Abstract: Examples of creating a device identifier that are based upon hardware components of a client device are discussed. An inaudible or high frequency reference audio sample is played. Audio capture is initiated using the microphone system. A sensor-based device identifier can be generated from the captured audio due the manufacturing variances in the hardware components used for the speaker and microphone systems.

Abstract: A system and method for enabling two-way communication between a residents of a secure facility (inmate, patient, suspect, etc.) and outside parties shares a limited number of telephone numbers (ANIs) by creating distinct communication channels using other data in addition to the shared ANIs.

Abstract: An information processing apparatus that outputs data to an outside through a connected network includes a plurality of communication interfaces connected to a plurality of different networks, at least one service providing unit for outputting the data, interface selection information for associating the service providing unit with the communication interface, and an output unit for outputting the data from a communication interface corresponding to a type of the service providing unit by referring to the interface selection information.

Abstract: Methods and systems for detecting malware by monitoring client-side memory stacks are described. A request for a payment process is received and a client-side memory stack is populated with a series of functions corresponding to the requested payment process. The execution of each function is monitored to determine whether the series of functions and an order of execution of the functions from the client-side memory stack are the same as an expected series of functions and in an expected order corresponding to the payment process. The monitoring also determines whether the number and types of parameters called by the functions are the same as the expected number and types of parameters. The monitoring further determines whether the timing of the execution of the functions is the same as an expected timing. Remedial action is performed when the any of these factors is determined to be different than what is expected.

Abstract: A method is used in managing knowledge-based authentication systems. A set of factors is evaluated for gathering organization based information from a set of information sources for authenticating a user in a knowledge-based authentication system. The organization based information is collected based on the evaluation.

Abstract: A transaction module can be incorporated in a terminal for authorizing a transaction between a first application resident in the terminal and a second application resident in an electronic device. The module may include code-obtaining means for obtaining a code; an interface with a communications means of the terminal enabling a validation request including the code to be sent to a secure server; means for generating an audio signal from the code; an interface with a module of the terminal suitable for sending the audio signal to a loudspeaker of the terminal in order to play it back; and means for authorizing the transaction on receiving a validation message from the secure server. The validation message may be representative of the secure server receiving the code from the electronic device.

Abstract: In a method procedure for managing a caller's call to a call center with a call center agent, an agent is defined to receive the call and identified as the responsible agent for an incident assigned to the call. A relationship is created between the responsible agent and the incident. Then a token is generated that allows the relationship to be addressed without containing any individual connection or personal data for the responsible agent. The token is made available for the caller so the token can be activated when the caller resumes contact with the call center. The token causes the caller to be connected to the responsible agent or a proxy if the token is activated when contact is resumed.

Abstract: Systems and methods for electronic device control based on gestures are provided. A particular method includes sending a menu from a gesture controller to a display device. The menu includes selectable options to control at least one electronic device. The method includes detecting a first user gesture at the gesture controller in response to three dimensional (3D) image data obtained from a gesture camera. The method includes determining at least one command for one or more electronic devices at the gesture controller based on the first user gesture and based on the menu. The method also includes sending the at least one command from the gesture controller to the one or more electronic devices.

Abstract: Systems and methods for authenticating electronic transactions are provided. The authentication methods employ a combination of security features. These security features can be based, for example, on unique knowledge of the person being authenticated, unique personal features and attributes of the person, the ability of the person to respond, and to do so in a fashion that a machine cannot, and so forth. Methods for enrolling the person prior to authentication are also provided, as well as systems for enrollment and authentication.

Abstract: Security is improved in a communication system in which a communication connection is established when a user who has received a software button on his computing device (a Recipient) clicks on the button. When a Recipient first actuates a software button, a basic type of communication connection is established, during which the Recipient's identity can be verified. The Recipient then establishes a personal identification code, which he will have to provide upon future actuations of the software button. The system then enables other types of communication connections to be established by the Recipient. After the Recipient actuates the software button and verifies his identity, the system remembers the identity and location of the computing device he is using. When the Recipient subsequently actuates the software button, the identity and location of his computing device are checked, and verification of his identity is suppressed if they have not changed.

Abstract: Embodiments of the present invention are directed generally to use of biometric identification during a call for detecting an anomaly occurring in the call, such as a change in the parties participating on the call. Communication between parties of a call is monitored and biometric identification is performed using the communication. According to one exemplary embodiment, biometric prints, such as voice prints, face prints, etc., are obtained for parties that are authorized to participate on a call. The call is then monitored and biometric data (e.g., audio, video, etc.) captured from communication during the call is compared with the biometric prints of the authorized parties to detect changes in the parties participating on the call, such as a new, unauthorized party joining the call. Thus, a call processing system can detect anomalies occurring during monitored calls, such as three-way calling, a handoff of a call, etc.

