Abstract: Disclosed are a system and techniques for authenticating voice transactions with a payment card. A system example may include a purchase application executing on a smart digital device, and a payment card. The purchase application may receive an item purchase request via an audio input device of the smart digital device for an item available to purchase. The received item purchase request may be sent to an application server or the like, and, in response, a list of merchants offering the item available for purchase and each merchant's price for the item available to purchase may be received. The list may be presented on a smart digital device display for selection of at least one of the merchants selling the item may be received. A payment card may be inserted into the smart digital device's near-field communication field to provide a signal containing encrypted data.

Abstract: Systems, methods, articles of manufacture, and computer-readable media. A web browser of a device may receive selection of a uniform resource locator (URL). An operating system may download an application from an application server based on the URL. The application may identify a plurality of applications installed on the device and select a first institution corresponding to a first application. The application may receive a cryptogram from a contactless card associated with the first institution and transmit the cryptogram to an authentication server. The application may receive an authentication result specifying the authentication server decrypted the cryptogram. The web browser may receive, based on the decryption of the cryptogram, an account number, an expiration date associated with the account number, and a card verification value (CVV) associated with the account number. The web browser may provide the account number, expiration date, and CVV to a server associated with the application.

Abstract: Exemplary embodiments may use a contactless card as a secondary form of authentication in a multi-factor authentication for a secure messaging service. The recipient party of a request to initiate a messaging service session (such as a server computing device) may be programmed to use the phone number of the originating device to look up records regarding an identity of a party and their associated phone number as a primary credential and then may require an authentication credential originating from the contactless card as a secondary credential for the initiating party. In some instances, the credential originating from the contactless card is a onetime password that is valid only for a period of time. The recipient party determines whether the onetime password is valid. If both credentials are valid, a secure messaging session may be initiated with the initiating party.

Abstract: In a method for changing a user's bank account information in merchant account databases a server receives a login request including a user identification and first user authentication information. The server further receives a request to change bank account information from a first bank account to a second bank account for merchant accounts of the user and network login information for the first bank account. The server accesses an account information database for the first bank account and downloads transaction information for merchant transactions involving the first bank account. The server identifies a set of merchant user accounts involved in the merchant transactions and receives account login information for a data site associated with a selected account. The server accesses the data site and changes a bank account identification stored therein from the first bank account to the second bank account.

Abstract: Systems and methods for authentication may include an authentication server. The authentication server may include a processor and a memory. The processor may be configured to receive a cryptogram associated with a first near field communication data exchange format (NDEF) read. The processor may be configured to perform a first factor authentication of the cryptogram. The processor may be configured to receive a first data set, wherein the first data set is associated with a second NDEF read. The processor may be configured to extract metadata from the first data set. The processor may be configured to perform, after the first factor authentication, a second factor authentication based on the metadata. The processor may be configured to generate a message indicative of an outcome of the second factor authentication. The processor may be configured to transmit the message that instructs the processor to effectuate one or more actions.

Abstract: A system and method are disclosed that leverage multi-factor authentication features of a service provider and intelligent call routing to increase security and efficiency at a customer call center. Pre-authentication of customer support requests reduces the potential for misappropriation of sensitive customer data during call handling. A contactless card uniquely associated with a client may provide a second factor of authentication via a backchannel to reduce the potential for malicious third-party impersonation of the client prior to transfer of the call to the customer call center. Pre-authorized customer support calls may be intelligently and efficiently routed directly to call center agents, without incurring further delay. During call handling, call center agents may initiate further client authentication processes, including contactless card authentication requests, over one or more different communication channels for authorizing access to sensitive information or to allay suspicion.

Abstract: Example embodiments of systems and methods for data transmission between a contactless card and a client application are provided. A card key may be generated using a master key and identification number. A first and second session key may be generated using the card key and portions of the. A cryptographic result including the counter may be generated using one or more cryptographic algorithms and the card key. A cryptogram may be generated using the first session key and encrypted using the second session key. The application may be transmit one or more messages to the first applet of the contactless card. The first applet may be configured to establish one or more communication paths to the second applet based on receipt of the one or more messages from the client device. The second applet may be deactivated by the first applet via the one or more communication paths.

Abstract: Example embodiments of systems and methods for contactless card verification include a contactless card including a substrate, a processor, and a memory, wherein the memory contains a first applet and a second applet, and a recipient device in data communication with the contactless card, wherein the second applet is configured to retrieve one or more parameters from the first applet via an interface; and wherein the second applet is configured to transmit the one or more parameters to the recipient device for verification.

Abstract: System and methods of contactless card authentication systems include a contactless card and a client device having an application, a processor, and a card reader. An application on the client device receives a transaction lockdown request, sends a request to the server to begin to allow a transaction approval within a time period, receives the transaction approval via an authentication tap from the contactless card, sends the transaction approval to the server; and receive an allowance or disallowance response from the server.

Abstract: A device may receive a uniform resource locator (URL) and encrypted data. The device may download a first application from an application server based on the URL. The device may download and execute the first application. The first application may receive the encrypted data.

