Abstract: A method, system, and computer program product generate, with a payment network, a first value (a) and a second value (ga), the second value (ga) generated based on the first value (a) and a generator value (g); generate, with the payment network, a plurality of random merchant numbers (mi) for a respective plurality of merchant banks; determine, with the payment network, a merchant product (M) based on a product of the plurality of random merchant numbers (mi); generate, with the payment network, a public key (pki) based on the second value (ga), the merchant product (M), and the random merchant number (mi) and a random key (rki) based on the merchant product (M) and the random merchant number (mi) for each respective merchant bank; and communicate, with the payment network, the public key (pki) and the random key (rki) to at least one respective merchant bank.

Abstract: Methods and systems for gateway agnostic tokenization are disclosed. Gateway agnostic tokenization enables a resource provider to quickly, safely, and efficiently route a token for authorization via any appropriate gateway computer. As part of an interaction with a user, a resource provider can transmit a token to an edge computer. The edge computer can then forward the token to a gateway computer. The gateway computer can identify a data item comprising two ciphertexts associated with the token. The edge computer and gateway computer can collectively decrypt the two ciphertexts to obtain a credential. The gateway computer can then forward the credential to an authorizing entity computer. The authorizing entity computer can then determine whether or not to authorize the interaction.

Abstract: A method for securely rendering sensitive data is disclosed. A method for securely rendering sensitive data may include receiving account identifier data associated with at least one account identifier. The account identifier data may be converted into at least one non-textual visual element. The at least one non-textual visual element may be communicated to at least one receiver. The at least one receiver may render the at least one non-textual visual element. A system and computer program product are also disclosed.

Abstract: Systems, methods, and computer program products for data security store, in memory, a plurality of ciphers in association with a plurality of public keys, the plurality of ciphers including a plurality of secret keys encrypted with a key encryption key, and the plurality of secret keys corresponding to the plurality of public keys; receive, a data chunk for encryption; generate, a data encryption key based on a hash function, a public key of the plurality of public keys, and a random number; encrypt, the data chunk with the data encryption key to generate an encrypted data chunk; generate, a header including a cipher of the plurality of ciphers corresponding to the public key of the plurality of public keys and key encapsulation data; and store, in a database, a cipher text including the header and the encrypted data chunk.

Abstract: A method, system, and computer program product generate, with a payment network, a first value (a) and a second value (ga), the second value (ga) generated based on the first value (a) and a generator value (g); generate, with the payment network, a plurality of random merchant numbers (mi) for a respective plurality of merchant banks; determine, with the payment network, a merchant product (M) based on a product of the plurality of random merchant numbers (mi); generate, with the payment network, a public key (pki) based on the second value (ga), the merchant product (M), and the random merchant number (mi) and a random key (rki) based on the merchant product (M) and the random merchant number (mi) for each respective merchant bank; and communicate, with the payment network, the public key (pki) and the random key (rki) to at least one respective merchant bank.

Abstract: A system, method, and computer program product for authenticating a user for a transaction; generate an electronic wallet key pair including an electronic wallet public key and a corresponding electronic wallet secret key, the electronic wallet key pair associated with an electronic wallet transaction processing system; receive a payment gateway public key corresponding to a payment gateway secret key, the payment gateway public key and the payment gateway secret key associated with a payment gateway system; generate a public re-encryption key based on the payment gateway public key; communicate, to the payment gateway system, the public re-encryption key; receive or determine encrypted transaction data associated with a transaction, the encrypted transaction data including an account identifier encrypted with the electronic wallet public key; re-encrypt the encrypted transaction data with the public re-encryption key; and communicate, to the payment gateway system, the re-encrypted transaction data.

Abstract: A system, method, and computer program product for authenticating a user for a transaction; generate an electronic wallet key pair including an electronic wallet public key and a corresponding electronic wallet secret key, the electronic wallet key pair associated with an electronic wallet transaction processing system; receive a payment gateway public key corresponding to a payment gateway secret key, the payment gateway public key and the payment gateway secret key associated with a payment gateway system; generate a public re-encryption key based on the payment gateway public key; communicate, to the payment gateway system, the public re-encryption key; receive or determine encrypted transaction data associated with a transaction, the encrypted transaction data including an account identifier encrypted with the electronic wallet public key; re-encrypt the encrypted transaction data with the public re-encryption key; and communicate, to the payment gateway system, the re-encrypted transaction data.