Abstract: A method, apparatus, and system are provided for sharing data between devices. As an example, a method for exchanging information between a phone and at least one other device includes: obtaining from a remote server a unique identifier that uniquely identifies the phone; establishing a session ID (identifier) between the phone and the other device via first communication channel; and communicating data from the phone to the remote server via a second communication channel along with the session ID, wherein the other device is configured to access the data from the remote server using the session ID.

Abstract: Systems, apparatuses, and methods for authenticating an individual. A representation of an utterance is received. A candidate record is identified from among a plurality of candidate records by comparing the representation of the utterance with stored utterance data according to a match parameter. An identity of the individual is verified by comparing received ambiguity information with stored ambiguity resolution criteria. If a candidate record is not found, a new record associated with the individual may be created. The individual may be allowed access to a secured resource.

Abstract: Methods, systems, and apparatuses for selectively exposing subscriber data include maintaining subscriber data at a digital data storage, wherein the digital data storage is protected by a service provider firewall. A request to expose subscriber data from a third-party requestor is received. Selected subscriber data and a security condition associated with the request are determined, wherein the security condition is based on an identity of the third-party requestor. The selected subscriber data is retrieved if the security condition is satisfied, and the selected subscriber data is transmitted to the third-party requestor.

Abstract: A system and method for preventing or facilitating communications between individuals who reside in detention environments (such as e.g., prisons or correctional facilities) and individuals who are not in such detention environments using an automated authentication or verification.

Abstract: The multi-party conversation analyzer of the present invention allows users to search a database of recorded phone calls to find calls which fit user-defined criteria for “suspicious calls”. Such criteria may include indications that a call included a 3-way call event, presence of an unauthorized voiced during the call, presence of the voice of an individual known to engage in identity theft, etc. A segment of speech within a call may be graphically selected and a search for calls with similar voices rapidly initiated. Searches across the database for specified voices are speeded by first searching for calls which contain speech from cohort speakers with similar voice characteristics.

Abstract: A system enables voice authentication via a network. The system may include an intelligent voice response engine operatively coupled to the network for receiving transaction or access requests from a plurality of telecommunications devices over the network. A speech recognition and verification services engine may be operatively coupled to the network and a database may be operatively coupled to the speech recognition and verification services engine for storing user voice print profiles. The speech recognition and verification services engine may receive a speaker verification call from the intelligent voice response engine and perform speaker verification on the received speaker verification call based on the stored user voice print profiles. The speech recognition and verification services engine may generate a verification score based upon results of the speaker verification.

Abstract: A mobile personal-computing device may categorize a selected contact by collecting from the user information related to the selected contact's behavior and/or personality style. After obtaining communication hints for effectively communicating with similarly categorized individuals. The mobile personal-computing device modifies a remote or local contacts database such that when the user communicates with the selected contact, the mobile personal-computing device will automatically provide the communication hints to the user.

Abstract: Embodiments described can more effectively complete complicated service transactions in a more efficient manner by having a team of well-trained professionals who are instantly “streamed” into any location as necessary. A two-way communication system can provide instant or quick access to the right expert at the right point in time, thereby converting what might otherwise be a negative customer experience into a positive sales and service opportunity.

Abstract: Techniques are provided for authenticating a phone or other device for a user. A phone or other device is provided to the user. A personal identification number is provided to the user. The personal identification number is used to authenticate the phone or other device in the network for the user.

Abstract: A method and system for collecting and verifying the location information of a calling party and a device of the calling party is provided. More specifically, a method and system is provided for determining whether the identity of the calling party can be confirmed, via evaluating location information, with an acceptable degree of certainty. The location information may be provided by the calling party or obtained from various sources over a digital communication channel. Some of the provided location information which can be accidentally or intentionally altered is identified and evaluated to determine its accuracy as part of the verification process of the caller's identity.

Abstract: A wireless device may include logic that enables the wireless device to interface with the external computing device. The wireless device may also include rule logic to direct handling by the external computing device of call events of the wireless device.

Abstract: In the case of transmitting an image data, a controller causes a re-destination storage to store an identification number of a destination. Thereafter, when a user presses a re-destination key long, a display controlling section causes a display device to display a confirmation screen to let the user confirm whether or not to delete the identification number stored as a re-destination. If the user depresses an OK key, a re-destination deleting section deletes the identification number stored in the re-destination storage.

