Abstract: A user specific tic behavior detection-based method and system of performing an authentication of video of a person in order to authorize access to a secured resource. The user provides audio and/or video data in which they exhibit one or more tic behaviors. When a person later requests access to the user's account, the system and method are configured to capture a video and/or audio recording of the person requesting access. The data is evaluated to determine whether the previously detected tic behavior is present. If the tic behavior is present, the system determines the image or voice is authentic and can verify an identity of the person. In some cases, the system can further be configured to automatically grant the person access to one or more services, features, or information for which he or she is authorized.

Abstract: Introduced here are approaches to authenticating the identity of speakers based on the “liveness” of the input. To prevent spoofing, an authentication platform may establish the likelihood that a voice sample represents a recording of word(s) uttered by a speaker whose identity is to be authenticated and then, based on the likelihood, determine whether to authenticate the speaker.

Abstract: Carrying out, over a network infrastructure, secure execution of cryptographic operations using a public/private key pair is described, wherein the private key is permanently stored on a second computing device that is remote to and accessible to the first computing device through an open network. The method includes establishing a secure connection over the open network between the first computing device and the second computing device, sending a file via the secure connection over the open network to the second computing device and instructing the second computing device to: encrypt or decrypt the file with a private key, of the public/private key pair, that is stored on the second computing device; and send the encrypted or decrypted file to the first computing device via the secure connection over the open network. The encrypted or decrypted file is then received over the open network from the second computing device.

Abstract: Provided are an information processing apparatus, an information processing method, and a storage medium that can accurately guide facilities or services which are available to a user who is scheduled to take a transportation. An information processing apparatus includes: a registration unit that registers a status of a user scheduled to board on a transportation related to boarding acquired by a boarding procedure and biometric information of the user acquired during the boarding procedure in association with each other; and a generation unit that generates guide information related to a facility or a service available to the user guided by an information processing terminal according to the status of the user, who is identified by matching of target biometric information which is biometric information acquired by the information processing terminal for one user, and registered biometric information which is the biometric information registered by the registration unit.

Abstract: Data associated with a memory device may be authenticated before an associated operation is executed. The data may be authenticated before it is executed at a volatile memory. The data may be associated with a hash (e.g., a first hash) and may be communicated from the memory device to a host device. At the host device, the data and the first hash may be written (e.g., stored) to temporary storage, such as a cache. Once stored to the cache, the host device may generate an additional hash (e.g., a second hash) related to the data using a key inaccessible to the memory device. If the first hash and second hash match, the data may be authenticated and one or more operations may be executed.

Abstract: Provided is an information processing device including a wearing determination unit configured to determine whether or not a user wears a wearable device that emits a sound wave to perform a biometric authentication based on acoustic characteristics toward a part of a head of the user and an operation mode controlling unit configured to switch, based on a result of a determination by the wearing determination unit, an operation mode of the wearable device between a plurality of operation modes including a first operation mode in which a process for the biometric authentication is not executable and a second operation mode in which a process for the biometric authentication is executable.

Abstract: Provided are a system and a method for managing an unmanned store remotely, particularly a system and a method that can remotely perform unmanned store management, including door control, lighting control, kiosk management, etc., using Internet of Things (IoT) technology.

Abstract: Systems and methods for card replacement are disclosed. In one embodiment, in a card issuer backend comprising at least one computer processor, a method for card replacement may include: receiving, from a cardholder, a request to replace a lost card; determining that the lost/not received card has not been provisioned to an electronic wallet associated with the cardholder; generating a token for the lost card; provisioning the token to the electronic wallet; generating a replacement card number for the lost card; requesting that a token service provider assign the token for the lost card to the replacement card number; and updating a customer profile with the replacement card information. The token service provider may change an association of a token from being associated with the lost card to being associated with the replacement card, and may provide the electronic wallet with replacement card information via an electronic wallet provider.

