Abstract: A method and system of protecting network activity of mobile devices is disclosed. Specifically, the methods and systems enable the detection of surveillance signals targeting or potentially targeting a user's personal device and automatically triggering a protective response to safeguard the user's information. The proposed systems can provide mobile device users with a powerful security capability by enabling their device to automatically disconnect from one or more networks and/or emitting a protective jamming signal in response to the detection of nearby potential surveillance activities.

Abstract: An ultra-thin Self-Service Terminals (SSTs) is provided. The ultra-thin SST lacks an Operating System (OS). When the ultra-thin SST is powered on, firmware of the ultra-thin SST connects to a virtualized environment over a first network connection and a Virtual Machine (VM) instance having the OS is loaded within the virtualized environment. The OS of the VM instance obtains middleware services from a second network connection to a middleware environment. The middleware services provided authentication, management, and audit services for the VM instance based on the ultra-thin SST.

Abstract: A method is provided for displaying an augmented reality image of account information associated with an indicialess transaction card having a card surface with a background pattern applied thereto. A real-time image of the card surface is captured and processed to determine if the background pattern matches a card background pattern associated with a cardholder account. Responsive to a positive determination, communication is established between the user device processor and a card processor carried by the indicialess transaction card. The user device processor receives from the card processor an encrypted verification block and transmits, to an authentication server, an authentication request including the verification block.

Abstract: A system has a computing device that displays a plurality of graphical user interfaces (GUIs), the GUIs designed to capture detailed data indicative of a renter of a vehicle. The system further has a processor that receives data from one of the plurality of GUIs indicative of the renter. Further, the processor provides a plurality of vehicles available for renting and receives a selection of one of the plurality of vehicles from the renter. Also, the processor opens a gate for the renter to a rental car location and directs the renter to a key box, unlocks the key box based upon comparing the renter's image captured at the rental car location to a picture previously received from the renter. The processor further opens the key box if the comparison indicates the renter at the rental car location is the same person who uploaded the picture previously.

Abstract: Provided herein are systems and processes for transmitting interactive content to an application and causing the interactive content to be rendered on a display of the application. In at least one embodiment, the system is configured to analyze mapping metadata based on deployment criteria and cause a content element to be rendered on a display when the mapping metadata satisfies the deployment criteria. A content element may be a permitted content element from a plurality of permissible content elements. The deployment criteria includes temporal criteria, mapping criteria, and/or other criteria described herein.

Abstract: Conducting hands-free transactions comprises a server at a payment processing system, a user computing device, and a merchant computing device. The payment processing system receives a communication from a hands-free payment application on a user device, the communication comprising a first transaction token, an identification of a user account, and a beacon identifier. The merchant may provide a challenge to the user and use the response to identify the token and account of the user. The merchant computing device can use voice patterns of the user to assist in identifying the token and account of the user. The system receives from the merchant computing device a transaction request, the transaction request comprising the first transaction token and transaction data associated with the transaction request. The system determines that the transaction is for an amount less than a configured transaction limit and communicates a request for an authorization of the transaction.

Abstract: This disclosure describes systems and techniques for enabling a communication device to communicate wirelessly with a near-field-communication (NFC)-enabled payment terminal while avoiding interference between the NFC-enabled payment terminal and other NFC payment instruments. In some instances, the communication device may receive, via a non-NFC communication protocol, a payment token from an identification device and may send, over NFC, the payment token to the NFC-enabled payment terminal for satisfying the cost of a transaction.

Abstract: The invention relates to a storage and order-picking system (1a . . . 1f) as well as order-picking method for picking ordered goods into or onto a target loading aid (4, 4?), in which at least one of the picking orders comprises multiple order lines (6, 7), which specify (an) ordered good(s) (2, 3) according to its/their type of good (8) and its/their number of pieces to be picked (9). During the execution of a picking order, a first loading aid (11, 11a . . . 11c), which is configured so as to be different from a hanging bag, with ordered good(s) (2) of the first order line (6) is out-fed from a first storage zone (10). Further, a hanging bag (13) with ordered good(s) (3) of the second order line (7) is out-fed from a second storage zone (12). Then, the ordered good(s) (2) of the first order line (6) and the ordered good(s) (3) of the second order line (7) are loaded into or onto a target loading aid (4, 4?) in accordance with the at least one picking order.

