Abstract: Systems and methods for blockchain wallet recovery, including: receiving a wallet recovery request from a user; sending a signed recovery transaction to the wallet, the signed recovery transaction comprising recovery instructions; and providing wallet access to the user, according to the recovery instructions, when a recovery condition is met. In examples, the recovery transaction is signed by a recovery key, different from a set of old wallet owner keys, that is associated with the wallet; the recovery instructions include new owner address(es) associated with a set of new owner keys; and providing wallet access includes activating the new owner addresses for the wallet after the recovery transaction is verified as signed by the recovery key.

Abstract: The present disclosure is related to a biological recognition technology-based mobile payment device, method and apparatus, and a storage medium. The method includes receiving, by a payment Trusted Application (TA) that operates in a Trusted Execution Environment (TEE) on a device, a call request from one of a plurality of third party payment applications that are installed on the device and operate with the payment TA, determining content to be encrypted and an encryption parameter for performing encryption based on the call request, acquiring a result of biometric recognition from a biometric recognition application, encrypting the content according to the encryption parameter and the result of biometric recognition and returning the encrypted content to the third party payment application that generates the call request, for the third party payment application to perform a pay tent-related operation based on the encrypted content.

Abstract: The present disclosure is directed to generating cross-platform electronic tokens. First information of a first user associated with a first identity platform is accessed. Second information of a second user associated with a second identity platform is accessed. The second identity platform is different from the first identity platform. The first information and the second information are analyzed to determine whether the first user and the second user are the same person. In response to a determination that the first user and the second user are the same person, a cross-platform electronic token is generated to be used for both the first identity platform and the second identity platform.

Abstract: Systems and methods are disclosed in which data associated with a transaction are protected with encryption. At an access device, a PIN associated with a payment account may be encrypted with a first key derived from an initial key of the access device and sensitive data associated with the payment account may be encrypted with a second key derived from the initial key. At a secure module associated with a host server encrypted sensitive data of an authorization request message may be decrypted. The secure module associated with the host server can re-encrypt the sensitive data using a zone encryption key associated with a payment processing network. A translated authorization request message including the re-encrypted sensitive data can be transmitted by the merchant server to the payment processing network.

Abstract: In some examples, methods and systems may process one or more payment transactions between a merchant and a customer by registering, by a biometric sensor of a payment object reader or a mobile device, a biometric characteristic as a biometric payment instrument, for example by obtaining data corresponding to a biometric characteristic of the customer. The data is converted into a digital signature of the biometric characteristic and compared with a registered biometric instrument at the time of transaction. If a match is obtained, the customer effects payments through the registered biometric instrument.

Abstract: A method for securing payment data for transmission over open communication networks is disclosed. The method comprises establishing a data connection between a first and a second transceiver device, the first transceiver device configured as a merchant device and the second transceiver device configured as a customer transceiver device. The merchant device transmits a first data package which comprises a unique merchant identifier and transaction request data, to the customer transceiver device over the data connection. The merchant device receives a cryptogram from the customer transceiver device. The cryptogram having been generated from using a secret key and a counter value together with the received unique merchant identifier and the transaction request data.

Abstract: Embodiments described herein disclose a mobile device system for providing access to a subset of data within an application executed by the mobile device. During a first time period, when the mobile device is connected to a network, authentication information corresponding to a user account with a payment services provider is received. A biometric authentication signature and password are received in response to a request to enable access to a subset of data associated with the account. The subset of data is encrypted with a key generated from the biometric signature and password and stored. At a second time period, when the mobile device is disconnected from a network, the subset of data is decrypted using a key generated from an entered biometric signature and password.

Abstract: Automated assistance for an action is requested over a self-service network from a Self-Service Terminal (SST). A first approval is received as a token over the self-service network. The action and the token are sent over a secure network from the SST for a second approval. When the second approval is received over the secure network, the action is processed on the SST.

Abstract: Systems, methods, and apparatuses for authenticating a user based at least in part on a location of the user or a location of a user device are described. The user may be authenticated as part of a financial transaction or as part of a login process for a computing device. The user device was previously bound or associated with the user. During the authentication, a system (e.g., a financial institution computing system or a backend authentication system) requests location information from the user device. The location information may be packaged as a digital fingerprint of the user device, which can only be created from the user device. Based on the location information, the user can be authenticated thereby approving the transaction or login request.

Abstract: Techniques for enabling performance of a quality control function on the contactless interface while the contactless interface is disabled are provided. The techniques include implementing, on a dual-interface payment device, one or more security mechanisms, wherein the dual-interface payment device comprises a first interface and a second interface, using the one or more security mechanisms to prevent a subset of data corresponding to the first interface from being read using the second interface while allowing data corresponding to the second interface to be read using the first interface, and personalizing the dual-interface payment device and the one or more security mechanisms according to one or more requirements of an issuer of the dual-interface payment device.

