Abstract: In some embodiments, the present disclosure provides an exemplary method that may include steps of determining an identity of at least one user of a plurality of users based on a multi-factor authentication; utilizing an identity tokenizer to generate at least one temporary identity token associated with the identity of the user; transmitting the at least one temporary identity token to an external computing device for authentication; receiving an authenticated digital token from the external computing device; automatically utilizing the authenticated digital token to retrieve a plurality of data items of an account information; utilizing a security module to link the authenticated digital token and the plurality of data items; generating a unique-universal identifier associated with the security module and the authenticated digital token; and utilizing the unique-universal identifier and the security module associated with the authenticated digital token.

Abstract: Methods and systems for personalizing contactless cards are provided. An exemplary method includes: preinstalling, by a server, an applet on the contactless card; assigning, by the server, a first unique identifier to the contactless card; pre-provisioning, by the server, a first unique derived key to the contactless card; generating, by the server a first nonce; generating, by the server, a data file containing script for updating the contactless card and further containing a message authentication code (MAC); transmitting, by the server, the data file and the first nonce to the contactless card; validating, by the contactless card, the MAC based on the first unique derived key and the first nonce; and personalizing the contactless card by the preinstalled applet executing the script.

Abstract: Methods, techniques, and embodiments are generally directed to systems for receiving a request from an authenticated computing application to associate a contactless card with an account. The systems then authenticate that the request came from an account holder. After establishing the authenticity of the account holder, the systems determine a unique identifier for the account holder associated with the account. Finally, the systems send a second request to the authenticated computing application to write this unique identifier onto the contactless card.

Abstract: Systems, methods, apparatuses, and computer-readable media for secure generation of one-time passcodes using a contactless card. In one example, an operating system (OS) of a device may receive a uniform resource locator (URL) and a cryptogram from a contactless card. The OS may launch an application associated with the URL. The application may transmit the cryptogram to an authentication server. The application may receive a decryption result from the authentication server indicating the authentication server decrypted the cryptogram. Based on the decryption result, the application may request an OTP. The processor may receive an OTP from an OTP generator. The application may receive an input value and compare the input value to a copy of the OTP. The application may determine that the comparison results in a match, and display, based on the determination that the comparison results in the match, one or more attributes of the account.

Abstract: Systems and methods for authentication may include a first device including a memory, a communication interface, and one or more processors. The memory may include a counter value, transmission data, and at least one key. The one or more processors may be in communication with the memory and communication interface. The one or more processors may be configured to create a cryptogram using the at least one key and counter value, wherein the cryptogram includes the counter value and the transmission data; transmit the cryptogram via the communication interface; update the counter value after cryptogram transmission; receive an encrypted access token via the communication interface; decrypt the encrypted access token; store the decrypted access token in the memory; and transmit, after entry of the communication interface into a communication field, the access token via the communication interface for access to one or more resources, wherein the access token is encrypted.

Abstract: A merchant page in a browser may receive selection of a first financial institution. The merchant page may generate a uniform resource identifier (URI) directed to an application. At least a portion of the URI may be registered with the application and the first financial institution in a mobile operating system. Responsive to receiving selection of the URI, the mobile OS may launch the application, which may authenticate credentials for an account. The application may associate the user ID parameter and the session ID parameter with the account and receive a cryptogram from a contactless card. The application may receive, from a server, an indication specifying the server verified the cryptogram. The OS may launch the browser, which may refresh the page. The refreshed page may include a virtual card number (VCN) in a first form field. A transaction may be processed based on the VCN.

Abstract: Logic may provide enforce a rate limit for product offers and generate a product token associated for product authentication. Logic may determine a rate limit associated with the product based on an identity of the consumer in a cryptogram for a transaction. Logic may compare the rate limit with a quantity of purchases of the product with a payment instrument provided for payment for the transaction, the rate limit to limit purchases of the product via the payment instrument or by the consumer associated with the payment instrument. Logic may approve the transaction based on comparison of the rate limit in response to the rate limit being greater than purchases of the product. Logic may create a product token via the cryptogram, the product token encoded via the cryptogram, the product token to uniquely identify the product and logic may cause transmission of the product token to the consumer.

Abstract: Various embodiments for contextual tapping engines. For example, an application executing on a computing device may authenticate credentials associated with an account and detect a tap of a contactless card to the computing device. The application may receive, from a communications interface of the contactless card, action data used to determine an action associated with the tap of the contactless card to the computing device. The application may determine a context of the application based on a current output of the application. The application may determine, based on the action data, the determined context, and data associated with the account, a first action associated with the tap of the contactless card to the computing device, the first action associated with at least one of the application and an operating system (OS). The application may initiate performance of the first action based on the tap of the contactless card.

Abstract: A system and method are described that enables mobile devices (e.g. including but not limited to a mobile phone or the like), to intercept and respond to contactless card authentication requests, allowing mobile devices to be used in place of contactless cards. Enabling mobile phone devices to emulate contactless cards decreases issues related to lost or damaged cards, enabling a single device to be used to provide tokens related to multiple different contactless cards, and leverages functionality of the mobile device to provide dual-factor authentication.

Abstract: The proposed system and method is directed at a system for generating a GPU-based mobile device signature to enhance the strength of a OTP card authentication signal. The proposed implementation leverages the NFC read capability of contactless OTP cards and WebGL image rendering functionality of mobile browser. An image, or a URL pointing to one, is received, via NFC transmission from a contactless card, for processing by a mobile browser. The output of the mobile browser image processing buffer (WebGL can then be hashed and used as a device identifier for the specific mobile device performing electronic authentication of a transmission source (Read by verifying, with high degree of certainty, the identity of the reading mobile device.

