Abstract: Presented are systems and methods that allow hardware designers to protect valuable IP and information in the hardware domain in order to increase overall system security. In various embodiments of the invention this is accomplished by configuring logic gates of existing logic circuitry based on a key input. In certain embodiments, a logic function provides results that are dependent not only on input values but also on an encrypted logic key that determines connections for a given logic building block, such that the functionality of the logic function cannot be determined by reverse engineering. In some embodiments, the logic key is created by decrypting a piece of data using a secret decryption key. Advantages of automatic encryption include that existing circuitry need not be re-implemented or re-built, and that the systems and methods presented are backward compatible with standard manufacturing tools.

Abstract: Information or items that otherwise might be carried in a person's wallet or purse may be managed and stored on a mobile phone. Embodiments include a software application loaded on a mobile phone and an Internet website through which certain information can be transmitted to the phone by the user, third parties, or both. A user may be alerted to certain information or changes in information that meet certain criteria. The website may provide secure storage for information, filter information, and send encrypted and compressed nuggets or fractions of information to the phone for storage based on topic. E-mails may be searched for information, information may be sent to different parties, and signals may be sent locally to exchange information. Personal information may include account information or travel information, for example.

Abstract: A mobile device having: a position determination device configured to determine a location of the mobile device; a transceiver configured to communicate with a transaction terminal via near field communication; a communication device configured to communicate with at least one server over internet; a memory storing a plurality of data items and a set of instructions of a mobile application; and at least one microprocessor coupled with the memory to execution the instructions of the mobile application. The mobile application is configured to: communicate the location of the mobile device, using the communication device, to the at least one server over internet; determine, via communications with the at least one server based on the location of the mobile device, an order of data items; and communicate, using the transceiver via near field communication, with the transaction terminal in accordance with the order of the data items.

Abstract: A system and method for providing one or more client systems for communicating with a host system over a network. The client systems use a scanner to convert a paper form of a check, coupon, or other paper document to a digital representation and then the client systems send the digital representation over a network to the host system for storage. The host system archives the digital representation and determines the appropriate processing stream for a transaction related to the paper document (e.g. coupon, check), via a decisioning engine, based on a set of predefined stream selection rules. The host system then communicates the transaction to a back end transaction destination, according to the selected processing stream. Examples of the transaction destination can include ACH, Reproduce Paper, and Remittance.

Abstract: Data processing unit produces first access target information. Location information obtaining unit obtains first location information indicating the identifier of a data storage device specified by a user, as well as indicating the location of a user-specified directory within the data storage device. Location information producing unit produces second location information indicating the location of a directory that is placed below the user-specified directory and uniquely assigned to the data processing unit. Access target information producing unit produces second access target information, using the location indicated by the second location information as a reference location. Access unit makes access to the target data file in the data storage device.

Abstract: Techniques are disclosed for providing an electronic signature service where the content of an electronic document to be signed remains unknown to the service. A sender of the electronic document negotiates a specification for encoding the electronic document. In particular, the specification does not include any content of the electronic document. In this manner, the content of the electronic document can be encrypted and securely transmitted between the sender and the signer via the electronic signature service using one or more data packets conforming to the specification without permitting the electronic signature service to read or otherwise decipher the content. The specification enables the electronic signature service to certify that the signer has received the electronic document and assented to its terms.

Abstract: A payment card system uses a static payment card identifying number and generates, for each attempted transaction, an authentication cryptogram based at least upon a seed value stored within the payment card and further based upon a temporal signal value that changes for each attempted use of the payment card. The authentication cryptogram may be alpha-numerically encoded, preferably using a radix-32 coding to provide 5-bits of information for each character or symbol, and may be communicated in a 26-character payment card account name field instead of communicating a payment account name in said payment card account name field, to thus convey up to 130-bits of information while maintaining compatibility with existing point-of-sale equipment and payment system infrastructure.

Abstract: In accordance with an example embodiment of the present invention, a method is disclosed. The method includes defining a first privacy setting related to a user. Communicating the first privacy setting using a first radio communication network to a server. Storing the first privacy setting related to the user on the server. Applying the first privacy setting when analyzing an image to determine the user in the image. Determining to apply a second privacy setting related to the user. Defining the second privacy setting related to the user and communicating the second privacy setting to another device of a second user using a second radio communication network.

