Abstract: A command line anomaly detection system can generate anomaly scores associated with command line entries, such that command line entries associated with the highest anomaly scores can be identified. The command line anomaly detection system can include a transformer model trained, via unsupervised machine learning, to determine meanings of components of individual command line entries. The command line anomaly detection system can also include an anomaly detection model trained, via unsupervised machine learning, to determine anomaly scores based on the meanings of components of individual command line entries determined by the transformer model.

Abstract: A method for carrying out a wireless transaction for authorization through a transaction processing system between a first computing device and a second computing device is described. The first computing device establishes a secure network connection with a third computing device. The first computing device initiates the wireless transaction with the second computing device. The first computing device provides information to perform a security protocol for the transaction to the third computing device over the secure connection. The performance of the security protocol includes determination of a secure result. The first computing device receives a dummy secure result from the third computing device, and performs the wireless transaction with the second computing device using the dummy secure result. The third computing device prepares a true secure result for the wireless transaction. The dummy secure result may be used to reconcile the wireless transaction with the true secure result.

Abstract: The invention provides techniques for detecting and responding to potentially unintended checkout operation made by consumers using legitimate payment credentials to initiate the transaction. The invention operates prior to a transaction being approved, rather than after the event, enabling the invention to provide an efficient method of preventing unintended checkout proceeding to actual purchase. Broadly speaking the invention analyses a transaction request in real-time or near real-time and predicts how likely it is that the transaction is unintentional. In cases where it is deemed likely that the transaction is unintentional, the consumer that initiated the transaction is required to confirm that they wish for the transaction to go ahead in order to complete the transaction. The user's confirmation is stored and is available at a later date should the consumer attempt to dispute the transaction. This greatly reduces the likelihood of unintentional transactions being processed.

Abstract: The present invention relates to a computer implemented method (10) of completing a transaction. The method (10) comprises: providing (1) a consent start date from a consumer, providing (2) a consent end date from the consumer, requesting (3) authorisation to complete the transaction on a specified date, and providing (4) authorisation to complete the transaction if the specified date is the same as or later than the consent start date and the same as or earlier than the consent end date. Also disclosed is a system (30) for completing a transaction. The system (30) comprises a payment system (31), a merchant system (32) and an issuer system (33). The payment system (31) is configured to provide a consent start date from a consumer and a consent end date from the consumer. The merchant system (32) is configured to request authorisation to complete the transaction on a specified date.

Abstract: The present invention relates to a method (10) of requesting consent from a consumer to complete an action. The method (10) comprises: determining (1) a time interval during which a probability of a consumer providing consent to complete the action exceeds a probability of the consumer not providing consent to complete the action; and requesting (2) consent from the consumer to complete the action during the time interval. Also disclosed is a system (30) for requesting consent from a consumer to complete an action. The system (30) comprises a probability processor (31) and a request processor (32). The probability processor (31) is configured to determine a time interval during which a probability of a consumer providing consent to complete the action exceeds a probability of the consumer not providing consent to complete the action. The request processor (32) is configured to request consent from the consumer to complete the action during the time interval.

Abstract: A portable device for attaching a connector to an optical fiber, the optical fiber having an end, the device comprising means for receiving the optical fiber at the end of the optical fiber; and a connector station for autonomously attaching the connector to the optical fiber.

Abstract: A method and system include providing a user interface associated with an issuer of an account; receiving, at the user interface, a request to generate a token associated with a user account; generating at least one token associated with the user account; authenticating one or more elements associated with the user account, wherein authentication may be one of prior to and subsequent to the generation of the at least one token; and receiving the at least one token. Numerous other aspects are provided.

Abstract: A method is described of managing service events in a distributed computing system. The distributed computing system comprises a plurality of computing nodes able to perform a service using a service process. The method takes place at one of the computing nodes. A service event is received or created. This service event is identified by a combination of a node identifier, a time element, and a local counter value. The local counter value represents a number of service events performed by a service process for a user since a last reset. The identified service event is then stored in a service process database according to node identifier and local counter values. The service process database is used to manage service events in the distributed system.

Abstract: A method of establishing a digital identity for use of an online service and of subsequently using the digital identity to perform the online service is described. A digital identity for the online service is bound to computer hardware associated with the digital identity. A user associated with the digital identity provides a user authentication at the computer hardware associated with the digital identity. The digital identity is enrolled for the online service, and a first instance of the online service for the digital identity is performed. A common user authentication process result completes enrolment of the digital identity and authenticates the digital identity for performing said first instance of the online service.

