Abstract: A method for pre-authorizing a credit transaction may include receiving a pre-authorization request including a request identifier, a user identifier, a pre-authorization amount, a time duration identifier, and a vendor identifier, transmitting the pre-authorization request to a server remote from the user device, receiving a pre-authorization confirmation including the request identifier, a confirmation identifier, and a time duration identifier, and displaying a confirmation message that the pre-authorization request has been approved.

Abstract: A computer that dynamically generates a customized second document is described. During operation, the computer receives information specifying activation of a hosted field in a document associated with a third party, where the information specifies a willingness to receive one or more messages from the computer and specifies a telephone number. In response, the computer dynamically generates the customized second document that includes information about one or more transactions (such as one or more upcoming events) of interest to an individual associated with the telephone number. Then, the computer sends a message to an address corresponding to the telephone number, where the message includes a link to the customized second document. Next, when the computer receives information specifying activation of the link from an electronic device, the computer provides information specifying the customized second document to the electronic device for display on the electronic device.

Abstract: Methods and systems for the use of multi-party computation (“MPC”) key systems that involve the use of multiple parties, each of which hold respective private data that may be used to evaluate a computation without ever revealing any of the private data held by each party to perform blockchain operations. Using the MPC key systems, the methods and systems generate secure, encrypted communications across distributed computer networks for authorizing use of cryptography-based digital repositories in order to perform blockchain operations in decentralized applications.

Abstract: Described herein are various methods of sharing data across multiple computers. The method of sharing data permits the pruning of data from the shared data.

Abstract: Various embodiments are directed to processing conversions of digital assets to other digital assets. An example method includes determining a source exchange rate for a source digital asset and a fiat currency, determining a target exchange rate for a target digital asset and a fiat currency, and generating an aggregated conversion rate for the source digital asset and the target digital asset using the source exchange rate and the target exchange rate. The method further includes executing a digital asset conversion, which includes causing source digital asset units to be debited from a source digital asset user account and causing target digital asset units to be credited to a target digital asset user account, and subsequently executing fiat currency transactions (e.g., settlements) with a first digital asset exchange system associated with the source digital asset and a second digital asset exchange system associated with the target digital asset.

Abstract: Embodiments of the invention are directed to systems, methods, and computer program products for onboarding digital content to a platform designed specifically for seamless creation and user-friendly management of non-fungible tokens. The invention allows for users with zero knowledge of decentralized protocols to leverage the benefits of such technologies by providing a system for uploading existing digital content, automating the creation of one or more non-fungible tokens, managing permissioned access to the non-fungible tokens, and facilitating the ownership verification of the non-fungible tokens.

Abstract: Systems and methods provide dynamic application selection based on contextual data of a transaction. A portable device may include multiple applications with which a transaction may be processed. These applications may be associated with a variety of priorities. The portable device may provide a list of these applications to an access device from which one application may be selected.

Abstract: A loyalty switch for examining loyalty messages and routing the loyalty messages to one or more loyalty hosts and examining responses and routing the responses back to stores. Such a switch has configurable number of selector handlers pool, and the switch accepts a connection from stores and reads loyalty host information from master data to establish the connection with a loyalty host and to route messages. Each selector handler in the switch has multiple store objects that contain a routing map and connection information from companies' sites and the loyalty host.

Abstract: Methods and systems disclosed herein describe tokenizing data to generate a secure token that is limited in scope (e.g., directed to a specific recipient) and limited in time (e.g., valid for only a specified period of time). A detokenization process may be employed to recover encrypted data of the secure token without the need for any relational database lookup processes, thereby reducing cost while maintaining robust protection against unintended recipients that attempt to recover the encrypted data.

Abstract: Aspects of the disclosure relate to processing asset transfers. A computing platform may receive an asset transfer request, and may modify a distributed ledger to include a new block corresponding to the asset transfer request. The computing platform may identify, for each of a plurality of consensus methods, a subset of existing blocks that, when used to perform the corresponding consensus method, uses a minimum number of the existing blocks to perform the corresponding consensus method. The computing platform may store, in the distributed ledger, block combinations having the minimum number for each of the plurality of consensus methods, and may execute, using each corresponding identified subset of the existing blocks, each of the plurality of consensus methods. Based on establishing the consensus, the computing platform may direct an event processing platform to process the asset transfer request, which may cause the event processing platform to process the request.

