Abstract: To determine whether digital content can be released to an element such as a computer application or module, a scaled value representative of the relative security of the element is associated therewith, and the digital content has a corresponding digital license setting forth a security requirement. The security requirement is obtained from the digital license and the scaled value is obtained from the element, and the scaled value of the element is compared to the security requirement of the digital license to determine whether the scaled value satisfies the security requirement. The digital content is not released to the element if the scaled value does not satisfy the security requirement.

Abstract: A random number generating algorithm is seeded with an unpredictable number. The seed value is computed by subjecting variable data to a Secure Hashing Algorithm, and truncating the right most, or left most, 16 bytes from the message digest generated. The algorithm generates the unpredictable number by using the seed value as a counter value in the random number generator, and performing a data encryption standard operation. In one exemplary embodiment, the unpredictable number is modified to a predetermined maximum unpredictable number value as determined by the sender and receiver of the unpredictable number.

Abstract: According to one aspect, the invention provides a system for validating an identity of a user to enable or prevent an occurrence of an event. In one embodiment, the system includes a first device including a wireless transmitter which is configured to transmit validation information, a second device including a wireless receiver, where the second device is configured to receive the validation information and further transmit the validation information; and a secure system in communication with the second device. According to one embodiment, the secure system includes a database. In a further embodiment, the secure system is configured to receive the validation information transmitted from the second device, and to transmit additional information to the second device following a receipt of the validation information to assist the second device in either enabling or preventing the occurrence of the event.

Abstract: A technique to control access to computer network resources at a computer facility permits a user to interact with the computer facility through a computer node of a network, wherein the user interaction comprises language learning responses submitted to the computer facility through the computer node, and a user authentication process is performed to determine if the permitted user interaction is authorized. The user authentication process is performed with user authentication information that is obtained by the computer facility during the permitted user interaction and also with user authentication information that is extracted from the user's language learning responses. In this way, user authentication occurs without intruding into the utilization of the computer facility.

Abstract: Disclosed herein is a financial card system. The system includes a communications device on which a non-contact integrated circuit chip is installed; and an authentication terminal having a reader/writer allowing reading/writing information on the communications device and capable of transmission and reception of information with the communications device through the reader/writer. The communications device has a storage block, a common area information transmission block, and an individual area information transmission block. The reader/writer of the authentication terminal has a storage block, a common area information reception block, and an individual area information reception block.

Abstract: A method of creating a domain based on public key cryptography includes providing, by a content-providing server, a list of devices requesting content, and selecting, by a user, a device from the list; transmitting, by the server, discrimination information on revoked devices to the device; extracting, by the device having received the discrimination information, a secret value from the discrimination information, preparing a certificate using the extracted secret value, and transmitting device information and the certificate of the device to the server; verifying, by the server, the certificate and creating a domain ID and a domain key using the device information; encrypting, by the server, the domain ID and the domain key using a unique public key of the device and transmitting the encrypted domain ID and domain key to the device; and restoring, by the device, the domain key using a unique secret key of the device.

Abstract: Systems and methods are configured to manage data sets associated with a transaction device. For example, a method is provided for facilitating the management of distinct data sets on a transaction device that are provided by distinct data set owners, wherein the distinct data sets may include differing formats. The method includes the steps of: adding, by a read/write, a first data set to the financial transaction device, wherein the first data set is owned by a first owner; adding, by the read/write device, a second data set to the financial transaction device, wherein the second data set is owned by a second owner; and storing the first data set and the second data set on the financial transaction device in accordance with an owner defined format.

Abstract: The present invention provides for a multi-function electronic transaction card or MET card, which comprises a base card and at least two conventional magnetic stripes. As such, they can be used in either proprietary or syndicated applications employing credit, debit, cash, and borrowing, as well as, information storage, single and co-branding programs, award points, loyalty programs, affinity programs, personal identification, licenses, and electronic keys. MET cards can also be used to reduce soliciting, issuing, delivering, confirmation, monitoring, and billing costs. The incidence of criminal theft and unauthorized use is also significantly decreased as is the overall quantity of environmental waste generated. Where required, MET cards may also utilize one or more electronic chips and/or radio frequency identification tags in order to further enhance functionality. As a result, MET cards offer a level of performance and versatility that is reliable, innovative, and highly marketable.

Abstract: An entrustee information transmitting method includes an entrustment managing storage storing entrustment relationship information indicating correspondence between entrusters who are voters performing entrustment and entrustees who are voters entrusted by the entrusters in an entrustment managing storage unit; an attendance managing storage storing attendance information of respective voters in an attendance managing storage unit in units of bills; an indirect-entrustment voter extracting operation of extracting one or more indirect-entrustment voter who indirectly entrust an attendee by using the entrustment relationship information and the attendance information; an entrustee determining operation of determining attendees who are indirectly entrusted by the indirect-entrustment voters to be recommended entrustees; and an entrustee information transmitting operation of transmitting information of the recommended entrustees.

Abstract: The invention relates to a system (1), a method, and a standard framework (11) for usage-dependent licensing. When use is made of additional functionality, further instances, or specific adapters (131 . . . n), the system (1) will detect whether such use has been authorized by means of a license. If authorization has not yet taken place, a time-limited license will be generated automatically and the manufacturer (21) of the standard framework (11) or, as the case may be, a user (22p) who has implemented additional functionality on the basis of the framework will be informed and can generate a license key. The system (1) will disable the functionality after a specific period of time if a license fee is not paid by a user (22p, 22s).

