Abstract: To provide a user signature on a network transaction, a security server receives transaction information representing a transaction between a network user and a network site, such as a website, directly from the network site. The security server calculates a one-time-password based on the received transaction information and a secret shared by the security server and the network site, but not by the user. The security server transmits the calculated one-time-password for application as the user's signature on the transaction. The one-time-password is independently calculable by the network site based on the shared secret.

Abstract: A mobile phone number that is been provided by a customer during enrollment is verified for use. SS7 protocol data associated with the mobile phone number is collected and evaluated, and if the condition of the subscriber account associated with phone number has changed or is inconsistent with the circumstances surrounding the enrollment of the phone number, the phone number is designated as one that is not to be called.

Abstract: Provided is a method for authenticating a user communicating with an enterprise via a network. The method includes receiving, via the network, authenticators for a user from a first user device associated with the user, and storing the received authenticators. A first authenticator from the stored authenticators is selected to be used for authenticating the user based on an authentication policy received from the enterprise. An authentication request is transmitted to a user device requesting the first authenticator and the user is authentication by by comparing the received authenticator with the stored first authenticator.

Abstract: Provided is a method for authenticating a user communicating with an enterprise via a network. The method includes receiving, via the network, authenticators for a user from a first user device associated with the user, and storing the received authenticators. A first authenticator from the stored authenticators is selected to be used for authenticating the user based on an authentication policy received from the enterprise. An authentication request is transmitted to a user device requesting the first authenticator and the user is authentication by by comparing the received authenticator with the stored first authenticator.

Abstract: A method including collecting transactional information from a mobile application on the mobile device. The mobile device can be used by a user to initiate an activity at a risk moment. The method also can include aggregating a set of risk signals. The method additionally can include obtaining a first set of risk rules for a model specific to the activity requested by the user. Each risk rule of the first set of risk rules can define weights when the risk rule is triggered based on one or more risk signals of the set of risk signals. The method further can include executing a risk engine using the first set of risk rules for the model and using the set of risk signals to generate a risk score. The risk score can be based on the weights of triggered risk rules of the first set of risk rules. The method additionally can include generating a disposition based on a comparison of the risk score to one or more predefined thresholds scores for the model.

Abstract: A server is operated to securely convey information to a user via a network by receiving, from the user, a user selected presentation form representing one of a user selected specific voice and a user selected specific background image. Information for presentation to the user is received from another user and incorporated into the user selected presentation form. The information incorporated in the user selected presentation form is transmitted to the user via the network for presentation to the user.

Abstract: A method of operating a security server to securely transact business between a user and an enterprise via a network includes receiving, at the security server from an enterprise with which the user is currently connected via the network, a request of the enterprise to activate a secure communications channel over the network between the user and the security server. The request includes contact information for contacting the user via other than the network. The security server, in response, transmits an activation code for delivery to the user via other than the network and in a manner corresponding to the received contact information. The security server receives, from the user via the network, an activation code and compares the received activation code with the transmitted activation code to validate the received activation code. The secure communications channel is then activated based on the validation of the received activation code.

Abstract: A person-to-person (P2P) payment system provides payment from a payer to a payee without the payer identifying a payee payment receiving preference, such as the payee account into which funds are to be posted. The payment system includes a setup system for setting up payment between the payer and the payee and a messaging system for handling messages between the payer and the payment system and the payee and the payment system, including communications with the payee by way of a payee phone number or email address provided by the payer. A risk assessment system determines a risk score for the P2P transaction and, based on that score, the bank of the payer provides a guarantee to the bank of the payee.

Abstract: A mobile phone number that is been provided by a customer during enrollment is verified for use. SS7 protocol data associated with the mobile phone number is collected and evaluated, and if the condition of the subscriber account associated with phone number has changed or is inconsistent with the circumstances surrounding the enrollment of the phone number, the phone number is designated as one that is not to be called.

Abstract: In response to a request for risk assessment of a person-to-person (P2P) payment transaction, a risk assessment system returns a payer risk score, a payee risk score and a joint/fusion risk score. Risk scores are based on large amounts of data (including transaction data) provided by multiple financial institutions. The data is sorted and linked to individual people (e.g., common account holders), and assembled by a profile system into payee, payer and joint profiles for purposes of risk evaluation. A database associated with a profile system separately stores the profiles (and associated risk scores). Risk scores (payer, payee and joint) are provided for a transaction in response to a payer ID, a payee ID and transaction data.

Abstract: A method including determining, at a point-of-sale terminal at a store of a merchant, a payment amount for one or more items to be purchased from the merchant by a consumer in a transaction. The method also can include generating a transaction code including a merchant public identifier, the payment amount, a transaction identifier for the transaction, and a digital signature.