Abstract: A system is provided for hands-free handling of at least one asset by a user. The system includes a user device configured to be worn by a user and a control system remotely located relative to the user device and configured to exchange asset-related data with the user device, the asset-related data including at least one or more notifications related to the handling of the at least one asset by the user at the asset location. The user device contains a processor configured to determine location data associated with the at least one asset and including a location for the at least one asset, the determination being based, in part, upon the obtained asset identifier data; dynamically generate and display, at the user device, one or more navigational projections configured to guide the user to the asset location; and detect handling of the at least one asset by the user.

Abstract: A storage apparatus having a keyless lock/unlock system. The storage apparatus may including a housing having a storage cavity and a door may be coupled to the housing. A handle is coupled to the door and defines a handle cavity. The locking system includes an electronics assembly and a locking mechanism that are in operable communication. The electronics assembly includes a reader component and an indicator component that are located within the handle cavity. The indicator component is visible through a window in the handle. When the reader component receives credential data which is then authenticated, the locking system transitions between a locked configuration whereby the locking mechanism is locked and the indicator component is in a first display state and an unlocked configuration whereby the locking mechanism is unlocked and the indicator component is in a second display state. The indicator component may be electronic paper.

Abstract: In an example embodiment, there is described in here a method for pre-staging transactions that permit a banking customer to either transfer money to a third party or to themselves. In particular embodiments, a token is generated that can be used multiple times by the recipient.

Abstract: A computer-implemented method, system, and computer program product is provided for authenticating a transaction. The method includes: receiving, on a mobile device associated with a user, a request from an authentication system, the request associated with a transaction requested by the user; obtaining, with the mobile device from a portable payment device, account data via radio frequency communication; obtaining, with the mobile device, mobile device location data including at least one of the following: GPS location data, telephone carrier location data, wireless network location data, or any combination thereof; encrypting, with the mobile device, at least a portion of the account data and the mobile device location data, resulting in at least one encrypted data packet; and transmitting, with the mobile device to the authentication system, the at least one encrypted data packet.

Abstract: A gate apparatus includes a determination unit, a fingerprint authentication unit, and a gate control unit. The determination unit determines a nationality of an examination target user. The fingerprint authentication unit obtains a fingerprint of the examination target user if the nationality of the examination target user is a first country and performs fingerprint authentication using the obtained fingerprint. The gate control unit controls a gate to allow the examination target user of the first nationality to pass through if the fingerprint authentication of the examination target user is successful.

Abstract: Various embodiments include a method for managing a production process for fabricating a component comprising: storing fabrication data for fabricating the component in a first file container; storing reproduction data relating to the component in the first file container, wherein said reproduction data includes a permission relating to the fabrication of the component; storing production data indicating a state of a production machine during the production process in a second file container; storing character data indicating a property of the component in a third file container; receiving a request; and providing at least one datum in response to the request, the at least one datum selected from the group of data consisting of: the stored fabrication data, the reproduction data, the production data, and/or the character data.

Abstract: Techniques for controlling access to zones of a building. The techniques include determining with a computing device configured to regulate access to a zone of the building, at a time and responsive to a request to access the zone of the building received via an access control interface, whether a user is allowed to access the zone of the building; and in response to the computing device determining that the user is not allowed to access the zone at the time, receiving, via the access control interface, a request to permit access to the zone at the time; determining, with the computing device and at the time, whether to permit access to the zone based on one or more criteria; and outputting a result of determining whether to permit access to the zone.

Abstract: An information processing apparatus according to the present invention includes: a biometric information acquisition unit that acquires biometric information of a user at an arrival airport; a biometric matching unit that performs a matching process of the biometric information with registered biometric information of a registrant who deposited a baggage with the airline at a departure airport; and a guide unit that outputs guide information including a location of pickup in the arrival airport and a start time of pickup of the baggage associated with the registered biometric information to the user who is authenticated as the same person as the registrant by the matching process.