Abstract: The present invention provides attorney terminals which operate using an outline for storing, associating and managing case evidence, case law and work product for a given lawsuit at issue. Accessed through attorney terminals, the outline is structured based on a hierarchical categorization of the lawsuit into the law and fact at issue. Associated with each categorization entry in the hierarchical outline are groupings of case law, case evidence, relevance and draft discovery information for rapid access by the attorney. Each categorization entry in the tailored outline provides instant access to case law via headnotes, treatise selections, seminal cases, and preset searches. The disclosed invention also automatically: 1) tracks the use of Exhibits in a proceeding; 2) generates draft portions of a pretrial order including jury instructions; and 3) generates time-lines for analysis and use during a proceeding. Draft interrogatories, document requests and deposition or trial questions are also provided.

Abstract: A server is operable to receive a media device identifying number (ID) and establish an association between a media device and a payment account and, in one embodiment, supports at least one of payment authorization and payment clearing based at least in part on the media device ID and the payment account. A network and system includes a payment card processor server that is operable to receive a payment authorization request and to determine if an authorized media device generated a purchase selection message and to determine to approve a received payment authorization request based, in part, if the media device was authorized for the purchase selection based upon a received media device ID. The system is further operable to perform a key rotation to protect payment account information.

Abstract: For an organization having a central station and a plurality of distributed outlets, each of the outlets having a cashier's terminal, each of the cashier's terminals coupled to a respective point-of-sale (POS) controller, a method of permitting a billee to pay an invoice issued by a biller is disclosed.

Abstract: A method for securing patient medical information for communication over a potentially vulnerable system includes separating patient's medical file into a demographics layer and a data layer, separately encrypting the demographic layer and data layer using different encryption keys, and providing servers in a communication and processing system with a decryption key for the layer processed by such server. Medical file data may be separated into more than two layers. Users accessing the system are authenticated using standard techniques. By separately encrypting different parts of a patient medical record, processing and communication of patient medical files by intermediary servers is enabled without risking disclosure of sensitive patient information if such servers are compromised.

Abstract: A method is disclosed that includes receiving a request for a transaction from a customer at a seller server system via an electronic-commerce website and identifying a customer account stored at the seller server system based on an identity of the customer. A plurality of financial instruments is associated with the customer account. The plurality of financial instruments has a customer-specific sequence including at least a first financial instrument pre-selected by the customer and a second financial instrument. The method includes automatically attempting to collect a particular payment associated with the transaction from a first financial service provider corresponding to the first financial instrument and automatically attempting to collect the particular payment from a second financial service provider corresponding to the second financial instrument in response to data received at the seller server system indicating a denial of the payment.

Abstract: A system and method to remotely enable software based options for a trial period in remote equipment is disclosed. The invention includes receiving and authenticating a user, and receiving an option-enabling request from the user specifying the particular option requested to be enabled in a particular piece of equipment at a remote location. A system I.D. is validated, and the system ensures that the option has not already been enabled at least once before, and if it has not, a software enabling key is generated and sent to activate the option in the remote equipment.

Abstract: Virtual account based digital cash protocols use a combination of blind digital signatures and pseudonym authentication with at least two pairs of public and private keys. A user is provided with one master pair of private and public keys and as many pseudonym pairs of private and public keys as desired. The resulting virtual account based hybrid protocols combine the advantages of blind digital signature and pseudonym authentication. Blind digital signatures based on the master pair of keys are used to withdraw digital cash from the user's bank account under the user's real identity. A pseudonym pair of keys is used for converting digital cash into virtual account based digital cash by a digital cash issuer. All pseudonyms can be used for spending the virtual account based digital cash.

Abstract: A method of distributing advertisement content. One embodiment of the invention comprises a distribution server that is connected to a network of personal computers via a network. The distribution server receives advertising data from advertisers and formats the advertisement data for storage and display on the personal computers during or before bootloading a user selected application environment. Upon the occurrence of one or more events, the distribution server distributes the advertisement data to the network of personal computers. The personal computers receive the distributed advertisement content and store the advertisement data on a storage device. Upon the bootloading of the user selected application environment, the advertising data is displayed to the user.

Abstract: Intellectual property is sold to buyers through a kiosk. The kiosk provides users with the ability of located desired content on a seller's computer. When a user located the desired intellectual property, a payment transaction is initiated. When the payment transaction is complete, the seller transmits the intellectual property to the kiosk. The kiosks also preferably include production facilities that transfer the owner's intellectual property onto a permanent medium and/or presentation facilities that present the owner's intellectual property on a one-time basis.

Abstract: Methods, and apparatus, enabling an originating service provider to automatically obtain from a 3rd party service provider and run a software service online. Method comprising: originating service provider negotiating license with 3rd party service provider over certain software service run by 3rd party service provider; license stipulating life cycle information of software service, enabling originating service provider to automatically obtain software service; 3rd party provider delivering software service to originating service provider in response to agreements of license; and originating service provider automatically deploying software service in self-hosted environment according to stipulation of the license.