Abstract: A server can receive a plurality of records at a databases such that each record is associated with a phone call and includes at least one request generated based on a transcript of the phone call. The server can generate a training dataset based on the plurality of records. The server can further train a binary classification model using the training dataset. Next, the server can receive a live transcript of a phone call in progress. The server can generate at least one live request based on the live transcript using a natural language processing module of the server. The server can provide the at least one live request to the binary classification model as input to generate a prediction. Lastly, the server can transmit the prediction to an entity receiving the phone call in progress. The prediction can cause a transfer of the call to a chatbot.

Abstract: Disclosed are a system and techniques for authenticating voice transactions with a payment card. A system example may include a purchase application executing on a smart digital device, and a payment card. The purchase application may receive an item purchase request via an audio input device of the smart digital device for an item available to purchase. The received item purchase request may be sent to an application server or the like, and, in response, a list of merchants offering the item available for purchase and each merchant's price for the item available to purchase may be received. The list may be presented on a smart digital device display for selection of at least one of the merchants selling the item may be received. A payment card may be inserted into the smart digital device's near-field communication field to provide a signal containing encrypted data.

Abstract: Various embodiments are directed to applying, via contactless card authentication, one or more restrictions to a virtual card number and generating the card number for use by a recipient. The one or more restrictions may be specifically personalized to the recipient and may include, for example, a merchant restriction, an amount restriction, a time period restriction, or a location restriction. The generated virtual card number along with the applied one or more restrictions may be consumed in various ways, such as writing the number to a blank card, transmitting the number directly to the recipient's computing device, etc., all via near-field communication.

Abstract: Systems, methods, articles of manufacture, and computer-readable media for determining specific terms to activate a contactless card. An application executing on a server may receive a request from a device specifying a uniform resource locator comprising encrypted data, the encrypted data based at least in part on a private key assigned to a contactless card. The application may decrypt the encrypted data and determine a type of the contactless card. The application may determine a plurality of terms associated with the type of the contactless card and transmit the terms to a web browser on the device. The application may receive, from the web browser, an indication specifying acceptance of the plurality of terms. The application may store, based on the decryption of the encrypted data and the received indication specifying acceptance of the terms, an indication in a database specifying the contactless card is activated for use.

Abstract: A contactless card can include a plurality of keys for a specific operation, e.g., encryption or signing a communication. The contactless card can also include an applet which uses a key selection module. The key selection module can select one of the plurality of keys and the applet can use the key to, e.g., encrypt or sign a communication using an encryption or signature algorithm. The contactless card can send the encrypted or signed communication to a host computer through a client device. The host computer can repeat the key selection technique of the contactless device to select the same key and thereby decrypt or verify the communication.

Abstract: The exemplary embodiments described herein overcome problems encountered by conventional systems by providing an authenticated messaging environment in which a user can securely message with a programmatic intelligent agent. The user may be authenticated at the prompting of the programmatic intelligent agent, such as the beginning of a messaging session or when the user submits a request that requires access to sensitive or confidential information or requires access to a secure account. The prompt may take the form of a message sent from the programmatic intelligent agent. The message may contain a link for launching code, such as an application, that facilitates authentication of the user's identity. The user may activate the link to launch the code and then perform the steps requested by the code to perform the authentication.

Abstract: Embodiments may be generally directed to techniques and systems to detect errors and anomalies in contactless transaction processing. These systems may include transaction cards, point-of-sale (POS) terminals, and transaction processing systems.

Abstract: Systems and methods for managing resource access permissions for users with secured and unsecured authentication tokens. In some aspects, the system may receive, from a user, a resource access request for a system. The resource access request may include a user identifier and a first activity for the resource access request. The system may retrieve information regarding authentication tokens associated with the user usable to process the resource access request. In response to determining whether the user is associated with the secured authentication token and the unsecured authentication token, the system may process, using a machine learning model, the resource access request to determine a measure of risk to the system that is associated with executing the resource access request for the user. In response to determining that the measure of risk is below a threshold, the system may process the resource access request using the unsecured authentication token.

Abstract: Systems and methods are directed to a modified device configuration for disposing a NFC compatible user card within a NFC field of a user mobile device so as to enable continuous proximity monitoring based on a status of an NFC link established between the card and the mobile device. The modified device configuration may be utilized to implement card tracking functionality by using a mobile application, running on the mobile device, to generate a timestamp upon detection of change in a connectivity status of the NFC link to the card. The timestamp NFC connectivity data may then be paired with mobile device GPS coordinates, concurrently retrieved from one or more mobile GPS-based navigation applications, to facilitate card tracking functionality as well as multi-factor validation for electronic transactions initiated by the NFC compatible card and/or the mobile device.

Abstract: In some implementations, a system may receive interaction data indicating an object and a user location associated with a user of a plurality of users. The system may identify a user-based storage site, of a plurality of user-based storage sites corresponding to at least a subset of the plurality of users, having an object list that includes the object. A particular user-based storage site, of the plurality of user-based storage sites, may have a storage site location associated with a corresponding user. The storage site location may be within a distance threshold of the user location. The system may transmit location data indicating the storage site location. The system may receive retrieval data indicating that the object has been retrieved from the user-based storage site. The system may update the object list of the user-based storage site.