Abstract: A method includes generating, by a user device, an initial authorization request message for an interaction to obtain a resource from a resource provider. The user device transmits the initial authorization request message to a first node in a proxy network, wherein the first node processes the initial authorization request message and transmits a routing message to a second node in the proxy network based on the processing of the initial authorization request message, the second node being previously associated with the resource provider. The user device then receives from the second node and stores a pre-authorization approval indicator (PAAI). Upon delivery of the resource by an agent of the resource provider, the user device transmits an authorization request message including the pre-authorization approval indicator, wherein the agent device further processes and transmits the authorization request message to the proxy network for authorization by an authorizing entity.

Abstract: Described are a system, method, and computer program product for secure, remote transaction authentication and settlement. The method includes receiving transaction data associated with a transaction to be completed between a merchant and a customer via a point-of-sale (POS) terminal. The method also includes generating a unique identifier for the transaction and sound data encoding the unique identifier. The method further includes storing the unique identifier in association with the transaction data and communicating the sound data to a merchant communication device to cause the sound wave to be produced at the POS terminal for receipt and decoding by a user communication device. The method further includes receiving, from the user communication device, the unique identifier and user payment authorization data. The method further includes corresponding the user payment authorization data with the transaction data and generating a transaction request to an acquirer processor.

Abstract: A method, system, and computer program product generate, with a payment network, a first value (a) and a second value (ga), the second value (ga) generated based on the first value (a) and a generator value (g); generate, with the payment network, a plurality of random merchant numbers (mi) for a respective plurality of merchant banks; determine, with the payment network, a merchant product (M) based on a product of the plurality of random merchant numbers (mi); generate, with the payment network, a public key (pki) based on the second value (ga), the merchant product (M), and the random merchant number (mi) and a random key (rki) based on the merchant product (M) and the random merchant number (mi) for each respective merchant bank; and communicate, with the payment network, the public key (pki) and the random key (rki) to at least one respective merchant bank.

Abstract: A method, system, and computer program product generate, with a payment network, a first value (a) and a second value (ga), the second value (ga) based on the first value (a) and a generator value (g); generate, with the payment network, a plurality of random merchant numbers (mi) for a respective plurality of merchant banks; determine, with the payment network, a merchant product (M) based on a product of the plurality of random merchant numbers (mi); generate, with the payment network, a public key (pki) based on the second value (ga), the merchant product (M), and the random merchant number (mi) and a random key (rki) based on the merchant product (M) and the random merchant number (mi) for each respective merchant bank; and communicate, with the payment network, the public key (pki) and the random key (rki) to at least one respective merchant bank.

Abstract: Described herein are a system and techniques for enabling user control over usage of their information by data consumers, even when untrusted parties are involved, while also preventing collusion between the untrusted party and a data consumer. A user's information may be collected by a client device and provided to a host server. An encrypted version of the user'information may be stored at the host server so that it is processed on a private enclave of the host server. When the data is to be provided to multiple data consumers, the data may be encrypted for each of the data consumers and may be released to each of those data consumers simultaneously once confirmation has been received that the data has been made available to each of the data consumers.

Abstract: Methods and systems for secure multi-party generation of random bits are disclosed. These random bits can be generated securely, even if some parties (i.e., less than a corruption threshold) are dishonest or malicious. Methods and systems can use secure environments in order to securely generate and store cryptographic keys. Using broadcast protocols such as Dolev-Strong, a generator computer can distribute a public protocol instance key to other participant computers. Each participant computer can generate a random bit and encrypted the random bit with the public protocol instance key, and broadcast its encrypted random bit to the other participant computers. Once each participant computer has received the encrypted random bits from all other participant computers, the private protocol instance key can be released to the participant computers, enabling the participant computers to decrypt the encrypted random bits, and calculate an output random bit based on the encrypted random bits.