Abstract: Disclosed herein are systems and methods that identify and improve upon false positive scores. Some embodiments may include artificial neural network learning methods that utilize data input from users as well as enterprise machines. Information, such as transaction timing, prior transaction data, and demographics, may be taken as inputs to the neural network processing. The processing may be done on one or more neural network computers or nodes.

Abstract: Systems and methods are described for authenticating devices. The systems and methods may include detecting, by a sensor on a wearable device, at least one cloud anchor that includes an identifier associated with a network and configured for a physical environment. In response to detecting that a location associated with the at least one cloud anchor is within a threshold distance of the wearable device and detecting that the wearable device has access to the at least one cloud anchor, triggering extraction of the identifier from the at least one cloud anchor. The systems and methods may also include joining the wearable device to the network based on a received authentication corresponding to the extracted identifier.

Abstract: A computing system receives a code that is generated based upon an image of an iris of a first user. The image of the iris of the first user is captured by way of an iris scanning device that is under control of a second user. The computing system executes a search over a plurality of codes stored in a data store based upon the code, where the plurality of codes are generated based upon images of irises of a plurality of users. The computing system determines whether the code is included in the plurality of codes based upon search results for the search. Based upon a determination that the code is not included in the plurality of codes, the computing system causes an amount of cryptocurrency to be transferred to a cryptocurrency wallet of the first user.

Abstract: A device may receive, from a server device, a real-time notification indicating that a field of a user account is being modified. The field may include personal information of a user associated with the user account and/or information identifying authorized users of the user account. The device may receive, from a user device, a request associated with a high-risk transaction involving the user account. The device may determine a risk score indicating a likelihood of the high-risk transaction being performed by an unauthorized user. The device may selectively identify an authentication procedure, of a group of authentication procedures, based on the risk score. The device may provide authentication instructions for the authentication procedure to the user device to allow the user device to perform the authentication procedure.

Abstract: A secure one-time programming undo system includes a component and a component configuration system. A one-time programming subsystem in the component configuration system provides the component with personality configuration information that configures the component to perform component operations, and performs a one-time programming operation that configures a component engine in the component to deny modification requests to modify the personality configuration information.

Abstract: A system and system for personal pathogen status verifying allows an entity to control access to an area of congregation (AOC) at one or more points of entry (POE) is a configurable manner. In one embodiment, the system may be used for the SARS-CoV-2 virus, but may be similarly used for other pathogens.

Abstract: A flight departure control system comprises a central departure control system and a plurality of local departure control systems arranged at or in proximity of individual airports. Passengers check-in for flights via the central DCS and for each passenger a passenger data message is created and sent to the local DCS to which the flight relates. On detection of a fault condition at the central DCS or in communications with the central DCS, the local DCS assume responsibility for flights departing from the airport at which they are located based on the received passenger data messages and unchecked-in passengers check-in directly with the local DCS.

Abstract: The disclosure describes a campaign director (CD) system associated with a financial institution and an associated campaign manager (CM) unit executing on a mobile device used to facilitate behavior based allocation of payment tokens and activation of payment transactions based on the tokens. The CM unit of the mobile device may be programmed by the CD system at the financial institution to generate tokens according to a token generation model that is a function of financial behavior history associated with a credit card account. When a credit card is used to initiate a payment transaction with a merchant, the CM unit of the mobile device may generate a token for the payment transaction and send the token to the CD system at the financial institution. The CD system then determines whether to activate the payment transaction based on the token and merchant data associated with the payment transaction.

Abstract: Methods and apparatus are described that use machine vision and machine learning to eliminate many of the steps of a typical retail transaction. For example, implementations are contemplated in which a user simply removes an item from a retail location to effect the transaction.

Abstract: Systems and methods for providing a workspace Root-of-Trust (RoT) are described. In an embodiment, an Information Handling System (IHS) may include a processor and a memory coupled to the processor, the memory having program instructions stored thereon that, upon execution, cause the IHS to receive a digital certificate from each of a plurality of peripheral devices coupled to the IHS in a workspace and combine at least portions of the digital certificates to create a workspace certificate unique to the workspace.

