Abstract: Systems and methods are disclosed for providing secure, captured data in a customer center. In one embodiment, the method comprises: capturing data with a recording system; receiving a request to retrieve electronic keys for encrypting the data; responsive to receiving the request, transmitting the electronic keys to the recording system; encrypting the data using the electronic keys; associating the electronic keys with the encrypted data; and storing the encrypted data in the recording system.

Abstract: Techniques for temporary access to enterprise networks are provided. Devices of customers are detected and authenticated for temporary enterprise network access to a facility of an enterprise when the customers are in a configurable geographic distance to that facility. Temporary access credentials for accessing select resources of the facility or enterprise network are pushed to the processing device upon successful authentication. When one or more terminating actions are detected, the temporary access credentials are revoked and access to the enterprise network ceases.

Abstract: A digital broadcasting system and a data processing method are disclosed. A data processing method of a digital broadcasting receiver comprises receiving a mobile/handheld (MH) broadcasting signal including mobile service data and main service data; generating a RS (Reed-Solomon) frame from the received MH broadcasting signal; extracting control data from the RS frame, the control data including charge adjustment information required to use a service provided by at least one service provider, the service being encrypted; determining whether the service is available, by comparing the extracted charge adjustment information with balance information written in the smart card; controlling the second RS frame using the control data so that an encrypted service of the second RS frame is decrypted, if the service is available; and mapping the extracted charge adjustment information with a corresponding service provider and storing the information.

Abstract: A transaction processing service operates as an intermediary between acquirers of financial transaction requests and issuing institutions that process the financial transaction requests. The intermediary receives an authorization request generated based on a transaction initiated by a customer at a point of purchase. The intermediary provides a rules module that stores a set of rules for processing transactions. Each rule specifies one or more conditions to be tested and one or more actions to be executed based on the test. For each authorization request, the system determines the applicable rules and tests conditions for each rule prior to the transaction. Based on the results of the test, the system executes an associated action. Conditions may be specified based on transaction information, customer information, or other information. Actions define the system's response to a particular result in testing a condition.

Abstract: A method and apparatus for securely displaying and communicating trusted and untrusted internet content via a web browser is described. In a preferred embodiment, the invention is an electronic marketplace system in which auction-related content is displayed in one window of a customer's web browser while item-related content is displayed in a second window of the customer's web browser, such that the auction-related content and the item-related content are substantially prevented from substantially interacting. The invention further provides a method and apparatus for communicating predetermined information between multiple documents opened in multiple web browser windows, where the documents are served from multiple domains.

Abstract: Embodiments of the present invention can be directed to systems, apparatuses, and methods for performing transactions through mobile communication devices using telecommunications networks, systems, or proximity near-field communications systems. Embodiments may be directed to a mobile communication device displaying an application authentication element including a pre-selected authentication element. The application authentication element may include transaction data associated with a transaction conducted by a mobile communication device. The mobile communication device may obtain the pre-selected authentication element by either transmitting a request to a server computer or retrieving the pre-selected authentication element from a secure memory in the mobile communication device. A user authentication token may then be received by the mobile communication device from the user.

Abstract: An interactive information dissemination system includes a media server (210) for receiving a plurality of media elements and storing the media elements in a database. A sender client (200) enables a first user to identify message data, a recipient identifier, and a media element from the database of media elements. A recipient client (202) presents the media element to a second user associated with the recipient identifier. The recipient client (202) further presents the message data to the second user when the second user performs a predetermined action, such as submitting authentication information or requesting the message data, to receive the message data. The message data may be secured by requiring sender and recipient authentication, and by encoding the data using a private encoding key and data package identifier managed by a main server (206) and a key server (208).

Abstract: A payment authentication service authenticates the identity of a payer during online transactions. The authentication service allows a card issuer to verify a cardholder's identity using a variety of authentication methods, such as the use of passwords. Also, the only system participant requiring a certificate is the issuing financial institution. Authenticating the identity of a cardholder during an online transaction involves querying an access control server to determine if a cardholder is enrolled in the payment authentication service, requesting a password from the cardholder, verifying the password, and notifying a merchant whether the cardholder's authenticity has been verified. A chip card and the authentication service independently generate cryptograms to match in order for the service to verify that the correct chip card is being used by the cardholder.