Abstract: Methods and systems for secure multi-party generation of random bits are disclosed. These random bits can be generated securely, even if some parties (i.e., less than a corruption threshold) are dishonest or malicious. Methods and systems can use secure environments in order to securely generate and store cryptographic keys. Using broadcast protocols such as Dolev-Strong, a generator computer can distribute a public protocol instance key to other participant computers. Each participant computer can generate a random bit and encrypted the random bit with the public protocol instance key, and broadcast its encrypted random bit to the other participant computers. Once each participant computer has received the encrypted random bits from all other participant computers, the private protocol instance key can be released to the participant computers, enabling the participant computers to decrypt the encrypted random bits, and calculate an output random bit based on the encrypted random bits.

Abstract: A method for conducting an interaction using a vehicle is disclosed. A vehicle can be identified based on one or more vehicle characteristics, including a license plate number, a make, a model, and a color. A user credential can be identified based on the vehicle and used for an interaction. Additionally, user contact information can be identified based on the vehicle and the user can be contacted to approve the interaction.

Abstract: Methods and systems for secure multi-party generation of random bits are disclosed. These random bits can be generated securely, even if some parties (i.e., less than a corruption threshold) are dishonest or malicious. Methods and systems can use secure environments in order to securely generate and store cryptographic keys. Using broadcast protocols such as Dolev-Strong, a generator computer can distribute a public protocol instance key to other participant computers. Each participant computer can generate a random bit and encrypted the random bit with the public protocol instance key, and broadcast its encrypted random bit to the other participant computers. Once each participant computer has received the encrypted random bits from all other participant computers, the private protocol instance key can be released to the participant computers, enabling the participant computers to decrypt the encrypted random bits, and calculate an output random bit based on the encrypted random bits.

Abstract: A smart device is provided between a transaction terminal (e.g. an access device, a point of sale terminal) and a payment card to facilitate a secure transaction. The smart device receives transaction details from the transaction terminal. The transaction terminal suspends the transaction. The smart device is brought in communication with a payment device in control of the user (e.g. the user of the payment device does not hand over the payment device to a merchant, clerk, waitstaff). The smart device receives a cryptogram identifying an account from the payment device and transmits the cryptogram to the transaction terminal. The transaction terminal resumes the transaction, generates a transaction authorization request message including the cryptogram, and transmits the transaction authorization request message to an issuer of the account. The transaction terminal receives an authorization response message from the issuer, and notifies the smart device of the transaction being approved or declined.

Abstract: The system and methods described herein may be utilized to perform operations in a faster and less complex manner than provided by conventional systems. An encrypted record may be stored at a user device. The encrypted record may include entries related to operations that were previously requested by the user device. The encrypted record may have been encrypted using a dynamic value and a key that is associated with an entity associated with the user. A recipient computer of a request by the user device may be configured to utilize the dynamic value provided in the request and the key associated with the entity to derive the encryption key(s) last used to encrypt the record. The recipient computer may decrypt and modify the decrypted record to perform the requested operation while the user device is precluded from doing so.

Abstract: A system, method, and computer program product for authenticating a user for a transaction; generate an electronic wallet key pair including an electronic wallet public key and a corresponding electronic wallet secret key, the electronic wallet key pair associated with an electronic wallet transaction processing system; receive a payment gateway public key corresponding to a payment gateway secret key, the payment gateway public key and the payment gateway secret key associated with a payment gateway system; generate a public re-encryption key based on the payment gateway public key; communicate, to the payment gateway system, the public re-encryption key; receive or determine encrypted transaction data associated with a transaction, the encrypted transaction data including an account identifier encrypted with the electronic wallet public key; re-encrypt the encrypted transaction data with the public re-encryption key; and communicate, to the payment gateway system, the re-encrypted transaction data.

Abstract: Systems and methods for transferring value. A method includes posting, by a user device to a blockchain, a deposit transaction comprising a deposit value and conditions and updating, by the user device, a state according to a transaction amount. The method also includes transmitting, by the user device, a state update of the state to a server computer and responsive to transmitting the state update, and receiving, by the user device, a payment complete message comprising a tuple from the server computer. The method also includes verifying, by the user device, the conditions and processing, by the user device, a server deposit transaction on the blockchain in response to verifying.