Abstract: A hardware security module (HSM) generates a client key for an account holder of a cryptoasset custodial system. The HSM encrypts the client key to generate an encrypted client key using a hardware-based cryptographic key within a secure storage device. The encrypted client key is transmitted to client devices. The HSM deletes the encrypted client key from the secure storage device. Each client device stores the encrypted client key in an offline secure enclave. A request to authorize a cryptoasset transaction is received. The HSM determines that signed messages endorsing the cryptoasset transaction have been received from at least some client devices in satisfaction of a quorum. The encrypted client key is received from at least one client device. The HSM decrypts the encrypted client key. The HSM signs an approval message for the cryptoasset transaction using a cryptoasset key based at least in part on the client key.

Abstract: The present disclosure provides an object distribution processing method, device, and system. The object distribution processing method includes: receiving, by an object distribution server, content of an object distribution transaction from a blockchain node, where the content of an object distribution transaction includes a transaction hash specific to the object information to be distributed; after the object distribution server reaches a distribution start time, receiving object distribution requests from a plurality of clients; determining a corresponding award winner from a plurality of object distribution requests; and sending an object distribution message with the hash value to the award winner. With this method, the tamper-resistant characteristic of transaction content in a blockchain is used, and a proof for a transaction hash value specific to initial object information is provided for a user, thereby improving fairness of an object distribution service.

Abstract: A digital asset security device, includes an asset capture unit configured to electronically capture a digital asset, a processor configured to digitally sign the captured asset, a memory configured to store a digitally signed asset from the processor, and a hashing module in communication the asset capture unit, the processor, and the memory, and configured to provide a cryptographic hash to one or more of the captured asset and the digitally signed asset.

Abstract: Auditing shelf space of an outlet of a retailer using a device comprising: a computer, a camera, a global positioning system receiver and a repository. The device is authenticated using the time and date of the audit, and a location of the audit at the outlet of the retailer. Once the device is authenticated, images of displays within the outlet and audit information relating to the display and the outlet of the retailer are captured and audit information is embedded into the captured image. The captured image is encrypted and sent to a remote computer of a checker company for a compliance check.

Abstract: Methods and systems including: receiving a request to take an action in a cryptoasset custodial system for an account holder; authenticating a policy map associated with the action, wherein the policy map defines access control rules governing which actions are allowed under conditions including a threshold number of endorsements needed; and validating endorsement messages for the action by checking digital signatures of the received endorsement messages, wherein at least one of the validated endorsement messages has been generated by digital signing with a first private key of a person, who is associated with the account holder, and at least one of the validated endorsement messages has been generated by digital signing with a second private key of a program, which is associated with the account holder, responsive to the program confirming one or more circumstances specified by the account holder are met at a time when the program is run.

Abstract: This document presents a system and method for presenting vetted and verified Supplier information to Buyers. The Know Your Suppler (TYS) Application collects previously vetted and verified Supplier information and commits the collected information, verification authorities, verification details, and transaction information to a shared distributed ledger implemented as a privately permissioned blockchain. Buyers who want to onboard a newly identified Supplier, or update Supplier information with more recently verified information records, may subscribe to the TYS Application and purchase available vetted and verified Supplier information to optimize the onboarding or updating process for Suppliers from whom the Buyer wants to purchase goods or services.

Abstract: A method for using proxy checkout services is discussed. The method includes accessing transaction details of a potential transaction for an item or a first service at a merchant, the potential transaction initiated by a user at a user device at a first location. The method includes responsive to a determination, based on merchant characteristics or user characteristics, that use of proxy services is permitted, initiating proxy services for performing the potential transaction at different user locations. The method includes determining, based on selection criteria, a particular proxy service from the proxy services for initiating a proxy transaction based on the potential transaction using one of different user locations. The method includes causing a user interface of the user device to render a user-selectable option for performing the proxy transaction instead of the potential transaction.

Abstract: A system, apparatus, and method are disclosed to enable a bank to send a secure object to a bank customer at a remote location. In addition to performing authentication, the system and method exploit the payment rails to verify transactions by the bank customer, as well as to confirm the physical location of the customer. The bank customer who is successfully verified may receive the secure object by courier at the remote location within a limited time period of the request.

Abstract: Methods, systems, and apparatus, including computer programs encoded on computer storage media, for a risk management method are provided. One of the methods includes: determining a candidate verification mode set comprising one or more candidate verification modes for a target event; determining output weights for at least some of the verification modes in the candidate verification mode set; and selecting a verification mode for risk management of the target event from the candidate verification mode set based on the output weights. In this method, multiple factors, such as risk type, device type, user preference, are taken into consideration in an quantification process when selecting a verification mode. Thus this method avoids excessive reliance on subject understanding of a transaction, improves the robustness of risk management against unauthorized transactions, and reduces unnecessary interference to authorized transactions.

Abstract: Implementations of the disclosure are directed to proving and creating on a distributed ledger a verifiable transaction record of a transaction between a user associated with user device and an agent associated with agent system, where the identities of the user and agent are hidden.

