Abstract: Methods and systems for managing personnel security at physical locations. One such method includes managing personnel security for a plurality of different sponsor entities from an administrator entity. The method includes obtaining screening data from a plurality of different vendor entities and individuals associated with those vendor entities, where the screening data is obtained to screen the vendor entities and individuals to determine whether physical access to facilities of the sponsor entities should be granted. The method further includes performing background checks on the outside companies and their employees based on the screening data, where the background checks are initiated by the administrator entity using a computer-based system operated and maintained by the administrator entity.

Abstract: An optical system for sensing, identification and driving is applied to drive a working system executing at least one preset assignment. The optical system comprises an optical identification card and a driving unit. The identification card comprises at least one driving light source for projecting at least one driving light beam having a driving optical property. The driving unit has a standard optical property for representing the preset assignment. When the driving optical property complies with the standard optical property, the driving light beam drives the working system executing the preset assignment that the standard optical property represents.

Abstract: A method of storing information on a memory device. The method comprises setting up a user to be associated with the memory device including biometric information obtained from a biometric reader. The method also comprises coding at least a portion of the biometric information before storage in the memory device.

Abstract: A system for secure communication across a network including a personal code generator having one or more identification codes and one or more encryption codes. The identification codes and the encryption codes each change at predetermined time intervals. A code server is provided and is synchronized with the personal code generator such that the code server has information regarding the current identification codes and the current encryption codes of the personal code generator. A user transmits across the communication network, the current identification codes and data encrypted with the current encryption codes and the code server uses the information regarding the current identification codes to authenticate the user and the information about the current encryption codes to decrypt the transmitted data.

Abstract: An implementation of a system and method for gating entry in a transit system using information from a bankcard, such as a credit card or debit card is provided.

Abstract: An implementation of a system and method for regulating entry in a transit system using information from a bankcard, such as a credit card or debit card is provided.

Abstract: A system and method for securing a financial transaction using a proxy code, which is assigned a transaction account number. An account issuer permanently assigns the proxy code to a transaction account correlated to the transaction device. The proxy code is uploaded onto the transaction device for later use in completing a transaction request. During transaction completion, the proxy code is provided to a merchant system in lieu of any sensitive account information. Since the proxy code is permanently assigned, the number need not be changed or updated on the merchant system once uploaded into a payment device or merchant database. The account issuer may manipulate the sensitive account information without need to alter the information stored on the merchant database. Since the proxy code contains no sensitive information, the sensitive information related to the transaction account is secured from theft.

Abstract: A personal card and method of transaction validation for the protection of credit card use in malls, restaurants, telephone and Internet orders and use of ATM. The card generates a coded validation number based on a time code, a cardholder's PIN, and the amount of purchase in accordance with a unique code process for that particular personal card. The coded validation number is different for each transaction to prevent fraudulent use of the validation number. The cardholder provides the merchant the coded validation number in place of the usual static three or four digit verification number now in use. The merchant reports the transaction using normal reporting equipment and processes. The bank then validates the transaction by duplicating the time code and using the known PIN to determine the transaction amount. A method is disclosed to generate a time code by periodically rotating the columns and rows of a two dimensional matrix.

Abstract: An approach is provided for a smart card authentication solution utilizing dynamically configurable data to authenticate unrecognized smart cards and communicate with back-end systems not supported by a default environment. The data may be dynamically reconfigured by a user to reflect changes in the authentication environment such as a new smart card type, new data model on a card, or new remote authentication mechanism.

Abstract: A will call system for automating the management of storage and retrieval of items, preferably medical prescriptions. The automated system provides informational control of all items in the system. The automated will call monitors the length of time an item remains in the system, and into which location an item is placed. An article sensor provides absolute confirmation that an item has been placed or removed from a designated location in the storage unites. The automated will call system uses a controller to permit users to monitor and optimize the storage and retrieval procedures.