Abstract: An approach is provided for managing a message being transferred from a mobile device. A sensitivity level of data in the message payload is determined prior to sending the message to a wireless access point (WAP) en route to a destination device. If the payload data has a first sensitivity level, the mobile device sends the message to a first secure WAP having encryption at a threshold strength at a network layer and utilizes a protocol having encryption at an application layer. If the data has a second sensitivity level, the mobile device (a) sends the message to the first secure WAP without utilizing the protocol or (b) sends the message to a second, less secure WAP having encryption at a lesser strength and utilizes the protocol. If the data has a third sensitivity level, the mobile device sends the message to the second WAP without utilizing the protocol.

Abstract: A monitoring device configured to monitor a network to which plural controllers are connected which includes a decoder configured to extract target data belonging to a target data group from data received from the plural controllers, a first comparator configured to determine whether an immutable part of the target data is known or anomalous, a second comparator configured to determine whether a reception interval of the target data group is normal or anomalous, a third comparator configured to determine whether the number of the target data having been received and included in the target data group is normal or anomalous, and determine whether each reception interval between the target data is normal or anomalous, and a warning counter configured to individually count the number of anomalies determined by the first comparator, the number of anomalies determined by the second comparator, and the number of anomalies determined by the third comparator.

Abstract: A dynamic unlocking method and an electronic apparatus using the same method are proposed. The method includes the following steps: recording an unlocking password combination including at least one unlocking password, where each unlocking password is characterized by a touch operation initiating from a specific icon and sliding toward a specific direction along a specific path by a specific distance; displaying an unlocking screen including a plurality of predetermined icons, where the predetermined icons are randomly arranged on the specific path; receiving at least one unlocking input performed on the predetermined icons; when the at least one received unlocking input completely matches the unlocking password combination, unlocking the electronic apparatus.

Abstract: The invention provides a computer-implemented authentication method comprising the step of enabling a user to input an identifier (e.g. a PIN) into an electronic device having a screen and a keypad operable within a keypad zone of the screen; by operating at least one key of the keypad via an image of at least part of a scrambled keypad which is displayed at least partially within the keypad zone. The user's operation of the keypad key via the image generates an encoded version of the user's intended input. In one sense the invention can be perceived as superimposing a non-functional image of a scrambled keyboard over an underlying, functional keypad. The image may be any type of electronic image, and may include a video image. The invention is particularly suited for use with, but not limited to, mobile phones, tablet computer, PCs etc. It can be implemented in any system wherein a user's identity must be verified before access is granted to a controlled resource.

Abstract: According to one aspect, the invention provides a system for authenticating identities of a plurality of users. In one embodiment, the system includes a first handheld device including a wireless transceiver which is configured to transmit authentication information, a second device including a wireless receiver, where the second device is configured to receive the authentication information.

Abstract: Data can be protected in mobile and payment environments through various tokenization operations. A mobile device can tokenize communication data based on device information and session information associated with the mobile device. A payment terminal can tokenize payment information received at the payment terminal during a transaction based on transaction information associated with the transaction. Payment data tokenized first a first set of token tables and according to a first set of tokenization parameters by a first payment entity can be detokenized or re-tokenized with a second set of token tables and according to a second set of tokenization parameters. Payment information can be tokenized and sent to a mobile device as a token card based on one or more selected use rules, and a user can request a transaction based on the token card. The transaction can be authorized if the transaction satisfies the selected use rules.

Abstract: A point of sale activation unit that includes a first wallet portion, a second wallet portion and an activation card portion. The first wallet portion defines a first opening that has a shape corresponding to a machine readable code and includes a security tab affixed thereto with two nicks. The security tab obscures a second opening. The second wallet portion is coupled to the first wallet portion. The activation card portion is narrower than the second opening. The machine readable code is printed on an exterior side and an activation code is printed on an interior side of the activation card portion, which extends from the second wallet portion. The first wallet portion, the second wallet portion and the activation card portion are all cut from a single flat sheet and are folded and glued together so that the machine readable code is exposed through the first opening.