Abstract: According to one aspect, the invention provides a system for authenticating identities of a plurality of users. In one embodiment, the system includes a first handheld device including a wireless transceiver which is configured to transmit authentication information, a second device including a wireless receiver, where the second device is configured to receive the authentication information.

Abstract: The invention relates to a method for securing an on-line transaction, comprising a proximity test which permits the proximity of the physical presence of the client to the on-line processing station (PT) with the authentication authority (AA) to be verified, an authentication test for the holder of the chipcard (CP) and a non-repudiation test for the transaction.

Abstract: An electronic settlement system includes a data storage device such as an IC card in which value information is stored, a client device provided with an information input/output function to the data storage device, a settlement management device for managing settlement between the data storage device and a store device, and a communication system for connecting the client device, and the settlement management device so as to enable bidirectional communication. The settlement management device creates settlement information for making settlement by the data storage device, subjects the settlement information to an encryption processing by using a common key shared by the settlement management device and the data storage device, and transmits the settlement information subjected to the encryption processing to the client device, and the client device outputs the settlement information received from the settlement management device to the data storage device.

Abstract: A method and system is provided by a Central-Entity, for identification and authorization of users over a communication network such as Internet. Central-Entity centralizes users personal and financial information in a secure environment in order to prevent the distribution of user's information in e-commerce. This information is then used to create digital identity for the users. The digital identity of each user is dynamic, non predictable and time dependable, because it is a combination of user name and a dynamic, non predictable and time dependable secure code that will be provided to the user for his identification. The user will provide his digital identity to an External-Entity such as merchant or service provider. The External-Entity is dependent on Central-Entity to identify the user based on the digital identity given by the user. The External-Entity forwards user's digital identity to the Central-Entity for identification and authentication of the user and the transaction.

Abstract: An approach is provided for implementing locked printing on a printing device with remote unlock. The printing device includes a locked print process that is configured to examine print data received by the printing device and determine whether locked printing is to be used for the print data. Print data designated for locked printing is stored on the printing device. The printing device also includes a Web application configured to generate Web pages that define a Web-based graphical user interface. When processed at a client device, the Web pages allow a user to enter authorization data that is transmitted to the Web application on the printing device. The locked print process verifies the authorization data and if the authorization data is successfully verified, allows the user access to locked print data on the printing device. The approach may also be implemented using a common repository to store print data.

Abstract: A system receives account access information from a user. The account is then accessed using the received access information. Data is harvested from a web page associated with the account or received from another financial data source. The user's ability to access the account is authenticated based on the obtained information.

Abstract: The present disclosure includes devices, methods, and systems for creating a case study file that includes an image file from an imaging modality, executing a hash algorithm on the case study file to produce a hash key, compressing the case study file, bundling the hash key with the compressed file, encrypting the bundled file, and moving the encrypted bundled file through an Internet connection to a storage computing system, among other embodiments.

Abstract: A method for authenticating an end user. The method starts by generating a first pattern in response to receiving an authentication request from the end user. Next, the method continues by generating a second pattern in response to receiving confirmation that the end user received the first pattern; the second pattern comprising multiple colored nodes. Then the method determines the authenticity status of the end user by comparing data sent by the end user with the second pattern. The end user having generated the data by overlaying a transparent credit card on top of the second pattern and selecting at least one node which displays a color other than black. Finally, the method sends the determined authenticity status to the end user via an output device.

Abstract: A system, method, and computer-usable medium are disclosed for identifying transactions resulting from the access of a financial account while a user is under duress. A user provides a duress shared secret. Instructions associated with the duress shared secret are processed and available financial account operations, along with associated financial account information, are displayed according to the associated instructions. The cash or electronic funds proceeds of a financial transaction operation are tagged with electronic fraud identification data. Tagged funds received by a financial institution are processed to extract their associated fraud identification data, which is then used to generate fraud trail data. If the tagged funds are used to originate follow-on financial transactions, they are likewise tagged with fraud identification data, which is likewise used to generate fraud trail data.

