Abstract: Disclosed herein are system, method, and computer readable media embodiments for global identity verification of a user for multiple services. In some embodiments, a centralized authentication platform (CAP) may receive a request from an independent service to generate an authentication token for a client device based on authentication performed by the service. The CAP may generate an authentication token of a particular authorization level, based on the method of authentication used by the service. The CAP may send the token to the client device as well as store the token in a database. The CAP may receive a second request from a second, unrelated service to validate the authentication token on the client device. The CAP may validate the token on the client device against the token in the database and send a response to the second service indicating that token validity and authentication level.

Abstract: A method for reducing fraud for SMS OTP authentication includes receiving, by a server from a plurality of participating entities, a plurality of phone numbers and a plurality of metadata associated with a user, and determining, by the server, a phone number tenure for each of the plurality of phone numbers, based on the plurality of metadata. The method further includes determining, by the server, a phone number consistency for the plurality of phone numbers, based on the plurality of metadata, and determining, by the server, a device binding status for each of the plurality of phone numbers, based on the plurality of metadata. The method further includes determining, by the server, a most reliable phone number associated with the user from the plurality of phone numbers, and transmitting, by the server, to the most reliable phone number a SMS OTP, and authenticating the user based on the SMS OTP.

Abstract: In some implementations, an identifier manager may receive an indication of the virtual identifier that is linked to a permanent identifier. The identifier manager may receive, from a data storage, a data structure encoding at least one event associated with the virtual identifier. The identifier manager may provide the data structure to a machine learning model in order to a receive a score associated with the at least one event. The identifier manager may map the score to an instruction to modify the virtual identifier. The identifier manager may link a modified virtual identifier to the permanent identifier and unlink the virtual identifier from the permanent identifier. The identifier manager may transmit, to one or more devices using the virtual identifier, an indication of the modified virtual identifier.

Abstract: In some implementations, an identifier manager may receive, from a user device, a request to generate a virtual identifier. The request may indicate a target user for the virtual identifier and a permanent identifier to associate with the virtual identifier. The identifier manager may provide an indication of a set of events to a machine learning model to receive a set of restrictions to apply to the virtual identifier. The set of events may be associated with a profile that is similar to a profile of a user of the user device or to a profile of the target user. The identifier manager may transmit, to the user device, an indication of the set of restrictions. The identifier manager may transmit, to an account manager, an instruction to associate the virtual identifier with the permanent identifier and to apply the set of restrictions to the virtual identifier.

Abstract: In some implementations, a processing device may receive an indication of a triggering event associated with a virtual identifier. The processing device may determine to request the new virtual identifier based on the triggering event. The processing device may transmit, to an identifier manager associated with the virtual identifier, a request for the new virtual identifier. The processing device may receive, from the identifier manager, an indication of the new virtual identifier in response to the request. The processing device may store the indication of the new virtual identifier, in replacement of an indication of the virtual identifier, for processing future events.

Abstract: Systems and methods are disclosed herein for real-time digital authentication. According to some embodiments, receiving a hashed user credential from the third party entity, performing a matching operation between the received hashed user credential and a stored hashed credential stored in the non-transitory memory, the received hashed user credential and the stored hashed credential being hashed using the same hashing algorithm, and in response to detecting a match between the received hashed user credential and the stored hashed user credential, performing a user eligibility operation associated with the first transaction.

Abstract: Systems and methods for authenticating users based on user location data from various sources are disclosed herein. In some aspects, the system may transmit a first request for network and location information. The system may receive wireless network configuration metadata and location data. The system may transmit a second request for cellular network information. The system may receive cellular network metadata. The system may determine a user location. The system may retrieve a user profile. The system may provide the user location and the user profile to a machine learning model. The system may generate an authentication probability. The system may transmit an authentication message based on the authentication probability.

Abstract: Disclosed herein are system, method, and computer readable media embodiments for global identity verification of a user for multiple services. In some embodiments, a centralized authentication platform (CAP) may receive a request from an independent service to generate an authentication token for a client device based on authentication performed by the service. The CAP may generate an authentication token of a particular authorization level, based on the method of authentication used by the service. The CAP may send the token to the client device as well as store the token in a database. The CAP may receive a second request from a second, unrelated service to validate the authentication token on the client device. The CAP may validate the token on the client device against the token in the database based on an authentication level thereof, and send a response to the second service indicating token validity.

Abstract: Systems and methods for digital media-based user authentication are disclosed herein. In some aspects, the system may receive an authentication request. The system may transmit a user verification request based on the authentication request. The system may receive media recordings in response to the user verification request. The system may detect one or more features in the media recordings. The system may generate a plurality of risk metrics for the user based on generating risk metrics for the one or more features. The system may determine an authentication probability based on the plurality of risk metrics.

Abstract: A method and related system may analyze metadata associated with a first set of transactions to determine whether to perform a second set of transactions. The method and related system may include determining a data category based on first device-provided data of a first database transaction indicating a first record associated with a second record, and may further include obtaining, based on whether the data category satisfies a first set of criteria, an identifier and an amount based on image data using a prediction model. The method may further include querying a database based on the identifier to obtain an indication that the identifier is mapped to an object category, validating the amount based on a result indicating whether the object category satisfies a second set of criteria, and causing a second transaction that changes fields of the first and second records.

