Abstract: Example embodiments of systems and methods for data transmission between a contactless card and a client device in support of a FIDO authentication are provided. In an embodiment, upon receipt of a challenge issued by a server in connection with a pending transaction, the contactless card may authorize the client device to utilize a FIDO private key to respond to the challenge. If the response to the challenge is successful, the FIDO authentication may proceed and the transaction may be completed.

Abstract: Various embodiments are generally directed to utilizing a steganographically encoded image with an offline and/or online verification or authentication protocol. A method for using the steganographic image can include: receiving or utilizing a steganographic image associated with a user at a third-party device, the steganographically encoded image including an identification of a user steganographically encoded with a fingerprint template of the user, and authenticating the user using the steganographically encoded image.

Abstract: Various embodiments are generally directed to utilizing an offline and/or online verification or authentication protocol to access, redeem, or otherwise utilize multiple loyalty points and loyalty accounts A method for utilizing various loyalty points includes: receiving, by an application executing on a processor, a request to redeem at least one loyalty point of a plurality of loyalty points of a loyalty points account, receiving, by the application, a cryptogram from a contactless card associated with an account, transmitting, by the application to a server, the cryptogram, determining, by the application based on a decryption result received from the server, that the server decrypted the cryptogram, and authorizing, by the application based on the determination that the server decrypted the cryptogram, the request to redeem the at least one loyalty point.

Abstract: Example embodiments of systems and methods for data transmission in a contactless card are provided. The contactless card may include a processor, and a memory. The memory may contain a first applet, a second applet, and a plurality of keys. The first applet and the second applet may be stored within a shared security domain. The second applet may be configured to communicate with the first applet to perform one or more cryptographic services. The second applet may be configured to transmit one or more requests to the first applet to encode one or more payload strings based on the plurality of keys to perform the one or more cryptographic services. The first applet may be configured to perform the one or more cryptographic services on behalf of the second applet based on the one or more requests.

Abstract: Systems and methods, as described herein, relate to increasing the functionality and security of digital wallets. These methods, techniques, and infrastructure may use hardware security modules (HSMs) to manage a plurality of cryptocurrency wallets in a custodial capacity. The HSMs may have functionality incorporated therein improve the functionality and security of cryptocurrency wallets. The aspects discussed herein may also relate to methods, techniques, and infrastructure to securely manage signing keys and cryptocurrency addresses contained in cryptocurrency wallets for a plurality of accounts that may be associated with a user account or user account identifier without exposing the keys to being stolen or otherwise comprised.

Abstract: A dual-factor PIN based authentication system and method uses a cryptogram provided by a contactless card associated with the client in association with a PIN stored by the contactless card to authenticate the client. In some embodiments, cryptogram authentication may be preconditioned upon a PIN match determination by the contactless card. In other embodiments, the cryptogram may be formed at least in part using the personal identification number (PIN) stored on the contactless card encoded using a dynamic key stored by the contactless card and uniquely associated with the client. Authentication may be achieved by comparing the cryptogram formed using the PIN against an expected cryptogram generated an expected PIN and an expected dynamic key.

Abstract: Example embodiments of systems and methods for contactless card verification include a contactless card including a substrate, a processor, and a memory, wherein the memory contains a first applet and a second applet, and a recipient device in data communication with the contactless card, wherein the second applet is configured to retrieve one or more parameters from the first applet via an interface; and wherein the second applet is configured to transmit the one or more parameters to the recipient device for verification.

Abstract: Disclosed herein are system, method, and computer program product embodiments for signing a document by generating a hash value using a smart card. The smart card can receive from a computing device a first hash value generated for the document based on a first hash function, determine a private key based on a private key information stored on the smart card, sign the first hash value by generating a second hash value based on the first hash value using a second hash function and the private key. The second hash value is to authenticate that the second hash value is generated by the smart card based on the first hash value and the private key. The smart card can further assemble a signature package including the second hash value, and transmit the signature package to the computing device.

Abstract: Various embodiments are generally directed to utilizing an offline and/or online verification or authentication protocol to access, redeem, or otherwise utilize multiple loyalty points and loyalty accounts A method for utilizing various loyalty points includes: receiving, by an application executing on a processor, a request to redeem at least one loyalty point of a plurality of loyalty points of a loyalty points account, receiving, by the application, a cryptogram from a contactless card associated with an account, transmitting, by the application to a server, the cryptogram, determining, by the application based on a decryption result received from the server, that the server decrypted the cryptogram, and authorizing, by the application based on the determination that the server decrypted the cryptogram, the request to redeem the at least one loyalty point.

Abstract: Example embodiments of systems and methods for data transmission system between transmitting and receiving devices are provided. In an embodiment, each of the transmitting and receiving devices can contain a master key. The transmitting device can generate a diversified key using the master key, protect a counter value and encrypt data prior to transmitting to the receiving device, which can generate the diversified key based on the master key and can decrypt the data and validate the protected counter value using the diversified key. In an embodiment, the transmitting device can signal an attack or potential attack through the counter value. The attack signaling can further include information relating to the attack or potential attack.

