Abstract: A set of methods, and systems, for enabling the audit tracking of user agreement with policies, such as privacy policies in an authenticated fashion is disclosed herein. The method and system make use of third party signatures of privacy policies to show user approval of the policy as it pertains to released data.

Abstract: Pre-purchase and post-purchase item information provision methods and systems using an RFID technology and computer readable storage media storing programs for executing the methods are provided.

Abstract: Applicant's Smartphone application provides ticket-holding patrons an alternative, digital means of verifying personal identification at entry to a venue or event. The Smartphone application periodically generates a unique QR code (barcode) that contains a unique identifier (i.e., mobile device ID) which prompts the venue/event entry system to recognize the patron. No barcode (serving as a ticket, or authentication/verification, or otherwise) is downloaded from the system server to the Smartphone/mobile device client in contrast to prior art systems.

Abstract: An anonymous reporting system (10) is provided for use in reporting and following up on incidents, accidents and the like. The system (10) is initiated by a system provider (12) on behalf of an institutional participant/client (14) for access by any number of individual users (16). The most common implementation is a web based interface (24) including a web site (27). The interface (24) includes an anonymizer (38) for safeguarding the identity of each individual user (16). The system (10) permits the user (16) to enter a report (28) and then assigns a random number identifier (74) associated with the report (28). The report (28) is forwarded to selected recipients (22) and to one or more administrators (32) associated with the participant/client (14). The administrators (32) may request follow up comments or send messages (64) associated with the report (28) by the access number (74) so that the user (16) may continue dialog, all while remaining totally anonymous.

Abstract: This application discloses systems, methods, and processes for providing a secure, voice-authenticated form of electronic payment from a device. The described exemplary system provides an infrastructure for receiving an electronic payment request, verifying the request using voice authentication, and allowing or denying the request based on the authentication or non-authentication of the user.