Abstract: The present invention relates to systems and methods for staging transactions and facilitating payments by consumers to a lender or merchant to consummate a financial transaction and/or to maintain a financial relationship. In one embodiment, a method for accepting payments from a consumer includes receiving a promise-to-pay record from a lender (210), receiving a payment from the consumer (220), associating the payment with the promise-to-pay record (230), and sending a notice to the lender (240), with the notice having an indicator that the payment has been received.

Abstract: The method and system of the invention provide a variety of techniques for using a selected alias and a selected personal identification entry (PIE) in conjunction with use of a transaction card, such as a credit card, debit card or stored value card, for example. A suitable number or other identification parameter is selected by the account-holder as an alias. The account-holder is then required to choose a PIE for security purposes. The alias is linked to the account-holder's credit card number via a database. When the account-holder enters into a transaction with a merchant, the physical card need not be present. The account-holder simply provides his or her alias and then the PIE. This can be done at any point of sale such as a store, catalog telephone order, or over the Internet. The alias and PIE are entered and authorization is returned from the credit card company.

Abstract: An electronic transaction system, which facilitates secure electronic transactions among multiple parties including cardholders, merchants, and service providers (SP). The system involves electronic cards, commonly known as smart cards, and their equivalent computer software package. The card mimics a real wallet and contains commonly seen financial or non-financial instruments such as a credit card, checkbook, or driver license. A transaction is protected by a hybrid key cryptographic system and is normally carried out on a public network such as the Internet. Digital signatures and challenges-responses are used to ensure integrity and authenticity. The card utilizes secret keys such as session keys assigned by service providers (SPs) to ensure privacy for each transaction. The SP is solely responsible for validating each participant's sensitive information and assigning session keys. The system does not seek to establish a trust relationship between two participants of a transaction.

Abstract: A portable electronic device with which an owner of the device makes use of a specific application program and a method for issuing the device. An unissued IC card can be written with the specific data without satisfying the security function of the IC card. After the issuance of the IC card, the security function becomes valid and each IC card requires satisfaction of the security function in case of data writing or data rewriting.

Abstract: Systems and methods for enrolling consumers in goods and services offered by a consumer provider are disclosed herein. Various of the methods include providing an enrollment system and displaying enrollment options via the enrollment system. Further, the methods include receiving enrollment requests and enrolling a consumer based on the enrollment request. The systems can be configured for effectuating the various enrollment methods.

Abstract: A payment service method and system involve a payment service provider, a customer/payor and a consumer provider/payee. The customer/payor enrolls in the service and is provided a unique identifier that enables the customer to conduct transactions with the payment service provider. The customer/payor interfaces with the payment service provider through various forms of communication, and can facilitate payments to the consumer providers/payees through the payment service provider while remaining anonymous.

Abstract: A mechanism is provided for storing user identifications and passwords in a mobile device, such as a personal digital assistant. A modified keyboard device driver may be installed on each platform the user accesses. When the user is prompted for a password from a functioning terminal, the user may select the appropriate account on the mobile device. The mobile device then may send the user identification and password for the account to the terminal. The modified keyboard device driver receives the user identification and password from the mobile device and converts it into keyed text. The accounts with user identifications and passwords may be protected by a password. Thus, the user must only remember the one mobile device password to access a plurality of resources and computer systems. Furthermore, the communications between the mobile device and terminal may be encrypted to prevent snooping.

Abstract: The present invention involves the creation of a website-specific electronic signature containing a personalized logo via a mechanism for on-line assembly of image parts to obtain personalized image. The present invention provides two applications of the website-specific electronic signature containing a personalized logo, a virtual payment card and an on-line binding purchase order. The present invention further provides two methods and a system for e-commerce use of the virtual payment card and the on-line binding purchase order. The safer and less costly on-line transaction methods and the more trustable on-line seller-buyer agreements offered by the present invention can help promote the trustworthiness and the brand value of an e-store or a payment institution.

Abstract: Techniques for providing secure processing and data storage for a wireless communication device. In one specific design, a remote terminal includes a data processing unit, a main processor, and a secure unit. The data processing unit processes data for a communication over a wireless link. The main processor provides control for the remote terminal. The secure unit includes a secure processor that performs the secure processing for the remote terminal (e.g., using public-key cryptography) and a memory that provides secure storage of data (e.g., electronics funds, personal data, certificates, and so on). The secure processor may include an embedded ROM that stores program instructions and parameters used for the secure processing. For enhanced security, the secure processor and memory may be implemented within a single integrated circuit. Messaging and data may be exchanged with the secure unit via a single entry point provided by a bus.

