Abstract: Systems and methods for token processing are disclosed. An access device can provide access device data to a mobile communication device. The communication device generates a token request including the access device data and communication device data and sends the token request to a server computer. The server computer returns a token and a token cryptogram to the mobile communication device. The token and the cryptogram may be used in a transaction.

Abstract: A method is configured to perform a continuous software testing. A processor receives, from a code developer computer, a request to commit a code portion for a microservice to a code repository including a source code for a plurality of microservices. The processor executes, using the source code into which the code portion is incorporated, a test transaction routine including tests respectively associated with the plurality of microservices. The processor determines if one or more errors occurred in response to the executing the test transaction routine. If no errors occurred, the code portion is committed to the code repository, and, if one or more errors occurred, a notification is sent to the code developer computer regarding the one or more errors without committing the code portion to the code repository.

Abstract: A method includes a host computer creating a log file containing data used to determine if the host computer is being controlled by a viewer computer. The host computer transmits an interaction request message comprising the log file to an authentication server computer. The authentication server computer determines if an interaction associated with the interaction request message is authentic or not authentic.

Abstract: Described herein are techniques and systems directed to using context data provided by supplemental devices to reduce false declines during transaction authorization. In some embodiments, upon a transaction being declined based on a level of risk associated with the transaction, a service provider may obtain context data from a number of supplemental devices associated with a user, resource provider, location, or other suitable factor. This context data may then be assessed by the service provider to determine a degree to which the context data supports that the user conducting the transaction is the owner of the account used to conduct the transaction. The level of risk may then be adjusted based on that degree and the adjusted level of risk is used to determine whether to approve or decline the transaction.

Abstract: Techniques for authorizing a transaction or interaction of a user that is modified by authentication information for the same user are described herein. In embodiments, an authorization request message for a transaction and a session identifier may be received from a transport computer or a resource provider computer. A portion of pre-analyzed data about the user and the one or more interactions may be obtained, from a database, based on the session identifier. A risk analysis for the transaction using the portion of the pre-analyzed data may be performed to generate a value. The authorization request message may be modified to include the portion of the pre-analyzed data and the value. The modified authorization request message may be transmitted to an authorizing computer.

Abstract: Described are a system, method, and computer program product for authentication by augmented reality (AR) for fraud prevention. The method includes receiving AR map data of an authorized area of operation associated with a merchant. The AR map data is generated from an AR recording device and includes one or more environmental anchors and one or more virtual object reference points. The method also includes storing the AR map data in association with a merchant identifier and receiving a request for authentication of an operation by a merchant point-of-sale (POS) device. The method further includes communicating at least a portion of the AR map data to the merchant POS device for execution of an AR re-localization process, and, in response to success of the re-localization process by the merchant POS device, authenticating the operation.

Abstract: A method is disclosed. The method comprises receiving, in an interaction by a switch computer from a second device, data associated with a machine readable code generated by a first application on a first device and provided by a first device to a second application on the second device. The method also includes determining, by the switch computer, a first server computer associated with a first application, transmitting the data associated with the machine readable code and the interaction data to the first server computer, which processes the data associated with the machine readable code and the interaction data, determining, by the switch computer, a second server computer associated with the second application, and transmitting, by the switch computer, a communication to the second server computer. The communication informs the second server computer that the first server computer processed the data associated with the machine readable code and the interaction data.

Abstract: A user device may receive (e.g., when proximate to the first access device), from an intervening device, device identification data for a first access device. A message may be received from a second access device via the intervening device. The message may include a digital signature generated based at least in part on second access device identification data. The user device may validate the message utilizing the digital signature and a public key. If the message is invalid, the user device may discard the message. If the message is valid, (e.g., unaltered), the user device may determine that the user has not confirmed an intent to interact with the second access device and may terminate a[n] further interaction with the second access device accordingly.

Abstract: Embodiments of the invention are directed to an automated account restoration system. In some embodiments, the system determines a state of an account based on a likelihood that the account has been compromised. If the account is determined to be in a low-risk state, then upon an successful login to that account, a verification cookie may be generated which is unique to a user device used to access the account. If the account is determined to be in a high-risk state, then system may prevent access to the account except by user devices that include a valid verification cookie.

Abstract: Provided is a method for authenticating a device. The method may include coupling a first device to an interaction database that is connected to a second device. The first and second devices store first group public and private keys. The second device also stores second device public and private keys. The first device transmits to a remote computer system a first message encrypted with a remote computer system public key that includes challenge data and response data encrypted with the first group public key and authentication data. The second device receives from the remote computer system a second message including the encrypted challenge data. The second device transmits to the remote computer system a third message including the response data. In response to receiving an authentication message, interaction may be permitted between the first device and remote computer system. A system and computer program product are also disclosed.