Abstract: Detecting and controlling fraud in centralized processing is provided. A system receives data packets carrying electronic transactions, and clusters the electronic transactions based on an intermediary identifier of each of the electronic transactions to identify a first cluster and a second cluster. The system generates a first model for the first cluster and a second model for the second cluster. The system detects a fraudulent electronic transaction having a first source identifier. The system locks a first data structure to prevent transfer of a first resource in electronic transactions associated with the first source identifier. The system identifies source identifiers associated with the first cluster in a first tier. The system locks absent detection of the fraudulent electronic transaction in one or more electronic transaction associated with the source identifiers, the data structure corresponding to each of the source identifiers in the first cluster.

Abstract: A method for authenticating a user prior to allowing a transaction or access to a website, in which the user's computer is identified via a recognized computer signature that is associated with a geographical location. The location of the user's cell phone is compared to the associated location, and the transaction or access is permitted if the difference in locations is within a predetermined acceptable distance.

Abstract: A portable handheld device pairs with a first building control device, to form a first wireless connection. The portable handheld device receives information about a second building control device via the first wireless connection, at least some of the information is received by the first building control device from the second building control device over a building control network before the first building control device provides at least some of the received information to the portable handheld device via the first wireless connection. The portable handheld device sends one or more messages to the first building control device via the first wireless connection, wherein the one or more messages cause the first building control device to communicate with the second building control device via the building control network to initiate a commissioning and/or maintenance process of the second building control device.

Abstract: Techniques for provisioning a central, cloud-based service (i) that generates customized queries for execution against multiple third-party applications to collect certain metric data and (ii) that generates an evaluation score based on the collected metric data are disclosed. A corresponding query is created for each of the third-party applications. Each query is designed to extract certain metric data. The queries are transmitted to their corresponding third-party applications. Metric data is returned, including first and second metric data. The first and second metric data are used to validate one another with respect to an event, which is classified. The metric data is weighted. An evaluation score is then generated based on the weighted metric data.

Abstract: An authentication system, wherein an RF tag stores a first facial feature point extracted from a captured image of a user's face. In an authentication device, a wireless communication unit wirelessly reads and writes information from and to the RF tag. A controller adjusts wireless communication conditions of the wireless communication unit, and estimates a position of the RF tag according to a distance to the RF tag. The controller adjusts imaging conditions of an imaging unit. A position of the user is detected according to an imaging resulting from the imaging unit. A second facial feature point is extracted from an image of the user's face captured by the imaging unit, and is collated with the first facial feature point read from the RF tag. Based on a collation result, authentication of the user is performed.

Abstract: A property management apparatus for managing visitor access to a managed premises. The apparatus is configured to execute stored instructions to receive visit information of a proposed visitor from a user frontend through a data communication link, to store the visit information on the data storage, and to register the proposed visitor as an authorized visitor after receipt of the visit information. The visit information comprises information of an accessible destination within the premises and visit conditions. The user frontend is pre-registered with the apparatus as associated with an associated address within the premises, and the apparatus is to operate to identify the associated address upon data communication connection with the user frontend.

Abstract: A secure parcel receptacle system includes a box-shaped container having a locking and hinged lid with LED lights positioned on the corners of the lid. Additionally, the lid includes a digital display on the front edge and a handle. The interior of the container includes a plurality of mounting holes in the floor panel. The holes receive a screw or a bolt to effectively couple the receptacle to a ground surface in front of a user's house. Additionally, the digital display of the front edge of the receptacle may serve as a digital bar code which effectively locks and unlocks the hinged lid. In one embodiment, the hinged lid is unlocked when a user inserts a code into the digital bar.

Abstract: Methods, systems, and devices for fire control system authentication are described herein. One method includes authenticating a user device to an authentication server, receiving, from the authentication server, an offline token, and authenticating the user device to a fire control panel using the offline token.

Abstract: A method for authenticating a consumer. The method includes receiving an authorization request message associated with a consumer conducting a transaction with a portable consumer device. A challenge message is sent to the consumer, where the challenge message is dynamic or semi-dynamic. A challenge response message is received from the consumer, and an authorization response message is sent to the consumer. The authorization response message indicates whether or not the transaction is authorized.

