Abstract: A writing apparatus that writes stored information into a chip which has been embedded in an individual being a living body, a reading apparatus that reads the stored information which is stored in the chip, and a management server. The stored information includes at least chip identification information that enables the chip to be distinguished from other chips, and movement history information that includes a movement history of the individual. The movement history is generated on a basis of a zip code and a date and a time of arrival at a predetermined region corresponding to the zip code. The chip identification information and the movement history information are stored in association with each other in the management server.

Abstract: Methods, systems, and apparatus, including computer programs encoded on a computer storage medium, for a biometric authentication system. In one aspect, a method includes identifying a target user in proximity to a kiosk. Data for the target user is gathered from equipment on and in proximity to the kiosk. The gathered data is processed to generate a feature vector. The feature vector includes at least motion characteristics of the target user as the target user approaches the kiosk and touch input characteristics of the target user at the kiosk. A candidate user to compare to the target user is determined. Reference data for the candidate user is retrieved. The feature vector is compared to the reference data for the candidate user to determine a likelihood that the target user is the candidate user. A kiosk application is customized for the target user based on the determined likelihood.

Abstract: A responder device receives, from an initiator device, a request to initiate a cryptographic tunnel between the initiator device and the responder device. The responder device does not include a static private key to be used in an asymmetric cryptography algorithm when establishing the tunnel. The responder device transmits a request to a key server that has access to the static private key and receives a response that is based on at least a result of at least one cryptographic operation using the static private key. The responder device receives from the key server, or generates, a transport key(s) for the responder device to use for sending and receiving data on the cryptographic tunnel. The responder device transmits a response to the initiator device that includes information for the initiator device to generate a transport key(s) that it is to use for sending and receiving data on the cryptographic tunnel.

Abstract: A new approach is proposed to support account takeover (ATO) detection based on login attempts by users. The approach relies on assessing fraudulence confidence level of login IP addresses to classify the login attempts by the users. A plurality of attributes/features in one or more user login data logs are extracted and used to build a labeled dataset for training a machine learning (ML) model that relies on statistics of the login attempts to classify and detect fraudulent logins. These attributes make it possible to ascertain if a login attempt or instance by a user is suspicious based on the ML model. In some embodiments, the ML model is trained using anonymized user login data to preserve privacy of the users and a proper level of data anonymization is determined based on the ML model's accuracy in detecting the ATO attacks when trained with different versions of the anonymized data.

Abstract: Example systems and methods for defending against powerful, automated attacks on facial authentication systems are disclosed. A first verification is performed based at least in part on determining a response time for a response to a CAPTCHA or other challenge. In response to determining that the response time is within a threshold, a second verification is performed based at least in part on extracting a face feature or a voice feature from a plurality of samples associated with the response.

Abstract: The present disclosure generally relates to digital identification credential user interfaces.

Abstract: Methods and systems may incorporate voice interaction and other audio interaction to facilitate access to prescription related information and processes. Particularly, voice/audio interactions may be utilized to achieve authentication to access prescription-related information and action capabilities. Additionally, voice/audio interactions may be utilized in performance of processes such as obtaining prescription refills and receiving reminders to consume prescription products.

Abstract: Methods and systems for a device identification system may be provided. The device identification system may determine an identity of a user device associated with a transaction. The identity may be determined by network address information, hard link information, soft link information, and/or other such information. The network address information may include IPv4 information, IPv6 information, a device ID, and/or other such information. The identity of the user device may be determined and a transaction conducted from the user device may be assigned a fraudulent transaction risk score according to the information. Transactions that are determined to be at a high risk of fraud may be reviewed or otherwise flagged and/or canceled.

Abstract: Using a biometric sensor coupled to a touchscreen, fingerprint data is collected from within a plurality of virtual key areas of the touchscreen. A virtual key area in the plurality of virtual key areas comprises an area of the touchscreen configured to display an input prompt and collect touch data responsive to the input prompt. Responsive to determining that the fingerprint data has above a threshold level of similarity with stored fingerprint data associated with each of the virtual key areas and that a sequence of the virtual key areas matches a stored key sequence, access to a protected resource is allowed.

Abstract: A companion electronic device includes a communication interface, one or more processors operable with the communication interface, and an authentication device operable with the one or more processors. The one or more processors can be actuated by power received from the communication interface upon the communication interface establishing electronic communication with another electronic device. The one or more processors can delivering signals to the communication interface enabling one or more functions of the other electronic device upon confirming authentication data received by the authentication device after the one or more processors are actuated belongs to an authorized user of the companion electronic device.

