Abstract: The disclosed embodiments include computerized methods and systems that automatically provision one or more services available to an Internet-of-Things (IoT) devices upon connection to and registration onto communications network. In one aspect, a device may receive, from a computing system, data specifying one or more first services provisioned to the device. The device may identify a subset of the first services that are consistent with a device type of an additional device, and may transmit a portion of the stored first data that specifies the subset of the first services to that additional device. The additional device may process the transmitted portion to provision the subset of the first services to the additional device prior to a successful authentication.

Abstract: The disclosed embodiments include methods and systems for providing account and event status notifications. The disclosed embodiments include, for example, a communications device including a memory storing software instructions and one or more processors configured to execute the software instructions to perform operations. In one aspect, the operations may include receive a notification of a status of an account parameter. The operations may also include identifying a device eligible to access the notification in accordance with a user-specified data restriction, and identifying at least a portion of the notification that is consistent with the data restriction. The communications device provide the identified portion of the notification to the eligible device without receiving input from the user, and the eligible device may present at least one of a visual, audible, or tactile indicator of the status of the account parameter.

Abstract: The disclosed embodiments include computer-implemented systems and processes that perform operations that initiate, approve, and execute exchanges of data between network-connected systems, apparatuses, and devices in a computing environment. For example, a network-connected apparatus may receive, from a network-connected terminal device, data specifying an exchange of data initiated at the terminal device. The apparatus may, in some instances, identify a data type corresponding to the received data, and based on a block-chain ledger that tracks data exchanges involving the identified data type, determine an availability of the identified data type for use in the data exchange. In response to the determination, the apparatus may transmit a message confirming the availability of the identified data type to the terminal device prior to executing the data exchange in accordance with a data exchange parameter and using the identified data type.

Abstract: The disclosed embodiments include computer-implemented devices and processes that asynchronously authenticate data. For example, a network-connected device may obtain data identifying a product, and obtain cryptographic data from an executed application through a programmatic interface. The cryptographic data may be generated by a first computer system in response to a verification of authentication credentials, and the cryptographic data may include a digital signature of the first computer system. The device may also transmit the product data and the cryptographic data to a second computer system, which may be configured to validate the cryptographic data and establish an authenticity of the product data. The device may receive data from the second computer system that confirms the authenticity of the product data, and in response to the received confirmation data, perform an operation involving the product data.

Abstract: The disclosed embodiments include computerized methods and systems that facilitate two-factor authentication of a user based on a user-defined image and information identifying portions of the image sequentially selected by the user. In one aspect, a communications device presents a first digital image of a first user on a touchscreen display. The communications device may receive, from the first user, information identifying portions of the first digital image selected in accordance with a candidate authentication sequence established by the first user. The selected first image portions may, for example, be associated with corresponding facial features of the first user. The communications device may determine whether the candidate authentication sequence matches a reference authentication sequence associated with the first digital image, and may authenticate an identity of the first user, when the first selection sequence is determined to match the second selection sequence.

Abstract: The disclosed embodiments include computer-implemented systems and processes that facilitate an initiation and a performance of one or more trustless transactions between counterparty devices operating within a trusted, secure computer-networking environment. For example, an apparatus may receive, through a touchscreen display unit, first data that identifies a session identifier associated with a transaction session, and may determine a validity of the session identifier based on the received first data. The apparatus may establish the transaction session in response to the determined validity of the session identifier. The transaction session may be associated with first and second operations characterized by values of corresponding parameters.

Abstract: The disclosed embodiments include computer-implemented devices and processes that generate, present, and manipulate data-aggregating graphical user interfaces. For example, a network-connected device may generate a first interface element representative of an obligation and may display, through a display unit, an graphical user interface that includes the first interface element and a plurality of second interface elements representative of time periods available for resolving the obligation. The network-connected device may receive, from an input unit, first input data indicative of a selection of the first interface element and second input data indicative of a movement of the selected first interface element from the first position to a second position within the interface.

Abstract: The disclosed embodiments include methods and systems for providing account and event status notifications. The disclosed embodiments include, for example, a device including a memory storing software instructions and one or more processors configured to execute the software instructions to perform operations. In one aspect, the operations may include obtaining information identifying an event and a deadline specified by a user. The obtained information may link the event and deadline to corresponding user-specified temporal intervals. The operations may also include determining whether a current date falls within a time period prior to the deadline, the time period being established by the first temporal interval. When the current date falls within the time period, the operations may generate first notification information that, when presented via a client device in accordance with a user-specified indicator type, notified the user that the current sate falls within the first time period.

Abstract: There is provided a gesture-based GUI (system, method, etc.) to facilitate input of numerical data using a continuous swipe gesture. A gesture-based I/O device displays a GUI presenting a gross number and a gross number control to initially define a specific number for further defining with specificity. In response to a first gesture (hard click or pause) interacting with the gross number control, the specific number is initially defined as the gross number and a finer number control is presented to refine the specific number. In response to a continuous swipe gesture continuing from the first gesture and interacting with the finer number control, the interface further defines the specific number with finer specificity where a quantum varies in response to a direction and distance of the continuous swipe. Successive finer number controls may be also be presented to refine the specific number by continuing the swipe.

