Abstract: A system and method of providing media files such as songs or video over a network includes a first and a second transaction, separated by distinct website visits. In the first transaction, a file provider receives a payment over a network link, selects a first codec is selected based on a type of network link, and downloads a first copy of a media file to a customer that is compressed with the first codec. The provider also promises to download during a second transaction an additional copy of the song. During that second transaction, that or another provider downloads the additional copy of the media file without receiving further payment from the customer. The additional copy is compressed with a second codec that optimizes for the link used in the second transaction. Preferably, the customer concludes with a smaller AAC+ file downloaded to a mobile station and a higher fidelity AAC LTP file downloaded to a PC.

Abstract: A method and apparatus are herein disclosed for allowing suppliers to generate an invoice from a purchase order without requiring them to log in or pre-register with a networked application. Implementation is provided by having a first user provide a first document to a networked application. An electronic notification is dispatched to a receiver for the first document with a unique link to a data entry page within the networked application. The data entry page is sandboxed with limited functionality within the networked application, but accepts data from the receiver to be sent directly into the first user's system.

Abstract: Methods for purchasing of goods or services over the internet. A customer has a customer account set up at a bank with associated account information. The account information includes verification information for verification parameters, such as authorized computer identification, authorized delivery addresses, authorized global positioning satellite or other secure location information, authorized user identification, authorized telephone caller identification, and/or other account information. An order is placed by a user via an ordering computer which provides order information. Such order information includes verification variables used by the bank. Verification and/or authentication using one or more variables of the customer account information is used by the bank to validate the order before assuring payment to the merchant.

Abstract: The present disclosure provides a method for providing composite user interface controls and a library or online storefront for same. In one aspect, there is provided a method for a client computer of sharing a custom control, comprising: receiving by a browser an encrypted custom control comprising a number of user interface elements which are positioned in a specified manner with respect to each other, wherein each of the user interface elements has one or more properties; receiving by the browser a decryption key; and decrypting by the browser the encrypted custom control using the decryption key.

Abstract: A payment authentication service authenticates the identity of a payer during online transactions. The authentication service allows a card issuer to verify a cardholder's identity using a variety of authentication methods, such as with the use of tokens. Authenticating the identity of a cardholder during an online transaction involves querying an access control server to determine if a cardholder is enrolled in the payment authentication service, requesting a password from the cardholder, verifying the password, and notifying a merchant whether the cardholder's authenticity has been verified. Systems for implementing the authentication service in which a cardholder uses a mobile device capable of transmitting messages via the Internet are described. Systems for implementing the authentication service in which a cardholder uses a mobile device capable of transmitting messages through voice and messaging channels is also described.

Abstract: In various embodiments, application development tools can allow developers to control whether or not an attribute of a view object is displayed by declaratively associating a data security privilege with the attribute. Associating a data security privilege with the attribute can be done by adding a specially named custom property on the view object attribute. Modifications to a base class can provide any necessary support to retrieve the privilege and determine whether a current user is allowed to view the attribute for the current record/row. If the user is authorized to view the attribute for the current record/row, then the attribute value is returned and displayed. Otherwise, redacting information, such as “*****” can be returned and displayed.

Abstract: Systems and methods for enabling a user at an enterprise level to effect individual rules, processes and other functional items in site level environments by creating application objects corresponding to the functional items, wherein the objects have associated services, such as versioning and deployment, that allow them to be handled in the same manner as content objects. The application objects can be deployed to a site, where the associated functional items is implemented, thereby incrementally altering the setup of the site without having to make a wholesale substitution of the old setup with an entirely new one.

Abstract: A machine-controlled method may include receiving a file in a designated shared folder on a local device, automatically providing access to the file to a social networking website or service, and directing the social networking website or service to make the file available to users that are allowed to access a particular user account at the social networking website.

Abstract: One embodiment of the present invention sets forth a method for providing a user access to a gaming environment without a full license. In operation, a license generator receive a request to generate a temporary license for a user not having access to the gaming environment from a primary user having a full license. The license generator then generates the temporary license based on license information associated with the full license belonging to a primary user. The user can then access the gaming environment via the temporary license, but may only be given restricted access to the gaming environment.

Abstract: In embodiments, the present invention provides a method and system for mobile media event mediation, normalizing mobile media event information from a plurality of sources, wherein at least some of the information is represented differently in each of the plurality of sources, producing a mobile media data record from the normalized information, analyzing the mobile media data record to determine a settlement arrangement, providing at least some of the participants represented in the mobile media record with relevant information from the settlement agreement.

