Abstract: Security reputation data associated with a party is obtained and/or monitored. The security reputation data associated with the party is then analyzed to assign a security reputation score to the party. The security reputation score assigned to the party is then used to determine access permissions to be provided to the party. It is then either recommended that the determined access permissions be provided to the party, or the determined access permissions are automatically provided to the party.

Abstract: Determining sequences of queries for retrieving images of negotiable instruments such as checks. A request for a check image is received from a first computer such as an account holder computer at a second, intermediate computer that hosts an on-line banking program and is in communication with a third computer of a financial institution. A sequence program is executed to determine a first sequence of queries having respective query formats available to attempt to retrieve the requested image from an image server or data store. The first sequence is determined based on historical data of whether respective query formats were successfully used in the past to retrieve respective requested images from the data store and is dynamically updated to reflect whether queries were used to retrieve requested images. Thus, with embodiments, the order of queries to utilize is dynamic and can change as opposed to being pre-determined or static.

Abstract: During this autocomplete technique, autocomplete results for data-entry information from a user are ranked based on financial-transaction histories of a group of entities and the user, where the group of entities and the user belong to a common business cohort. In particular, the business cohort may include entities that: are located proximate to the user, have a similar size as a business associated with the user (such as a similar number of employees and/or similar revenue), and/or occur frequently in a financial-transaction history of the user (and don't occur frequently in the financial-transaction histories of the group of entities). The ranking may be used to increase the accuracy or relevance of the autocomplete results to the user. For example, the ranking may give preference in the autocomplete results to entities in the group of entities (relative to other entities, such as those in different business cohorts).

Abstract: Methods, systems, and articles of manufacture for fulfilling a loan request of a business entity. Embodiments are utilized to identify or receive a loan request from the business entity, identify or create borrower and lender profiles, and match the loan request for the business entity using compatibility criteria included in or associated with the profiles. Certain profiles may be created using electronic data from financial management system, and such data can be verified by the financial management system. Borrower-lender compatibility results can be displayed to lenders or business entity for review. A single lender may commit to fund a loan, or respective lenders may commit to fund respective loan portions, which may be presented to the business entity.

Abstract: A method for processing a service request, including receiving, from a client application, the service request which includes a header which includes transmission metadata and a client trace ID. An internal trace ID is appended to the service request and a request trace log including the client trace ID, the internal trace ID, and a time stamp corresponding to receiving the service request is generated. The method further includes selecting a cloud server including functionality to process the service request. The cloud server determines a dedicated computing cluster of a plurality of distributed cloud computing clusters to handle the service request and sends the service request to the dedicated computing cluster. Finally, the method includes recording, in the request trace log, an interaction of the dedicated computing cluster with the service request.

Abstract: A method for processing payment is disclosed. The method includes obtaining, by a point-of-sale (POS) device from a certification authority, a certificate data item that identifies the POS device for completing a purchase by a consumer, generating a payment request containing the certificate data item, broadcasting the payment request via a wireless signal within a pre-determined range of the POS device for receiving by a mobile device of the consumer, where the mobile device stores payment credential of the consumer, receiving, by the POS device, an encrypted payment credential from the mobile device, where the encrypted payment credential is generated by the mobile device encrypting the payment credential based on the certificate data item, and decrypting the encrypted payment credential based on the certificate data item to retrieve the payment credential for processing the payment.

Abstract: A service provider computing environment includes a service provider secrets policy. A service provider computing device receives tenant secrets policies from tenants. The tenants are tenants of multi-tenant assets of a service provider. The service provider computing environment determines of the tenant secrets policies satisfy the requirements of the service provider secrets policy. If the tenant secrets policies satisfy the requirements of the service provider secrets policy, the service provider computing environment allows the tenant secrets policies to be applied to tenant data or information in the multi-tenant assets.

Abstract: A dedicated hosting environment is provided and a requirement is imposed that each virtual asset deployed in the dedicated hosting environment include one or more required virtual asset characteristics. Each virtual asset deployed in the dedicated hosting environment is then provided virtual asset characteristic certification data indicating that the virtual asset includes the one or more required virtual asset characteristics. A virtual asset monitoring system then monitors each virtual asset deployed in the dedicated hosting environment to ensure that each virtual asset in the dedicated hosting environment includes the required virtual asset characteristic certification data. If a virtual asset is identified in the dedicated hosting environment that does not include the required virtual asset characteristic certification data, an alert is provided to one or more entities of the non-compliant virtual asset.

Abstract: Reference architecture pattern role data representing reference architecture pattern roles to be associated with entities taking part in the development, and/or deployment, and/or operation of an application is generated. Reference architecture pattern tier data representing reference architecture pattern tiers used to create, and/or deploy, and/or operate an application using the reference architecture pattern is generated. For each reference architecture pattern role at least one access and/or operational permission is associated with each reference architecture pattern tier. At least one entity is assigned one of the reference architecture pattern roles and for each reference architecture pattern tier, the at least one entity is automatically provided the at least one access and/or operational permission associated with the reference architecture pattern role assigned to the entity.

