Abstract: A method for implementing blockchain-based transactions includes: determining a to-be-remitted amount for each of a plurality of remitters participating in a transaction and a to-be-received amount for each of a plurality of receivers participating in the transaction, wherein the plurality of remitters include one or more real remitters, the plurality of receivers include one or more real receivers, and the plurality of remitters include one or more cover-up remitters and/or the plurality of receivers include one or more cover-up receivers; generating a commitment of the to-be-remitted amount corresponding to the each remitter and a commitment of the to-be-received amount corresponding to the each receiver; and submitting the transaction to a blockchain for execution, wherein the transaction comprises blockchain account addresses of the remitters and receivers, and the commitments of the to-be-remitted amounts and the to-be-received amounts.

Abstract: A method of a secure transaction without physical support of a security identifier and without a token includes recording on a biometric server a biometric profile linked intrinsically to a unique user, the profile being associated with at least one service identifier, recorded on a server distinct from the biometric server, the service identifier being accessible by the user, and during a transaction, acquiring the biometric profile of a user, in transmitting it to the biometric server for comparison with the biometric profiles recorded and in searching for a service associated with the profile and activating it on the service server. The step of recording a new user includes the time of receipt by a central server of a profile, the execution of a step of generating a temporary master random key.

Abstract: One embodiment of the invention is directed to a method comprising, establishing, by a wallet server computer, a single sign-on link between a user bank account and a wallet application. The method further comprises receiving a transaction request message from a user, wherein the transaction request is for a transaction between the user and a merchant associated with the wallet application. The method further comprises sending sign-on data to an issuer computer using a secure authentication protocol and receiving a confirmation message from the issuer computer confirms initiation through the issuer application. The transaction is processed by the wallet server computer based on the confirmation message.

Abstract: A method for linking blockchain transactions to privately verified identities includes: storing account profiles, each profile including data related to a transaction account including an account identifier and account data; receiving a transaction message, the message including a first data element configured to store a personal account number, a second data element configured to store a merchant identifier, and a third data element configured to store a blockchain network identifier; identifying a first account profile that includes the personal account number; identifying a second account profile that includes the merchant identifier; receiving a transaction notification, the notification indicating a transaction processed using a blockchain network associated with the blockchain network identifier and including a transaction identifier and an address identifier associated with the first or second account profile; and storing a linkage between the transaction identifier and the address identifier, the pers

Abstract: Systems and methods are provided for constructing a digital money from concatenated or otherwise linked bit strings. Several applications of digital coins include (i) means to secure the use of money according to the prevailing understanding between payer and payee, (ii) a method by which a mint entity that mints and redeems digital money collaborates with traders to jointly earn interest, or jointly gamble in the stock market, or other markets, (iii) a method by which a mint entity that mints and redeems digital money collaborates with merchants, their customers, and credit-extending entities (CEE) to allow the CEE to extend credit to selected group of customers, so that these customers can shop with any participating merchant, and (iv) a method for utility consumption on a real-time basis by splitting digital coins at a rate that pays exactly for the utility measure being consumed.

Abstract: Social interaction-based policies are provided to a digital content owner and are applied to uploaded content matching digital content owned by the digital content owner. Social interaction-based policies enable the content owner to obtain various benefits to the content owned by the content owner within a video hosting site and outside the video hosting site. The benefits include using content owner's successful digital content to drive traffic or subscriptions to content owner's social interaction platforms and increase engagement with viewers of the digital content within and outside the video hosting site. The social interaction-based policies also enable content uploaders of digital content matching content owned by others to participate in sharing revenue generated from their uploaded videos subject to social interaction-based policies applied to the uploaded videos.

Abstract: A system, a computer readable storage medium, and methods for delivering content from a zero-knowledge edge server node in a content delivery network to an end user device, ensuring content control by a content provider (i.e. reduce piracy) while ensuring privacy of an end user device. One method includes publicizing that a particular content is available for download from the server node; initiating with the server node a communication session using a zero-knowledge protocol between the end user device and the server node operating in zero knowledge; downloading, while in the communication session, the particular content from the server node to the end user device; and receiving a response message from the end user device, including an indication of a content media player application, using the particular content, successfully executed at the end user device. The indication can be accompanied by a cryptographically verifiable proof of integrity.

Abstract: The present invention relates to an off-line PIN authentication and an off-line PIN authentication system. The method comprises: inputting an off-line PIN1 to a POS terminal, the POS terminal generating a dynamic challenge code, and transmitting the dynamic challenge code and the off-line PIN1 to a card application; the card application verifying the first off-line PIN1 and the second off-line PIN2 are consistent with each other or not; if consistent, a digital signature being made on the first off-line PIN1 and the second off-line PIN2 to return signature data and a success status code to the POS terminal; the POS terminal verifying the signature data in case of receiving the success status code, and starting the subsequent transaction procedure if the signature data is verified successfully. According to the present invention, it not only can realize the verification of the IC card to the off-line PIN, but also can realize the verification of the terminal to the off-line PIN.