Abstract: Examples disclosed herein are relevant to configurations of hash tables. An example hash table includes is configured to be placed into a contiguous block of shared memory and be used across multiple processes. The hash table can include a memory layout having two logical tables: a metadata table and a storage array. In addition, a storage bitmap can be used to determine available memory locations in the storage array. Disclosed configurations can be suited for use in high-performance computing applications.

Abstract: Aspects of the present disclosure involve utilizing network threat information to manage one or more security devices or policies of a communication network. The security system may receive threat intelligence data or information associated with potential threats to a communications network and process the threat intelligence data to determine one or more configurations to apply to security devices of a network. The system may then generate a rule or action to respond to the identified attack, such as a firewall rule for a firewall device to block traffic from the source of the attack. The threat intelligence information may include a confidence score indicating a calculated confidence in the identification of the malicious communications, which may be utilized by the system to determine the type of action taken on the security devices of the network in response to the information or data.

Abstract: Various embodiments are generally directed to autofilling card data from a contactless card to a form of a computing device. An application may determine that a payment field of a form has received focus. The application may then receive encrypted data from a communications interface of a contactless card associated with an account. The application may then receive, from a server, verification of the encrypted data. The application may then receive, from the server, an encrypted account number associated with the account, and decrypt the encrypted account number to yield the account number. An autofill service of an operating system (OS) executing on the processor circuit, may then autofill the account number to the payment field of the form.

Abstract: Methods, apparatus, systems and articles of manufacture to securely handle chip card data are disclosed. An example method includes providing, by executing an instruction with a first processor of a client device, an application programming interface (API) in a web client of the client device, in response to detecting, in the web client at the client device, a query from a server for card data, operating, by executing an instruction with the first processor of the client device, the API in the web client at the client device to obtain the card data stored on a chip of a chip card communicatively coupled to the client device, and sending, by executing an instruction with the first processor of the client device, the card data to the server.

Abstract: A system and method are disclosed in which a user engaging in an online or in-person transaction with a merchant may create automatic expiring transactions for a credit card. The user provides the credit card information to an online interface or a point-of-sale device but specifies an expiration date that is on or before the actual expiration date of the credit card, known as an artificial expiration date. A token for the merchant is generated with the artificial expiration date. The issuing bank will honor the transaction with the artificial expiration date using the merchant-specific token, and the token may continue to be used with the online merchant until the artificial expiration date.

Abstract: A mobile network based authentication system for authenticating a user's access to a restricted-access account includes an application server and an identification server. The application server is configured to authenticate the user's access to the restricted-access account by transmitting a one-time password to a mobile computing device of the user and confirming that the one-time password has been entered by the user. The identification server communicates with the application server after the application server receives a request from the user to access the restricted-access account and before the application transmits the one-time password to the mobile device, to verify that an attribute of the restricted-access account is linked to a network identification of the mobile computing device.

Abstract: Various embodiments are generally directed to autofilling card data from a contactless card to a form of a computing device. An application may determine that a payment field of a form has received focus. The application may then receive encrypted data from a communications interface of a contactless card associated with an account. The application may then receive, from a server, verification of the encrypted data. The application may then receive, from the server, an encrypted account number associated with the account, and decrypt the encrypted account number to yield the account number. An autofill service of an operating system (OS) executing on the processor circuit, may then autofill the account number to the payment field of the form.

Abstract: Various examples described herein are directed to systems and methods for managing payments of a first merchant. A mobile wallet application may receive first payment element data describing a first payment element for making a first payment and may determine that the first payment element is to be processed by a limited payment network. The mobile wallet application may send a first payment authorization message to an issuer of the first payment element via the limited payment network. The mobile wallet application may also receive second payment element data describing a second payment element for making a second payment. The mobile wallet application may determine that the second payment element is not to be processed by the limited payment network, and send a second payment authorization message to an issuer of the second payment element via a second payment network.