Abstract: A biometric verification system is disclosed. The system includes a portable device which stores a biometric reference template and authentication preferences, The portable device can be used with an access device. The access device can prompt the user for a biometric sample, The access device may create a biometric sample template from the biometric sample, and the biometric sample template can be compared to the biometric reference template to determine if a user is authentic.

Abstract: Systems and methods are disclosed herein for managing access to therapy controls of an ambulatory medicament pump that provides therapy to a subject using safe access levels associated with the therapy controls. The therapy change controls may enable modification of the corresponding therapy control parameters. The disclosed systems and methods can determine the eligibility of a subject receiving therapy from the ambulatory medicament pump or a user of the ambulatory medicament pump, for a safe access level and provide access to the corresponding therapy change controls. The ambulatory medicament pump may provide access to the therapy change controls upon receiving an access signal. In some cases, the ambulatory medicament pump may receive a time-based passcode and provide access to the therapy change controls upon receiving a matching passcode from the user.

Abstract: A continuous authentication system and related methods are provided. The system detects requests to perform user actions. A security value is associated with each user action. The system determines a subsequent session security level in response to an adjustment to a session security level by a security value of a requested user action. The requested user action is permitted and the session security level is adjusted based on the security value of the requested user action in response to a determination by the system that the subsequent session security level is greater than or equal to a threshold session security level. A user authentication challenge is caused (e.g., prompted) in response to a determination by the system that the subsequent session security level is less than the threshold session security level.

Abstract: Systems, apparatuses and methods may provide for technology to identify image data, identify eye data from the image data, where the eye data includes one or more of an eye movement of a user or a point of gaze of the user on a display, and determine whether to authenticate the user based on the one or more of the eye movement or the point of gaze.

Abstract: Methods for authenticating a genuine presence of a human involve directing one or more modulated probes towards a body part of the human, receiving a response to the probes from the body part, and analyzing the response to determine whether it contains spectral characteristics that match a class of responses to such probes for the human body part in a human population. Replay attacks are countered by varying the modulation of the probe temporally, spatially, and spectrally each time authentication is performed. The probes may include electromagnetic radiation, acoustic beams, or particle beams that generate a detected reflection, absorption pattern, scintillation, or fluorescence response of the body part. The analysis of the response may be directed to one or more of temporal, spatial, and spectral variations in accordance with the nature of the probes and the modulation.

Abstract: An electronic device includes a biometric reader, a verification indicator, a main screen, a memory, and a processor device. The verification indicator is associated with the biometric reader. The processor device is coupled to the biometric reader, the verification indicator, the main screen, and the memory. The processor device is provided to receive a request for biometric authorization of an action, the request comprising verification information that allows a user to uniquely identify the request, display a representation of the verification information from the verification indicator, provide a representation of the verification information from the verification indicator, and authorize the action based on biometric information from the biometric reader.

Abstract: A method for a system includes capturing with a biometric capture device biometric data associated with a user of a smart device, determining with processor a user profile in response to the biometric data, determining with a physical sensor a plurality of physical perturbations in response to physical actions of the user, determining with the processor a requested user-perceptible action in response to the user profile and the plurality of physical perturbations, receiving with a short-range transceiver an authentication request from a reader device, and outputting with the short-range transceiver a token and identification of the user-perceptible action to the reader device in response to the authentication request, wherein the reader device performs or directs performance of the user-perceptible action in response to the identification of the user-perceptible action and to the token being valid.

Abstract: A new approach is proposed to support account takeover (ATO) detection based on login attempts by users. The approach relies on assessing fraudulence confidence level of login IP addresses to classify the login attempts by the users. A plurality of attributes/features in one or more user login data logs are extracted and used to build a labeled dataset for training a machine learning (ML) model that relies on statistics of the login attempts to classify and detect fraudulent logins. These attributes make it possible to ascertain if a login attempt or instance by a user is suspicious based on the ML model. In some embodiments, the ML model is trained using anonymized user login data to preserve privacy of the users and a proper level of data anonymization is determined based on the ML model's accuracy in detecting the ATO attacks when trained with different versions of the anonymized data.

Abstract: Systems, apparatuses, and methods are described for zeroization of a computing device based on biometric information and vitality information. A computing device may store information associated with a user. The computing device may request biometric information and vitality information from one or more sensing devices. The computing device may determine, based on the requested biometric information and the requested vitality information, whether to zeroize the computing device.

Abstract: Facial scanning data of an authorized user is received for requested access to a computing device. A facial expression of the facial scanning data is determined to match a predetermined facial expression. In response to identifying that the facial expression matches the predetermined facial expression, the computing device is caused to provide a set of functionality that correlates to the predetermined facial expression.