Abstract: A method for casino operators and/or players to instantly “create” new games without requiring recertification by a gaming laboratory. New games are created on the fly by making combinations of game attributes including but not limited to theme, denomination, volatility, RTP. Game attributes are associated to pre-certified software components that are then dynamically linked to instantly offer a new game. Having players dynamically create games according to their preference totally removes the game operator's risk to compose menus of available games that players will not play.

Abstract: Embodiments of the invention provide systems, methods, and computer program products for an online safety deposit box inventory management system. A customer may securely log into the customer's bank accounts and add or delete safety deposit boxes to a list of safety deposit boxes that the customer owns. The customer may select a box to view and add or delete items that the customer has in the selected box. The customer may also edit the description, type, date, etc. of items that the customer already has listed in the box. In keeping a list of the items that the customer has in each safety deposit box the customer may keep an up-to-date record of the contents of each box for the customer's estate in case the customer passes away or simply in order to have a back up copy in case something happens to a paper copy.

Abstract: A transcribing method may include receiving an audio message from a customer via a telephone, determining whether one of the agent transcribers is available, storing the audio message when an agent transcriber is not available, continuing to determine whether a transcriber is available, streaming in real time a streamed portion of the audio message to a first available agent transcriber for facilitating the transcription of the streamed portion of the audio message into a first portion of a transcription text file, providing subsequently a pre-streamed recorded portion of the audio message to a subsequently available second agent transcriber for facilitating the transcription of the pre-streamed recorded portion of the audio message into a second portion of the transcription text file while the streaming in real time is continuing with the first agent transcriber, and combining the first and second portions of the transcription text file into a consolidated text file.

Abstract: Methods and systems are provided for use with digital data processing systems to control or otherwise limit access to networked resources based, at least in part, on transactional artifacts and/or derived artifacts.

Abstract: Consumers may centrally store, manage and distribute information using an information account stored in a central data repository. The information account is accessible from any client device, without the need to permanently store or install proprietary software thereon. The information account comprises a plurality of consumer information elements stored in a tagged data format. A host server hosts a database management system for accessing the information account. A client-side application may manage communications with host server. Alternatively, the client device may interact with a vendor server that executes a server-side application for managing communications with the host server. In response to a request from the consumer, the host server may filter selected consumer information elements from the information account and transmit the filtered consumer information elements to the client-side or server-side application.

Abstract: A method for authenticating an end user. The method begins by generating a login field in response to receiving an authentication request from an end user. The login field comprises a plurality of colored nodes containing a first subset of nodes matching both color and location to a second subset of nodes residing in a transparent credit card being controlled by the end user. Next the method determines the authenticity status of the end user by comparing data received from the end user with the first subset of nodes. The end user having generated the data by overlaying the transparent credit card on top of the login field and selecting at least one colored node. Each node being selected according to a function utilizing both static and dynamic variables. Finally, the method sends the determined authenticity status to the end user via an output device.

Abstract: Embodiments of the invention include apparatuses, methods, and computer-program products that provide for a unique financial transaction security system. In one embodiment, the financial transaction security system receives a security protocol from a user. The security protocol includes instructions for allowing transactions without authentication and security features for the user if authentication is necessary. The system then determines that the user is conducting a transaction, evaluates the instructions, and determines whether the transaction can occur without authentication. If the user is required to authenticate his identity, the system requests input from the user, compares the input to the security feature, and determines if the user is authenticated. The user is able to customize both the instructions and the security features to provide greater control over financial transaction security.

Abstract: A system receives account access information from a user. The account is then accessed using the received access information. Data is harvested from a web page associated with the account or received from another financial data source. The user's ability to access the account is authenticated based on the obtained information.