Abstract: A method for sharing verification information is disclosed. The method is performed at one or more electronic devices. Verification information corroborating the identity information of a first user is obtained. A first device facilitates storing the verification information in one or more encrypted containers. A request for at least a part of the verification information corroborating the identity information of the first user is received from a second device that is distinct from the first device and a client device of the user. The request for authorization to release the requested part of the verification information is sent to the client device. In response to receiving authorization from the client device to release the requested part of the verification information, the requested part of the verification information is sent to the third party.

Abstract: Described herein are a cash register and a ticket vending mechanism that require little or no merchant infrastructure resulting in dramatic cost reduction for merchants. These are made possible through a payer-centric payment paradigm where the payer—as opposed to the merchant—completes the payment transaction without depending on the merchant, resulting in increased payer convenience and payment security.

Abstract: Systems for dynamic unauthorized activity detection are provided. In some arrangements, issue data may be received from, for instance, a customer of an enterprise organization. The issue data may include a data file containing metadata associated with a plurality of checks written or issued by the customer. As those checks are cashed, the checks may be evaluated for potential unauthorized activity. Accordingly, check data and/or check image data may be received by the enterprise organization. The check and/or check image data, as well as the metadata, may be analyzed using machine learning to determine whether unauthorized or potential unauthorized activity has occurred. Based on the determination, one or more actions may be identified and executed.

Abstract: A system and method is proposed for estimating the contribution of components of a distributed computing environment to the generation of economically relevant values, like e.g., revenue numbers. Agents are deployed to the computing environment that trace executed transactions and that monitor components used to execute those transactions. The transaction trace data also contains data about the origin/user of transactions, which may be used to group transactions corresponding to particular interactions of individual users with the monitored application into visit data. Data describing economically relevant activities of transactions, like the purchase of goods, are also observed by agents and reported in trace data. Functional dependencies described in transaction trace data and resource related dependencies derived from component monitoring data are used to identify functionality and components that contributed to the generation of business value.

Abstract: In various embodiments, servers in a server pool share a centrally-generated encryption key that is used to encrypt session keys in tickets that can be used by client applications to share secure communication sessions across different servers belonging to the same server pools. When the client application first establishes a secure communication session with a server in a server pool, the server returns a ticket that includes an encrypted version of a session key generated using an encryption key shared by servers in the server pool. Thereafter, the client application can present the ticket to other servers in the server pool to restore the secure communication session with the other servers. Associations between servers and server pools can be communicated to the client application in any technically feasible manner, such as part of information indicating servers from which content can be accessed or via the Domain Name System (DNS).

Abstract: Various embodiments concern facilitating a money transfer by creating a first profile for a first user and a second profile for a second user. The first user can select the second profile from a plurality of profiles. The first user can enter a value designation for the transfer of money from the first user to the second user. A computing system can then stage the transfer of money based on previously saved profile information for the first user and the second user. The profile information can be used to set a plurality of terms of the money transfer without requiring either of the first user or the second user to reenter this information or otherwise affirmatively set the plurality of terms of the money transfer.

Abstract: A system that provides an exchange platform for resource interaction processors that qualify under a modelling process. The platform is continuously updated with information regarding the resource interaction processors with both private and public information. The platform includes regulatory and other rules dictating interaction parameters associated with the resource interaction processors. The platform provides a viability metric of the resource interaction processors for providing resource interaction processor services to the resource interaction processors. Authorized entities may access and view the merchant exchange platform to gather information about the resource interaction processors for use in determining whether to provide services.

Abstract: Systems, devices, and methods are provided for fingerprinting requests, such as transaction records. A transaction record or other suitable request may be parsed to identify a parameter values for a set of fields relevant to fingerprinting. A transaction record representation may be generated based on transaction input data, transaction output data, intermediate data, or combinations thereof. A fingerprint may be generated from the transaction record implementation. Fingerprints may be used to identify various test cases that can be used for regression testing.