Abstract: Systems and methods for dynamic inclusion of enhanced data in transactions are disclosed. According to another embodiment, in an information processing apparatus comprising at least one computer processor, a method for conducting a mobile wallet payment with dynamic enhanced data using a mobile payment application may include: (1) receiving, from a merchant point of transaction device, a transaction request from a mobile payment application executed by a mobile electronic device, the transaction request comprising a unique identifier for a financial instrument provisioned to a mobile wallet computer application and a payment option selection; and (2) processing the transaction request according to the payment option selection.

Abstract: A gate apparatus includes a progress indicator and a control unit. The progress indicator indicates the progress of the procedures related to emigration and immigration examination of the examination target user. The control unit controls the progress indicator depending on the nationality of the examination target user.

Abstract: Aspects disclosed are directed to a system and methods that device authentication. The system at least transmits a silent push notification to an application installed on a client device. The silent push notification includes a push token provided by a push service and an embedded secret. A response to the silent push notification can be received with a further embedded secret. The embedded secret and the further embedded secret can be compared to determine if they match. If the embedded secret and the further embedded secret match, the client device can be authenticated.

Abstract: Biometrically-linked electronic proof of health status of an individual. In one embodiment, an electronic device including a biometric capture circuitry, a memory, and an electronic processor. The biometric capture circuitry configured to capture one or more biometrics of the individual. The electronic processor is configured to receive the one or more biometrics of the individual that are captured by the biometric capture circuitry, generate a biometric token of the individual based on the one or more biometrics, receive information indicative of a health status of the individual, link the information indicative of the health status of the individual to the biometric token, and control the memory to store the biometric token and the information indicative of the health status of the individual that is linked to the biometric token.

Abstract: The disclosure describes a campaign director (CD) system associated with a financial institution and an associated campaign manager (CM) unit executing on a mobile device used to facilitate behavior based allocation of payment tokens and activation of payment transactions based on the tokens. The CM unit of the mobile device may be programmed by the CD system at the financial institution to generate tokens according to a token generation model that is a function of financial behavior history associated with a credit card account. When a credit card is used to initiate a payment transaction with a merchant, the CM unit of the mobile device may generate a token for the payment transaction and send the token to the CD system at the financial institution. The CD system then determines whether to activate the payment transaction based on the token and merchant data associated with the payment transaction.

Abstract: Systems and methods are described for authenticating devices. The systems and methods may include detecting, by a sensor on a wearable device, at least one cloud anchor that includes an identifier associated with a network and configured for a physical environment. In response to detecting that a location associated with the at least one cloud anchor is within a threshold distance of the wearable device and detecting that the wearable device has access to the at least one cloud anchor, triggering extraction of the identifier from the at least one cloud anchor. The systems and methods may also include joining the wearable device to the network based on a received authentication corresponding to the extracted identifier.

Abstract: System, apparatus, device and methods relating to a telematic vehicle sharing platform ecosystem and a telematic vehicle share I/O expander to automate sharing and management of a vehicle that is shared by more than one operator.

Abstract: A wireless signal may supply a wireless power signal to a device to power the device for an authentication. If the device is authenticated, the wireless signal may be adjusted to provide power to the device. If the device is not authenticated, the wireless signal may be adjusted to avoid providing power to the device.

Abstract: A data controller computing device is configured to receive, from a voice-controlled (VC) computing device, a shared payment initialization request identifying a primary user payment account associated with the VC computing device. The DC computing device creates a shared payment account linked in a database to the primary user payment account. The DC computing device also receives secondary user information, and links in the database at least one secondary user payment account to the shared payment account. Additionally, the DC computing device transmits a shared payment account identifier to the VC computing device. The DC computing device receives, via a payment network, a transaction authorization request including the shared payment account identifier, a merchant identifier, and a transaction amount. The DC computing device applies respective portions of the transaction amount against each of the primary user account and the at least one secondary user payment account.