Abstract: A method, system, and computer program product generate, with a payment network, a first value (a) and a second value (ga), the second value (ga) generated based on the first value (a) and a generator value (g); generate, with the payment network, a plurality of random merchant numbers (mi) for a respective plurality of merchant banks; determine, with the payment network, a merchant product (M) based on a product of the plurality of random merchant numbers (mi); generate, with the payment network, a public key (pki) based on the second value (ga), the merchant product (M), and the random merchant number (mi) and a random key (rki) based on the merchant product (M) and the random merchant number (mi) for each respective merchant bank; and communicate, with the payment network, the public key (pki) and the random key (rki) to at least one respective merchant bank.

Abstract: A resource transaction method is applied to a blockchain system including a blockchain database, a transaction node, at least one payment node, at least one resource providing node, and at least one resource request node. The method includes: generating a transaction settlement instruction after the resource request node requests a target resource from the resource providing node on the transaction node, transmitting the transaction settlement instruction to the payment node, determining, by the payment node, that the transaction contract is an actual transaction in case of finding the transaction contract corresponding to the transaction settlement instruction from the blockchain database according to the transaction settlement instruction, and a signature of the resource request node for this resource transaction exists in the transaction contract, and transmitting, by the payment node, a transaction payment request to the resource request node.

Abstract: An apparatus comprises at least one processing device having a processor coupled to a memory. The processing device is configured to implement a first ledger node of a first cloud. The first ledger node of the first cloud is configured to communicate over one or more networks with a plurality of additional ledger nodes associated with respective additional clouds. The first ledger node is further configured to obtain a transaction associated with a valuation of a data asset. The first ledger node is further configured to broadcast the valuation transaction to the additional ledger nodes. A cryptographic block characterizing at least the valuation transaction is generated and entered into a blockchain distributed ledger collectively maintained by the first and additional ledger nodes. The first and additional ledger nodes collectively maintain the blockchain distributed ledger on a peer-to-peer basis without utilizing a centralized transaction authority.

Abstract: A method for transaction initiation with a bypass of merchant systems includes: storing a consumer public key and a blockchain comprised of a plurality of blocks, each block being comprised of a block header and data values, each block header including a block timestamp, and each data value including a unique transaction identifier; receiving a data message originating from a merchant system including a specific transaction identifier, a transaction timestamp, and transaction data; identifying a specific data value in a specific block that includes the specific transaction identifier; verifying that the block timestamp in the specific block is within a predetermined period of time of the transaction timestamp; identifying payment credentials associated with a user transaction account corresponding to the specific data value; and initiating a payment transaction between the merchant system and the transaction account using the identified payment credentials and transaction data.

Abstract: Method for cash card payment in a payment station for debit and credit cards.

Abstract: The presently-disclosed solution provides cross-ledger transfers between distributed ledgers to achieve highly-scalable transaction throughput. Disclosed are methods and instruction code for writing a cross-ledger transfer in a way that effectively transfers value from a source distributed ledger to a target distributed ledger while preventing double spending of the value. This results in the transformation of the ledgers in that the total value in the source ledger is decreased by the transferred value while the total value in the target ledger is increased by the same amount. Also disclosed are system architectures that utilize cross-ledger transfers between multiple distributed ledgers to achieve highly-scalable transaction throughput. Also disclosed are computer apparatus configured to implement cross-ledger transfers between distributed ledgers. Other embodiments and features are also disclosed.

Abstract: A method recording in-kind payments from a wireless communication service account. The method comprises building a block-chain associated with a wireless communication service account by an application executing on a computer system, where the block-chain encapsulates logic instructions, building a first block recording a first in-kind payment by the application based on executing the logic instructions encapsulated in the block-chain, where the first block comprises a first plurality of event records, a first nonce value, and a first hash value based on a hash value from a preceding block, on the first plurality of event records, and the first nonce value, and sending an in-kind payment authorization message to a wireless communication service billing system, whereby the first in-kind payment is committed.

Abstract: A system includes an interface to receive a request associated with a third party at a financial service provider from a network-based device associated with a user. The request includes an identifier that identifies an offer. The system further includes a revenue share application configured to determine whether the transaction involves a plurality of third parties and to determine a payment share for each party of the plurality of third parties based on the transaction involving the plurality of third parties. A payment transfer module transfers the payment share from an account of the user to each account associated with each party of the plurality of third parties.

Abstract: Techniques are disclosed for generating a token identity that is assigned to a device identity module of a customer device. The token identity may be used to incorporate various types of customer identifier data to verify a customer identity during an electronic transaction. For instance, a customer may initially provide customer information on a customer device, which may be used to obtain a digital identification associated with the customer. The customer may subsequently provide an input including a customer identifier on the customer device, which may be verified against the customer information included in the digital identification.

Abstract: An application system for authenticating a contactless payment transaction is described, the application system comprising: (i) a verification module configured to receive, from an operating system, a cipher if a customer is authenticated; and (ii) an access module configured to: (a) instruct the operating system to use the cipher to decrypt a transaction personal identification number (PIN) which is stored in a local database in an encrypted form; (b) receive the transaction PIN once decrypted; and (c) use the transaction PIN to access a token, the token being associated with payment details for processing the payment transaction.