Abstract: Payment authentication using OS-based (operating system-based) and issuer-based authenticator applications is provided. The described authenticator applications perform processes including managing a resource with information about registered users; receiving user identifiable information; authenticating a user using the user identifiable information and the information stored in the resource; upon authenticating the user using the user identifiable information and the information stored in the resource, generating a key tied to existing biometric authentication of the user and mapped to the user identifiable information; and communicating with a support server to provide the key and a notification of a potential transaction.

Abstract: Payment authentication using OS-based (operating system-based) and issuer-based authenticator applications is provided. The described authenticator applications perform processes including managing a resource with information about registered users; receiving user identifiable information; authenticating a user using the user identifiable information and the information stored in the resource; upon authenticating the user using the user identifiable information and the information stored in the resource, generating a key tied to existing biometric authentication of the user and mapped to the user identifiable information; and communicating with a support server to provide the key and a notification of a potential transaction.

Abstract: Systems and methods provide multi-function authentication. One exemplary method includes receiving a request to opt into multi-function authentication. A primary operation-based key is generated by the communication device, the operation-based key accessible based on authentication of the user and available for use after the authentication. The primary key is imported, by an application, into a secure key data structure, such that it is only accessible by the application. When the biometric authentication of the user is successful, the communication device transmits to an account server an indication that the user is eligible for multi-function authentication. The communication device receives a time-based secondary key from the account server, wherein the time-based key is useable only during a defined interval. The application links the secondary key to the primary key and imports the secondary key into the data structure such that it is only accessible via the primary key.

Abstract: Systems and methods provide multi-function authentication. One exemplary method includes receiving a request to opt into multi-function authentication. A primary operation-based key is generated by the communication device, the operation-based key accessible based on authentication of the user and available for use after the authentication. The primary key is imported, by an application, into a secure key data structure, such that it is only accessible by the application. When the biometric authentication of the user is successful, the communication device transmits to an account server an indication that the user is eligible for multi-function authentication. The communication device receives a time-based secondary key from the account server, wherein the time-based key is useable only during a defined interval. The application links the secondary key to the primary key and imports the secondary key into the data structure such that it is only accessible via the primary key.