Abstract: A method including performing, at a mobile device being used by a consumer, an identity authentication of the consumer. The method also can include receiving, at the mobile device, first information from a point-of-sale terminal at a store of a merchant. The first information can include a merchant identifier, a transaction identifier, and a payment amount. The merchant identifier can be associated with the merchant. The payment amount can be for one or more items to be purchased from the merchant by the consumer in a transaction. The transaction identifier can be associated with the transaction.

Abstract: A method including determining, at a point-of-sale terminal at a store of a merchant, a payment amount for one or more items to be purchased from the merchant by a consumer in a transaction. The method also can include sending first information from the point-of-sale terminal to a mobile device used by the consumer.

Abstract: A method including receiving, at a transaction system from a first entity, a request including a merchant identifier associated with a merchant. The transaction system can be in data communication with a first financial institution that maintains one or more first accounts of a consumer and a second financial institution that maintains a second account of the merchant. The one or more first accounts can include at least one non-demand deposit account. The transaction system can be maintained by an entity that is different from the merchant, the first financial institution, and the second financial institution. The consumer can use a mobile device at a store of the merchant to authorize paying a payment amount for one or more items in a transaction using the one or more first accounts. The method also can include determining, at the transaction system, an account identifier of the second account of the merchant maintained by a second financial institution using a merchant account database.

Abstract: A method including receiving, at a transaction system from a first entity, a request including a merchant public identifier associated with a merchant. The transaction system can be in data communication with a first financial institution that maintains a first account of a consumer and a second financial institution that maintains a second account of the merchant. The transaction system can be maintained by an entity that is different from the merchant, the first financial institution, and the second financial institution. The consumer can use a mobile device at a store of the merchant to pay for one or more items in a transaction. The mobile device can receive a transaction code from a point-of-sale terminal at the store. The transaction code can include a transaction identifier, a payment amount for the transaction, the merchant public identifier, and a digital signature. The transaction code can be verified by the mobile device using the digital signature of the transaction code.

Abstract: A method including receiving, at a mobile device being used by a consumer, a transaction code from a point-of-sale terminal at a store of a merchant. The transaction code can include a merchant public identifier being associated with the merchant, a payment amount for one or more items to be purchased from the merchant by the consumer in a transaction, a transaction identifier for the transaction, and a digital signature. The method also can include verifying the digital signature for the transaction code.

Abstract: A system including one or more processors and one or more non-transitory computer-readable media storing computing instructions configured to run on the one or more processors and perform various acts. The acts can include receiving a request to register a second entity under a security status. The request can include a public identifier for the second entity. The acts also can include registering the second entity under the security status after receiving confirmation that the public identifier corresponds to the second entity and that the second account is held by the second entity. The acts additionally can include providing, to a first entity, first information that identifies the second entity as satisfying the security status. The first entity can have enrolled a first account maintained at a first institution in real-time transactions. The acts further can include receiving an authorization from the first entity to handle a statement using the first account.

Abstract: A method including receiving a first inquiry through a network from a first entity. The method also can include determining a routing decision in real time of whether or not to route the first inquiry to a second entity. The method further can include, if the routing decision is to not route the first inquiry to the second entity: sending a first response through the network to the first entity in real time after receiving the first inquiry; sending a second inquiry through the network to the second entity in real time after receiving the first inquiry. The second inquiry can be based at least in part on the first inquiry; receiving a second response through the network from the second entity. The second response can be sent by the second entity in real time in response to receiving the second inquiry; storing the second response received from the second entity; sending a third response through the network to the first entity in real time after receiving the second response. Other embodiments are disclosed.

Abstract: A method including receiving an inquiry from a provider to authenticate a provisioning of an account to a mobile wallet. The method also can include determining device ownership information for a mobile device that operates the mobile wallet, account ownership information for the account, device risk information associated with the mobile device, and account risk information associated with the account. The method additionally can include determining an ownership correlation between the device ownership information and the account ownership information. The method further can include generating a fraud risk level by applying business rules and one or more statistical modeling techniques. The method additionally can include providing a response to the provider based on the fraud risk level. Other embodiments are provided.

Abstract: A method including receiving a request from a provider to perform a provisioning of an account to a mobile wallet operating on a mobile device. The method also can include sending an inquiry to a risk determination system to authenticate the provisioning of the account to the mobile wallet. The risk determination system can generate a fraud risk level by applying business rules and one or more statistical modeling techniques. The method additionally can include receiving from the risk determination system a response based on the fraud risk level. The method further can include determining whether to proceed with the provisioning of the account to the mobile wallet based at least in part on the response received from the risk determination system. The method additionally can include providing a token to the provider in response to the request to perform the provisioning of the account to the mobile wallet when the fraud risk level is below a predetermined threshold. Other embodiments are provided.