Abstract: A method for authenticating a pharmaceutical product, the pharmaceutical product being associated with packaging having disposed thereon or therein coded data including a number of coded data portions, each coded data portion being indicative of an identity of the pharmaceutical product and at least part of a digital signature of at least part of the identity. The method includes having a computer system receive indicating data from a sensing device, the sensing device being responsive to sensing of the coded data to generate indicating data at least partially indicative of the identity of the pharmaceutical product and the signature part. The computer system determines the identity at least one determined signature part and uses these to authenticate the pharmaceutical product.

Abstract: A check-in method for airlines allows passengers to use Short Message Service (SMS) to check-in themselves and baggage. A passenger requests to check-in via SMS from practically anywhere and not limited to the airport. After receipt of the request, a confirmation message is sent back to the passenger's registered mobile phone number by SMS. The system will ask the passenger for, and receive from the passenger, the number of bags they intend to check-in for the flight. The passengers can in some embodiments drop the baggage off without any required further action. The system issues an SMS-based cryptographically secure code, such as a bar-code boarding pass to the passenger once the baggage (if any) is successfully transferred and registered to existing baggage management systems through the process above. This code, when scanned, recognized and authenticated provides identification and security clearance for the passenger to board the aircraft.

Abstract: An architecture for a contactless smart card or payment device, where the smart card is intended for use in both commerce transaction payment and transit fare payment (or other venue access) environments. The payment device may function as both an electronic wallet for commerce transactions and as a transit system card, for access to and fare payment of transit services. Implementation of both functions may be achieved by use of a dynamic memory management system that permits data for both the payment and transit applications to be stored on the card, with the transit data and storage locations isolated from those used to store data intended for use in paying for commerce transactions. The transit application specific data may include access control data (keys, passwords, identification data) or data required for fare calculations (rates, historical data on system use), for example.

Abstract: At least two types of consideration-based private civil security subscriptions are accepted (105) from subscribers with respect to providing civilly-catastrophic event based access to secure emergency shelters. Access to the shelters is then selectively provided (110) for authorized beneficiaries of the subscribers based at least in part on the type of subscription possessed by the authorized beneficiary. Holders of certain types of private civil security subscriptions may have access to a plurality (115) of secure emergency shelters or to secure emergency shelters having increased benefits (135) relative to other secure emergency shelters. The provider of the secure emergency shelters can provide varying levels of comfort or security based upon the type of subscription purchased by a subscriber, and authorized beneficiaries will have predictable access to a pre-provisioned secure emergency shelter upon the occurrence of a civilly-catastrophic event.

Abstract: A secure container (2) has a combination lock (6) that is always operable in response to at least one master key and is also operable on a single occasion in response to a transaction-unique delivery key generated from the master key. The lock (6) also contains processor means (20) for comparing or decoding the delivery key, means (10, 20, 26) for releasing the lock in response to a valid delivery key, and storage means (22) for identifying used delivery keys.

Abstract: The invention discloses a method for securing transactions for electronic deposits. In the method, a grey lock mark is merged into an electronic deposit of an IC card and becomes one of electronic deposit attribute parameters. When locking the IC card, i.e. setting a grey lock mark on the IC card, a locking card source is recorded on the IC card at the same time. When debiting, judging the locking card source and combining the debiting operation with the unlocking operation into a one step operation, i. e. after debiting successfully, unlocking is automatically done. This can solve illegal unlocking problems effectively and thoroughly, so electronic deposit consumption transactions are more secure and convenient.

Abstract: A biometrics authentication device uses biometrics information to perform individual authentication, and securely registers biometrics information for an authorized agent other than the principal. Within an IC card, registered biometrics information of a principal is verified against biometrics information detected by a detection unit, and when biometrics authentication of the principal is satisfactory, access is permitted to modify data for an authorized agent in the IC card, so that biometrics information for the authorized agent can be securely modified in a card in which is registered biometrics information for the principal. Similarly, illicit modification access of a card in which is registered biometrics information of the principal by a person impersonating an authorized agent can be prevented.