Abstract: An apparatus and methods are disclosed for enabling a telecommunications terminal to notify its user of the arrival of a message via an acoustic or visual signal whose properties are based on attributes of the message. A network infrastructure element (e.g., a switch, a private branch exchange [PBX], a server, etc.) receives a message directed to a terminal and sets the values of ringtone properties (e.g., tempo, volume, pitch, rhythm, etc.) based on attributes of an incoming message (e.g., the sender, a priority, a subject, the location from which the message was sent, etc.). In a first illustrative embodiment the network infrastructure element sends the message and the instantiated ringtone to the terminal, while in a second illustrative embodiment the network infrastructure element sends the message and the property values to the terminal, and the terminal plays a locally-stored ringtone in accordance with the property values.

Abstract: A method and apparatus of extracting and sharing user preference information is disclosed. One example method may include receiving a call from a user device, retrieving user information from a user account stored in a user databank in response to receiving the call, and transmitting a targeted offer to the user device based on the user information retrieved from the user account. The method may also include receiving feedback from the user device regarding the offer, updating the user information in the user account, and determining a next offer to transmit to the user device.

Abstract: A system includes a processor and a memory accessible to the processor. The memory includes instructions that, when executed by the processor, cause the processor to perform operations including, in response to an activation event, sending information to a biometric input device to activate the biometric input device. The operations further include receiving biometric data corresponding to a particular user from the biometric input device. The operations include determining whether an identification of the particular user matches the biometric data. In response to determining that the identification of the particular user matches the biometric data, a service is provided to a device associated with the particular user.

Abstract: A small form-factor security device is provided that may be inserted in series with a telephone line to encrypt dual tone multi-frequency (DTMF) tones from a telephone to prevent unauthorized disclosure of sensitive information. A receiving device decrypts the encrypted DTMF tones to receive the original information sent by the telephone. The security device acts as a second factor in a two-factor authentication scheme with a tele-services security server that authenticates the security device.

Abstract: The preferred embodiments of the present invention include providing automated passcode recovery in an interactive voice response system by providing to a caller an automated passcode recovery question and processing a caller answer to the automated passcode recovery question to authenticate the caller.

Abstract: A hosted list service provider (“HLSP”) provides list management services for compliance purposes. The HLSP receives electronic consent information from an enterprise that may comprise a telephone number and stores the same in at least one database, to facilitate retrieving the electronic consent information for a particular telephone number. A telephone number list is provided to a call center, which can originate calls for a calling campaign using the telephone numbers on behalf of the enterprise. After the campaign is completed, the call center may provide data to the HLSP indicating which callers have requested to opt-out, and the HLSP updates its databases appropriately. The HLSP may process the telephone number data against other databases, and may inform the enterprise of called parties that have requested a change of status. Follow up communication can occur to the called party to confirm or re-establish consent for subsequent calls.

Abstract: A telecommunication and multimedia management apparatus and method that supports voice and other media communications and that enables users to: (i) participate in multiple conversation modes, including live phone calls, conference calls, instant voice messaging or tactical communications; (ii) review the messages of conversations in either a live mode or a time-shifted mode and to seamlessly transition back and forth between the two modes; (iii) participate in multiple conversations either concurrently or simultaneously; (iv) archive the messages of conversations for later review or processing; and (v) persistently store media either created or received on the communication devices of users. The latter feature enables users to generate or review media when either disconnected from the network or network conditions are poor and to optimize the delivery of media over the network based on network conditions and the intention of the users participating in conversations.

Abstract: A system is described in which, in some embodiments, a centralized service entry device may be used to coordinate communications going into and out of a home or premises. The service entry device may be physically connected to a plurality of external access networks, such as a cable television coaxial or fiber connection and a twisted-pair wire connection, and may coordinate access to those networks by a plurality of in-home devices. Within the home, the system may include a plurality of client devices to assist in the coordination of communications with devices in different rooms within the home.

Abstract: A modem apparatus including means for communicating authentication information of a host along a first path to prompt a first validation for receiving data over the first path, and means for communicating identifying information of the modem apparatus and a request for network resource allocation over the first path to prompt a second validation after the first validation, the second validation enabling the reception of data over a second path that has a higher rate of transmission than the first path.