Abstract: An aggregation device in a home network accumulates information from audio video apparatuses in the network that the apparatuses require enablement of respective licensable components for which no license event has yet occurred. The aggregation device sends an indication of the license events to a server so that appropriate royalties may be paid post-sale of the various devices.

Abstract: A system for warranting the identity of a party over an electronic network. The system comprises a root entity and a plurality of additional entities. Each additional entity is admitted to the system after agreeing to abide by a plurality of operating rules promulgated by the root entity. The additional entities may comprise level-one participants and level-two participants. Certificate authorities maintained by level-one participants issue digital certificates to their customers. The digital certificates bind the customers to their public keys. System customers are also provided with a warranty request formatter which is adapted to formulate a request for a warranty as to the veracity of information contained in a digital certificate. The warranty request formatter is also adapted to transmit the request for the warranty to the customer's level-one participant.

Abstract: A system, apparatus, and method for processing payment transactions that are conducted using a mobile device that includes a contactless element, such as an integrated circuit chip. The invention enables the updating, correction or synchronization of transaction data maintained by an Issuer with that stored on the device. This is accomplished by using a wireless (cellular) network as a data communication channel for data provided by an Issuer to the mobile device, and is particularly advantageous in circumstances in which the contactless element is not presently capable of communication with a device reader or point of sale terminal that uses a near field communications mechanism. Data transferred between the mobile device and Issuer may be encrypted and decrypted to provide additional security and protect the data from being accessed by other users or applications.

Abstract: A computer-implemented system and method for providing private stable matchings through a re-encryption mix network is presented. Preferences are encrypted. Bids are created. An initial mixing is performed. A set of unmatched bids and a set of matched bids are externally mixed independently. A union of the set of unmatched bids and the set of matched bids are internally mixed. For the number of participants in a set of active participants, a stable match for one of passive participants is determined, while the set of unmatched bids remains non-empty. The set of matched bids for the last stable match is externally mixed. The preferences in the set of matched bids are decrypted to identify the passive participants stably matched to the active participants.

Abstract: A method of conducting a financial transaction by a purchaser over a communications network is provided where the purchaser does not transmit his or her “real” payment card information over the network but instead secure payment application software is provided which allows for the transmission of a pseudo account number that is cryptographically processed for purposes of responding to an authorization request based on the real account number.

Abstract: A social networking site host includes, in a user's profile, information that has been attested to and verified by both the user and an independent verifier. The independent verifier is an accepted authority with direct knowledge of the information. Both the user and verifier attest to the information by digitally signing the information and including the digital signature with the information. The host or visitors to the social networking site can authenticate the information by using both digital signatures. By authenticating the information, visitors and users viewing information on the social networking site can assume that the information is trusted and accurate.

Abstract: The back-end data storage system of an e-commerce system receives a replicated transaction from the data storage system of another e-commerce system and makes a determination or decision whether to commit the replicated transaction based upon a comparison of information parsed from the transaction with predetermined commit criteria.

Abstract: Conducting hands-free transactions comprises a server at a payment processing system, a user computing device, and a merchant computing device. The payment processing system registers a merchant system as a hands-free payment participant and provides a beacon identifier. The payment processing system receives a communication from a hands-free payment application on a user computing device, the communication comprising a transaction token, an identification of a user account, and the beacon identifier received by the user computing device via a wireless communication from a device associated with the merchant system and transmits the transaction token to the merchant system computing device.

Abstract: A method of measuring a campaign performance includes transforming identifiers into non-identifiers, and providing the non-identifiers to an external processing party; receiving encrypted non-identifiers comprising the non-identifiers after encryption by the external processing party, other non-identifiers, spending values, and a public cryptographic key, each member of the other non-identifiers being associated with a corresponding member of the spending values; encrypting the non-identifiers to generate other encrypted non-identifiers, and determining an intersection of the encrypted non-identifiers and the other encrypted non-identifiers to generate common encrypted non-identifiers; identifying a subset of the spending values associated with members of the encrypted non-identifiers in the common encrypted non-identifiers; and deriving a total spending value based on the subset of the spending values.

Abstract: A computing platform 20 runs a compartmented operating system 22 and includes a trusted device 23 for forming an integrity metric which a user can interrogate to confirm integrity of the operating system. Also, the integrity of an individual compartment 24 is verified by examining status information for that compartment including, for example, the identity of any open network connections, the identity of any running processes, and the status of a section of file space allocated to that compartment 24. Hence, the integrity of an individual compartment 24 of the compartmented operating system 22 can be demonstrated.