Abstract: The present invention relates to electronic purse systems, and in particular it relates to the improved management of multiple money flows in such systems. According to the basic principles of the present invention it is proposed that the secure access modules (SAMs) of a purse provider support multiple user groups or environments in the system while still requiring only one system key. The user groups or environments are identified by a so-called float ID tag which is advantageously added to each set of data involved in a load or purchase process performed by the user of the electronic purse system.

Abstract: The process consists of carrying out the first phase of generating the transaction signature (9), with prior authentication by the cardholder, in the issuing centre (3) through its authentication server (5), a second phase of decimalising (10) the signature (9) to obtain a valid permutation number and a third phase of permuting (11) the intermediary positions or digits of the card, the processor fixing a BIN and maintaining the check digit. In this way, the digits forming the expiry date are permuted. The card and expiry date are sent in the data flow (12) of the transaction to the acquiring server (7), from where they are sent back to the issuing centre (3), to its processing centre (6) to be specific, where three other operative phases are carried out: the new generation of the signature (13), its decimalisation (14) and lastly the inverse process (15) to reestablish the card's real data and expiry date.

Abstract: A network utilizes electronic security value units to prevent unauthorized access to resources in the network. The network includes at least a resource manager and an electronic bank server (e.g., the local resource bank). The resource manager determine a pricing strategy in electronic security value units for a group of one or more resources in the network. The electronic bank server selectively distributing electronic security value units to a client in the network, where the electronic security value units are unique to a group of one or more resources. Accordingly, access to a resource in the group, by the client, is determined by at least the above pricing strategy and by an amount of electronic security value units distributed to the client.

Abstract: The communications means that are commonly provided for the remote control of electronic components are utilized to effect an exchange of parameters to facilitate a cryptographic key exchange. The bidirectional remote control transceivers, typically infrared transceivers, that are commonly used to communicate commands from the remote control device and to communicate feedback to the remote control device are configured to communicate parameters between a pair of consumer devices that are controllable by the remote control device. In a preferred embodiment of this invention the remote control device contains the control means to effect the transfer of these parameters between the consumer devices.

Abstract: A system, method, and apparatus for conducting secure monetary transactions over a communications network is provided. The invention facilitates secure monetary and financial transactions over the Internet and other public networks for various purposes, including automated payments associated with purchasing goods or services online. Different implementation methods may be utilized, including systems based on proxy and psuedo-credit-card models. In each case, communications protocols are provided between a consumer, merchant web site, payment processor and a service provider, enabling online transactions to proceed in a secure manner. The invention utilizes a physical medium to provide consumers, merchants, and financial institutions with a secure system to conduct electronic commerce transaction. The preferred medium assumes the form of a miniature recordable CD-ROM that contains cryptographic data representing one-time monetary and/or transactional details.

Abstract: A system and method of configuring value cards which facilitates selection of personalized limits on value card use in transactions. The value card configuration system includes a display for displaying value card configuration options, an input device for recording customer selections of the value card configuration options, and a computer for controlling the display and the input device, for assigning a value card identification number to the value card, for dispensing the value card, for establishing a connection to a value card host computer, and for sending the selections to the value card host computer via the connection for later retrieval during a transaction in which the value card is used for payment.

Abstract: A multiple use ticket generating method is disclosed which enables a recipient to obtain signatures for arbitrarily many (correctly formed) messages after only one interaction with the signer. The method provides a blind signature in a ticket, the signature having a multiple use with a built-in expiration. Then, the method develops a blinding value for the signature in a reproducible computation using a seed key substantially known only to the issuer of the ticket. The method implements a new class of signature schemes almost as efficiently as do previous one-time restrictive blind signature methods.

Abstract: In accordance with the present invention, consumers and merchants use computing devices connected to a network, such as the Internet, through wired and wireless means, wherein the consumer connects to a clearing server device to purchase or retrieve previously purchased token, the consumer then connects to the merchant's computer or website to attain price quotes of goods and services, selects the goods and/or services to be purchased, and then communicates a request for purchase to the merchant. The merchant then communicates a request for an update key to the clearing server. The update key is used as an authorization to modify the value of the token. To debit the customer the decrement key is requested and to credit the customer an increment key is asked for. An overwrite key is another type of update key. Together with the overwrite key a replacement token is provided to the merchant who in turn forwards the new token to the customer.