Abstract: A database includes a first instance and a second instance. The first and second instances of the database are encrypted with a first encryption key and have content that is synchronized. Database queries from a user computing device are directed to the first instance of the database. A third instance of the database is created from one of the existing two instances of the database. The third instance is decrypted from the first encryption key and is encrypted with a second encryption key. Database queries from the user computing device are redirected from the first instance of the database to the third instance of the database without interrupting service to the user computing device. The process is repeated by creating additional instances of the database, encrypting the additional instances with new encryption keys, and by redirecting database queries to the additional instances of the database.

Abstract: Asset security compliance data ensuring defined asset security policies are applied to the creation and/or operation of assets to be used to implement an application and application deployment security compliance data for ensuring compliance with one or more application deployment security policies associated with the deployment of assets used to implement the application is generated. The asset security compliance data is then used to ensure each asset used to implement the application is created and used in compliance with asset security policies and the application deployment security compliance data is used to ensure that each asset used to implement the application is deployed in compliance with the application deployment security policies.

Abstract: A method and a system for wirelessly pairing a wireless peripheral with a computing or communication device and identifying a unique identifier of the wireless peripheral as an authorized wireless peripheral or the connected device owned by a user. The method and system further associate the wireless peripheral with the user, with the user's computing or communication device, or with an application installed on the user's device such that the computing or communication device wirelessly connects to the wireless peripheral for exchange of data or information by simply looking up the identifier of the wireless peripheral, without having to perform any wireless discovery protocols and user interaction or intervention for discovery or pairing of the computing or communication device and the wireless peripheral.

Abstract: Self-monitoring, self-reporting, and self-repairing virtual assets are provided that include virtual asset self-monitoring logic for detecting one or more trigger events within the self-monitoring, self-reporting, and self-repairing virtual assets, virtual asset self-reporting logic representing instructions for generating trigger event reporting data from the self-monitoring, self-reporting, and self-repairing virtual assets, and virtual asset self-reporting communications channel creation logic for opening a self-reporting communications channel between the self-monitoring, self-reporting, and self-repairing virtual assets and a virtual asset monitoring system.

Abstract: During an information-extraction technique, visual suitability indicators may be displayed to a user of the electronic device to assist the user in acquiring an image of a document that is suitable for subsequent extraction of textual information. For example, an imaging application executed by the electronic device may display, in a window associated with the imaging application, a visual suitability indicator of a tilt orientation of the electronic device relative to a plane of the document. When the tilt orientation falls within a predefined range, the electronic device may modify the visual suitability indicators to provide visual feedback to the user. Then, the electronic device may acquire the image of the document using an imaging device, which is integrated into the electronic device. Next, the electronic device may extract the textual information from the image of the document using optical character recognition.

Abstract: Instructions for monitoring and detecting one or more trigger events in assets used to implement an application are generated. Instructions for implementing at least one responsive action associated with each of the one or more trigger events is generated. At least part of instructions for monitoring and detecting the one or more trigger events is provided to an asset used to implement the application. The at least part of the instructions for monitoring and detecting the one or more trigger events are used by the asset to detect a trigger event. The instructions for implementing the at least one responsive action associated with each of the one or more trigger events is then used to automatically implement the at least one responsive action associated with the detected trigger event.

Abstract: Access to hierarchical data arranged in parent/child data levels is obtained and each data level is assigned a data level display symbol. The data level display symbols associated with a common parent data level are then identified and grouped into sets of related data level display symbols. Each of the data level display symbols within each set of related data level display symbols is then assigned a weighting value that determines one or more visual emphasis parameters to be associated with the data level display symbols. All the sets of related data level display symbols are then displayed on a single user interface display screen in accordance with their assigned weighting value and associated visual emphasis parameters. Any of the data level display symbols can then be activated through the user interface display screen.

Abstract: While testing a software application that is associated with a database during a testing technique, a computer system may take over transaction scopes of transactions with the database so that data generated by the software application during the testing and communicated to the database is not persisted in the database (even though this data may be persisted in the database during normal operation). Furthermore, after the testing is completed, the computer system may restore the database to an initial state prior to the testing by rolling back the data which was not persisted.

Abstract: One embodiment of the present invention provides a system that improves security during web-browsing. During operation, the system can receive a URL from a user. Next, the system can determine an IP address for the URL by querying a DNS server. The system can then determine a public-key associated with the URL. Next, the system can encrypt a string using the public-key to obtain an encrypted-string. The system can then send the encrypted-string to a remote-system which is associated with the IP address. Next, the system can receive a response from the remote-system. The system can then determine whether the DNS server has been compromised using the string and the response. If the system determines that the DNS server has been compromised, the system can alert the user, and in doing so, improve security during web-browsing.

Abstract: An application is implemented in the production environment in which the application will be used. Two or more backend systems are provided. Actual user data is received. The actual user data is routed and processed in the production environment using a first backend system of the two or more backend systems. Fabricated user data is generated, routed, and also processed in the production environment but using a second backend system of the two or more backend systems. Results data from the processing of the fabricated user data is then analyzed to evaluate the production environment and/or operation of the application in the production environment.

Abstract: An application is implemented in the production environment in which the application will be used. Two or more backend systems are used to implement different versions of the application using the production environment in which the application will actually be used and accessed. Actual user data is received. A first portion of the actual user data is routed and processed in the production environment using a first version of the application and a first backend system of the two or more backend systems. A second portion of the actual user data is also routed and processed in the production environment but using a second version of the application and a second backend system of the two or more backend systems. The results data is then analyzed to evaluate the various versions of the application in the production environment.