Abstract: An apparatus and method are provided to control the entry and tracking of individuals into and through controlled areas for security. A novel system is provided which stores data in a collection of portable data carriers of various formats and flash memory. A method is further provided to control the so called “anti-passback” of individuals into controlled areas. Still further provided is a system which allows storage and dissemination of control information for security system operation on the collection of data carriers allowing the intelligence of the reader system to be low compared to the network security systems of the prior art. Controlling data can include data pointers, program components, executable files and various operating systems.

Abstract: An automatic guidance system and method directs a person in a defined area. An access control device includes a selectively encoded readable element. An access control device reader is adapted to read the element of the access control device and selectively deny or allow a user access to a predetermined location. A communication device included in the access control device reader directs the user to the predetermined location.

Abstract: A method, system, and program product for the electronic delivery and distribution of an electronic solicitation on shareholder issues from an issuer to a plurality of shareholders. The method includes receiving an electronic solicitation message that provides shareholder access to solicitation content; tagging the electronic solicitation message with at least one parameter to ensure the electronic solicitation message is available only to the shareholders of the issuer; and enabling the shareholders to access and view the solicitation content anonymously in order to conceal each shareholder's identity.

Abstract: A payment card comprises an internal virtual account number generator and a user display for online transactions. Offline transactions with merchant card readers are enabled by a magnetic array positioned behind the card's magnetic stripe on the back. The internal virtual account number generator is able to program the magnetic bits encoded in the magnetic stripe to reflect the latest virtual account number. The internal virtual account number generator produces a sequence of virtual numbers that can be predicted and approved by the issuing bank. Once a number is used, it is discarded and put on an exclusion list.

Abstract: In one embodiment, a method controls access rights within a system. The method comprises: physically transporting a portable card by the first end-user from a networked processor-based system to multiple non-networked processor-based systems; processing respective access attempts from the first end-user by the multiple non-networked processor-based systems, wherein the access attempts occur when the first-end user is in physical proximity to the multiple non-networked processor-based systems; and in conjunction with processing of the respective access attempts by the multiple non-networked processor-based systems, reading the revocation data from the portable card of the first-end user by the multiple non-networked processor-based systems and locally storing the revocation data by the multiple non-networked processor-based systems, wherein upon storing the updated revocation data, the multiple non-networked processor-based systems become operable to deny access to a second end-user.

Abstract: An identification tag (100) facilitates use of a secure computer system (300). The tag (100) is adapted to be worn on a user's wrist and includes an identification and registration circuit (102) that includes an identification component (106), an affiliation component (110), and a light-emitting diode (112). The computer system includes an RF identification tag registration device (302) operable to acquire user physical information and communicate the physical information to a computer (202), wherein the computer verifies that a valid user is wearing the tag (100). The identification and registration device (302) ensures that the physical information communicated to the computer pertains to the user wearing the tag by comparing pulse signals acquired from the user's hand and wrist as the device (302) is acquiring physical information.

Abstract: A device for controlling passage in two passage directions has a blocking device for the singling of persons and a card reading unit having a slot for inserting a card, both disposed on a frame. The card reading unit, which upon validly reading the card actuates the blocking device for releasing the passage, is slewably mounted on the frame and is slewable with an actuator as to direct the card insertion slot to a person stepping in front of the blocking device from both the one or the other passage direction.

Abstract: The claimed subject matter relates to an architecture or arrangement that can limit access to sensitive information by means of encryption. In particular, data obtained from a payment instrument at, e.g., a Point-Of-Sale (POS) location can be encrypted at an early stage such that a POS (or another) application does not have access to the data in an unencrypted form and/or does not have access to a means for decrypting the data. For example, a Public Key Infrastructure (PKI) arrangement can be employed such that a back-end payment processor can define encryption algorithms, associate itself with a public key, and maintain a private key for decryption. The public key can be delivered to the POS location and employed for data encryption, and, moreover, the PKI can be regulated by the more trusted parties.