Abstract: The present invention is to provide a memory rental service system in an intelligent authentication unit, the system allowing an application operating entity to setup or change any application freely and easily at a reduced cost of operating the application. In other words, the system is to separately lease one or more specific areas of a memory in the intelligent authentication unit (IAU) for independently authenticating personal identification such as fingerprints, to one or more operators who operate specific applications. A write API distributed to the operator is used to write the contents such as data or a program written in a specific area, while a read/write API is used to authenticate personal identification so as to read the written contents such as the data or program stored in the specific area and operate the application specified by the APL.

Abstract: A method for authenticating at least one subscriber during a data interchange between at least two subscribers is described. In the method, a first subscriber transmits a first data item (a challenge signal) to a second subscriber, the second subscriber processes the first data item using an algorithm to give a second data item and transmits it to the first subscriber, which checks it for its correctness. At the same time as the first data item is being processed using the algorithm, at least one other processing operation on the first data item is carried out.

Abstract: A method for remote administration of at least one smart card via a communication network is described. The method includes the steps of associating the at least one smart card with a remote administrator by storing administrator identification information of the remote administrator in the at least one smart card, inserting the at least one smart card in at least one user unit, employing the administrator identification information stored in the at least one smart card to identify the remote administrator associated with the at least one smart card, and establishing communication between the at least one smart card and the remote administrator via the communication network in accordance with the administrator identification information. Related apparatus and methods are also described.

Abstract: A method is provided for protecting a payment instrument in non-face-to-face transactions. The payment instrument is issued by an issuing entity and associated with an authorized instrument holder. The authorized instrument holder is subject to authentication by a trusted third party with whom the payment instrument holder has previously registered.

Abstract: A rule based biometric user authentication method and system in a computer network environment is provided. Multiple authentication rules can exist in the computer network. For example, there may be a default system-wide rule, and a rule associated with a particular user trying to log in. There may be other rules such as one associated with a remote computer from which the user is logging in, one associated with a group to which the user belongs, or one associated with a system resource to which the user requires access such as an application program or a database of confidential information. An order of precedence among the rules is then established which is used to authenticate the user.

Abstract: Methods, systems and computer program products are provided for managing a smart card product by providing a plurality of generic definitions, at least a portion of which have a predefined relationship to others of the generic definitions, so as to provide a hierarchy of generic definitions. Generic definitions are selected from the plurality of generic definitions and associated with an instance of a card product definition so as to define characteristics of the smart card product associated with the instance of the card product definition. The selected generic definitions are populated with data associated with the smart card product so as to provide a hierarchy of instances of the generic definitions which define the characteristics of the smart card product. The smart card product is managed utilizing the hierarchy of instances of the generic definitions so as to provide the smart card product having the defined characteristics.

Abstract: A system and method for verifying the identification of a user and securely establishing an encryption key for a communication between the user and a verifying entity, such as a bank, which makes use of the numeric value of the user's personal identification number (PIN) known only to the user and the bank and resolves the man-in-the-middle problem. The system and method replaces a public parameter with the customer's PIN to provide an encryption mechanism that is less complex than existing protocols. Use of the protocol enables new products and improvement of existing products using a service access device and service access device interface, including, for example, self-service terminals.

Abstract: An asset/account activation device and method are provided. According to a first preferred method, an asset may be activated by a point of sale device utilizing multiple security mechanisms. Activation codes are sent by secure electronic transmission from an activation host to the activation device. Upon execution of the asset purchase, the activation device dispenses the activation code. Prior thereto, a physical representation of the asset, in the form of a card or the like, has printed thereon an asset ID. To activate the asset, the asset owner contacts a processing device wherein the activation code and asset ID are compared based on time constraints, retailer location constraints and other constraints. Other security checks may be incorporated to include velocity checks. The apparatus of the invention includes an activation host, an activation device, a processing device or VRU, and an activation database.