Abstract: Methods and systems configured to interact with hardware components of a computer system are described. In some embodiments, the system includes a processor and a memory coupled with the processor, wherein the memory is configured to provide the processor with instructions for generating, by a software module executing on the system, an Intelligent Platform Management Interface (IPMI) request configured for a controller of the computer system; transmitting, by the software module, the IPMI request to a server separate from the computer system, wherein the server is configured to emulate the controller of the computer system; and receiving, by the software module, an IPMI response from the server, wherein the IPMI response is based on a simulated operating condition of a hardware component of the computer system at the server, thereby obviating a manual adjustment of the hardware component on the computer system.

Abstract: A print data generation apparatus generating print data to print texts on a print medium, includes a processor, and a memory configured to store a database having a plurality of records in which texts are respectively set for fields and associating the records with operation keys, template data in which at least arrangement positions of the texts to be printed on a print medium are set, link information associating the arrangement positions in the template data with the fields of the database, and computer-readable instructions that instruct the processor to execute steps including detecting operation of the operation keys, and generating, when it is detected that one of the operation keys has been operated, print data such that the texts that are respectively set, in the database, for the fields of the record that corresponds to the operated operation key are arranged in the arrangement positions associated with the fields.

Abstract: A print data generation apparatus generating print data includes a processor, and a memory configured to store a database having a plurality of records in which texts are respectively set for fields, template data which is associated with one of operation keys and in which at least arrangement positions of the texts to be printed are set, link information associating arrangement positions in the template data with the fields of the database, and computer-readable instructions instructing the processor to execute steps including detecting operation of the operation keys, selecting, from among the plurality of records of the database, the record to be used for printing, and generating print data such that the texts that are respectively set for the fields of the selected record are arranged in the arrangement positions associated with the fields by link information, by using the template data corresponding to the operated operation key.

Abstract: A method to customize an online software application. The method includes displaying, using a user interface of the online software application, a message inviting user contribution to a customizable component of the online software application, receiving, from an initial seed user via a network connection and in response to displaying the message, a structural specification of the customizable component suggested by the initial seed user according to a requirement based on an attribute of the initial seed user, determining that a new user of the online software application matches the attribute of the initial seed user, and configuring, based on the structural specification of the customizable component suggested by the initial seed user, an instantiation of the online software application for the new user to perform a pre-determined task according to the requirement.

Abstract: Embodiments are directed to a mobile bank card number generator for digital wallet. Embodiments receive a request from a user to perform an ATM transaction on an account owned by the user; in response to the request to perform an ATM transaction, generate a one-time bank card number associated with the account owned by the user; generate a readable indicia based at least in part on the one-time bank card number; and initiate communication of the readable indicia to an ATM, wherein the ATM receives a user authentication credential from the user, a bank system validates the user authentication credential and in response to validating the user authentication credential, approves the ATM transaction for the user's account.

Abstract: Provided is a device for preventing information leakage including: a storage unit that stores message time, request source information, and request destination information in relation to each information requesting message; a unit that suspends a response message containing personal information in response messages in response to the information requesting messages, for a predetermined suspended time from a message time of the corresponding information requesting message; a unit that counts the number of information requesting messages transmitted from the same request source to the same destination and corresponding to the suspended response message on the basis of information stored in the storage unit; and a unit that, in the case where the counted number of the information requesting messages exceeds a predetermined threshold value, applies a protection process to the suspended response message so that the personal information contained in the suspended response message is not received by the request sour

Abstract: A database for online personal information management comprising: a first account; a first database user id; a second database user id, the second database user id being associated with the first account; a set of data nodes, the nodes being interlinked to form a graph; a data object having an associated node, the associated node being one node in the set of data nodes; an associated account; an object owner; at least one share right object associated with a node, the share right object having a parameter indicating whether the share right object is active when the owner is alive or when the object owner is deceased.

Abstract: A bank customer's CE device passively eavesdrops on NFC communications between the customer's electronic debit or credit card (“e-card”) and a third device and alerts the customer when such communication is detected from the e-card. In this way, the customer is alerted to possibly fraudulent “fishing” of the e-card data by a nearby thief device.

Abstract: A system for generating transaction settlement identifiers includes an arrangement configured to receive a biometric sample from a customer and an arrangement configured to use the biometric sample to select the transaction settlement identifier from a pool of predetermined transaction settlements. A mapping arrangement configured to map the selected financial transaction settlement identifier to an identifier of the customer also may be included.