Abstract: In some implementations, a system may receive interaction data indicating an object and a user location associated with a user of a plurality of users. The system may identify a user-based storage site, of a plurality of user-based storage sites corresponding to at least a subset of the plurality of users, having an object list that includes the object. A particular user-based storage site, of the plurality of user-based storage sites, may have a storage site location associated with a corresponding user. The storage site location may be within a distance threshold of the user location. The system may transmit location data indicating the storage site location. The system may receive retrieval data indicating that the object has been retrieved from the user-based storage site. The system may update the object list of the user-based storage site.

Abstract: Systems, methods, articles of manufacture, and computer-readable media for verified reviews. An application may receive an indication to generate a review. An application programming interface (API) of the application may receive, from a communications interface of a contactless card, encrypted data generated by the contactless card. The API of the application may transmit, to an authentication server: the encrypted data, an indication of the application, and an identifier associated with the entity. The API of the application may receive indications specifying that the authentication server decrypted the encrypted data and determined that the contactless card was used to make a purchase with the entity. The application may permit, based on the indications received from the authentication server, generation of the review. The application may publish the review to one or more review platforms associated with the application.

Abstract: In a method for changing a user's bank account information in merchant account databases a server receives a login request including a user identification and first user authentication information. The server further receives a request to change bank account information from a first bank account to a second bank account for merchant accounts of the user and network login information for the first bank account. The server accesses an account information database for the first bank account and downloads transaction information for merchant transactions involving the first bank account. The server identifies a set of merchant user accounts involved in the merchant transactions and receives account login information for a data site associated with a selected account. The server accesses the data site and changes a bank account identification stored therein from the first bank account to the second bank account.

Abstract: A method is provided for displaying an augmented reality image of account information associated with an indicialess transaction card having a card surface with a background pattern applied thereto. A real-time image of the card surface is captured and processed to determine if the background pattern matches a card background pattern associated with a cardholder account. Responsive to a positive determination, communication is established between the user device processor and a card processor carried by the indicialess transaction card. The user device processor receives from the card processor an encrypted verification block and transmits, to an authentication server, an authentication request including the verification block.

Abstract: In certain embodiments, a presentation of a user interface may be dynamically modified for a user based on data related to the user's email address or other user identifier. As an example, the user interface may be caused to reflect the look and feel of an interface of an entity trusted by the user, incorporate data items related to the user's identifier, or effectuate other modifications. In some embodiments, a user identifier of a user may be received via a user interface associated with the third party, and a query for data related to one or more user accounts associated with the user identifier may be generated. Based on the query, multiple datasets associated with different user accounts may be received, and a first dataset associated with a first account of the user may be selected over other datasets associated with the user's other accounts effectuate the presentation modification.

Abstract: A contactless card with power harvesting unit is described. The power harvesting unit is configured to harvest power from near field communication radio wave fields and supply power to a memory, processor, and communication circuit of the contactless card. In some embodiments, the contactless card may also include a capacitor for smoothing out power deliver or a rechargeable battery. The contactless card is configured to establish two-way communication with a secondary device and to store and execute applets. In some embodiments, the contactless card is a payment card which contains information associated with a primary profile and a secondary profile. The secondary profile may be activated using two-way communication if the primary profile is deactivated due to fraudulent activity.

Abstract: Systems, methods, articles of manufacture, and computer-readable media for verification of medical status using a contactless card. An application may receive a request specifying a subject and a medical condition. The application may receive a cryptogram from a contactless card. The application may receive a decryption result from a server and determine that the server decrypted the cryptogram. The application may receive, from the contactless card, a medical attestation, a digital signature of the medical attestation, and a public key of the digital signature. The application may decrypt the digital signature based on the public key of the digital signature and verify the medical attestation based on the decrypted digital signature. The application may determine, based on the verification of the medical attestation, that the subject is immune to the medical condition. The application may output a result that the subject is immune to the medical condition.

Abstract: Delegated administration of permissions using a contactless card. In one example, a permissions module may receive a request from a first account to grant a second account access to a computing resource. The permissions module may receive permissions data of the first account from a contactless card and encrypted data generated by the contactless card. The permissions module may transmit the permissions data and the encrypted data to an authentication server, which may verify the encrypted data based at least in part on the private key, and determine, based on the permissions data, that the first account has permissions to grant access to the computing resource. The permissions module may receive, from the authentication server, an indication of the verification of the encrypted data and a permissions vector associated with the second account, the permissions vector reflecting the grant of access to the computing resource to the second account.

Abstract: Example embodiments of systems, methods, and devices for transaction card alignment are provided. In one example embodiment, a mobile device may include a first component and a second component foldable with respect to one another between a first configuration and a second configuration. The mobile device may further include a screen interface on an interior side of the first component, and an alignment feature along the interior side, the alignment feature providing alignment for a contactless card with respect to the screen interface, wherein the contactless card is uncovered by the second component in the first configuration and covered by the second component in the second configuration.

Abstract: Methods and systems are described herein for determining resource usage metrics of cloud computing systems. The system may generate access tokens for an account associated with a certain resource class of resources. The system may receive requests comprising a corresponding access token request and a corresponding resource class identifier. The system may determine the corresponding resource class for each request. The system may generate aggregated resource data based on a corresponding quantity of each resource within the resource class and may determine, based on the aggregated resource data, a resource usage metric indicating a total amount of resources used by the cloud computing system.