Abstract: An RFID tag is configured to contain identification information in at least three forms. For instance, the RFID tag may include an RFID system, and a human readable number and a bar code that may be visible on an outer surface of the RFID tag. The RFID system, the human readable number and the bar code may generate the same asset identification number. The RFID tag may also be formed from two or more layers having a thickness sufficient to substantially eliminate interference caused by a shipping container to which the RFID tag is attached.

Abstract: An output terminal has an electronic data item receiving unit, an identification code receiving unit, a determination unit, and an output unit. The electronic data item receiving unit receives an electronic data item. When a person exists within a predetermined range from the output terminal, the identification code receiving unit receives an identification code concerning the person. The determination unit determines whether the identification code received by the identification code receiving unit is authentic or not. When the determination unit determines that the identification code is authentic, the output unit outputs the electronic data item received by the electronic data item receiving unit.

Abstract: Systems, and methods for reimbursing prescription fulfillment that includes identifying a drug associated with a claim submitted by a pharmacy for reimbursement by a payer (e.g., insurance carrier) and identifying a change in a manufacturer set price associated with the drug. The invention includes monitoring reimbursed claims received from at least one payer, where one of the reimbursed claims received from the payer is associated with the drug and determining if the payer has updated its internal pricing value associated with the drug. The invention further includes generating a report that includes the payer's updated internal pricing value associated with the drug, and/or creating and submitting a reversal transaction to the at least one payer followed by a resubmission of the original claim, where the resubmitted claim value is based on the payer's updated internal pricing value associated with the drug.

Abstract: A method and a system for authentication and synchronization is disclosed. The user provides a first one time code (OTC) to the authentication manager. If this OTC is within a small access window, the user is directly authenticated and granted access to the system. If the provided OTC is outside the small window but within a big window, the authentication manager saves the first OTC, and a second OTC is required from the user. If the new, second OTC and the first OTC are in sequence, the end user will be authenticated, and admitted access to the system and the requested service.

Abstract: The invention provides an apparatus and method for service access for a mobile communication device. The apparatus can include an identity module for storing user information in the mobile communication device. The identity module can include an identity module frame, a secure storage memory coupled to the frame, the secure storage memory including a mobile communication device subscriber identity and the user information, and an identity module controller coupled to the secure storage memory and the frame, the identity module controller configured to block access to the user information and grant access to the mobile communication device subscriber identity when the identity module enters a blocked mode. The identity module controller may grant access to the mobile communication device subscriber identity in response to a request for a service access communication.

Abstract: An RFID transponder programming device uses a strip transmission line to generate a constrained electromagnetic field for programming RFID transponders is featured. The programmer minimizes electromagnetic fields outside of the programming device, and keeps other blank transponders from being wrongly programmed or erased. The transmission line may either be terminated or unterminated. The characteristic impedance of the strip transmission line may be 50 ohms or any other impedance. Since the strip transmission line is terminated in its own characteristic impedance, the programmer is inherently wideband and able to work with frequencies from 433 MHz to 869 MHz, 902 to 928 MHz, and 2400 to 2485 MHz, all in the same unit.

Abstract: The security clearance card, system, and method include a card that stores data to verify the identity of an owner of the card. In addition to other types of information, the card stores biometric data of the owner and other identity data. Different portions of the data may be encrypted with different encryption techniques based upon a predetermined level of security assigned to the portions of the stored data. Reader elements are then capable of reading at least a portion of the encrypted data stored on the security clearance card, and receiving at least one biometric from an individual. The biometric stored in the card is then compared with the biometric of the individual presenting the security clearance card to verify that the holder of the card is the owner of the card.

Abstract: A device for collecting biometric data, in particular fingerprints, the device having an optically active detector for recording the surfaces of body regions. In the beam path between the surface and the detector a mirror is provided.

Abstract: In one embodiment, at least one information control device manages the content displayed on multiple separate portable, content adjustable personal identification devices. The information control device automatically selects at least one content specification for transmission to any portable, content adjustable personal identification devices moving either into or out of a particular area delimited by a boundary secured by the information control device. The information control device then transmits the selected content specification for detection by portable, content adjustable personal identification devices, wherein the content specification directs display of identification content on each of the portable, content adjustable personal identification devices.