Abstract: A method and apparatus including a cloud server saving a plurality of security events that occurred within a secured area where each saved security event includes an identifier on a device or person monitored by the security system, an identifier of the monitoring function that triggered the saving of the event in the cloud and a time of the event, a user input receiving an identifier of the monitored device or person and at least two different functions monitored by the security system and a processor downloading information of some of the plurality of saved events identified by the received identifiers from the cloud server and presenting the downloaded information of each event at corresponding locations along a timeline.

Abstract: A method of authorizing a transaction at a fuel pump includes receiving a user request to activate the pump, determining whether the user is authorized, determining whether the user is in the proximity of the pump, determining whether the pump is functional, determining whether the pump is already reserved for another user, and determining whether the pump is already in use. In response to those determinations, a message is displayed, either authorizing or declining the transaction.

Abstract: A method, a mobile terminal, and a point of sale (POS) machine for implementing selection of a secure element in near field communication are provided. The method includes receiving, by a near field communication controller on a local end, a first configuration instruction sent by a device host on the local end, where the first configuration instruction includes an environment characteristic used for selecting the secure element; configuring, by the near field communication controller, the environment characteristic in the near field communication controller according to the first configuration instruction; receiving, by the near field communication controller, a second configuration instruction sent by the device host; and configuring, by the near field communication controller according to the second configuration instruction, the environment characteristic in an attribute response instruction for communicating and interacting with a peer end.

Abstract: Systems, methods, and devices for providing and managing electronic event tickets are provided. For example, a device for managing an electronic event ticket may include a processor configured to run an electronic ticket management application, a memory device configured to store data associated with the electronic ticket management application, an electronic display configured to display at least a portion of the data associated with the electronic ticket management application, and an input/output interface configured to receive an electronic ticket and the data associated with the electronic ticket for management by the electronic ticket management application. The electronic ticket management application may be configured to enable the electronic device to gain entry to an event and to obtain at least one other event-related benefit after the electronic ticket is received by the input/output interface.

Abstract: Embodiments of the invention include systems, methods, and computer-program products that provide for an enhanced mobile application for assisting users at a point-of-transaction (POT). In one embodiment of the invention the POT assistance application program may determines that a user is conducting a transaction with a merchant. The user may utilize a user device to assist in the transaction. First, the user device may be paired with a POT system, such as a cash register. Once the devices are paired a communication link is created that allows the user to audibly and/or visually monitor the transaction using the user device. Furthermore, the user may flag an item for review during the transaction, silence the transaction, receive a subtotal for the transaction, select a payment method, or complete the transaction using the POT assistance application program.

Abstract: A system for purchasing fuel is provided. The system includes, but is not limited to, a local device for retrieving identification information which identifies a fuel dispensing station, the identification information containing information identifying the fuel dispensing station from which fuel is desired to be purchased, and a remote server connected with the local device. Upon receiving the identification information at the local device, the local device automatically forwards the identification information along with a unique identifier to the remote server. The remote server generates and transmits an unlock code to the fuel dispensing station. The unlock code signals the fuel dispensing station to dispense fuel.

Abstract: In the field of communications, a method, a system, and devices for implementing a network banking service are provided. The method includes: after an agent device establishes a connection with a Point Of Sale (POS) device, the agent device performs identification with the POS device; after successful identification, the agent device performs authentication with the POS device; after successful authentication, the agent device establishes a connection with a network banking server according to a preset address of the network banking server through wireless access to the Internet; and the agent device forwards network banking service data between the POS device and the network banking server, thereby implementing the network banking service. Therefore, it is convenient for users to use a network banking service, the functions of POS devices are simplified, and the cost of manufacturing and maintaining POS devices is reduced.

Abstract: A method and system for providing laundry services makes use of a laundry station having an interactive point-of-sale device operably connected to one or more laundry unit containers for housing items to be laundered. The laundry station is used: to receive and accept orders for laundry services from a customer, including the collection of payment from the customer; to provide information directing the customer to place their laundry in a designated laundry unit container in response to the order received from the customer; to generate and communicate an electronic message to instruct a laundry station operator or laundry services provider to fulfill the order.