Abstract: A method for building an advanced storage key includes: storing, in a mobile device, at least (i) device information associated with the mobile device, (ii) program code associated with a first program including an instance identifier, and (iii) program code associated with a second program including a first key; generating a device fingerprint associated with the mobile device based on the device information via execution of the code associated with the first program; generating a random value via execution of the code associated with the first program; building a diversifier value based on the generated device fingerprint, the generated random value, and the instance identifier included in the code associated with the first program; and decrypting the built diversifier value using the first key stored in the code associated with the second program via execution of the code associated with the second program to obtain a storage key.

Abstract: A method for building an advanced storage key includes: storing, in a mobile device, at least (i) device information associated with the mobile device, (ii) program code associated with a first program including an instance identifier, and (iii) program code associated with a second program including a first key; generating a device fingerprint associated with the mobile device based on the device information via execution of the code associated with the first program; generating a random value via execution of the code associated with the first program; building a diversifier value based on the generated device fingerprint, the generated random value, and the instance identifier included in the code associated with the first program; and decrypting the built diversifier value using the first key stored in the code associated with the second program via execution of the code associated with the second program to obtain a storage key.

Abstract: Transaction address data is received at a point of interaction (POI) device, from a payment-enabled mobile device. The transaction address data includes first address data and second address data. The first address data identifies a wallet service provider that is associated with the payment-enabled mobile device. The second address data indicates an internet address for a server function present in the payment-enabled mobile device. The first address data is used to dispatch the second address data from the POI device to the wallet service provider.

Abstract: A method of performing a payment transaction employing a two-factor authentication mechanism. In an embodiment, a user device operated by a user during a payment transaction engages in cryptographic processing with a cryptographic function having a secret key encoded therein. The cryptographic function is stored in a storage device of the user device, and the secret key serves as a first authentication factor. The method also includes the user device utilizing a second authentication factor, which was implemented using only software security techniques, in performing the payment transaction.

Abstract: Techniques for enabling performance of a quality control function on the contactless interface while the contactless interface is disabled are provided. The techniques include implementing, on a dual-interface payment device, one or more security mechanisms, wherein the dual-interface payment device comprises a first interface and a second interface, using the one or more security mechanisms to prevent a subset of data corresponding to the first interface from being read using the second interface while allowing data corresponding to the second interface to be read using the first interface, and personalizing the dual-interface payment device and the one or more security mechanisms according to one or more requirements of an issuer of the dual-interface payment device.

Abstract: A method of performing a payment transaction employing a two-factor authentication mechanism. The method includes engaging in cryptographic processing with a cryptographic function having a secret key encoded therein. The cryptographic function is stored in a computing device. The secret key serves as a first authentication factor. The method further includes utilizing a second authentication factor in performing the payment transaction.

Abstract: Methods, apparatus and systems for upgrading an untrusted channel to a trusted channel. In an embodiment, a verifier server computer receives a request to verify an untrusted channel address from a first service component that is associated with a Consumer identifier, retrieves a trusted channel address from a verifier database, and then generates a one-time password witness value. The verifier server computer then splits the one-time password witness value into a first portion and a second portion, and transmits the first portion to the first service component and transmits the second portion to the second service component.

Abstract: A method is described of monitoring a service performed at a computing node. The computing node is one of a plurality of computing nodes in a distributed computing system. Each computing node is adapted to perform at least one service for clients. A monitoring process is adapted to monitor a service process performing the process. In the method, the monitoring process monitors the service process on performance of the service. The monitoring service then provides monitoring information to a monitoring process for another service process. A suitable computing node for performing the service is described, as is a coordinated monitoring service for supporting multiple monitoring services.

Abstract: Methods and systems for generating consumer payment credentials using an Internet-connected appliance. In an embodiment, a primary Internet-connected appliance receives purchase transaction information from a secondary appliance. The process also includes generating a purchase transaction authorization request based on purchase transaction information and on payment account credential data that is stored locally in a dedicated storage element, transmitting the purchase transaction authorization request via the Internet to a gateway server computer, receiving a purchase transaction authorization response, and transmitting the purchase transaction authorization response via a domestic network to the secondary appliance for display to a consumer.

Abstract: A portable device for attaching a connector to an optical fiber, the optical fiber having an end, the device comprising means for receiving the optical fiber at the end of the optical fiber; and a connector station for autonomously attaching the connector to the optical fiber.

Abstract: A method includes maintaining a digital wallet in a computer, and receiving a request for a transaction. The computer may receive and verify user authentication data, and then allow the user to access any payment card account in the digital wallet without requiring additional user authentication, regardless of the account selected for the transaction by the user. In some embodiments, cryptogram generation may be performed with an EMV server in association with the digital wallet, to enhance the level of security assurance for merchants, issuers and users.