Abstract: A blockchain transaction privacy protection method includes receiving a transaction request sent by a receiving node device, the request including a plurality of receiving accounts and a total amount receivable, and sending a plurality of transaction sequence numbers and a virtual wallet address corresponding to each of the plurality of transaction sequence numbers to the receiving node device, thereby making the receiving node device send a total amount receivable, the plurality of transaction sequence numbers, and the virtual wallet address corresponding to the plurality of transaction sequence numbers to a granting node device. A total amount receivable and the plurality of transaction sequence numbers sent by the granting node device are received. A transaction amount to each receiving account of the receiving node device according to the total amount receivable and the plurality of transaction sequence numbers are transferred, protecting the amount of the transaction and the parties.

Abstract: A computer can monitor network traffic on a blockchain computing network. The computer can determine a current level of network congestion on the blockchain computing network. The computer can execute a first machine learning model that predicts a timeseries of future transaction costs based on historical data and the current level network congestion level of the blockchain computing network. The computer can also execute a second machine learning model to predict a timeseries of future transaction sizes and UTXO types for the distributed ledger-based account based on historical transaction data. The computer can select one or more UTXOs to use to complete the transaction of the transaction request. The computer can append a block instance containing an identification of the selected one or more UTXOs to the blockchain to complete the transaction.

Abstract: Systems, methods, and apparatus are provided for securing transmission of sensitive data on an LPWAN network such as LoRaWAN. Long-range, low-power transmission may enable a transaction card to communicate with a financial institution server without internet or cellular connectivity. The transaction card may generate a first security key. The key may include a transaction timestamp, a random number generated by the transaction card microprocessor, a personal identifier received at the transaction card from a user, one or more card parameters, and/or any suitable factors. A long-range, low-power network server may detect the card transmission. The server may retrieve the card parameters and personal identifiers stored in association with a user account during card registration. The server may generate a second security key. Based on a match between the first security key and the second security key, the server may authenticate the transmission.

Abstract: A method for electronically signing contracts between at least a first and a second parties, the method including a first party accessing second party's website and fills in an on-line form with party personal data which is sent to a second party's server. The method of the inventions solves the problem of signing contracts between two parties, hence the object of the present invention is a computer implemented method that deals with the issue of protection against unauthorised use of data from within the employees of TTP companies and we present a solution in which a TTP company can certify the validity of a contract without having access to its content. In this way, the TTP minimizes the information it has access to and reduces the risks derived from such knowledge, like an eventual data leakage caused by some dishonest TTP employee.

Abstract: Systems and methods are disclosed for securely communicating sensitive such as an identifier. A user device may receive a first message comprising a terminal type indicator. For certain values of the terminal type indicator, the user device may be configured to transmit a request message comprising a first identifier and an encrypted identifier. For other values of the terminal type indicator, the user device may be configured to generating an obfuscated identifier based at least in part on a first portion of a second identifier and a second portion of the encrypted identifier. The user device may then transmit a request message that includes the obfuscated identifier and the encrypted identifier.

Abstract: The invention relates to creating a secure, decentralized, cloud-based network or physical/virtual infrastructure that enables the payments industry to redefine payment processing and information sharing. The innovative network addresses key pain points by reducing payment delays and touch points, realizing faster and comprehensive payment tracking, real-time sanctions, AML and fraud management tools.

Abstract: An example operation may include one or more of changing a status of a current blockchain to a closed and retired status based on expiration of a limited time window, creating a genesis block associated with a new blockchain, storing a world state of the current blockchain in the genesis block, creating one or more smart contracts, storing the one or more smart contracts on the new blockchain, and initiating an open stage on the new blockchain, and the open stage permits one or more potential blockchain transactions to be written to the new blockchain.

Abstract: A system, device, and method for implementing secure control over audio visual (AV) equipment connected to an AV gateway is disclosed. The solution implements secure and remote control over audio visual (AV) equipment included in an AV network by enabling a web browser running on a user device to utilize a web proxy shuttle to communicate control commands to an AV gateway that controls the AV equipment.

Abstract: A method for processing breast tissue image data includes processing the image data to generate a set of image slices collectively depicting the patient's breast; for each image slice, applying one or more filters associated with a plurality of multi-level feature modules, each configured to represent and recognize an assigned characteristic or feature of a high-dimensional object; generating at each multi-level feature module a feature map depicting regions of the image slice having the assigned feature; combining the feature maps generated from the plurality of multi-level feature modules into a combined image object map indicating a probability that the high-dimensional object is present at a particular location of the image slice; and creating a 2D synthesized image identifying one or more high-dimensional objects based at least in part on object maps generated for a plurality of image slices.