Abstract: A computerized system offers a uniform platform for conducting electronic transactions in multiple different environments. The system includes a portable, multi-purpose, integrated circuit (IC) card and complimentary computer software which enables access and management of resources maintained on the IC card. The software runs on a user's personal computer, empowering the user to initialize the IC card, configure the card with the resources that the user wants to maintain on the card, and to manage those resources. The software enables the user to generate private/public key pairs and establish or change passcodes for access to the card resources. The IC card itself provides the electronic vehicle for securely transporting the user's private keys and certificates without exposing them in plaintext form.

Abstract: An authentication system for authenticating a particular individual using a recording medium containing information for identifying the individual has a recording medium issuing apparatus including, a database for storing a feature value usable for identification of the individual to be authenticated with the recording medium, means for managing the database to store the feature value of the individual to be authenticated with the recording medium and for generating search information to retrieve the feature value of the individual from the database, means for generating cryptographic information by encrypting the thus generated search information using a private key based on public key cryptography, and means for recording the thus generated cryptographic information and certification information concerning the individual onto the recording medium; and a recording medium authenticating apparatus including, means for decrypting the cryptographic information recorded on the recording medium using a public key

Abstract: This invention relates to the field of computer software, and more particularly to a method and apparatus for generating a value-bearing instrument.

Abstract: Systems and methods are provided for remotely generating an instrument. A request for the instrument is received from a customer, the instrument is generated in electronic form and a first security image in electronic form is added to the electronic form of the instrument to create a composite image. The composite image in electronic form is transmitted to the customer for printing by the customer.

Abstract: A computer implemented system provides secure distribution of value-bearing instruments, such as coupons, tickets, gift certificates, money orders and traveler's checks. The distribution system involves three parties which are the consumer of the instrument, the supplier of the instrument and a security party which is referred to as a secure transaction service. The consumer registers with the secure transaction service for identity verification either before or after a transaction is initiated with the supplier of products or services. Verification of the consumer's identity can be established at any required level. In one aspect of the system, the supplier provides the consumer with a confirmation token which the consumer must then provide to the secure transaction service together with identification information of the consumer, so that only the valid consumer can complete the transaction.

Abstract: Methods, apparatus and machine readable medium are described that prevent successfully launching a trusted environment without providing the computing device with an appropriate portable token. In one embodiment, the computing device stores information on the portable token that is required in order to launch the trusted environment. In another embodiment, information that is required to launch the trusted environment is encrypted with a key that has been sealed to a portable token. Accordingly, the required information may only be decoded if the portable token is present.

Abstract: A method and system for effecting a financial transaction over a public network without the submission of sensitive information. The system comprises a common controller in data communication with at least one public network. The common controller includes a processor for generating digital tokens wherein each digital token represents a particular monetary value and contains a particular digital signature and alterable digital token status data indicating ownership of the digital token. The system includes a plurality of user data communication interfaces in data communication with the public network. The processor of the common controller includes data bases for storing user account information such as user identification and PIN, and account values and for authenticating the user identification and PIN to determine whether access to the common controller is permitted.

Abstract: The invention presented describes a system and procedure for protecting against the espionage of secret information. A counter is allocated to each secret piece of information, in particular codes. The counter counts the number of uses of the secret information. In this, the counter is set to a starting value. Each use of the secret data element increases the counter state by a defined value. If the counter state reaches a maximum value, the use of the secret data element will be blocked. The blocking of the secret information can, however, be avoided if a defined event occurs before the maximum value of the counter is reached which automatically resets the counter state to its starting value. Any technical, economic or organisational condition can be defined as an event. Particular advantages of the invention presented are that each code can have its own counter allocated to it. In this way, different numbers of uses can be established for each code with regard to its function.

Abstract: A method of computing and verifying an authorization code for a transaction. The method includes creating an algebraic formula and storing the formula in a validation unit and a calculating apparatus. A calculation is made by entering values for variables of the formula into the calculating apparatus, which substitutes the values for the variables into the algebraic formula to calculate a value for an authorization code. The variables and calculated value for the authorization code are sent to the validation unit, which calculates the authorization code and determines a match between the values for the variables as determined by the calculating apparatus and the values as verified by the validation unit. The validation unit allows payment authorization only if a match exists between the values for the variables as determined by the calculating apparatus and as verified by the validation unit.