Abstract: A method is disclosed. The method includes receiving a training dataset including a set of training samples. The method then includes obtaining a first parameter value and a second parameter value. After the parameters are determined, the training dataset can be fed into a machine learning model to train the machine learning model using a neighborhood-specific loss function. The method can then include receiving a second dataset including a set of second samples. Each second sample can then be input into the trained machine learning model to determine a prediction score for each second sample, and the prediction scores can form a bimodal distribution centered around the first parameter and the second parameter.

Abstract: Embodiments of the invention involve using biometric templates to wirelessly authenticate individuals. In one embodiment, a mobile device may generate a first biometric template and a first public value from a first biometric sample of a user and generate a first cryptographic key by passing the first biometric template to a fuzzy extractor's generate function. An access device may generate a second biometric template from a second biometric sample of the user, generate a second secret cryptographic key by passing the second biometric template and the first public value to the fuzzy extractor's reproduce function, encrypt the second biometric template with the second secret cryptographic key, and broadcast the encrypted template to a plurality of nearby mobile devices including the mobile device. If the mobile device is able to decrypt the encrypted template with the first cryptographic key, the access device can associate the user with the mobile device.

Abstract: A system, method, and computer program product are provided for consent management. A method may include receiving a first data request for user data associated with a user, the user data stored in a user data database; communicating a consent request to the requester system; receiving a consent response from the requester system; storing consent data associated with the consent response for the user data requested in the first data request in an immutable ledger; receiving a consent verification request from the user data database, the consent verification request based on a second data request for the user data from the requester system to the user data database; verifying the consent verification request based on the consent data; and communicating a consent verification response to the user data database, the consent verification response indicating consent from the user to share the user data with the requester system.

Abstract: A service uses a system of servers and specialized interfaces to facilitate transfer of value from a gift card to an open loop card of a user. The service may support user-facing interfaces that interact with customers. The service may also support an API-based interface with a gift card processor to obtain gift card value, effect the value transfer, and confirm that the gift card value has been depleted. The service may also include a programmatic interface to various transaction processor services such as associating the transferred value with a personal account number of the user, a merchant associated with the original gift card, transaction monitoring, and messaging services that provide status information to the user.

Abstract: Efficient methods and systems for verifying personal identifiers in transactions such as financial transactions are disclosed. In an exemplary method, an authentication server computer may provide an account number and a personal identifier such as a PIN to a payment processing network server computer. The payment processing network server computer may then determine which of a plurality of authentication processes to initiate.

Abstract: Provided is a method for training distributed machine learning models. The method may include initializing a distributed machine learning model on a plurality of computing devices. Training data associated with a plurality of samples may be received. Each sample may be forward propagated through the distributed machine learning model to generate an output. A loss for each sample of the plurality of samples may be determined based on the output. The loss for each sample may be backward propagated to each computing device. The parameter(s) of each computational node may be asynchronously updated based on the loss as it is backward propagated and/or while at least one of the samples is forward propagating. The parameter(s) may be stored and/or communicated to the other computing devices. Each of the other computing devices of the plurality of computing devices may store the parameter(s). A system and computer program product are also disclosed.

Abstract: Embodiments of the invention are directed to systems, method, and devices for detecting failures in distributed systems. A failure detection platform may identify anomalies in time series data, the time series data corresponding to historical network messages. The anomalies can be labeled and used to train a first predictive model. At least one other model may be trained using the time series data, the anomaly labels and a supervised machine-learning algorithm. A third model can be trained to identify a system failure based at least in part on the outputs provided by the first and the second model. The third model, once trained, can be utilized to predict a future system failure.

Abstract: Described are a system and method for dynamic promotional offers during user interaction at an automated teller machine (ATM). The method includes receiving, at the ATM, a transaction request based on an account identifier associated with an account of a user. The method also includes determining, based on the account identifier, that the account of the user was issued by an issuer that is different than an acquirer associated with the ATM. The method further includes, in response to determining that the account was issued by the issuer, generating, with at least one processor, an authorization request message based on the transaction request and the account identifier. The method further includes receiving an authorization response message comprising embedded user profile data and generating, on a display of the ATM, at least one offer based on the embedded user profile data.

Abstract: Embodiments provide methods and systems for upgrading an authorization request message in a dual message system format to an upgraded authorization request message in a single message system format without requiring any modifications to existing systems of acquirers and issuers. A transaction processing network computer may upgrade an authorization request message based on a score assigned to the transaction using a machine learning algorithm. The score indicates a likelihood that a final value of the transaction when finalized is same as an initial value of the transaction. If the score is above predetermined threshold, the transaction processing network computer upgrades the authorization request message to a single message system format.

Abstract: Described are a method, system, and computer program product for operating dynamic shadow testing environments for machine-learning models. The method includes generating a shadow testing environment operating at least two transaction services. The method also includes receiving a plurality of transaction authorization requests. The method further includes determining a first percentage associated with a first testing policy of the first transaction service and a second percentage associated with a second testing policy of the second transaction service. The method further includes replicating in the shadow testing environment, in real-time with processing the payment transactions, a first portion of the plurality of transaction authorization requests and a second portion of the plurality of transaction authorization requests.