Abstract: A nonce is sent to a user communication device. Obfuscated biometric data is received from the user communication device. The obfuscated biometric data is generated by an obfuscation process that uses the nonce and first biometric data. The first biometric data is generated from a biometric of a user at the user communication device. For example, the first biometric data may be biometric data from a fingerprint scan. The obfuscation process is reversed by using the first nonce to produce the first biometric data. The first biometric data is compared to known biometric data of the user. In response to the first biometric data being within a threshold of the known biometric data, the user is authenticated.

Abstract: Systems, methods, articles of manufacture, and computer-readable media. A web browser of a device may receive selection of a uniform resource locator (URL). An operating system may download an application from an application server based on the URL. The application may identify a plurality of applications installed on the device and select a first institution corresponding to a first application. The application may receive a cryptogram from a contactless card associated with the first institution and transmit the cryptogram to an authentication server. The application may receive an authentication result specifying the authentication server decrypted the cryptogram. The web browser may receive, based on the decryption of the cryptogram, an account number, an expiration date associated with the account number, and a card verification value (CVV) associated with the account number. The web browser may provide the account number, expiration date, and CVV to a server associated with the application.

Abstract: Examples in this application disclose information sharing methods, media, and systems. One example computer-implemented method includes receiving, by a trusted execution environment (TEE), a first sharing request from a first institution and a second sharing request from a second institution, where the first sharing request comprises a user identity of a first user and first anti-money laundering (AML) risk information and the second sharing request comprises a user identity of a second user and second AML risk information, comparing the user identity of the first user with the user identity of the second user, in response to that the user identity of the first user is the same as the user identity of the second user, combining the first AML risk information and the second AML risk information, and sending the combined first AML risk information and second AML risk information to the first institution and the second institution.

Abstract: A processor-implemented mobile payment method includes: receiving a one-time pad (OTP) key generated based on a plurality of true random numbers; encrypting a payment token based on the OTP key; and performing a payment based on the encrypted payment token.

Abstract: The invention relates to a computer implemented campaign management system (CAMS), the system including a graphical user interface (GUI), the management system (CAMS) processing a plurality of participant records (PREC) according to a user-configured process structure (PS) of a plurality of configured logic templates (CLT); wherein the participant records (PREC) comprise participant attributes (PA), and wherein the processing of participant records involves processing or modification of one or more of the participant attributes (PA) of the participant record (PREC), wherein the management system reads, processes and/or modifies participant attributes (PA) of participant records (PREC) by a sequence of one of more executable program fragments (EPF) according to the process structure (PS) and wherein the execution of one of more executable program fragments (EPF) can be suspended in response to user action (UACT) and/or participant action (PACT) and wherein the execution of the process structure can be resumed

Abstract: A computer that dynamically generates a customized second document is described. During operation, the computer receives information specifying activation of a hosted field in a document associated with a third party, where the information specifies a willingness to receive one or more messages from the computer and specifies a telephone number. In response, the computer dynamically generates the customized second document that includes information about one or more transactions (such as one or more upcoming events) of interest to an individual associated with the telephone number. Then, the computer sends a message to an address corresponding to the telephone number, where the message includes a link to the customized second document. Next, when the computer receives information specifying activation of the link from an electronic device, the computer provides information specifying the customized second document to the electronic device for display on the electronic device.

Abstract: Provided is a method for detecting audio, which includes acquiring audio file data; determining attribute detection data corresponding to the audio file data; and generating a voice detection result corresponding to the audio file data by voice violation detection on the attribute detection data by a fully connected network model. A device for detecting audio and a non-transitory computer-readable storage medium are also provided.

Abstract: An apparatus verifies hosted information associated with a user. The apparatus establishes, by the online host serving as a relying party system (RPS), a secure connection between the RPS and a user mobile-identification-credential device (UMD). The RPS sends a mobile identification credential (MIC) user information request to the UMD, via the secure connection, seeking release of MIC user information (official information). The RPS obtains from authorizing party system (APS) verification of the MIC user information received in response to the MIC user information request. The RPS stores the MIC user information as hosted information pertaining to the user. The RPS designates the hosted information as base truth information representing the user.

