Abstract: A method for providing secure payment instructions includes verifying a payer device for use in a transaction with a payee device. When a request is received from the payee device for payer information associated with a payment account being used by the payer device in the transaction, a security font is generated and associating in a database at least one payer information font character with payer information that is associated with the payer account. The at least one payer information font character is then provided to the payee device, and when a request for the security font is received and determined to be from the verified payer device, the security font is provided to the verified payer device such that the at least one payer information font character may be converted to the payer information for display on the payer device.

Abstract: The invention proposes an off-line divisible e-cash scheme where a user can withdraw a divisible coin of monetary value nL (n being for example equal to 2) that he can parceled and spend anonymously and unlinkably. The invention allows to protect the anonymity of honest users and to revoke anonymity only in case of cheat for protocols based on a tree structure without using a trusted third party.

Abstract: The invention discloses a method for loading double e-wallets, relating to the information security field.

Abstract: Provides a consumer of digital products with an experience like that of visiting a shopping mall, where a product may be “tried on,” or downloaded, without having to pay until it's actually used. A consumer may download three identical copies of an item, but not be billed for any of the downloads until one of the copies of the item is actually installed or used on the client device. At that point, a purchase of that particular copy of the item is deemed to have occurred and the user is billed for that particular copy. The sale is credited to the provider that the particular copy is associated with, based on a transaction identifier that associates that particular copy of the item with the client device and the provider. The unused copies of the item may automatically be deleted or disabled once the purchase has occurred.

Abstract: Systems, apparatuses, and methods for providing an account token to an external entity during the lifecycle of a payment transaction. In some embodiments, an external entity may be a merchant computer requesting authorization of a payment message. In other embodiments, the external entity may be a support computer providing a payment processing network or a merchant support functions.

Abstract: Security processor (42) for a decoder able to receive a scrambled multimedia signal, this processor comprising: —at least one first rewritable lock (FIELDKEY, FIELDPIEMM, FIELDPIEMMC, FIELDPIECM, FIELDFCT) whose value can be toggled between a first and a second predetermined value in response to an EMM or ECM message, —a restriction function able to authorize and, alternately, prohibit, as a function of the value of the first lock, only one particular operation of the security processor, this particular operation being chosen from the group composed of: the use of a cryptographic key, the processing of a parameter contained in an EMM or ECM message received, and the execution of an elementary conditional access function of the code of the application.

Abstract: A system for processing a debit transaction between a merchant and a consumer. The system includes one or more processors programmed to receive payment information for the consumer, collect authentication data for the debit card from the consumer, transmit an alias account number unique to the debit transaction to the merchant, receive a credit authorization message including the alias account number from the merchant, translate the credit authorization message to a debit authorization message using the authentication data, and transmit the debit authorization message to a payment processor.

Abstract: Systems and methods to provide licensing and licensing management to source code components. The system receives a request from a component developer for a component license. The system sends a public key, a component identifier, and licensing code to the developer and the developer embeds the public key, the component identifier, and the licensing code within the source of the component. The developer sends the embedded component to the system, which publishes the component for sale on a web site. A purchaser of the component can embed the component, API code, and a generated license key into a developed application. The API code is invoked, which activates the component within the application. The application can be sent to the system where it can be published to a web site for sale.

Abstract: A system used in a retail environment for providing end-to-end encryption of payment cardholder data. An input device configured to receive cardholder data is operative to encrypt the cardholder data according to a first encryption method to produce first encrypted cardholder data. A cardholder data handling device is in electronic communication with the input device. A secure evaluation assembly (SEA) is operatively connected to the cardholder data handling device and comprises antitampering control electronics adapted to decrypt the first encrypted cardholder data to produce unencrypted cardholder data. The antitampering control electronics evaluate the unencrypted cardholder data to determine whether the unencrypted cardholder data is payment cardholder data or nonsensitive cardholder data.

Abstract: Techniques for recovery during authentication include initiating sending a HyperText Transfer Protocol (HTTP) authentication message from user equipment of a user to a merchant node of a merchant. If the user is not authenticated in response to the HTTP authentication message, then sending a Short Message Service (SMS) message from the user equipment to the merchant node is initiated. The SMS message indicates a transaction between the user and the merchant. In some embodiments, techniques include changing an access point to a network until an access point utilized is on a list of acceptable access points, in response to a buy response message that indicates a transaction between a merchant and a user. A hypertext transfer protocol authentication message is sent through the access point that is on the list of acceptable access points.