Abstract: The invention relates to a process for storing and using sensitive information in a security module and to a security module arranged to implement the process, and protect the sensitive information against fraudulent utilization. The sensitive information ISj is stored in a form {overscore (ISj)} encrypted using a temporary encrypting protection key CPi, whose content varies over time. The sensitive information {overscore (ISj)} is decrypted before being used in a given operation, using a temporary decrypting protection key CPid. Before the contents of the encrypting and decrypting keys are varied, the sensitive information {overscore (ISj)} is decrypted with the current decrypting key, and then it is re-encrypted with the new encryption key to obtain a new encrypted form, different from the previous one.

Abstract: A method for converting coined money to another type of value proceeds by receiving a plurality of coins into a coin processing machine. The coins are processed with the coin processing machine to determine a value of the coins. An electronic record of the determined value is produced using the coin processing machine.

Abstract: There is provided a service providing system that is capable of preventing personal information on a user who has used a service from being leaked to other users without spoiling the convenience for the user, and increasing the frequency with which the user uses the service. The service providing system includes a service providing apparatus that provides a service for the user, and a password issuing device that issues a password with an expiration date that is made to correspond to identification information held by the user in response to the payment of a fee by the user. The service providing apparatus includes a memory that stores setting data used for simplifying operations relating to the service provided for the user, and a CPU. The CPU authenticates the user according to the identification information on the user, the password issued to the user, and the expiration date thereof, and gives the authenticated user a permission to perform operations on the setting data stored in the memory.

Abstract: An Extended SmartCard file system is proposed which resides in one flat file within the ISO file system of a SmartCard. A second file containing user information like size of the file system, owner information, and key fields is used to configure the file system driver dynamically. However, this file may be omitted if the file system driver is statically initialized. The nested file system of the present invention has the advantage that files can be fully dynamically accessed and edited without affecting the underlying ISO file layout, i.e. the outer fixed structure of the outer file system. Further, data integrity and consistency are achieved by a transaction oriented commit concept. Additionally, all security mechanisms of the underlying SmartCards in terms of data protection are fully maintained and are enhanced in cases of power loss or unexpected card removal as two distinct directories are provided for data management.

Abstract: A user registers a user public key PKU as a pseudonym at a trustee or issuer and obtains an signature for the pseudonym as a license. The sends the pseudonym, PKU identification information IdU and the amount of withdrawal x to the issuer institution. The issuer increments a balance counter of the pseudonym by x, then generates an issuer signature SKI(PKU, x) with a secret key SKI, and sends the issuer signature as an electronic cash to the user. The user verifies the validity of the issuer signature with a public key SKI, and if valid, increments an electronic cash balance counter Balance by x. At the time of payment, user sends the public key PKU and the license to a shop, and the shop verifies the validity of the license, and if valid, sends a challenge to the user. The user attaches a signature to the challenge with user secret key SKU, then sends it to the shop together with the amount due y, and decrements the electronic cash balance counter by y.

Abstract: Various methods and arrangements are provided to form an interface that allows portable token devices to be used within static machine concentric cryptographic environments. One example of a portable token device is a smart card that can be read or other accessed by a computer through a smart card reader. A cryptographic API, associated with the operating system of the computer, is configured to separate the applications from the cryptographic functions that require the portable tokens. The cryptographic API accesses a smart card cryptographic server provider (SC-CSP) that is configured to work with a smart card cryptographic provider (SCCP) program as part of the interface. This SC-CSP/SCCP interface determines that the requested cryptographic function requires a specific smart card and requests that the user provide the appropriate smart card.

Abstract: Payment indicia generating schemes are described that enable users to customize the appearance of the payment indicium and to accommodate a wide variety of validation processing environments, while providing a substantial defense against fraudulent photocopy attack. In some embodiments, a corroborative digital token is generated from payment information, and a base image is modulated with a graphical encoding of the corroborative digital token to produce a payment indicium. In some embodiments, a payment indicium containing embedded payment information is rendered on a printing surface with a printing characteristic that degrades with photographic reproductions such that the embedded payment information is extractable from an original rendering of the payment indicium but is un-extractable from a photographic reproduction of an original rendering of the payment indicium.

Abstract: A multilevel infrared (IR) type security system prevents unauthorized use of a computer. A program resident on the computer implements a user-validation procedure. An IR key device carries a first serial number and an encryption key. A second serial number corresponds to a device internal to the computer. A mass storage device installed in the computer stores a validation record that includes an unencrypted portion and an encrypted portion, the unencrypted portion including a copy of the first serial number and the encrypted portion including a copy of said second serial number and a user personal identification number. The key device is coupled and interfaced with an infrared port on the computer by the user. The first serial number and the encryption key are read from the key device in order to gain authorized use of the computer. The key device may be decoupled from the computer after authorized use of the computer has been gained, and during operation of the computer.