Abstract: A method including receiving activity data related to a first activity utilizing an unbound schema-specific identifier; training a machine learning engine based on at least one input to obtain a trained machine learning engine that is trained to identify a category associated with the entity; where the at least one input includes: an entity data feature vector, a historical user activity data feature vector, and/or a historical user schema-specific identifier data feature vector; predicting via the trained machine learning engine, a category associated with the first activity; binding the unbound schema-specific identifier to the category to generate a category bound schema-specific identifier; receiving a request to perform a second activity using the bound schema-specific identifier; determining if a second entity associated with the request to perform the second activity is associated with the category; performing one of: approving or denying the request to perform the second activity.

Abstract: In some embodiments, the present disclosure provides an exemplary method that may include steps of receiving a permission from a user of a plurality of users to utilize a particular service associated with a device; identifying a predetermined plurality of authentication rules associated with a profile of the primary user; determining a plurality of parameters associated with the device at a particular time period; comparing a set of controls associated with a current utilization of the service of the device to the plurality of parameters associated with the device; generating an API call based on a comparison of the set of controls to the plurality of parameters; generating a plurality of unique schema-specific identifiers based on a generated API call associated with the set of controls established by the primary user; and generating a provision utilizing the unique schema-specific identifier to perform a particular action associated with the device.

Abstract: Systems and methods facilitate automated e-commerce checkouts using artificial intelligence (AI). An AI component, implemented via a processor and memory, processes content originating from a merchant server and presented on a client device, where the content identifies a purchasable item. The AI component also processes user data reflecting historical behavior or preferences. Based on analyzing the content and user data, the AI component determines if a predefined trigger condition for offering automated checkout is met. If the condition is met, a selectable interface element representing an automated checkout option is presented via the client device. Upon receiving user selection of the element, the AI component performs an operation.

Abstract: Techniques for artificial intelligence (AI) initiated generation of tokens with controls are provided. Systems and methods disclosed herein utilize cloud-based systems integrated with a virtual card platform to deliver controllable virtual card payment methods to a user device's secure element for in-personal or terminal payments. Systems and methods for management of virtual card numbers are also provided.

Abstract: Systems and methods for digital media-based user authentication are disclosed herein. In some aspects, the system may receive an authentication request. The system may transmit a user verification request based on the authentication request. The system may receive media recordings in response to the user verification request. The system may detect one or more features in the media recordings. The system may generate a plurality of risk metrics for the user based on generating risk metrics for the one or more features. The system may determine an authentication probability based on the plurality of risk metrics.

Abstract: Methods and systems for preventing unauthorized resource access. In some aspects, the system obtains, in real time, a first data stream between a user requesting access to resources in a user account and an agent. The system processes, using a first machine learning model, the first data stream to generate a confidence score. If the confidence score exceeds a threshold, the system generates a sandbox context configured to simulate output indicative of successful resource access. The system obtains a second data stream for the sandbox context and processes it using a second machine learning model to determine whether the communication between the agent and the user was malicious. If the communication was not malicious, the system removes the user account from the sandbox context and effects grant of resource access. Otherwise, the system reports the agent and the user account for further processing for attempts to obtain unauthorized user access.

Abstract: A method and related system may analyze metadata associated with a first set of transactions to determine whether to perform a second set of transactions. The method and related system may include determining a data category based on first device-provided data of a first database transaction indicating a first record associated with a second record, and may further include obtaining, based on whether the data category satisfies a first set of criteria, an identifier and an amount based on image data using a prediction model. The method may further include querying a database based on the identifier to obtain an indication that the identifier is mapped to an object category, validating the amount based on a result indicating whether the object category satisfies a second set of criteria, and causing a second transaction that changes fields of the first and second records.

Abstract: Methods, techniques, and embodiments are generally directed to systems for receiving a request from an authenticated computing application to associate a contactless card with an account. The systems then authenticate that the request came from an account holder. After establishing the authenticity of the account holder, the systems determine a unique identifier for the account holder associated with the account. Finally, the systems send a second request to the authenticated computing application to write this unique identifier onto the contactless card.

Abstract: Methods and systems for adjusting access parameters for authentication tokens. In some aspects, the system receives an authorization request associated with a first authorization token for a user account and determines that access parameters for the first authorization token do not include resources associated with the authorization request. The system processes, using a real time model, the authorization request and a first set of features to generate a first degree of confidence indicating a likelihood of adjusting access parameters. Using the first degree of confidence, the system determines whether to grant the authorization request and transmit a response. The system then processes a second set of features using a comprehensive model to determine whether to adjust the access parameters for the first authorization token. The system may adjust the access parameters for the first authorization token and generate a notification to a user associated with the user account.

Abstract: Systems and methods for managing resource access permissions for users with secured and unsecured authentication tokens. In some aspects, the system may receive, from a user, a resource access request for a system. The resource access request may include a user identifier and a first activity for the resource access request. The system may retrieve information regarding authentication tokens associated with the user usable to process the resource access request. In response to determining whether the user is associated with the secured authentication token and the unsecured authentication token, the system may process, using a machine learning model, the resource access request to determine a measure of risk to the system that is associated with executing the resource access request for the user. In response to determining that the measure of risk is below a threshold, the system may process the resource access request using the unsecured authentication token.