Abstract: A control device that controls a robot capable of self-propelling is provided. The control device comprises: a facility staff member identifying unit configured to identify a position of a facility staff member in a facility; a visitor identifying unit configured to identify a position of a visitor in the facility; and a control unit configured to instruct the robot capable of self-propelling to move. In a case where the control unit determines that the facility staff member that has been identified by the facility staff member identifying unit is absent in a predetermined range near the visitor that has been identified by the visitor identifying unit, the control unit causes the robot to move into the predetermined range.

Abstract: An opening-closing control device according to an embodiment of the present disclosure is a device that controls opening and closing of a plurality of doors of an accommodating portion when a robot executes a task of loading or unloading an object to and from the accommodating portion. The opening-closing control device includes a door opening information acquisition unit that acquires information indicating a door to be opened in order to execute the task; and a control unit that controls, based the on the information indicating the door to be opened in order to execute the task, a lock unit that is arranged corresponding to each of the plurality of doors and that is configured to restrict a door other than the door to be opened in order to execute the task in a closed state.

Abstract: A method for intaking a bag containing currency or bank checks can include receiving, at a first computing device having one or more processors, a first input from a second computing device the defines a pre-staged transaction. The method can also include generating, with the first computing device, a scannable token correlated to the first input and communicated to the second computing device. The method can also include scanning, with a scanner at an after-hours depository (AHD), the scannable token from a display of the second computing device. The method can also include controlling, with a third computing device of the AHD, an actuator to unlock a door of the AHD and receiving the bag through an inlet of a chute of the AHD that extends between the door and a safe of the AHD.

Abstract: A method including configuring, by an infrastructure device, a virtual private network (VPN) server to receive, while executing an initial operating system, a primary VPN operating system; configuring, by the infrastructure device, the VPN server to receive, while executing the primary VPN operating system, custom parameters associated with the VPN server providing VPN services; configuring, by the infrastructure device, the VPN server to determine a VPN operating system based at least in part on configuring the primary VPN operating system with the custom parameters; and configuring, by the infrastructure device, the VPN server to execute the VPN operating system to provide the VPN services. Various other aspects are contemplated.

Abstract: Systems and methods for informed mobility platform for an item processing supervisor within a distribution facility are disclosed. In one embodiment, a supervisor mobile terminal for electronically managing item processing activities associated with a distribution facility is provided. The terminal may include a transceiver circuit configured to wirelessly communicate with a server computer a plurality of sets of data relating to the item processing activities. The terminal may further include a user interface configured to display the plurality of sets of data and a controller in data communication with the transceiver circuit and the user interface. The controller may be configured to control the user interface to modify the at least one set of data and control the transceiver circuit to wirelessly communicate the modified data with the server computer such that the at least one set of data stored in the server computer is updated with the modified data.

Abstract: The embodiments disclosed herein use WiFi signals detected from nearby WiFi networks to confirm the identity of a bank's customer logging in to his or her account at the bank. Specifically, the customer's computing device may detect signals from neighboring WiFi networks. The bank may then verify that the customer's accounts are being accessed from the customer's home or office by comparing the list of neighboring WiFi networks to a previously stored list of the neighboring networks. If the lists match, it is probable that the customer's accounts are being accessed from the customer's home or office, thus reducing the possibility that a fraudulent actor is trying to access the customer's accounts.

Abstract: Disclosed herein are system, method, and computer program product embodiments for verification of proximity to a kiosk, such as an ATM. The mobile application installed on a mobile device may be used to setup a prestaged transaction. When the mobile device is in the proximity to the kiosk to complete the prestaged transaction, a location of the mobile device may be verified using ambient sound recorded by a microphone of the mobile device. The ambient sound may be songs, tones, or ultrasonic sound played by a sound system near the kiosk. The recorded ambient sound may then be compared to expected audio from the sound system to determine whether the mobile device is in proximity to the kiosk.