Abstract: A trusted network connect (TNC) method based on tri-element peer authentication is provided, which includes the following steps. Platform integrity information is prepared in advance. An integrity verification requirement is predefined. A network access requestor initiates an access request to a network access controller. The network access controller starts a mutual user authentication process, and performs a tri-element peer authentication protocol with a user authentication serving unit. After the mutual user authentication is successful, a TNC client, a TNC server, and a platform evaluation serving unit implement platform integrity evaluation by using a tri-element peer authentication method. The network access requestor and the network access controller control ports according to recommendations received respectively, so as to implement mutual access control between the access requestor and the access controller.

Abstract: Systems and methods for the processing of payments to retail establishments using mobile computing devices. A user of a mobile computer device takes a digital image of a specific bar code at a retail establishment. A token is then derived from the bar code and the token is transmitted by the device to a server with whom the device and its user are registered with. The retail establishment packages the details regarding the proposed purchase by the user along with a token derived from the same bar code. The retail establishment then sends the package to the same server. The server then checks the two tokens received and, if they match, then the server effects payment from one of the user's payment options to the retail establishment. Both the user and the retail establishment are then notified of the payment.

Abstract: A reputation server is coupled to multiple clients via a network. Each client has a security module that detects malware at the client. The security module computes a hygiene score based on detected malware. The security module provides the hygiene score and an identifier of a visited web site to a reputation server. The security module also provides identifiers of files encountered at specified web sites to the reputation server. The reputation server computes secondary hygiene scores for web sites based on the hygiene scores of the clients that visit the web sites. The reputation server further computes reputation scores for files based on the secondary hygiene scores of sites that host the files. The reputation server provides the reputation scores to the clients. A reputation score represents an assessment of whether the associated file is malicious.

Abstract: Computer media, systems, and computer-implemented methods for enhancing SMS messaging sessions with user data are provided. A data sharing agreement between a service provider and a receiving entity, such as broadcaster or a consumer goods manufacturer, is established. A user with a wireless device sends an SMS message to the receiving entity. Data associated with the user is retrieved by the service provider in accordance with the data sharing agreement and is transmitted to the receiving entity along with the SMS message.

Abstract: A management apparatus transmits a registration message to a base station when executing a wireless parameter setting sequence. The base station registers the management apparatus upon the detection of the message. This makes it possible to decrease unwanted communication traffic, and to reduce the time taken to perform the wireless parameter setting processing.

Abstract: An electronic transaction payment system is provided having a vendor terminal associated with a vendor who provides goods or services to a purchaser, a vendor smart-card and a vendor smart-card reader for transmitting data to and receiving data from the vendor smart-card. The system also includes a purchaser smart-card reader which is connected to the vendor terminal and which is operable for transmitting data to and receiving data from a purchaser smart-card. In operation, payment for goods purchased by the purchaser is made between the purchaser smart-card and the vendor smart-card. In a preferred embodiment, the payment data is encrypted using an encryption key specific to the transaction between the purchaser and the vendor. A third party registry terminal may also be provided for providing validation of the vendor and/or the purchaser.

Abstract: A system and method for data recipient invoked electronic commerce allowing data subjects to provide information over a network and data recipients to receive such information relating to the needs of s data subject such as purchases, distribution of application information and the like. The system includes a server having software which gathers the information from a data subject to complete a transaction over a network. The system has a data subject data structure that stores information for registered data subjects. The software is able to access the data subject data structure and enter the data subject's information during subsequent transactions. Having the software obtain and enter the data subject's purchasing information, the data subject does not have to enter the same information every time the data subject desires to effect a transaction over the network. In alternate embodiments, the same technology can be applied to other arenas where a user may have to enter the same repetitive information.

Abstract: An acquirer communicates with an intermediary transaction processing service to handle financial transaction requests received from multiple points of purchase. The acquirer receives an initial authorization request generated based on a transaction initiated by a customer at a point of purchase. The initial authorization request includes unique identifying information associated with the customer. The acquirer determines that the unique identifying information is associated with the intermediary service and provides at least part of the initial authorization request to the intermediary service. In response, the intermediary service provides account information to the acquirer. The acquirer then generates a modified authorization request based on the initial authorization request and the received account information and transmits the modified authorization to an issuing institution to request approval of the transaction.

