Abstract: A method includes initiating, by a computing device, an acquisition process with a merchant server to acquire an item using an exchange item. The method further includes determining, by the merchant server and/or a marketplace server, whether the acquisition process requires verification of the merchant server. When the acquisition process requires verification, the method further includes obtaining, by the marketplace server, a verification signature of the merchant server. The method further includes authenticating, by the marketplace server, the verification signature of the merchant server in accordance with use rules associated with the exchange item. When the verification signature is authenticated, the method further includes facilitating, by the marketplace server, exchange of the secure custody of the exchange item data file between the computing device and the merchant server in accordance with the secure custody protocol to finalize the acquisition process.

Abstract: A method includes initiating, by a computing device, an acquisition process with a merchant server to acquire an item using an exchange item. The method further includes determining, by the merchant server and/or a marketplace server, whether the acquisition process requires verification of the merchant server. When the acquisition process requires verification, the method further includes obtaining, by the marketplace server, a verification signature of the merchant server. The method further includes authenticating, by the marketplace server, the verification signature of the merchant server in accordance with use rules associated with the exchange item. When the verification signature is authenticated, the method further includes facilitating, by the marketplace server, exchange of the secure custody of the exchange item data file between the computing device and the merchant server in accordance with the secure custody protocol to finalize the acquisition process.

Abstract: In some examples, a system and method for activating a physical payment card are described. The method includes receiving from a mobile device of a user a request for a physical payment card and first state data indicating a state of the mobile device or an application executing on the mobile device at a time of the request. The physical payment card is mailed to the user. The mobile device reads an identifier on a surface of the container via a sensor of the mobile device and sends the identifier data and a second state data from the time of the reading. The identifier data is compared to a user identifier in a customer profile of the user and the second state data is determined to correspond to the first state data. The physical payment card is then automatically activated.

Abstract: The technology disclosed relates to a system and method for assigning participants to groups in a clinical trial. The system includes a federated server configured with group assignability data specifying a plurality of groups assignable to participants in a clinical trial and group distribution data specifying distribution of the participants into groups. The groups include at least one placebo group and one or more treatment groups. The system includes an intervention server configured to generate group encryption keys for encrypting the group assignability data. The system includes edge devices of each of the participants. The edge devices are in communication with the federated server.

Abstract: A method for secure approval of a check includes: reading a machine-readable code to obtain a block identifier and a validation value, wherein the machine-readable code is displayed on a physical check and encoded with the block identifier and validation value; receiving a digital signature from an external device; identifying a blockchain data value stored in a blockchain, wherein the blockchain data value includes at least the block identifier and an additional value; validating the received digital signature using a public key; validating the validation value based on a comparison of the validation value to the additional value; and approving use of the physical check to fund a payment transaction upon successful validation of the received digital signature and validation value.

Abstract: An electronic device includes a communication circuit that communicates with a server for issuing a mobile card, a secure element that stores the mobile card, a memory, and a processor that is electrically connected to the communication circuit, the secure element, and the memory, wherein the processor receives personal data required for authentication of a user corresponding to the mobile card and card data required for payment by the mobile card through the communication circuit from the server when the mobile card is provisioned, and stores, in the secure element, backup data including the personal data and the card data for backing up the mobile card.

Abstract: A method for dynamically evaluating a resource value is described. Data encoding one or more parameters related to the resource value is accessed, where the one or more parameters are monitored by a plurality of sensors that form an Internet of Things (IoT) and then released by the IoT of the plurality of sensors on a blockchain network. At least one parameter from the data is compared with a predetermined threshold value or a predetermined threshold range. In response to determining that the at least one parameter has exceeded the predetermined threshold value or the predetermined threshold range, a calculation of the resource value is triggered according to evaluation logic described by a smart contract released on the blockchain network in association with the one or more parameters being monitored, such that a consensus is reached on the blockchain network regarding the resource value that has been calculated.

Abstract: A method and a server computer are provided for authenticating a cardholder account. The server computer implements the method, which includes obtaining a first identifier and a cryptogram from a first entity, identifying an issuer associated with the cardholder account, forwarding the first account identifier and the cryptogram to a second entity for validation, receiving a second identifier from the second entity, and sending the second identifier to the first entity. The first identifier can be associated with the cardholder account. The second identifier can be generated by the second entity and associated with a validated form of the first identifier.

Abstract: An apparatus, system and methodology for conducting financial and other transactions using a wireless device are provided. A computing device includes a memory device that has stored therein a wallet application for completing transactions based on wireless data communications between the computing device and an external electronic device. The memory device further stores an electronic credential. The computing device includes a wireless transceiver configured to wirelessly communicate with the external electronic device. The computing device further includes a biometric characteristic reader for reading a biometric characteristic of a user. The computing device wirelessly transmits the electronic credential to the external electronic device based on comparing the biometric characteristic of the user with stored biometric information to initiate a transaction with the external electronic device.

Abstract: Systems and methods are provided for merchant mobile acceptance of user device data. For example, a method comprises receiving encrypted user device data and reader metadata from a merchant mobile device, determining a device reader API and device reader encryption scheme using the device reader metadata, parsing the encrypted user device data using the device reader API to determine encrypted personal information, and decrypting the encrypted personal information using the reader encryption scheme.

