Abstract: A secure credential validation compares stored and received modified credentials, e.g., biometric credentials, such that the validating system does not have access to the unmodified credentials. A capture system and a credential validation system are operatively coupled to a network (e.g., the Internet). The credential validation system is configured to store a set of modified stored credentials associated with the principal, receive a set of modified received credentials, and perform a credential validation procedure to validate the modified received credentials, wherein the credential validation procedure performs a one-way consistency test to compare the modified stored credentials and the modified received credentials: The credential validation procedure employs one or more similarity measures, e.g., a weighted quorum of exact matches, a discrete N-ball (or “N-shell”) intersection, or a client-based algorithm with encryption.

Abstract: Modular authentication and session management involves the use of discrete modules to perform specific tasks in a networked computing environment. There may be a separate authentication server that verifies the identity of the user and an authorization client that grants various levels of access to users. There may also be an authentication client that receives an initial request from a requesting application and forwards the request to the authentication server to verify the identity of the use. The authorization client may then be invoked to provide the necessary level of access. The use of discrete modules allows multiple business applications to use the same modules to perform user authentication tasks, thus alleviating the unnecessary multiplication of code.

Abstract: A selecta-card system and method is disclosed which provides a means to use a single transaction card to facilitate transactions with a variety of transaction account devices. Accordingly, multiple accounts are associated with a selecta-card by pre-selected account identification numbers. To facilitate a transaction with a selecta-card, a cardholder enrolls in a selecta-card account system, providing account identification numbers corresponding to desired cardholder-identified transaction accounts. When making a purchase, the cardholder swipes the selecta-card through a remote terminal such as a POS device, wherein the selecta-card number is read and communicated to a selecta-card provider. To choose which transaction account to use for the purchase, the cardholder inputs an account identification number corresponding to a pre-defined transaction account, the selecta-card provider retrieves the corresponding transaction account and processes cardholder transaction request accordingly.

Abstract: A system is disclosed for handling post transactional credit disputes in real-time via a variety of transactional environments and architectures. The system includes one or more workstations linked to a communication channel and one or more servers with at least one having capability of displaying a plurality of pre-existing dispute handling forms. A party in dispute may access the forms, choose an appropriate dispute handling form, provide data in the pre-defined requested fields on the form, and transmit the form over the communication channel to a server for processing. A server accepts a User ID and password from a user, retrieves and displays a set of dispute handling forms, receives input entered on the forms, routes the forms to a second user in dispute, and makes the forms available for viewing to the second user. The program may further index the data entered on the forms using a code-based method.

Abstract: A system and method is described for protecting the core databases from being accessed by malicious hackers who have managed to compromise managers and infrastructure components that support an Internet web site. The system determines whether a particular database query has been generated by the e-commerce application system, or is likely to be part of an attack. The system decides whether to allow the query to proceed, or to reject the query, or to return false data. The system also determines whether to raise an alarm about this condition.