Abstract: Architecture for a communications system enabling a user to provision a telephone at a new location without network administrative pre-configuring. An input component (e.g., keypad) receives a numeric extension and PIN. The extension is a telephone extension of the user and the PIN can be administratively assigned. A location component provides location information of an enterprise communications server to the telephone based on the extension. The telephone uses the location information to send messages to the enterprise communications server. A registration component registers the telephone with the enterprise communications server based on the numeric extension. A telephony address is returned to the telephone. An authentication component authenticates the telephone based on the PIN. Upon authentication, the extension is assigned to the telephone, and telephone communications can be sent and received from that location.

Abstract: A method, system, and computer readable medium comprising instructions for providing Internet protocol enabled information delivery are provided. Information from a calling party is received at an Internet protocol enabled device. A lookup of information relating to the calling party is performed in a database via an Internet protocol connection. A message is received from the database comprising information relating to the calling party.

Abstract: Methods and systems of authorizing a user of a first packet-based communication network to access a second packet-based communication network are disclosed. A call setup request is received from a user terminal of the user at a first network element of the first packet-based communication network, the authorization request comprising a first user identity. Responsive to the call setup request, a request is transmitted to create a second user identity from the first network element to a second network element of the second packet-based communication network. The second network element creates the second user identity for use in the second packet-based communication network. The second user identity is derivable from the first user identity according to a predetermined rule. The second user identity is stored in the second packet-based communication network for use with establishing a call associated with the call setup request over the second packet-based communication network.

Abstract: Embodiments of the invention include a system to process telephone calls. The system can receive a telephone call and identify the telephone number of the calling party. A database of processing instructions then specifies whether to block the telephone call, forward the telephone call to another telephone number, send the telephone call to a voicemail system or an answering machine, or ring the telephone assigned to the called number. Based on the time of the call, the instructions to be applied can differ.

Abstract: An apparatus and methods are disclosed for enabling a telecommunications terminal to notify its user of the arrival of a message via an acoustic or visual signal whose properties are based on attributes of the message. A network infrastructure element (e.g., a switch, a private branch exchange [PBX], a server, etc.) receives a message directed to a terminal and sets the values of ringtone properties (e.g., tempo, volume, pitch, rhythm, etc.) based on attributes of an incoming message (e.g., the sender, a priority, a subject, the location from which the message was sent, etc.). In a first illustrative embodiment the network infrastructure element sends the message and the instantiated ringtone to the terminal, while in a second illustrative embodiment the network infrastructure element sends the message and the property values to the terminal, and the terminal plays a locally-stored ringtone in accordance with the property values.

Abstract: A user of a first packet-based communication network is authorized to access a second packet-based communication network. In at least some embodiments, an authorization request is received from a user terminal of the user at a first network element of the first packet-based communication network, the authorization request comprising a first user identity. Responsive to the authorization request, a request is transmitted to create a second user identity from the first network element to a second network element of the second packet-based communication network. The second network element creates the second user identity for use in the second packet-based communication network, the second user identity being derivable from the first user identity according to a predetermined rule. The second user identity in the second packet-based communication network is stored for use with subsequent communication events over the second packet-based communication network.

Abstract: A method and means by which a mobile phone can participate in a promotional offer that is sponsored by an interested party is disclosed. The sponsor creates a promotional campaign and defines its parameters using promotional offer code (POC) data. The POC data is then pre-provisioned into the mobile phone. If a mobile phone user becomes aware of the promotional campaign and wishes to participate, he navigates his mobile phone menu structure to a “promotions” menu and inputs a POC that was included in the sponsor's advertisements. The mobile phone then links the input POC to the pre-provisioned POC data. Another function in the mobile phone then constructs a promotional offer entry (POE) that conforms to the parameters set out in the pre-provisioned POC data. The POE is then transmitted to the sponsor. The sponsor reviews all valid entries and chooses one or more winners. The sponsor can then broadcast a status message to all entrants to inform them whether they won anything from the promotion.

Abstract: A system and method for preventing or facilitating communications between individuals who reside in detention environments (such as e.g., prisons or correctional facilities) and individuals who are not in such detention environments using an automated authentication or verification.

Abstract: Architecture for a communications system enabling a user to provision a telephone at a new location without network administrative pre-configuring. An input component (e.g., keypad) receives a numeric extension and PIN. The extension is a telephone extension of the user and the PIN can be administratively assigned. A location component provides location information of an enterprise communications server to the telephone based on the extension. The telephone uses the location information to send messages to the enterprise communications server. A registration component registers the telephone with the enterprise communications server based on the numeric extension. A telephony address is returned to the telephone. An authentication component authenticates the telephone based on the PIN. Upon authentication, the extension is assigned to the telephone, and telephone communications can be sent and received from that location.