Abstract: According to an exemplary embodiment of the invention, a method is discloses for facilitating a credit card transaction wirelessly via a mobile device. The method includes receiving registration information for a credit card and a mobile device, the registration information for the credit card including a primary account number (PAN) of the credit card; associating the registration information for the credit card with a unique token; generating a pseudo-PAN based on the PAN, the pseudo-PAN being different than the PAN; and providing the unique token and the pseudo-PAN to the mobile device for use in one or more credit card transactions.

Abstract: Embodiments of the present invention provide verification and/or authentication service engines that provide a customizable solution that can be “dialed” based on the risk level assigned to individual or grouped applications. The systems can also incorporate internal and external sources of data used to verify information provided by the user. It is dynamic and can pull information from a myriad of sources during the verification process, enabling credit reporting agencies (e.g., Equifax and others), FSPs, and other service providers to facilitate real-time approval and access to products and services.

Abstract: In some embodiments, a method comprises: sensing at least one of movement and position of an identification token; determining if a criteria is satisfied; and enabling operation of the identification token if the criteria is satisfied; wherein determining if the criteria is satisfied comprises determining if the at least one of movement and position satisfies a reference criteria; and wherein the sensor comprises a sensor to provide a signal indicative of at least one of movement and position of the identification token prior to presentation to a proximity coupling device.

Abstract: Systems, apparatuses and methods of using an acoustic communication mechanism to transmit data in the form of acoustic data from a mobile device to an electronic device are described. In one embodiment, a method of completing a purchase with a merchant using a mobile device starts with the mobile device sending a request message to a central server through a network interface. The mobile device then receives a token from the central server through the network interface that confirms that a payment in the purchase amount has been received at the merchant's account. This token is then translated into acoustic data and transmitted from the mobile device to an electronic device being associated with the identification of a merchant. Other embodiments are also described.

Abstract: In one embodiment, a user device is configured to allow a user to select any one of a plurality of accounts associated with the user to employ in a financial transaction. In one embodiment, the user device includes a biometric sensor configured to receive a biometric input provided by the user, a user interface configured to receive a user input including secret information known to the user and identifying information concerning an account selected by the user from the plurality of accounts. In a further embodiment, the user device includes a communication link configured to communicate with a secure registry, and a processor coupled to the biometric sensor to receive information concerning the biometric input, the user interface, and the communication link.

Abstract: A banknote acceptor for authenticating a banknote 2, has a sensing station S with detector 18 that produces image signals corresponding to a face the banknote. A processor 24 pre-processes the image signals and compares them with stored reference data corresponding to an acceptable banknote from memory 25 to determining the authenticity of the banknote and its denomination. A display device 29 displays an image 31 corresponding to the banknote under test based on the image signals from the detector 18, to allow the user to perform a visual check that the banknote detected at the sensing station corresponds to the banknote under test presented by the user. Also, the detected denomination of the banknote is displayed on device 32. The user can accept or reject the banknote using buttons 33 and 34, and retrieve images of previously accepted banknotes with button 35.

Abstract: Disclosed is a computer based method including receiving a request, by a virtual mobile transaction computer, from a user device or from an application running on the user device. The user and the user device are verified and authenticated based on one or more parameters. A transaction account is determined, where the transaction account is associated with the user. A barcode is sent to the user device and the barcode is used to initiate a payment for a purchase transaction associated with the request.

Abstract: A method and system for approving a transaction between a customer and a merchant including the steps of transmitting a transaction request from a customer to a merchant; transmitting a verification request from the merchant to a verification entity, the verification request comprising first data; the customer device transmitting second data to the verification entity; and the verification entity performing a verification step by using the first data and the second data to verify if the transaction should be approved.

Abstract: Systems and methods are provided for data protection across connected, disconnected, attended, and unattended environments. Embodiments of the inventions may include differential encryption based on network connectivity, attended/unattended status, or a combination thereof. Additional embodiments of the invention incorporate “trust windows” that provide granular and flexible data access as function of the parameters under which sensitive data is accessed. Further embodiments refine the trust windows concept by incorporating dynamic intrusion detection techniques.

