Abstract: An authentication and verification module for incentivizing green driving includes one or more processors, network interface hardware configured to communicate with a remote server, one or more auxiliary sensors for outputting a verification signal, and one or more memory modules. The one or more memory modules store logic that, cause the authentication and verification module to: receive a diagnostic signal from an onboard diagnostics module of a vehicle, receive the verification signal from the one or more auxiliary sensors, compare the diagnostic signal with the verification signal, and transmit a driving behavior communication with the network interface hardware to the remote server when the verification signal and the diagnostic signal are within a predetermined threshold from one another. The authenticated driving behavior can then be used to calculate and assign appropriate incentives to the vehicle driver.

Abstract: Systems and methods for effecting secure transactions are described. A processing device, when executing computer-executable instructions: receives from a requesting entity computing system a transaction request for a payload. The transaction request is transmitted to delivery entity computing system associated with a delivery entity identifier and geographic location. An encryption key, random number and a unique request identifier are generated and transmitted to requesting and delivery entity computing systems. In response to receiving a delivery transaction confirmation from the delivery entity computing system, the processing device verifies the secure transaction. After receiving a requestor transaction confirmation from the requesting entity computing system (indicating a verified transfer of the payload), a payload reimbursement is transferred to a delivery transaction account from a requestor transaction account.

Abstract: A method and apparatus for providing a license to a client device, the license providing a key for decrypting a content instance. In one embodiment, the method comprises accepting a license request, the license request including a client identifier and an access token having an access token identifier and key request data comprising a content identifier identifying the content instance, determining if the received access token identifier is currently bound to a stored client device identifier, and temporarily binding the received access token identifier with the received client device identifier and providing the received access token for validation or returning an error without providing the received access token for validation depending upon the determination.

Abstract: Implementations of the present specification disclose a fare payment method, apparatus, and device. In one aspect, the method includes: receiving, at a terminal device supporting host-based card emulation (HCE), an HCE-based routing instruction from a fare collection device of a public transportation system; establishing, by the terminal device, a near field communication (NFC) connection with the fare collection device in response to the routing instruction; and transmitting, by the terminal device, payment-related information of a user of the terminal device to the fare collection device through the NFC connection, wherein the payment-related information is to be verified by the fare collection device, and wherein the fare collection device is configured to: verify the received payment-related information of the user; and in response to a successful verification, deduct a fare from an account of the user based on the payment-related information.

Abstract: A wireless communication device such as a payment reader has a wireless communication interface and is able to establish wireless pairing with an interactive electronic device such as a merchant device running a point of sale application. In order to establish pairing, the wireless communication device accesses an identifier. The identifier is transmitted to the interactive electronic device via the wireless communication interface, and the interactive electronic device sends the identifier to a pairing server. The pairing server retrieves a passkey based on the identifier and sends the retrieved passkey to the interactive electronic device via a secure connection. The wireless communication device and the interactive electronic device establish wireless pairing based on the retrieved passkey.

Abstract: A method for authenticating a transaction that requires the use of a personal identification number (PIN) is provided. The method includes obtaining chip information from a chip that is embedded in a card; receiving a user input that includes the PIN; combining the PIN with the chip information; performing a message authentication code (MAC) operation on the combination in order to generate an application request cryptogram (ARQC); and requesting an authentication of the transaction based on the generated ARQC.

Abstract: Methods and systems for authentication, immutability and trusted timestamping of large audit event logs reported by electronic platforms are disclosed. In an embodiment, a method involves: audit log events aggregation into timeframe aligned data blocks, reporting of data block hashes into blockchain database for authentication, immutability and trusted timestamping. An aspect of the method involves achieving authentication, immutability and trusted timestamping guarantees for audit log events with low computational and networking overhead due to utilization of blockchain database consensus protocol only for batched event data blocks rather than for separate events. Multiple events during specific period of time are grouped into separate data block and cryptographic hash of the whole block is reported to blockchain database to ensure its authentication, immutability and trusted timestamping.

Abstract: Systems and methods for servicing vehicle messages utilizing a common communications infrastructure are provided. A method includes obtaining, by a vehicle computing system onboard an autonomous vehicle, a message including a cryptographic signature and contextual information, a request, or a command. The method includes determining an originating sender associated with the message based on the cryptographic signature and determining a message privilege for the message based on the originating sender. The originating sender is a process that generated the message. The method includes determining a response for the contextual information, the request, or the command based on the message privilege. The response is indicative of an acceptance or rejection of contextual information, an assignment of computing resources to a request, or an acceptance or rejection of a command. The method includes performing a vehicle action based on the response.

Abstract: Techniques described herein relate to tracking and analyzing digital credential usage in sensor-monitored environments. A digital credential platform server may receive data identifying credential receivers, and then retrieve the digital credentials generated and issued to the credential receivers. The digital credential platform server may then determine sets of physical activities associated with the digital credentials issued to a credential receiver, and may use sensor-based monitoring systems to detect the user actions of the credential receiver and compare those actions to the physical activities associated with the credentials. Comparisons between the user actions detected for the credential receiver, and the physical activities associated with the receiver's credentials, may be used to determine re-credentialing time periods, credential expiration times, and the like.

Abstract: Systems and methods include registering use of a virtual certification number (VCN) at a secure entity by receiving, at an external gateway, a registration request comprising an external request code and a primary account number (PAN), wherein the external request code is unique to the secure entity, determining that the external request code is an unregistered external request code, receiving a tokenized PAN based on the PAN, receiving an account identifier by applying the tokenized PAN to a certification mechanism tool application programing interface (API), generating a certification mechanism reference identifier by encrypting a certification mechanism associated with the account identifier and the tokenized PAN, updating a database to associate the certification mechanism reference identifier with the external request code, and transmitting, via the external gateway, a registration authentication to an external entity, the registration authentication comprising the external request code.