Abstract: The invention relates to a portable device for financial transactions which can be used for safe payments and/or withdrawals of cash in real time and for other forms of credit and/or banking operations in general.

Abstract: An inventory control system. The inventory control system includes a terminal, wherein the terminal is configured to allow a user to enter a sale of an item. The inventory control system also includes a cabinet. The cabinet is configured to store the item and is in electronic communication with the terminal. The cabinet dispenses the item in response to the sale.

Abstract: A system and method for assigning controlled access to a securable device may include a kiosk configured to receive a PIN and to collect payment from a user for rental of a securable device from among multiple securable devices. A lock unit associated with the securable device and in communication with the kiosk may be configured to receive the PIN from said kiosk. After receiving the PIN, the kiosk may be configured to operate autonomously with respect to the kiosk to enable the user to access the securable device in response to the user entering the PIN into the lock unit.

Abstract: A system for authenticating near field communication (NFC) transactions that has an NFC merchant reader that provides an electromagnetic field and an NFC hand-held device that senses the electromagnetic field and prompts a user for a personal identifier (PI) in response to the electromagnetic field. Additionally, the NFC hand-held device wirelessly transmits the PI, and the NFC hand-held-device receives an approval code transmitted to the NFC hand-held device in response to the PI. Further, the NFC hand-held device transmits the approval code to the NFC merchant reader, and the NFC merchant reader transmits a payment request comprising the approval code.

Abstract: Systems, methods and computer program products for facilitating payments using low-cost barcode or RFID tags are disclosed. Such tags can be attached or affixed to physical, real-world objects thus allowing the objects to be purchased using a customer mobile device, without the need for a dedicated, on-site point-of-sale system. The tags may be constructed from paper, metal, leather, plastic or some other low-cost material. The tag allows a unique visual identifier such as a tag code to be imprinted so that it can be read using a mobile camera or other sensor enabled telephone.

Abstract: A point of sale (POS) security system includes a POS device including a non-transitory memory, one or more hardware processors, and one or more environment sensors. A plurality of POS instructions are located on the non-transitory memory in the POS device and executable by the one or more hardware processors in the POS device to provide a POS engine that is configured to receive and transmit payment information for conducting a payment transaction associated with a purchase. A plurality of security instructions are located on the non-transitory memory in the POS device and are executable by the one or more hardware processors in the POS device to provide a security engine that is configured to receive environment signals from the one or more environment sensors in the POS device and analyze those environment signals to determine a security breach.

Abstract: An information storing device includes a storage section configured to store revocation information that is a list of an identifier of an unauthorized device, and a data processor configured to execute determination processing of unauthorized equipment in accordance with the revocation information. The data processor extracts version information enabling identification of the issue order of the revocation information from the revocation information and transmits the extracted version information to a communication counterpart device. If the data processor receives the revocation information of a new version of the issue order held by the communication counterpart device from the communication counterpart device, the data processor executes revocation information synchronization processing of substituting the received revocation information of the new version for the revocation information of an old version stored in the storage section to store the revocation information of the new version.

Abstract: Certain aspects of a method and system for location based hands-free payment may include a network that comprises a plurality of mobile devices and a plurality of point of sale devices. A first mobile device may determine its location coordinates and communicate them to a selected point of sale device. An authorization to execute a payment transaction may be triggered on the first mobile device when it is within a defined proximity of the selected point of sale device. In another embodiment of the invention, a first point of sale device may determine the location coordinates of a selected mobile device and trigger a notification based on a generated geo-fence when the selected mobile device is within a defined proximity of the first point of sale device.

Abstract: A coin processing and redemption system includes a coin processing machine configured to receive a batch of coins in an input region and process the batch of coins to determine a value thereof. A dispensing device is provided and is configured to output a redemption ticket bearing a code. The coin processing machine is configured to associate the redemption ticket code with a coin processing transaction prior to the determination of a value of a batch of coins.