Abstract: An Internet accessed server that on demand downloads and activates text-to-speech program elements to a subscriber's computer. Program elements are customized to match the operating system of the subscriber's computer. Upon termination of the text-to-speech session, the server deactivates all program elements and the subscriber becomes free to reinitiate over the Internet the text-to-speech program on the same or another computer system.

Abstract: A phone system can include a phone terminal that includes a biometric data input device. Methods of using the phone terminal can include receiving biometric data of a user at the phone terminal and comparing the biometric data to saved biometric data. A comparison of the received and saved biometric data can be performed to locate one or more configuration files for a user, to authenticate or otherwise confirm the identity of a party, perform another activity, or any combination thereof. In one embodiment, the biometric data, other data, or a combination thereof can be used to access one or more configuration files that can be used to configure a phone terminal or a data processing system outside of the phone terminal. In another embodiment, the identity of a calling party, a called party, one or more other parties, or any combination thereof can be authenticated or otherwise confirmed.

Abstract: A method is provided for identifying a calling party to a called party utilizing biometric information. Biometric information of first calling party is received. If stored, a calling party profile is retrieved based on first calling party biometric information. A call is placed to a called party. The first calling party profile is provided to called party. A biometric information change from first calling party biometric information to a second calling party biometric information is automatically detected, and it is determined whether the second party biometric information is stored. If stored, a second calling party profile of second calling party is retrieved and is provided to called party. Responsive to determining that the biometric information for second calling party is not stored, the called party is notified that the second calling party is communicating and the second calling party profile is automatically created based on second calling party biometric information.

Abstract: A technique for protecting location information of a subscriber in a mobile network is disclosed. A User Mobility Server (UMS) receives a first query from a first call state control function (CSCF). The UMS transmits a call setup and a subscriber identity to a servicing-call state control function (S-CSCF). The S-CSCF may have no record of the subscriber identity due to a restart are some other event. The UMS receives a second query from the S-CSCF based in part of the subscriber identity. The UMS transmits a home address of a mobile station to the S-CSCF. The UMS may also transmit a profile download to the S-CSCF.

Abstract: A method, system, and computer-readable medium embodying a computer program for securing a communication against access by unintended users is presented. A communication is initiated from a person using an originating telecommunication device to an intended receiving wireless telecommunication device. In response to the communication failing to connect to the intended receiving wireless telecommunication device, a telecommunications host carrier provider may re-route the communication to an alternate telecommunication device. A business authentication logic of the host carrier then determines any security or quality of service filters established by the user of the originating telecommunication device prior to the communication being initiated to prevent unintended users from accessing the communication. Upon the business authentication logic of the host carrier authorizing the communication, the communication is encrypted and re-routed to the alternate telecommunication device.

Abstract: A mobile device and a method of displaying information regarding an incoming communication to a user of a mobile device are provided. The mobile device receives the incoming information and associated information from, for example, an enterprise network. The communication type of the incoming communication is determined using the associated information and information relating to the communication type is displayed on a display of the mobile device.

Abstract: Disclosed are systems and methods for preventing unauthorized persons from using an electronic device within a facility. In such an embodiment, the system may include a RFID tag having unique identification information associated with a wearer of the RFID tag. The RFID tag may be comprised in a non-removable item worn by the wearer, such as a bracelet. This system may also include an RFID reader associated with the electronic device and having an RFID coverage zone for detecting RFID tags within the coverage zone. A device management system may be connected to the reader and configured to determine whether a wearer in the coverage zone is authorized to use the electronic device based at least in part on detected RFID tag's unique identification information. In such an embodiment, the device management system is configured to activate the electronic device if it determines the authorized wearer is detected in the coverage zone.

Abstract: Transparent caller name authentication is provided to authorized third parties by creating an Public Key Infrastructure (PKI) certificate chain. An owner of a registered caller name can authorize third parties to use the caller name by issuing a PKI sub-certificate to each authorized third party. An authenticated caller name displays the owner's name to the called party. Outsourcing and mobile employment is thereby facilitated, and called party confusion is reduced.

Abstract: In systems which support oral entry of Personal Identification Number (PIN) values in order to establish access to user accounts, a user is prompted to enter the PIN value for a particular account. The entered PIN value is analyzed by a speech recognition engine to extract both a multi-digit number and the user's expression of that number. The extracted multi-digit number is compared to a multi-digit number stored in a user record associated with the account. If the user previously specified that expression matching is required, the extracted expression of the multi-digit number is compared to a preferred expression stored in the user record. Matches must be found for both the numbers and the form in which those numbers are expressed in order for the user to be authenticated. The user may elect to dispense with the expression matching requirement.