Abstract: Systems and methods for effecting secure transactions are described. A processing device, when executing computer-executable instructions: receives from a requesting entity computing system a transaction request for a payload. The transaction request is transmitted to delivery entity computing system associated with a delivery entity identifier and geographic location. An encryption key, random number and a unique request identifier are generated and transmitted to requesting and delivery entity computing systems. In response to receiving a delivery transaction confirmation from the delivery entity computing system, the processing device verifies the secure transaction. After receiving a requestor transaction confirmation from the requesting entity computing system (indicating a verified transfer of the payload), a payload reimbursement is transferred to a delivery transaction account from a requestor transaction account.

Abstract: A system and/or method may be provided to silently authenticate a user. An example method of silently authenticating a user includes receiving a request to complete a transaction associated with a merchant application. The request includes a data file including an identifier from the user device. The request is from a user device. The method also includes determining whether the data file includes a refresh token and determining whether the refresh token is valid if the data file includes the refresh token. The method further includes receiving an access token from the user device if the refresh token is valid. The access token includes an authorization scope. The method also includes determining whether the transaction is within the authorization scope. The method further includes authenticating a user if the transaction is within the authorization scope.

Abstract: Systems, as described herein, may use smart contracts and distributed ledgers in distributed networks to determine points earned by consumer and settle points for merchants. Distributed ledgers in the distributed network may be used to store transactions executed by merchant digital wallets and consumer digital wallet. Smart contracts in distributed networks may be used to maintain point balances associated with the consumer digital wallets and the merchant digital wallets of the consumer, determine points earned by consumer digital wallets, settle points for merchant digital wallets, and send messages to consumer digital wallets regarding expiring points. Systems, as described herein, may also send individualized recommendations of goods and services to the consumer digital wallets.

Abstract: Embodiments are provided for verifying physical proximity of counterparties in digital asset transfers. A sender device receives a recipient hash and a recipient address are received, where recipient hash is generated by the recipient device based on each of the associated recipient address and a first set of location parameters. The sender device obtains a second set of location parameters that corresponds to a detected physical location thereof. The sender device employs the obtained second set of location parameters to decipher the recipient hash, and generates a request to transfer a digital token from a sender address associated with the sender device to the recipient address based on a determination that the deciphered recipient hash corresponds to the received recipient address.

Abstract: The present specification provides a blockchain-based offline resource transfer method and apparatus. A transferor terminal and a receiver terminal of offline resource transfer include multiple execution environments. Multiple computing nodes constructed based on the execution environments further constitute an offline blockchain network as blockchain nodes.

Abstract: A computer-implemented method, system, and/or computer program product provides security in a communication network between a user device and a computer related device, and receives payment for services offered through a distributed registry associated with the communication network. One or more processors provide a distributed registry that specifies a plurality of services available to support communications between a user device and a computer related device on a communication network. The processor(s) dynamically construct one or more multi-node transient processing pathways between the user device and the computer related device based on the services. The processor(s) present the plurality of services specified by the distributed registry to the user device, and append metadata describing a current cryptocurrency cost of the services.

Abstract: A system and a method for creating a holistic, flexible, scalable, confidential, low-latency, high-volume, immutable distributed ledger for the financial services and other industries. The system allows a scalable blockchain solution with respect to accessible memory requirements of distributed ledgers or distributed databases with confidentiality in the shared records as well as accommodating low-latency, high-capacity transaction capabilities. The method includes a fundamental, generic, logical representation of financial services life-cycles transactions in terms of variable sets of four simple, sequential components. The optimal process generates a self-validating, variable n-dimensional, multi-hash-linked, interdependent distributed ledger that allows the individual network participants to recreate the ledger without having to refer to or confirm with other network participants.

Abstract: Methods, systems, and computer-readable storage mediums are described for effecting practical use of a dual currency which is a currency that can be electronically created and stored, and further for which there is a secret key (e.g., the secret key of a public key/secret key pair as used in public key cryptography) such that: an entity that does not possess the secret key cannot, in practice, create notes of the currency; and an entity that does possess the secret key can, in practice, create notes of the currency without assistance from entities that do not possess the secret key.

Abstract: A system and method is provided to register a user; assign a primary account number (PAN) to the user; create an account; create a unique cipher with keys; link, by a trusted source of identification, the PAN to an attribute of the user and to the account; receive the keys at a user device; remove the keys; generate data by a third-party to request the user to perform a transaction; present the PAN to the third-party; receive a transaction request detail; receive the data at a transaction processor based on a unique identifier of the PAN; identify the user using the unique identifier; authenticate the user; request, by the transaction processor, the device to release a key associated with the transaction request detail; decrypt stored information; and send a response, including the decrypted stored information, from the transaction processor to the third-party, thereby identifying the user.

Abstract: The disclosed embodiments include wearable transaction devices. A wearable transaction device may client device for executing a transaction. The client device may include interface hardware for communicating transaction information, a memory device for storing the transaction information, and sensor hardware configured to sense an action performed by a user. The client device may also include one or more hardware processors configured to access the transaction information, and identify an operation based on at least the transaction information. The one or more hardware processors may be further configured to determine that the operation is authorized by the user, and transmit a notification to a server based on the determination that the operation is authorized by the user, the notification including at least an indication of the identified operation.