Abstract: A secure data transmission device: employs a proprietary arrangement of individualized encodable micro-machined electromagnets embedded in a compact, plastic (or apt substrate) which insulates each electromagnet from one another. The electromagnets mimic the magnetic strip on a credit card, but have the capability to temporarily capture data, and then transmit said data to be read by a magstripe terminal. The electromagnetic device can receive, and momentarily capture a variety of data, depending on which digital data is chosen by user. It then converts that data it to an analog signal, and then by using such components as microphone amplifier, a digital-to-analog converter, and microprocessor in the mobile device, transmits that data to the secure information device, which can write that data to a magnetic card terminal. The secure transmission device can be rewritten over and over again each time the user has a separate transaction, using different transaction data.

Abstract: Techniques for secure mobile payment are provided. A credit or gift card is registered for additional security, such that a secure identifier or personal identification number (PIN) is required for use of the credit or gift card. Registration is not required or even known by the third-party payment service associated with the card. Subsequently, when a consumer attempts to use the card and before payment instructions are sent to the corresponding third-party payment service, the secure identifier or PIN is requested and verified. If properly verified, the payment instructions are forwarded for processing by the third-party payment service.

Abstract: Embodiments of the invention are directed to a fraud detection system that automatically converts the currency and value of received transaction data to correspond to the currency in fraud detection rules established by a merchant. The converted transaction data is then analyzed against the fraud detection rules to determine whether the transaction data indicates fraudulent activity.

Abstract: A commodity sales data processing apparatus, including a portable information terminal having a battery and a display on which an executable job name is displayed and a docking station on which the information terminal is mounted to charge the battery, monitors whether or not the information terminal is mounted on the docking station to detect the separation therebetween. The processing apparatus restricts jobs permitted at the time the information terminal is separated from the docking station to a part of jobs permitted at the time the information terminal is mounted on the docking station if the separation between the information terminal and the docking station is detected and the display of the information terminal displays job names permitted at the time the information terminal is separated from the docking station if the separation between the information terminal and the docking station is detected.

Abstract: A method of remotely configuring a point-of-sale device that is configured with resident executable program code involves the resident executable program code transmitting a framework update request to a computer server. The resident executable program code imposes a security requirement prohibiting unauthorized change of the resident executable program code. The resident executable program code also defines an operational framework of at least one allowed mode of operation for the point-of-sale device. The framework update request includes a credential. In accordance with a validity of the credential, the point-of-sale device receives a framework update payload in response to the framework update request, and installs the framework update payload into the point-of-sale device. The resident executable program code together with the framework update payload define an updated version of the operational framework. The updated version of the operational framework maintains the imposed security requirement.

Abstract: Online fraud prevention including receiving a rules set to detect fraud, mapping the rules set to a data set, mapping success data to members of the rules set, filtering the members of the rules set, and ordering members of the data set by giving priority to those members of the data set with a greater probability for being fraudulent based upon the success data of each member of the rule set in detecting fraud. Further, a receiver coupled to an application server to receive a rules set to detect fraud, and a server coupled to the application server, to map the rules set to a data set, and to map the success data to each members of the rules set. The server is used to order the various members of the data set by giving priority to those members of the data set with a greatest probability for being fraudulent.

Abstract: A system, method and computer program product are provided for activating a cellular phone account utilizing automated speech recognition. In use, information about a user is received over a network utilizing automated speech recognition. Thereafter, a cellular phone account is activated based on the information received utilizing the automated speech recognition.

Abstract: A system and method for controlling financial transactions is disclosed. A customer, using a wireless device, identifies a point of sale and the amount of a transaction at that point of sale is first communicated to a central service and then transmitted to the wireless device for display at the wireless device. The customer can either accept the transaction amount to complete the transaction or reject the amount to cancel the transaction. The customer may have to enter a password or personal identification number to verify the authorization to use the wireless financial system. The customer is billed for the transaction via credit, debit, ATM or other methods, such as the wireless carrier or an internet provider.

Abstract: A POS system comprises a checkout means for carrying out a payment operation, a cash drawer which includes a storage compartment for storing money, wherein in an open condition of the cash drawer the storage compartment is open for an access and in a closed condition of the cash drawer the storage compartment is closed, a control means for controlling the cash drawer, wherein the control means is formed to generate a control signal for opening the cash drawer, and a sensor means for generating an opening signal which indicates whether the cash drawer is in its open condition. The control means is formed to evaluate whether or not an opening signal is preceded by a control signal with a predetermined time interval, in order to detect a manipulation process during opening and/or closing the cash drawer on the basis of the evaluation.