Abstract: Techniques and apparatus for allowing a network fabric to accept network devices associated with other fabric networks are described. An example technique involves establishing a communication session between a first network node and a first control plane of the network fabric, wherein the first network node supports a second control plane different from the first control plane; First routing information from the first network node is imported into a first routing table of the first control plane. Second routing information from a second network node is imported into a second routing table of the first network node.

Abstract: Provided is a system and method of optical character recognition of a bag tag, the method including: a) obtaining, by at least one of at least one processor, image data representative of at least one image of printed passenger information associated with an airline travel carrier on an originating hardcopy bag tag or a printed instrument comprising at least a portion of the printed passenger information on the originating hardcopy bag tag to create a digital passenger information (DPI) data record linked to the airline travel carrier, wherein the originating hardcopy bag tag is issued for a luggage item of a passenger, and wherein the DPI data record comprises an International Air Transport Association (IATA) license plate number, a passenger name record (PNR) number, an airline code, an airline name, a name of the passenger, or any combination thereof; b) accessing, by at least one of the at least one processor, passenger return flight information from a computer system associated with the airline travel car

Abstract: System, apparatus, device and methods relating to a telematic vehicle sharing platform ecosystem and a telematic vehicle share I/O expander to automate sharing and management of a vehicle that is shared by more than one operator.

Abstract: Example embodiments of systems and methods for data transmission system between transmitting and receiving devices are provided. In an embodiment, each of the transmitting and receiving devices can contain a master key. The transmitting device can generate a diversified key using the master key, protect a counter value and encrypt data prior to transmitting to the receiving device, which can generate the diversified key based on the master key and can decrypt the data and validate the protected counter value using the diversified key.

Abstract: A method includes receiving first data associated with a first power amplifier and second data associated with a second power amplifier. The method also includes generating a first amplitude limiting signal having gain parameters that are based on the first data and the second data. The first data includes at least one of a temperature measurement associated with the first power amplifier, a supply voltage measurement associated with the first power amplifier, a load resistance associated with the first power amplifier, or a gain associated with the first power amplifier. The method further includes modifying an audio signal based at least in part on the first amplitude limiting signal to generate a first gain-adjusted audio signal. The method also includes providing a first output audio signal to the first power amplifier for amplification. The first output audio signal is based at least in part on the first gain-adjusted audio signal.

Abstract: A system and method in which the Bluetooth technology is used in conjunction with a user application on a mobile device to facilitate hands-free fare validation at a transit station. The user app communicates with a controller driver in a controller unit that interfaces with a compliant fare gate. Bluetooth beacons are used to determine a passenger's proximity to the gate and camera-like devices determine whether a passenger has entered a fare validation zone. A user with a valid and active electronic ticket on their mobile device may simply walk through the fare gate “hands free” without the need to search for a physical ticket or a smartcard or a mobile phone. This hassle-free approach significantly improves the user experience and passenger throughput through fare gates. The Bluetooth-based automated fare validation system also detects passengers with valid electronic tickets and those without a valid permit for travel.

Abstract: The disclosure describes a biometric authentication system that can authorize a transaction at a retail store using a person's biometric data and password. The biometric authentication system may include a point-of-sale device that can receive a biometric data (e.g., voice data, fingerprint data, or facial data) of a person that initiates a transaction. The biometric authentication system may also include one or more authentication systems that analyzes the received biometric data, and an authorization system that compares data obtained from the one or more authentication systems and the POS device to determine whether the information obtained from the person is related to that person's biometric and password information previously stored by the authorization system.