Abstract: Biometric features are derived from security data associated with a subject. The security data is obtained from a security device. A biometric value is calculated from the biometric features. The biometric value is anonymized to an identifier associated with the subject. The identifier is integrated with event data associated with a security system. In an embodiment, the security device is a Personal Identification Number (PIN) pad integrated into a transaction terminal, the security data is fingerprint data, which is read from a finger of the subject placed on a fingerprint reader integrated into the PIN pad, and the biometric value is a PIN calculated from fingerprint data during a transaction at the transaction terminal. In an embodiment, the security device is a security camera, the security data is a secure video stream, and the biometric features are facial features of the subject in the secure video stream.

Abstract: The CONVERGED MERCHANT PROCESSING APPARATUSES, METHODS AND SYSTEMS (“CMP”) facilitates the generation of user accounts with merchants. The user may be logged into an electronic wallet or issuer account, and may initiate an account generation process with a one-click mechanism. The CMP may provide information to the merchant in order to facilitate the generation of the account after receiving data from the electronic wallet or issuer.

Abstract: A method and system for expressive conversion of more expressive metadata to less expressive metadata while maintaining lossless conversion including receiving a request for a second system metadata, retrieving a first system metadata, generating the second system metadata in response to the request for the second system metadata and the first system metadata wherein the second system metadata includes a first subset of the first system metadata, generating a site metadata mapping in response to the second system metadata and the first system metadata wherein the site metadata mapping includes a second subset of the first system metadata not included in the second subset of the first system metadata, storing the site metadata mapping in a memory, and transmitting the second system metadata to a client application.

Abstract: In some implementations, a device may receive an indication of information associated with a stored value medium. The device may populate a database with the information associated with the stored value medium, where the database includes a table to link the information associated with the stored value medium with an entity identifier of an entity associated with the stored value medium. The device may receive an indication of an exchange associated with the entity identifier of the entity, where the exchange is not associated with the stored value medium. The device may parse the database using the entity identifier associated with the entity to identify the information associated with the stored value medium indicated in the database. The device may communicate, with a backend system, to enable the exchange to be at least partially completed using the resources associated with the stored value medium.

Abstract: Methods and systems are disclosed for payment authentication. For example, a method may include: the method comprising: storing a first device fingerprint in association with a token representing a primary account number, the first device fingerprint being derived from a device attribute of a user device and behavioral biometric data derived from a behavioral pattern of a user in using the user device; receiving an authentication request indicative of the token and a second device fingerprint generated by a customer device associated with a customer of a merchant, the authentication request being associated with a transaction between the merchant and a customer using the token; identifying the stored first device fingerprint based on the token indicated by the authentication request; and determining whether the second device fingerprint matches the stored first device fingerprint.

Abstract: Systems, methods, and computer-readable storage media utilized in math-based currency (MBC) exchange utilizing MBC transaction guarantees. One method includes receiving, from a merchant point of sale (POS) terminal, a payment reimbursement request comprising a guarantee identifier associated with an MBC transfer. The method further includes determining, utilizing the guarantee identifier, transaction information. The method further includes determining, utilizing the transaction information, the guarantee identifier is associated with a failed transaction based on accessing and analyzing a plurality of disputed transactions on an MBC blockchain. The method further includes, in response to identifying the failed transaction, initiating an MBC payment from the financial computing system to an MBC address of a merchant. The method further includes providing, to the merchant POS terminal, a payment confirmation.

Abstract: The invention to provides an improved controller for providing a location-based service to an area, wherein the controller comprises a memory and a transceiver, wherein the controller is configured to: obtain a location of a mobile device associated with a person; obtain sensor data from at least one sensor arranged for monitoring the person in the area when the obtained location of the mobile device is within the area; store the sensor data in the memory; forward, via the transceiver, the stored sensor data to the mobile device when the obtained location of the mobile device is no longer within the area, and subsequently delete the sensor data from the memory. The invention further provides related systems for providing a location-based service to an area and related methods.