Abstract: The present embodiments may relate to generating dynamic transit routes based at least in part upon telematics data of users. For instance, a transit analysis (TA) computing device may be configured to: (1) receive telematics data from the plurality of user mobile devices, each user mobile device of the plurality of user mobile devices corresponding to one user identifier of a plurality of user identifiers; (2) build, for each user identifier of the plurality of user identifiers, a transit model; (3) generate, for each user identifier of the plurality of user identifiers, based at least in part upon the transit model associated with the user identifier, one or more transit predictions; and/or (4) generate, based at least in part upon the one or more transit predictions, for each user identifier of the plurality of user identifiers, a dynamic transit route.

Abstract: Methods and systems of authorizing transaction requests are disclosed. A financial institution computing system includes a network circuit exchanging information over a network, a customer database storing financial and identification code information for a plurality of customers, and a transaction circuit. The transaction circuit receives a transaction request over the network that specifies a financial account and includes a first identification code provided by an authentication device in conjunction with a separate customer computing device. The transaction circuit authenticates the transaction request by determining whether the first identification code is associated with an authorized user of the financial account specified in the transaction request, authorizes the transaction request, and transmits a confirmation to a transaction terminal over the network via the network circuit.

Abstract: Provided is to prevent a false determination due to an attachment condition of an apparatus that transmits and receives an acoustic signal, and perform accurate personal authentication. A personal authentication device includes: a personal authentication means that authenticates an individual by using first information at least including an acoustic characteristic calculated from an acoustic signal propagating through the head of the user, which is detected by an apparatus being attached on a head of a user for transmitting and receiving the acoustic signal, and a feature amount extracted from the acoustic characteristic; an attachment trouble rule storage means that stores an attachment trouble rule for detecting an attachment trouble with the apparatus; and an attachment trouble detection means that detects a trouble with an attachment state of the apparatus when the first information satisfies the attachment trouble rule.

Abstract: A computer system is configured to authenticate the identity of a user who is attempting to access a website or conduct a transaction. The system is configured to receive a geographical location associated with the user and to receive the geographical location of a mobile phone associated with the user, and to determine whether the two geographical locations are within an acceptable distance.

Abstract: Methods and devices for conducting a payment transaction between a paying terminal and a selling terminal via a remote server. In some embodiments, the paying terminal scans an encrypted image, such as a two-dimensional code, displayed on the selling terminal. The paying terminal decrypts the encrypted image to obtain payment information and sends a payment request to the remote server for processing. Security verifications may be conducted by the paying terminal or the server, and the server may generate processing results approving or denying the payment request accordingly. When the payment amount is greater than a preset value, additional verification can be carried out using, e.g., biometric information. The paying terminal and/or the selling terminal then display the processing results and the remote server completes the payment transaction.

Abstract: A methods and system of hosted thin-client payment authorization and authentication services for processing payments for value-added service (VAS) providers is described. A method, performed by a host server operating a thin-client device, includes receiving transaction request data at a host server computer from a thin-client device, where the transaction request data can include financial account data and biometric data. The host-server transmits a verification request message to a VAS provider and receives an indication that it is a valid merchant. The host-server transmits an authorization request message comprising the biometric data to a payment processing network (PPN), where the PPN communicates with an authentication server computer to validate the biometric data, sends the authorization request message to an issuer and receives an authorization response message from the issuer.

Abstract: A cooler and freezer access control system locks a cooler or freezer when occurrence of an event is detected that requires limiting access to the inside of the cooler or freezer. Examples of such events include the loss of power to the cooler or freezer for a predetermined period of time, the opening of the cooler or freezer door for longer than an allowed time, the loss of functionality of a temperature probe and others. In an embodiment, a service mode is supported wherein the door is left unlocked despite the occurrence of such an event, to allow a stocker or other personnel to leave the cooler or freezer door open while stocking the cooler or freezer with product.

Abstract: The electronic shipping label device may display a shipping label image or shipment information using an electronic paper display, and may be attached to an item for shipment of the item from an origin to a destination. A host device, such as an electronic device of a user, may configure the electronic shipping label device to display the shipping label image. The host device may be configured to communicate with a system server of a shipping management system to provide shipping parameters corresponding to the shipment and receive the shipping label image (e.g., from a third-party system, such as a system associated with a shipping carrier). The host device may transmit the shipping label image to the electronic shipping label device for display.