Abstract: Implementations of systems and methods according to present principles provide new ways to share digital objects in computing environments, improving the user experience and also enhancing communication and relationships among people. The “sharings” can occur as a transfer of an object from one user to another or the transfer of the object into an environment (or vice versa). In one example, a user in a game designs and builds a digital object for a tower and then sells the tower in the game. The tower becomes popular and is used by many other players of the game, including as a part of their own constructions, and also begins to appear in system-generated structures. The creator of the original tower, as well as creators of components constituting the tower, may be provided with compensation for their efforts from such sales of subsequent towers or constructions using such towers.

Abstract: Methods, and systems for secure storage and retrieval of information, such as private keys, useable to control access to a blockchain, include: receiving a request to take an action with respect to a vault of multiple different vaults in a cryptoasset custodial system, and each of the multiple different vaults has an associated policy map that defines vault control rules; authenticating, by a hardware security module, a policy map for the vault on which the action is requested based on a cryptographic key controlled by the hardware security module; checking the action against the policy map for the vault when the policy map for the vault is authenticated based on the cryptographic key controlled by the hardware security module; and effecting the action when the action is confirmed to be in accordance with the policy map for the vault.

Abstract: Systems and methods for interoperable network token processing are provided. A network token system provides a platform that can be leveraged by external entities (e.g., third party wallets, e-commerce merchants, payment enablers/payment service providers, etc.) or internal payment processing network systems that have the need to use the tokens to facilitate payment transactions. A token registry vault can provide interfaces for various token requestors (e.g., mobile device, issuers, merchants, mobile wallet providers, etc.), merchants, acquirers, issuers, and payment processing network systems to request generation, use and management of tokens. The network token system further provides services such as card registration, token generation, token issuance, token authentication and activation, token exchange, and token life-cycle management.

Abstract: A method comprises receiving a request to add a stored-value card to an electronic wallet via interpreting an intelligent code which directs a user to a URL for an electronic wallet website; prompting a user for credentials to enter the electronic wallet website; determining whether the stored-value card already exists in the electronic wallet; and adding the stored-value card to the electronic wallet. A system comprises a computer device to receive a request to add a stored-value card to an electronic wallet via interpreting an intelligent code which directs a user to a URL for an electronic wallet website; to prompt a user for credentials to enter the electronic wallet website, to determine possession of the stored-value card, to determine whether the stored-value card already exists in the electronic wallet, and to add the stored-value card to the electronic wallet.

Abstract: In example embodiments, a system and method for managing the resale of digital media rights is provided. In example embodiments, user accounts that store digital media rights for digital content may be maintained. An indication that a first user having a first user account intends to transfer digital media rights for a particular digital content may is received. A verification process is performed to verify that the digital media rights of the first user are transferable. Based on an indication that a transaction has occurred, the digital media rights are transferred from the first user account to a second user account associated with a second user that is a recipient of the digital media rights.

Abstract: A computer-implemented method for authorizing access to transaction data to a third-party computer system is implemented by a payment processor computer system coupled to a memory. The method includes receiving a request for access to transaction data associated with a cardholder account, requesting a set of authentication information associated with the cardholder account, authenticating the set of authentication information upon receiving the set of authentication information, and authorizing the third-party computer system to receive transaction data associated with the cardholder account. Upon validation, the payment processor computer system generates an authorization token and provides the authorization token to the third-party computer system. The third-party computer system uses the authorization token and a secure identifier to retrieve transaction data associated with the cardholder account.

Abstract: Techniques are disclosed for identifying and authenticating prospective certificate authority customers of a secure socket layer (SSL) certificate prior to receiving an order from the customer. The CA generates a list of prospective customers of digital certificates (e.g., by scanning networked servers via the Internet for the presence of an installed digital certificate). The CA retrieves data for each customer on the list and determines, based on a set of approval criteria, which prospective customers to target in enrollment campaigns. For each approved customer, the CA initiates an enrollment process prior to receiving a request from the customer to provide a certificate.

Abstract: Provided is a payment processing system for executing payment processing by transmitting and receiving payment data between a payment terminal and a payment server via a communication device, the payment terminal not including a dedicated network device for communication with the payment server, the payment data including at least payment amount information and service information to which a payment is to be executed. The payment terminal includes a payment data generation section configured to generate first payment data in which the payment amount information is encrypted, and a terminal communication unit configured to transmit the generated first payment data to the communication device by short range communication.

Abstract: A merchant computer generates a token including a “pay-me” merchant account identifier and transaction data for a transaction conducted by a consumer. The merchant token can be obtained by a mobile communication device and transmitted to a payment processing network along with a device identifier for the mobile communication device and an authentication token provided by the consumer. The payment processing network can authenticate the device using the authentication token, retrieve a consumer account number based on the device identifier, and complete the transaction by pushing money into the merchant “pay-me” account from the consumer account.

Abstract: The information marked on one electronic content is compared to that marked on another electronic content in order to determine if either are unauthorised. There are a number of ways of comparing the information in order to make this determination. One way is to detect if two electronic content accessed by the same device have information associated with different users. Another way is to detect if two electronic content accessed by different devices have information associated with a single user. A further way is to use the time or sequence of access in conjunction with the information. Other ways of determining unauthorised content are disclosed.