Abstract: A contactless card can include a plurality of keys for a specific operation, e.g., encryption or signing a communication. The contactless card can also include an applet which uses a key selection module. The key selection module can select one of the plurality of keys and the applet can use the key to, e.g., encrypt or sign a communication using an encryption or signature algorithm. The contactless card can send the encrypted or signed communication to a host computer through a client device. The host computer can repeat the key selection technique of the contactless device to select the same key and thereby decrypt or verify the communication.

Abstract: Example embodiments of systems and methods for contactless card verification include a contactless card including a substrate, a processor, and a memory, wherein the memory contains a first applet and a second applet, and a recipient device in data communication with the contactless card, wherein the second applet is configured to retrieve one or more parameters from the first applet via an interface; and wherein the second applet is configured to transmit the one or more parameters to the recipient device for verification.

Abstract: Various embodiments are generally directed to utilizing a steganographically encoded image with an offline and/or online verification or authentication protocol. A method for using the steganographic image can include: receiving or utilizing a steganographic image associated with a user at a third-party device, the steganographically encoded image including an identification of a user steganographically encoded with a fingerprint template of the user, and authenticating the user using the steganographically encoded image.

Abstract: Various embodiments are generally directed to utilizing an offline and/or online verification or authentication protocol to access, redeem, or otherwise utilize multiple loyalty points and loyalty accounts A method for utilizing various loyalty points includes: receiving, by an application executing on a processor, a request to redeem at least one loyalty point of a plurality of loyalty points of a loyalty points account, receiving, by the application, a cryptogram from a contactless card associated with an account, transmitting, by the application to a server, the cryptogram, determining, by the application based on a decryption result received from the server, that the server decrypted the cryptogram, and authorizing, by the application based on the determination that the server decrypted the cryptogram, the request to redeem the at least one loyalty point.

Abstract: Example embodiments of systems and methods for data transmission system between transmitting and receiving devices are provided. In an embodiment, each of the transmitting and receiving devices can contain a master key. The transmitting device can generate a diversified key using the master key, protect a counter value and encrypt data prior to transmitting to the receiving device, which can generate the diversified key based on the master key and can decrypt the data and validate the protected counter value using the diversified key. In an embodiment, the transmitting device can signal an attack or potential attack through the counter value. The attack signaling can further include information relating to the attack or potential attack.

Abstract: Various embodiments are generally directed to secure generation of barcodes using cryptographic techniques. An application may receive a request to generate a barcode. The application may receive encrypted data from a communications interface of a contactless card associated with an account. The application may receive, from a server, verification of the encrypted data and an encrypted authorization token associated with the account. The application may generate the barcode utilizing the encrypted authorization token.

Abstract: A dual-factor PIN based authentication system and method uses a cryptogram provided by a contactless card associated with the client in association with a PIN stored by the contactless card to authenticate the client. In some embodiments, cryptogram authentication may be preconditioned upon a PIN match determination by the contactless card. In other embodiments, the cryptogram may be formed at least in part using the personal identification number (PIN) stored on the contactless card encoded using a dynamic key stored by the contactless card and uniquely associated with the client. Authentication may be achieved by comparing the cryptogram formed using the PIN against an expected cryptogram generated an expected PIN and an expected dynamic key.

Abstract: Various embodiments are generally directed to utilizing a steganographically encoded image with an offline and/or online verification or authentication protocol. A method for using the steganographic image can include: receiving or utilizing a steganographic image associated with a user at a third-party device, the steganographically encoded image including an identification of a user steganographically encoded with a fingerprint template of the user, and authenticating the user using the steganographically encoded image.

Abstract: Various embodiments are generally directed to utilizing an offline and/or online verification or authentication protocol to access, redeem, or otherwise utilize multiple loyalty points and loyalty accounts A method for utilizing various loyalty points includes: receiving, by an application executing on a processor, a request to redeem at least one loyalty point of a plurality of loyalty points of a loyalty points account, receiving, by the application, a cryptogram from a contactless card associated with an account, transmitting, by the application to a server, the cryptogram, determining, by the application based on a decryption result received from the server, that the server decrypted the cryptogram, and authorizing, by the application based on the determination that the server decrypted the cryptogram, the request to redeem the at least one loyalty point.

Abstract: Various embodiments are generally directed to secure generation of barcodes using cryptographic techniques. An application may receive a request to generate a barcode. The application may receive encrypted data from a communications interface of a contactless card associated with an account. The application may receive, from a server, verification of the encrypted data and an encrypted authorization token associated with the account. The application may generate the barcode utilizing the encrypted authorization token.