Abstract: When a mobile device such as a smart phone comes within range of a location device, the mobile device inputs a location token from the location device and a travel token is created from a mobile device token and the location token. The mobile and location tokens may include data elements indicating not only identity, but also such other characteristics as an authorization or infection risk level. Tokens may be digitally signed, preferably with an independently verifiable signature that also encodes time. Mobile and location devices may be created and issued by a tracking service provider, which may also store tokens, analyze travel tokens with respect to a location's risk level, and update mobile device and location tokens to change a status of the mobile or location device.

Abstract: A cooler and freezer access control system locks a cooler or freezer when occurrence of an event is detected that requires limiting access to the inside of the cooler or freezer. Examples of such events include the loss of power to the cooler or freezer for a predetermined period of time, the opening of the cooler or freezer door for longer than an allowed time, the loss of functionality of a temperature probe and others. In an embodiment, a service mode is supported wherein the door is left unlocked despite the occurrence of such an event, to allow a stocker or other personnel to leave the cooler or freezer door open while stocking the cooler or freezer with product.

Abstract: Multifunction smart door devices may be part of a system of multifunction smart door devices installed within or near stateroom doors of a cruise ship. Each smart door device can control access to a stateroom based on facial recognition or a wireless credential and can perform other functions such as controlling stateroom personalization features, providing an electronic peephole function, allowing controlled access for authorized crew members, accommodating remote unlocking, and providing notifications. Data obtained by the smart door devices can be provided to the cruise operator for service, safety, or security purposes, such as for anonymized foot traffic analysis, hazard detection, and stateroom access auditing. Smart door device functionality may be implemented in part by customers' mobile devices.

Abstract: Various implementations disclosed herein include devices, systems, and methods that use a marking on a transparent surface (e.g., a prescription lens insert for an HMD) to identify information (e.g., prescription parameters) about the transparent surface. In some implementations, the markings do not interfere with eye tracking through the transparent surface or using the transparent surface to view virtual content or a physical environment. In some implementations, image data is obtained from an image sensor of an electronic device, the image data corresponding to a transparent surface attached to the electronic device. Then, a code is identified in the image data, wherein the code is detectable on the transparent surface by the image sensor without interfering with a function of the electronic device involving the transparent surface. In some implementations, content is provided at the electronic device based on the identified code, wherein the content is viewable through the transparent surface.

Abstract: The management system for substitute currency includes a pattern acquiring device configured to acquire an image of the ground pattern of the substitute currency, a reading device configured to read an ID of the substitute currency currency, and a control device configured to associate a pattern of the ground pattern with the ID and store the associated pattern and ID in a database. The control device is configured to analyze the image of the ground pattern acquired by the pattern acquiring device to identify the pattern, and determine, based on the database, whether the pattern of the ground pattern of the substitute currency matches the pattern of the ground pattern associated with the ID of the substitute currency obtained from the reading device, thereby to determine authenticity of the substitute currency.

Abstract: A structure of a multipurpose card having a semi-transparent or transparent stone is provided. The stone is a faceted precious stone, such as a diamond. The diamond is illuminated from only one side of the multipurpose card and light is passed through predetermined optical paths. An image of the diamond is acquired from the opposite side of the multipurpose card and compared to predetermined reference images of the diamond, to authenticate the multipurpose card.

Abstract: Systems and methods for token processing are disclosed. An access device can provide access device data to a mobile communication device. The communication device generates a token request including the access device data and communication device data and sends the token request to a server computer. The server computer returns a token and a token cryptogram to the mobile communication device. The token and the cryptogram may be used in a transaction.

Abstract: A ticket issuing system has a processor and a storage with instructions thereon. The storage stores a feature value table that associates and stores feature value data including feature information pertaining to biometric information and a feature ID for identifying the feature value data. The instructions upon execution by the processor, cause the processor to: acquire user feature information pertaining to biometric information of a user of a ticket to be issued; identify, from among the feature value data stored in the feature value table, similar feature value data for which a similarity with the user feature information satisfies a predetermined criterion to obtain a feature ID corresponding to the similar feature value data; and issue a ticket on which authentication information that includes the feature ID corresponding to the similar feature value data is recorded.