Abstract: A processing system periodically configures a beacon code and random nonce to transmit to a beacon device at a location. Multiple users enter the location with associated user computing devices and retransmit the beacon code broadcasted by the beacon device to the processing system. A computing device at the location transmits to the processing system a request for account data comprising a hardware identifier and retransmits the beacon code and a random nonce. The processing system verifies the request based on the beacon code and random nonce and transmits, to the computing device at the location, user account identifiers associated with user computing devices that retransmitted the beacon code. Within a threshold period of time, the processing system may verify a subsequent request from the computing device, even without receiving the beacon code and random nonce, if the request comprises the hardware identifier.

Abstract: Dynamically generated quick response (QR) codes are used for secure communication to/from mobile devices. In one example, a QR code identifies a product or service selected by a user using a mobile device. The mobile device generates the QR code identifying the user's selection, and displays the QR code for reading by a retail kiosk. The retail kiosk, such as movie-rental kiosk, extracts the product or service selection encoded in QR code and provides the identified product or service to the user. The QR code can additionally identify a user account, such that payment for the product or service is automatically charged to the account identified from the QR code. In another example, the QR code is used to transfer money and/or credits between a user and a retailer, or between two users.

Abstract: This application discloses a method for implementing a secure transaction via a social network platform. A server receives a product purchase request from a client device, and the product purchase request includes product information, product server information and a user account identifier of the social network platform. The transaction server authenticates the product purchase request, and forwards the product purchase request of the corresponding product to the product server in an encrypted format. After receiving a confirmation message from the product server, the transaction server initiates a payment transaction between the user account and the product server. Further, after completing the payment transaction, the transaction server sends a payment completion message to the client device and the product server, respectively.

Abstract: A mobile computing device having at least one processor and at least one memory, together providing a first execution environment and a second execution environment logically isolated from the first execution environment, the mobile computing device comprising: a first application executable within the first execution environment; a second trusted application executable within the second execution environment; and a secure communications channel between the first application and the second trusted application, wherein the second trusted application is configured to generate one or more data items and to provide the one or more data items to the first application via the secure communications channel.

Abstract: A device may perform a first authentication operation, associated with a contactless media device, using a first key. The first key may permit a security mode of the contactless media device to be modified. The device may cause the contactless media device to set the security mode to a first security mode that causes the contactless media device to secure at least one transmission from the contactless media device. The device may perform a second authentication operation, associated with the contactless media device, using a second key that permits information to be read from or written to the contactless media device. The device may read first secured information from or write second secured information to the contactless media device. The first secured information or the second secured information may be secured based on the security mode of the contactless media device being set to the first security mode.

Abstract: A system for provisioning credentials onto an electronic device is provided. The user device may include a secure element and a corresponding trusted processor. A contactless registry service (CRS) applet running on the secure element may be used to manage the activation of one or more associated payment applets during a mobile payment transaction. The CRS applet may include at least a user input received flag and an authorization received flag. The user input received flag may be asserted in response to detecting a required user input for initiating payment. The authorization received flag may be asserted when the trusted processor sends an activation request to the secure element. A payment applet should only be activated when at least one of the user input received flag and the authorization received flag has been asserted.

Abstract: Provided is a distributed application that shifts certain server-side operations from geolocation analytics platforms to client computing devices to enhance consumer privacy and the collection and use of potentially sensitive, personal data about an individual and their mobile device.

Abstract: The present invention generally relates to a method, system and program product for modifying a supply of stable value digital asset tokens tied to a blockchain.

Abstract: The present invention generally relates to a method, system and program product for modifying a supply of stable value digital asset tokens tied to a blockchain.

Abstract: Embodiments are described that are directed to optimizing the provisioning of payment account credentials to mobile devices utilizing mobile wallets. In some embodiments, one of multiple provisioning schemes may be selectively chosen for payment account credential provisioning based upon a determined risk involved with a particular provisioning request. A low risk provisioning request leads to an immediate provisioning of a payment credential, whereas a provisioning request of high risk results in the provisioning request being denied. In some embodiments, medium risk provisioning requests will cause an additional user authentication to be performed before the payment account provisioning is finalized. The additional user authentication may occur using a separate communication channel than the channel in which the provisioning request was received.

Abstract: The described system and method allows a contact such as a mobile phone number to be associated with a specific mobile wallet account and by submitting a mobile phone number to an ecommerce site, a URL will be communicated to the contact which opens the payment wallet with the relevant information from the ecommerce transaction.

Abstract: A computer-implemented method for verifying cardholder authenticity when provisioning a token is provided. The method uses an authentication server system having a processor and a memory. The method includes receiving, by the processor, a payment card account identifier provided by a payment requestor. The payment card account identifier for identifying a payment account associated with a cardholder. The method also includes determining a plurality of authentication data associated with the payment requestor, and performing an authentication process using the plurality of authentication data. The authentication process is configured to determine if the payment requestor is the cardholder. The method further includes determining an assurance level associated with the authentication process. The assurance level represents a level of confidence in the authentication process.