Abstract: Embodiments of the disclosure provide techniques for isolating network resources in a virtualized environment. A method is provided that includes identifying a security context data structure including a first security context label, a resource identifier and a plurality of access types. The first security context label is associated with a virtual machine. Each of the plurality of access types represents a type of access permitted to a resource associated with the resource identifier. The first security context label is associated with a network resource. A request to validate an access right of a client with respect to the network resource is received. The request comprises a second security context label associated with the client and the first security context label associated with the resource. The request is validated in view the first and second security context labels and the security context data structure.

Abstract: Systems and methods for facilitating transfer of ownership of tokens between users on a decentralized database stores a registry of assets and transactions are disclosed. Exemplary implementations may: store, on electronic storage, a set of code executable by the decentralized database to manifest individual tokens on the decentralized database; and record the set of code on the decentralized database such that the set of code is accessible at a creator address that is associated with the creator of the set of code. Using the functions defined by the set of code, an owner of an individual token can offer to sell the individual token, and a buyer can accept this offer to buy the individual token, at an agreed-upon price.

Abstract: A method performed by a processing system includes identifying a first node in a metadata tree of a patient that corresponds to an encrypted electronic health record in an encrypted data store and preventing a portion of the first node from being decrypted with a node key of a first healthcare participant in response to a second node of the metadata tree including key rotation information that indicates that the node key has been revoked by a second healthcare participant.

Abstract: A method includes receiving, on a computer-implemented system and from user, an identification of data and an identification of an algorithm and, based on a user interaction with the computer-implemented system comprising a one-click interaction or a two-click interaction. Without further user input, the method includes dividing the data into a data first subset and a data second subset, dividing the algorithm (or a Boolean logic gate representation of the algorithm) into an algorithm first subset and an algorithm second subset, running, on the computer-implemented system at a first location, the data first subset with the algorithm first subset to yield a first partial result, running, on the computer-implemented system at a second location separate from the first location, the data second subset with the algorithm second subset to yield a second partial result and outputting a combined result based on the first partial result and the second partial result.

Abstract: Systems and methods described herein may generate a digital payment token associated with a payor-user indicating the status of a payment obligation of the payor-user. The systems and methods may generate a first block containing the digital payment token and append the first block to a blockchain. The systems and methods may receive a confirmation message from a third-party transaction server that the payor-user has either fully or partially fulfilled his or her payment obligation. Based upon the confirmation message, the systems and methods may retrieve the block containing the digital payment token and update the digital payment token to generate an updated digital payment token. The system and methods may generate a second block containing the updated digital payment token to supersede the first block and append the second block to the blockchain. The updated digital payment token may indicate that the digital payment token has expired.

Abstract: Embodiments of the present invention provide a system for secure transfer of encrypted resources and asynchronous execution. In general, a user initiates an event with a merchant system and requests a secure resource transfer process associated with the event. Encrypted initial event details are transmitted through an asynchronous command form the merchant system to a computing device of the user, and resource information is identified at the computing device of the user. The computing device of the user then transmits the event details and the resource information to an event processing system for final execution.

Abstract: Various embodiments are directed to techniques for ensuring that a negotiable instrument has not been altered between the time the instrument leaves the hands of the payor and when the check is presented for redemption by the payee by recording an image of the check in a data block in a blockchain and retrieving the image when the check is presented for redemption for comparison with the check. A match between the stored image and the check indicates that no alteration of the check has occurred.

Abstract: A server exchanges information between one or more wireless devices to complete a transaction. The server receives second device identifier information from a first wireless device using a wide area network. The second device identifier information was previously provided to the first wireless device using short range wireless communication. The server then uses the second device identifier information to determine additional information concerning an entity or object located in proximity to the second device, and then the server delivers information to the first wireless device based at least in part upon both (a) the second device identifier and (b) a current step in a multiple step process for an ongoing electronic commerce transaction.

Abstract: A method for generating payment credentials in a payment transaction includes: storing, in a memory, at least a single use key associated with a transaction account; receiving, by a receiving device, a personal identification number; identifying, by a processing device, a first session key; generating, by the processing device, a second session key based on at least the stored single use key and the received personal identification number; generating, by the processing device, a first application cryptogram based on at least the first session key; generating, by the processing device, a second application cryptogram based on at least the second session key; and transmitting, by a transmitting device, at least the first application cryptogram and second application cryptogram for use in a payment transaction.

Abstract: Systems and methods described herein may generate a digital payment token associated with a payor-user indicating the status of a payment obligation of the payor-user. The systems and methods may generate a first block containing the digital payment token and append the first block to a blockchain. The systems and methods may receive a confirmation message from a third-party transaction server that the payor-user has either fully or partially fulfilled his or her payment obligation. Based upon the confirmation message, the systems and methods may retrieve the block containing the digital payment token and update the digital payment token to generate an updated digital payment token. The system and methods may generate a second block containing the updated digital payment token to supersede the first block and append the second block to the blockchain. The updated digital payment token may indicate that the digital payment token has expired.