Abstract: A method for validating an electronic transaction of an Internet user associated with a mobile phone, by comparing the present location of the mobile phone to a past location, and validating the transaction only if the time and distance between locations, and/or the implied velocity of motion between the locations, are within acceptable ranges.

Abstract: Managing a storage system, including: receiving, over a first network, user credentials associated with an access request to a storage system; sending, over a second network to a cloud-based security module, the user credentials; receiving, over the second network from the cloud-based security module, a token representing that the user credentials were successfully authenticated by the cloud-based security module; and sending, over the first network to the storage system, the token with a management instruction, wherein the storage system is not coupled for data communications to the cloud-based security module.

Abstract: A mobile inventory transportation unit (MITU) in a communication network is disclosed. The communication network may comprise the MITU, a transportation system, a first and a second central system, in communication with each other, the MITU comprising a housing, an inventory storage device, a power device, a drive device, a navigation device, a sensing device, and a control device. The MITU may be configured to receive inventory demands and handle them based on analyzing its own inventory, the transportation system may be configured to physically receive and transport the MITU, the second central system may be configured to determine an inventory demand at a second or more location and transmit the same to the first central system or the MITU, and the first central system or the MITU may be configured to schedule the movement of the MITU and control the delivery of the MITU to a final destination.

Abstract: A plurality of bank identification number (BIN) ranges are characterized according to credit risk. A list of the plurality of bank identification number (BIN) ranges characterized by credit risk is made available to a transit-specific payment network interface processor, which is coupled to a plurality of memory-constrained fare gates of a transit authority. The list is configured to be distributed to the memory-constrained fare gates of the transit authority. Advantageously, the list based on BIN ranges takes up less memory than a list based on individual account numbers or the like and can be maintained in memory at the memory-constrained fare gates for rapid decisioning.

Abstract: Systems and methods for managing a promotional campaign are provided. In one embodiment, a promotional campaign engine communicates in real-time with a participant's mobile computing device, receives an electronic campaign entry from the mobile computing device, and based on a rule set, generates a virtual value item in an established stored value system based on the rule set.

Abstract: Systems/Methods of establishing and using a capability at a smartphone to conduct financial transactions are disclosed. According to some embodiments, responsive to sensing a value of a parameter and responsive to determining that the value of the parameter sensed satisfies a criterion, a master-slave relationship is selectively established with a device and an authorization to establish said capability is selectively requested from the device. Responsive to receiving the authorization, the capability to conduct financial transactions by the smartphone is established. Then, provided the smartphone is proximate to an access point maintained by a vendor and provided that the value of the parameter is sensed and satisfies the criterion, said capability that has been established may be used to conduct a financial transaction and pay for a product.

Abstract: An authorization management system for personal use of a weapon includes a receiving module coupled to the weapon and a transmitting module configured to be worn by a user in proximity to a body of the user. The transmitting module is located in proximity to the ground. The transmitting module is configured to transmit a signal representing at least an identification code data associated to the user via a signal path through a user's body. The receiving module is configured to receive the signal and actuate a safety system of the weapon for allowing the user a usage of the weapon based on the received signal.

Abstract: Various embodiments are generally directed to techniques to enable use of a transaction card of a user device to perform transactions. Embodiments may include method, techniques, and circuitry to cause a transaction card to extend from a user device to be used to perform the transactions. Further, the transaction card may retract into the housing the user device when not in use.

Abstract: Systems for encoding resource access credentials in barcodes displayed on user devices, such as mobile phones, are described. A resource access credential authorising payment for a transaction relating to the purchase of goods or services is obtained, and a barcode encoding barcode data is generated, including at least a purchasing entity identifier, the resource access credential, and a user supplied transaction identifier. The barcode is displayed on the display of the user device, and read by an optical reader of merchant computing system. The merchant computing system requests payment for the transaction using the resource access credential, and produces a transaction data packet containing transaction data relating to the transaction, together with at least the purchasing entity identifier and user supplied transaction identifier.

Abstract: Electronic locking devices, systems, and methods may require the utilization of an electronic key generated by an electronic key generation device. The electronic key may be generated using a data payload received from a server and/or an administrative device. The administrative device is enabled to remotely manage the locking device and locking system via, for example, a software application running on the administrative device and/or a website.