Abstract: A payment authentication service authenticates the identity of a payer during online transactions. The authentication service of the present invention allows a card issuer to verify a cardholder's identity using a variety of authentication methods, such as the use of passwords. Also, the only system participant requiring a certificate is the issuing financial institution. One embodiment of the invention for authenticating the identity of a cardholder during an online transaction involves querying an access control server to determine if a cardholder is enrolled in the payment authentication service, requests a password from the cardholder, verifies the password, and notifies a merchant whether the cardholder's authenticity has been verified. In another aspect of the invention, a chip card and the authentication service independently generate cryptograms that must match in order for the service to verify that the correct chip card is being used by the cardholder.

Abstract: Techniques are disclosed to increase the efficiency of multi-party authentication communications protocols. One technique includes a four party authentication method utilizing a general authenticator to store and provide a credit card authentication password and other payment information to an issuing bank and/or other parties involved in the transaction. Other techniques include the use of skeleton messages to minimize the forwarding of information through a forwarding party, the elimination of redundant communications exchanges, the use of a merchant appliance hardware solution to minimize system integration difficulties, and/or the imposition of credit card constraints. The techniques may be used singly or in combination.

Abstract: Searching is an important problem that arises in a variety of applications, particularly for computerized databases. Further, many such applications involve searching set of (possible very large) integers (e.g., credit card numbers, employee identifiers, customer identifiers, dates, parts numbers, etc.). We present techniques for integer searching in a computer database based on a improved form of hashing which we shall refer to as “size-dependent hashing.” This technique can be used to strike a balance between the available memory in the computer system and the required search time.

Abstract: A user interface through which a user at a client device interacts, via a network, with one or more resource sources includes a display window that displays resources sent to the client device from the one or more resource sources and a control area having one or more applications that allow the user to manipulate interaction with the one or more resource sources. The one or more applications include a security application that includes at least one data field for receiving input from the user to be sent to a specific resource source and an icon that provides a visual indication of whether the specific source is a trusted resource source.

Abstract: A method for authenticating a user at a service requester is provided. A request for a secure transaction is received from the user at the service requester. The user then generates a token using a token generator. The token is generated using secure information associated with the user. The token is received at the service requester and the service requester can then provide the token to a service provider for authentication. The service provider is capable of authenticating the token and generating a result for the authentication. The result is then sent to the service requester, which then processes the transaction based on the authentication result. Accordingly, the user may be authenticated by the service provider without the secure information associated with the user being accessible to the service requester and the service provider does not need to generate the token received from the user.

Abstract: A first account number and a second account number are created for an account. The first and second account numbers are associated with the account and can be used for transactions with the account. A first subset of operations is associated with the first account number and a second subset of operations is associated with the second account number. A subset of operations includes operations that are restricted to a party that has access to the account number. Accordingly, the first party that has access to the first account number is restricted to the operations found in the first subset of operations when transacting with the account. Also, a second party that has access to the second account number is restricted to the second subset of operations when transacting with the account.

Abstract: Searching is an important problem that arises in a variety of applications, particularly for computerized databases. Further, many such applications involve searching set of (possible very large) integers (e.g., credit card numbers, employee identifiers, customer identifiers, dates, parts numbers, etc.). We present techniques for integer searching in a computer database based on a improved form of hashing which we shall refer to as “size-dependent hashing.” This technique can be used to strike a balance between the available memory in the computer system and the required search time.

Abstract: Techniques are disclosed to increase the efficiency of multi-party authentication communications protocols. One technique includes a four party authentication method utilizing a general authenticator to store and provide a credit card authentication password and other payment information to an issuing bank and/or other parties involved in the transaction. Other techniques include the use of skeleton messages to minimize the forwarding of information through a forwarding party, the elimination of redundant communications exchanges, the use of a merchant appliance hardware solution to minimize system integration difficulties, and/or the imposition of credit card constraints. The techniques may be used singly or in combination.

Abstract: A device for making a standardized reproducible blade incision in a human or animal subject for clinically testing the bleeding time of the subject is provided. The device comprises a housing having a surface with a slot defining a longitudinal opening into the housing. A blade is mounted within the housing for movement of the blade tip through and along the slot. Biasing springs are provided within the housing to urge the blade through the slot a predetermined distance and along the slot for a predetermined length to control the depth and length of an incision produced with the device. A trigger is provided to initiate movement of the blade along with a safety pin to prevent the inadvertent activation of the device.

Abstract: A rapid and reliable method is disclosed for determining the presence or absence of endotoxins in solution, including biological liquids such as transudates and exudates. The method comprises a procedure based upon the alteration of a modified coagulation test system by endotoxins produced by gram-negative microorganisms. The method is particularly useful as reliable aid in the early diagnosis and treatment of infections caused by gram-negative microorganisms and to alert the diagnostician to the possibility of septic shock in an infected host.