Abstract: A method and system for batch loading a stored value application of a microprocessor based stored value card includes a stored value card reader/writer connected to a local computer device and a batch-load application running on the same computer device which securely stores load key information and emulates the remote functions of an on-line load transaction. The computer also has a security module for storing load key information and an encryption device. Communication is initiated on the card reader at the local computer device between the stored value application and the batch-load application, and an off-line batch-load transaction is performed in which the load key information is validated and a funding source is also validated. An authorizing message is sent by the batch-load application to the stored value application with data representing a pre-selected monetary value.

Abstract: A method for bidirectional data transfer between a terminal and a smart card with a purse function comprises writing a transfer value from the terminal to a balance-of-account memory of the smart card, writing a write-in control value (E) to a control memory of the smart card together with the writing of the transfer value to the balance-of-account memory, and erasing the write-in control value (E) as soon as the transfer value is completely stored in the balance-of-account memory. In addition, a smart card for bidirectional data transfer between a terminal and a smart card with a purse function comprises at least one balance-of-account memory for storing a transfer value transmitted by the terminal and a control memory. The balance-of-account memory is assigned to the control memory for storing a write-in control value (E), which is alterable depending on the presence of a fault.

Abstract: In an infrared (IR) type computer security system, each authorized user is provided with an IR key device that holds a serial number and an encryption key. A validation record stored on the computer's hard disk contains an unencrypted key device serial number and an encrypted hard disk serial number. The user couples the key device to an infrared port on the computer prior to power-up or reset. A program implements a user validation procedure. The procedure permits entry past a first security level if the key device serial number matches the unencrypted number in the validation record. If the first level validation is successful, the procedure then uses the encryption key to decrypt a second serial number found in the stored validation record. The procedure permits entry past a second security level if the validation record is properly decrypted and the second serial number matches the decrypted number. Failure in any step disallows use to the computer.

Abstract: This Method and System Invention relates to credit or debit cards of all kinds issued by a bank(s) or financial institution which when issued convey an interest earning savings account opened by the same bank issuing the card.

Abstract: A secure messaging system (900) generates a secure financial transaction message. A wireless selective call signaling system controller (102) receives the secure financial transaction message as a selective call message request including a destination identifier. A selective call message processor (1104) encapsulates the secure financial transaction message in a selective call message that includes a selective call address corresponding with the destination identifier. A selective call transmission service (904) conveys the selective call message to a financial messaging unit (906) that receives the selective call message, and in response to correlating the selective call address with a selective call address corresponding with the financial messaging unit (906), recovers the secure financial transaction message to effect a financial transaction.

Abstract: The invention provides a distributed architecture where each portion of published content may be divided into numerous (i.e., hundreds or thousands) of small fragments, and scattered amongst the peer systems in the network. Retrieval of data may be accomplished by downloading the contents in parallel, locating a replica of an original fragment if a particular peer system serving the original fragment becomes overloaded or disconnected from the network. This architecture allows the invention to take advantage of the asymmetric nature of most user connections to the Internet by utilizing a collection of small agent applications (agents) running in parallel to deliver content rapidly across the network. The distributed load balancing system used by the invention functions as an agoric resource allocation system, with agents trading favors with a bartering network.

Abstract: The present invention provides a system and method for facilitating a transaction using a secondary transaction number that is associated with a cardholder's primary account. The cardholder provides the secondary transaction number, often with limited-use conditions associated therewith, to a merchant to facilitate a more secure and confident transaction.

Abstract: A roaming user needing an his authentication credential (e.g., private key) to access a computer server to perform an electronic transaction may obtain the authentication credential in an on-demand fashion from a credential server accessible to the user over a computer network. In this way, the user is free to roam on the network without having to physically carry his authentication credential. Access to the credential may be protected by one or more challenge-response protocols involving simple shared secrets, shared secrets with one-to-one hashing, or biometric methods such as fingerprint recognition. If camouflaging is used to protect the authentication credential, decamouflaging may be performed either at the credential server or at the user's computer.