Abstract: As a contactless identification tag is removed from a commercial product, a section to be detected is cut and separated from a removal detection circuit section composing the contactless identification tag and remains on the commercial product. When a detection section judges that the section to be detected is removed from the contactless identification tag, the contactless identification tag changes functions.

Abstract: A delivery system, comprising the steps of: assigning field personnel to provide a delivery or service at a designated location; traveling to the designated location to provide an on-site delivery or service; remotely actuating an opening mechanism to open an emergency exit door; entering the designated location through the door opening; providing a delivery or service at the designated location; and closing the emergency exit door after the delivery or service has been substantially completed.

Abstract: An access control system comprising: a primary contactless read write device; at least one secondary contactless read write device; and a plurality of smart cards configured for use with the primary contactless read write device and the at least one secondary contactless read write device, the plurality of smart cards being further configured to exhibit a temporary storage space for use by one of the primary contactless read write device and the at least one secondary contactless read write device.

Abstract: Memory contents in an electronic key are re-programmed using a base station from a multi-byte pre-existing or default value. If writing the new secret code value is interrupted and results in a partially-written value then a first recovery code is formed comprising a leading portion having values matching a corresponding portion of the pre-existing secret code and a trailing portion having values matching a corresponding portion of the new secret code. The first recovery code is transmitted to the electronic key for comparison with the stored secret code value. The electronic key compares a received secret code value in response to the first recovery code with the stored secret code value. If the comparison detects a non-match, then interaction with the base station is suspended. If the comparison detects a match, then interaction with the base station is continued in order to accept the new secret code value after re-transmission in full from the base station.

Abstract: A universal wireless access control and paging system including universal wireless identity devices, fixed RF nodes, location beacons, and other devices which can store access privileges, store and provide personal identification information, record personal activity and presence, and deliver text or audio messages. The key component in the system is the universal identification card which contains wireless communication circuitry, data display circuitry, and a memory circuit for the storage of personal and location information. Further the universal identification card contains a microprocessor coupled to the memory circuitry, the display circuitry and the data communications circuitry. The device also can contain an input means to allow the user to control the card function during operation. This includes the ability to select what personal information can be accessed over the wireless communication means.

Abstract: In general, a portable unit and method are described for storing user information for subsequent recovering. For one embodiment, the portable unit comprises a casing, an antenna and logic employed within the casing. The logic may comprise a wireless transceiver coupled to the antenna, a processing unit coupled to the wireless transceiver, and a remote transceiver coupled to a plurality of device drivers and a memory unit. The memory unit is configured to store remote codes, user identification information and user transaction information.

Abstract: The security clearance card, system, and method include a card that stores data to verify the identity of an owner of the card. In addition to other types of information, the card stores biometric data of the owner and other identity data. Different portions of the data may be encrypted with different encryption techniques based upon a predetermined level of security assigned to the portions of the stored data. Reader elements are then capable of reading at least a portion of the encrypted data stored on the security clearance card, and receiving at least one biometric from an individual. The biometric stored in the card is then compared with the biometric of the individual presenting the security clearance card to verify that the holder of the card is the owner of the card.

Abstract: Methods and systems permit monitoring behavior of a holder of a multifunction presentation instrument that is suitable for presentation by the holder in support of payment transactions and access transactions. A payment transaction involves a purchase by the holder using funds identified by the multifunction presentation instrument. An access transaction involves an authorization for the holder to enter a restricted area. A first communication received at a host system has transaction details of an attempted payment transaction initiated by the holder, and a second communication received at the host system has transaction details of an attempted access transaction initiated by the holder. These transaction details are stored in a data store and analyzed to identify potentially suspicious behavior by the holder.