Abstract: A device and method for management of an account. An event placement timeline is displayed. Account events are shown along the timeline. A preferred event time range or “safe zone” is shown along the timeline. The “safe zone” is the portion of the month during which it is safe to schedule certain events, like bill payments, with lower risk of NSF, overdraft or the like. The user moves a movable object into the “safe zone” to reschedule the account event in the “safe zone”, and the settings of the account are modified to automatically execute the account event at that time.

Abstract: A computing device and method for managing an account. A computer displays a historical timeline and an event placement timeline. Past events are shown along the historical timeline, and future events along the event placement timeline. The computer suggest a change to the timing of one of the events. The user moves a movable object to the proposed timing to reschedule the event. The settings of the account are modified to automatically execute that event at the new timing.

Abstract: A device has a secure element including a memory that stores at least one address, a set of rules, and a state of an asset. A processor is configured for receiving a request to change the state of the asset associated with the address, validating the request in the case where changing the state of the asset according to the request complies with the set of rules, and invalidating the request in the case where changing the state of the asset according to the request violates the set of rules. A communications module is coupled to the secure element for transmitting information responsive to the request to a distributed network of peer processors for recording a change in the state of the asset in a distributed electronic ledger in the case where the secure element validates the request.

Abstract: A method and system are provided for facilitating access to electronic data. The method is executed by a processor of a computing device. The computing device includes the processor coupled to a memory, a communications module, and an input device. The method includes receiving a first input from the input device representing a request from a request initiator to access funds for use in a transaction, requesting and receiving, via the communications module, financial health data associated with the request initiator, and determining a second input for accessing the funds. The second input is received from the input device and has a complexity dependent on the financial health data. The method also includes facilitating access to the funds when the second input is received.

Abstract: An apparatus for use in a digital messaging system includes a storage device and a processor coupled to the storage device. The storage device storing software instructions for controlling the processor that when executed by the processor configured the processor to: generate a first message comprising a payload portion; encrypt the payload portion of the message; derive a first session key from a domain-specific key; and sign the message using the first session key.

Abstract: A method and system are provided for processing an interaction request. The method includes detecting the interaction request in a first interaction session using a first interaction channel between a request initiator and a request service provider, assigning an identifier to the interaction request, determining a task associated with the interaction request, and obtaining context data of a plurality of other interaction sessions associated with the identifier. The plurality of other interaction sessions occurs proximal in time with the first interaction session. The context data is related to activity of the request initiator. The method also includes associating a subset of the context data with the interaction request. The subset of the context data is the context data of the plurality of other interaction sessions that are related to the task. The method also includes generating an interaction response using the subset of the context data.

Abstract: An apparatus for use in a digital messaging system includes a storage device and a processor coupled to the storage device. The storage device storing software instructions for controlling the processor that when executed by the processor configured the processor to: generate a master private and public key pair; associate the master private and public key pair with a first certificate; and derive at least one domain-specific key from the one of the master private and public key pair. The first certificate is registered to a group comprising a plurality of domains. The domain-specific key is associated with one of the plurality of domains.

Abstract: The disclosed embodiments include computer-implemented systems and processes that perform operations consistent with services provisioned to a device based on real-time sensor data indicative of and characterizing a user's operation of the device and additionally or alternatively, a system or apparatus that includes the device. For example, the device may obtain stored data identifying a provisioned service, and may obtain sensor data captured by an on-board or external sensor during an operation of the device. Based on the sensor data, the device may generate a usage parameter that characterizes the operation of the device during a temporal period, and perform an operation consistent with the provisioned service in accordance with the generated usage parameter.

Abstract: A system has a storage medium encoded with program instructions, and a processor coupled to access the program instructions. The instructions configure the processor for: receiving a first request at a POS terminal to surrender a previously purchased first asset in exchange for at least a portion of a second asset that was used to purchase the first asset, receiving the private key from the first asset; accessing a set of rules stored in a distributed electronic ledger, the set of rules specifying conditions associated with the first request; transmitting an authorization to return the at least a portion of the second asset in exchange for surrender of the first asset, in the case where the conditions are satisfied; and invalidating the first request in the case where one or more of the conditions are not satisfied.

Abstract: Methods and devices for provisioning a secure application on an electronic device with first issuer data for a first issuer are described. In an embodiment, the provisioning system receives and stores first issuer records. The example provisioning system receives a provisioning request to provision the secure application with the first issuer data. The provisioning request includes identifying information. The example provisioning system evaluates the provisioning request based on at least one of the first issuer evaluation criteria, the first issuer records and the identifying information in the provisioning request. When the provisioning request satisfies the first issuer evaluation criteria, the example provisioning system generates a signal using the communication module to provide the first issuer data to the electronic device to provision the secure application on the electronic device.

Abstract: The present disclosure involves systems and methods for automatically analyzing available data exchange terms based on an analysis and comparison of available terms, where some of the terms may be unavailable in the current data exchange context based on the user and counter party to the data exchange. One example system includes a memory and a processor. Operations performed by the processor can include receiving a data exchange request associated with a set of information and an identifier. A set of contextual information associated with the received request can be determined. Options associated with the identifier, each associated with a set of terms, can be loaded from a storage device. A subset of viable options can be determined from the options based on the set of information and the contextual information, and a particular option from the subset can be selected for use in executing the received data exchange request.