Abstract: Methods and systems for metrics-based gaming operations are provided. Information concerning game play for each play may be received and stored. Such information may be used to generate certain metrics. The generated metrics, in turn, may be used to determine how to customize a game operation. Such game operations may include providing training to a player, matching a player up with another player or with a team, adjusting a game event, etc.

Abstract: In order to facilitate a user's ability to trust a computing environment, a trusted computing device (2) is arranged to challenge other devices in the computing environment and to record a log of the facilities available within the computing environment and an indication of whether those facilities are trustworthy. A new user (40) entering the computing environment can obtain the log from the trusted computing device in order to ascertain the status of the environment. Alternatively any device can hold data concerning platforms in its vicinity and its operation can be authenticated by the trusted device.

Abstract: A method for authenticating a financial transaction at a point of sale (POS) includes storing an application program in a first secure element of a mobile phone. The application is configured to generate instruction codes to effect the financial transaction upon verification of a user's identity. The user's credentials are stored in a second SE of the phone, which is operable to verify the user's identity from a biometric trait of the user input to the phone and to generate data authenticating the financial transaction in response to the verification of the user's identity. At the POS, the user invokes the application and then inputs a biometric trait to the phone. The second SE verifies the user's identity, and upon verification, generates data authenticating the transaction. The financial transaction data, including the instruction codes and the authenticating data, are then transmitted from the phone to the POS.

Abstract: A system and a method for providing a financial service. The system for providing a financial service can include: a first user terminal which signs financial transaction information with a pre-stored first private key, the financial transaction information including withdrawal account information, a PIN of the withdrawal account, deposit account information and amount information; a second user terminal which receives the signed financial transaction information by being connecting with the first user terminal through near field communication and which further signs the signed financial transaction information with a pre-stored second private key; and a financial server configured to transfer an amount corresponding to the amount information from an account of the withdrawal account information to an account of the deposit account information.

Abstract: There is provided a handy terminal in which inputting of an application program and of a PIN is executed and a keyboard and a display device are commonly used thus security is secured with a simple system. A card reader control program 23b in the keyboard unit memory 23 detects an insertion state of a credit card and notifies a detected key cord from the keyboard control program 23a to a payment program on the main board 2. A main CPU 12 calculates a program hash value provided to the payment program and a program hash value at the time of execution of a payment program 11b and encrypts and decrypts these hash values using a secret key, encrypted key, and public key so that these hash values are not stolen. The main CPU 12 compares the program hash value provided to the payment program 11b with the program hash value to be used at the time of the execution of the payment program 11b.

Abstract: A system and method for conducting electronic commerce are disclosed. In various embodiments, the electronic transaction is a purchase transaction. A user is provided with an intelligent token, such as a smartcard containing a digital certificate. The intelligent token suitably authenticates with a server on a network that conducts all or portions of the transaction on behalf of the user. In various embodiments a wallet server interacts with a security server to provide enhanced reliability and confidence in the transaction. In various embodiments, the wallet server includes a toolbar. In various embodiments, the digital wallet pre-fills forms. Forms may be pre-filled using an auto-remember component.

Abstract: A secure computing module (SCM) is configured for connection with a host device. The SCM includes a processor for performing secure processing operations, a host interface for coupling the processor to the host device, and a memory connected to the processor wherein the processor logically isolates at least some of the memory from access by the host device. The SCM also includes a proximate-field wireless communicator connected to the processor to communicate with another SCM associated with another host device. The SCM generates a secure digital signature for a financial transaction package and communicates the package and the signature to the other SCM using the proximate-field wireless communicator. Financial transactions are performed from person to person using the secure digital signature of each person's SCM and possibly message encryption.

Abstract: Systems and methods for regulating user access in the context of a biometric security system are disclosed. One method disclosed includes receiving a remotely transmitted data packet containing an encryption key, utilizing a decryption component to decrypt the data packet, and utilizing the encryption component to encrypt biometric data. Another method disclosed includes utilizing a processor, within a client computing device, to perform an encryption function within a biometric security system, wherein the encryption function is incorporated into an authentication process that involves a transfer of biometric information between the client computing device and a remotely implemented server.