Abstract: A certification system includes a photographing unit 10 which generates looks image data LI whose object is an individual person P, a holographic stereogram manufacturing unit 20 which makes a holographic stereogram HL in accordance with the looks image data LI, a two dimensional photo printing unit 30 which prints the looks image data LI as a two dimensional photograph PIC, an image server 40 which stores the looks image data LI, an information recoding unit 50 which records connection information in a recording member RM, and a manufacturing unit 60 which integrates the recording member RM, the two dimensional photograph PIC, and the holographic stereogram HL to make a certification card CC.

Abstract: A virtual gate provides the impression of a gated entry without a physical barrier. As such it functions as a gateway to access areas including transit Rail or, potentially, prepaid Bus services. The VG would require the interaction of the patron to present ticket media to the card reading mechanism. This action turns the gate light indicators to Green for Go or Red for No-Go, accompanied by corresponding tones to alert the patron and fare enforcement officers as to the status of validation. The ticket readers can be placed on both ends of the gate. This allows the gate to be configured for traffic flow in either direction or act as two equivalent Stand Alone Validators.

Abstract: A secret key is programmed into a key transponder from a base station wherein the key transponder stores a fixed ID, a first default key segment stored in a first memory page, and a second default key segment stored in a second memory page. The secret key comprises a first new secret key segment to be stored in the first memory page of the key transponder and a second new secret key segment to be stored in the second memory page of the key transponder. A mutual authentication process is initially conducted using the default key. Write commands are sent to the key transponder in transferring each key segment. Write acknowledgement signals and confirmatory reading back of the data are employed for ensuring proper storage of the secret key. Recovery from the most probable types of errors enables successful programming of key transponders in an efficient manner with a low loss rate.

Abstract: An information processing system comprises an identifying information reading portion that reads out identifying information from a recording medium storing the identifying information capable of identifying an individual, an information managing portion that in advance manages and keeps information available for information providing, an information extracting portion that extracts information from the information managing portion, based on the identifying information read out by the identifying information reading portion, and an information output portion that outputs the information extracted by the information extracting portion. The information extracting portion selects and extracts the information to be provided out of the prearranged information, based on the identifying information read out by the identifying information reading portion and acquiring conditions of the identifying information.

Abstract: Disclosed is an electronic visitation registration (EVR) system for registering visitors to visit with residents of a controlled-environment facility, such as a correctional facility. In certain embodiments, EVR is operable to interact with visitors and determine whether to authorize a requested visitation session with a resident of the controlled-environment facility. Thus, in certain embodiments, the EVR can autonomously interact with a visitor and perform the registration process for such visitor, thereby alleviating the requirement of involvement by a facility employee for such registration. The EVR may be accessible local to the controlled-environment facility (e.g., as a kiosk), and/or it may be accessible via a communication network, such as the Internet. Thus, the EVR may allow a remote user to schedule and register for a future visit. Additionally, other services, such as funding an account or contacting a third party, may be available through the EVR.

Abstract: An industrial automation security system comprises an access ticket relating to an industrial automation system. The access ticket comprises one or more restrictive attributes that restrict access rights to a portion of contents of the industrial automation system. A component that receives the access ticket grants access to the industrial automation system and the contents therein according to the one or more restrictive attributes.

Abstract: A rights management system, method and device for managing use of items having usage rights associated therewith by enforcement of the usage rights with repositories, including a client device adapted to request an item and receive the item and a usage right associated with the item and specifying a permitted manner of use of the item; and a server device adapted to send the item and the associated usage right to the client device in response to the request. The client device includes means for establishing a communication between the client device and a third party entity associated with the rights management system based on a received item and associated usage right.

Abstract: The present invention relates to a method for handling the PIN code of the SIM card of a GSM terminal of a remote monitoring device used for remote monitoring of elevators and/or escalators and/or moving walkways. According to the present invention, when the aforesaid remote monitoring device and GSM terminal are to be taken in use, the aforesaid SIM card is assigned a public default PIN code and a randomly generated PIN code. By applying the present invention, the data security of the handling of the PIN code of the SIM card of the GSM terminal of the remote monitoring device is substantially improved.