Abstract: A gate apparatus (10) includes a first light emission unit (110), a first person detection unit (120), a second person detection unit (122), and a control unit (140). Each of the first person detection unit (120) and the second person detection unit (122) detects existence of a person. The second person detection unit (122) is positioned on the exit side of the first person detection unit (120). Then, the control unit (140) changes the light emission state of the first light emission unit (110) from a first state to a second state different from the first state with detection of a person by the first person detection unit (120) as at least one condition. Further, the control unit (140) sets the light emission state of the first light emission unit (110) to the first state with detection of a person by the second person detection unit (122) as at least one condition.

Abstract: The invention relates generally to systems and methods for protecting patient privacy when health care information is shared between various entities and, in particular, to systems and methods that implement a multi-stage sanitizing routine for de-identifying patient data from medical reports and diagnostic images to ensure patient privacy, while preserving the ability for sanitized medical reports and diagnostic images to be re-identified.

Abstract: The features relate to artificial intelligence directed detection of user behavior based on complex analysis of user event data including language modeling to generate distributed representations of user behavior. Further features are described for reducing the amount of data needed to represent relationships between events such as transaction events received from card readers or point of sale systems. Machine learning features for dynamically determining an optimal set of attributes to use as the language model as well as for comparing current event data to historical event data are also included.

Abstract: An access-control mechanism, wireless device, and method for controlling the access-control mechanism and wireless device is provided herein. During operation the wireless device will create a “group” of devices that will be allowed to enter through a passage barrier without authentication. When authenticating with the access-control mechanism, the wireless device will prove the access-control mechanism with a list of credentials (e.g., identification information) for each device within the group. The access-control mechanism will then determine if every device on the list is allowed entry. If so, non-authenticated entry for a number of devices/people through the passage barrier will be allowed. The number of non-authenticated devices/people allowed to enter will be equal to a number of devices that are in the group.

Abstract: The embodiment of the present disclosure provides a method for evolving a root of trust and an electronic device using the method. Through the present disclosure, the root of trust can be evolved several times to strengthen the security verification capability for secure boot. Different from the conventional method of burning the root of trust in the read-only memory, the present disclosure uses a block protection storage device to write a verification firmware to be added to the root of trust into an unprotected block of the block protection storage device. Further, after the writing is completed, the unprotected block in which the verification firmware is written becomes a protected block, so as to make the evolvable root of trust secure and reliable, and can achieve credibility for evolving the root of trust.

Abstract: A method for authenticating the identity of a user who is attempting to access a website or conduct a transaction is described. The method involves receiving two geographical locations, and associated time stamps, of a mobile phone associated with the user, one of the locations being the location of the transaction or access attempt. The method determines whether the speed required to travel between the two geographical locations in the elapsed time is within acceptable limits. A confidence score, derived in part from this calculation, is taken into account when deciding whether to allow or deny the access or the transaction.

Abstract: An electronic device is provided. The electronic device includes a display, a communication module, a memory, and at least one processor configured to be operatively connected to the display, the communication module, and the memory. The at least one processor may be configured to detect an occurrence of an event for executing a remaining fingerprint theft prevention service. The at least one processor may be configured to receive remaining fingerprint candidate group data corresponding to a fingerprint candidate area. The at least one processor may be configured to determine authentication validity of the fingerprint candidate area. The at least one processor may be configured to transmit a security level obtained by evaluating a security risk of remaining fingerprints remaining on the display. The at least one processor may be configured to output security guidance information on the remaining fingerprints of the display.

Abstract: Techniques and architecture are described for providing connectivity and monitoring the connectivity of a fabric network controller/control plane with external and extended network controllers/control planes. The techniques and architecture provide a method that includes provisioning a control plane of a first network with a control plane of a second network. The method also includes establishing a session between the control planes of the first and second networks. The method further includes registering nodes of the first network with the control plane of the second network and providing, by the control plane of the first network to the control plane of the second network, information related to endpoints within the first network. The method also includes monitoring, reporting, and possibly taking corrective actions, by the control plane of the second network, with respect to connectivity/status between the control plane of the first network and the control plane of the second network.