Abstract: A method for facilitating an authentication related to an electronic transaction between a first and a second user is provided. Authentication data is received from the first user along with transaction data defining the first user and the electronic transaction to be authenticated. This authentication data is compared to enrollment authentication data associated with the first user in order to verify the identity of the first user. When the user is properly verified, access to at least one private cryptographic key stored on a secure server is available for use in securing the electronic transaction. The particular private cryptographic key need not be released from the secure server. Data indicating the status of the authentication may then be sent to one of either the first or second user.

Abstract: A computer-implemented method for discouraging polymorphic malware may comprise: 1) receiving a request to register a file in a registration database, 2) applying a registration tax to the file, 3) determining, based on whether the registration tax for the file has been satisfied, whether to register the file in the registration database, and then 4) determining, based at least in part on whether the file has been registered in the registration database, whether to add the file to an approved-file database. A method for determining whether to allow files on a computing device to execute using such an approved-file database is also disclosed. Corresponding systems and computer-readable media are also disclosed.

Abstract: A method and apparatus for delivering a plurality of products from a vending machine is disclosed. The method generally allows an offer for a package to be output, in which the package defines a plurality of products, including a selected product. An apparatus is also disclosed to carry out the method steps of the present invention.

Abstract: A master license entry that links a software application to a user identification can be made. Application licenses to use the software application can be roamed to multiple computing machines. Feature licenses for added features of the software application can be roamed to those computing machines as well. Multiple overlapping license rights for the software application may be linked to the master license entry. A count of how many license rights for the software application are linked to the master license entry can be maintained. Requests for licenses may be refused if the count of license rights has reached zero.

Abstract: A computer implemented method to exchange virtual goods in a virtual environment includes receiving funds at a trading platform from a buyer. The buyer is provided with a first secret that the buyer can decrypt and a second secret that the buyer cannot decrypt. The buyer is authenticated to a seller using the first secret. A virtual item is delivered from the seller to the buyer in response to authenticating. The buyer delivers to the seller the second secret for decryption by the seller. The seller is authenticated at the trading platform with the second secret. The seller is supplied with the funds.

Abstract: A method and system for generating printable certificates to verify log authenticity. A logging module generates a compound document that includes metadata for changes made to pages in a document. Each time a change is made to the document, such as adding stroke data, the logging module updates the compound document with the changes. The online marketplace module displays an option for purchasing a printable certificate. In response to a request for a certificate, the logging module generates a printable certificate that includes a set number of hashes for previous transactions. The verification module can recreate a transaction and generate a hash that is compared to the certificate to verify that no tampering has occurred with the document.

Abstract: One embodiment of the present invention provides a system for managing business responsibilities. During operation, the system receives a user request for a business responsibility and forwards the request to a managing entity, thereby allowing the managing entity to approve or deny the request. If the managing entity approves the user's request, the system identifies one or more resources corresponding to the requested business responsibility, and provisions the credentials required to access the identified resources, thereby allowing the user to access the business responsibility without managing the required credentials. The system further notifies the user that the requested business responsibility is accessible. If the managing entity denies the user's request, the system notifies the user that the request is denied.

Abstract: One embodiment of the invention includes a system comprising: a personal digital key and a computer readable medium that is accessible when authenticated by the personal digital key.

Abstract: [PROBLEM] To enable confirmation of whether a substrate processing system is being illicitly used and preventing that use when there is the fact of illicit use. [MEANS FOR SOLUTION] A license file LF is a file encrypting license information L including usage terms of a substrate processing system for a specific user. A match confirmation program P2 confirms the match between the content of the license file LF decrypted by a decryption program P1 and device information DI, network information NI, and current time CT obtained from the substrate processing system to confirm the existence of the fact of illicit use. If there is illicit use, the control program P3 stops operation of the substrate processing system until predetermined action is taken based on the information from the match confirmation program P2.

Abstract: The present disclosure relates to the authenticating a client against a pool of servers utilizing a secure authentication protocol, and, more specifically, to the authenticating a client against a pool of servers providing a common service, utilizing the Kerberos secure authentication protocol.