Abstract: A method and system for multi-account payment processing are described. An example method includes: receiving, at a computing system and for a payment transaction involving one or more items, information associated with a purchaser, wherein the information is associated with a plurality of accounts, and wherein each of the plurality of accounts is associated with distinct account information; determining, at the computing system and based on one or more account selection criteria, one or more accounts of the plurality of accounts to use for processing the payment transaction, wherein the one or more account selection criteria include at least one of merchant type or available funds in the plurality of accounts; and processing, at the computing system, a respective aspect of the payment transaction corresponding to a respective item of the one or more items using a respective account of the determined one or more accounts.

Abstract: A method includes receiving a request for payment credentials. The request indicates an account from which payment for a transaction is to be made. A payment token is looked-up that corresponds to the indicated account. Dynamic expiry data and a dynamic token verification code are generated. As a response to the request, the looked-up payment token, the generated dynamic expiry data and the generated dynamic token verification code are transmitted.

Abstract: A system, apparatus, and method for electronically transferring value using a portable electronic device. In one embodiment, a method for transferring funds to or from play a portable electronic device to facilitate playing a game of chance on a portable electronic device.

Abstract: Methods and systems for modifying network traffic data. The method of modifying network traffic data may include receiving a network traffic data unit by a switching engine; performing an analysis on the network traffic data unit to obtain network tunnel information; generating encryption information based on the network tunnel information; and securing the network traffic data unit, by an encryption engine, based on the encryption information.

Abstract: Systems, methods, and apparatuses for providing a customer a central location to manage permissions provided to third-parties and devices to access and use customer information maintained by a financial institution are described. The central location serves as a central portal where a customer of the financial institution can manage all access to account information and personal information stored at the financial institution. Accordingly, the customer does not need to log into each individual third-party system or customer device to manage previously provided access to the customer information or to provision new access to the customer information. A user additionally is able to have user data and third-party accounts of the user deleted from devices, applications, and third-party systems via a central portal.

Abstract: Systems, methods, and apparatuses for providing a customer a central location to manage permissions provided to third-parties and devices to access and use customer information maintained by a financial institution are described. The central location serves as a central portal where a customer of the financial institution can manage all access to account information and personal information stored at the financial institution. Accordingly, the customer does not need to log into each individual third-party system or customer device to manage previously provided access to the customer information or to provision new access to the customer information. A user additionally is able to have user data and third-party accounts of the user deleted from devices, applications, and third-party systems via a central portal.

Abstract: First data from a first application logically located in a first security zone may be identified. A processing device may determine a second application is logically located in a second security zone having a higher trust level than the first security zone based on configuration data. The first data may be communicated, via an interoperation bus, to the second application based on the second security zone having the higher trust level.

Abstract: Systems, methods, and apparatuses for providing a customer a central location to manage permissions provided to third-parties and devices to access and use customer information maintained by a financial institution are described. The central location serves as a central portal where a customer of the financial institution can manage all access to account information and personal information stored at the financial institution. Accordingly, the customer does not need to log into each individual third-party system or customer device to manage previously provided access to the customer information or to provision new access to the customer information. A user additionally is able to have user data and third-party accounts of the user deleted from devices, applications, and third-party systems via a central portal.

Abstract: Described herein is a network apparatus with secure element and related systems, methods, and apparatuses. A described method includes receiving a request to perform a transaction. The method also includes obtaining confirmation that a network address associated with the request corresponds to a registered physical address. The method further includes obtaining account data and conducting a transaction using the account data.

Abstract: This disclosure relates to systems and methods for performing single input based multifactor authentication. Multifactor authentication refers to an authentication system with enhanced security which utilizes more than one authentication forms to validate identity of a user. Conventionally, the process of multifactor authentication is a serial process which involves inputting of authentication information multiple times. However, with conventional approaches, delay is introduced in execution of the multifactor authentication process. The method of the present disclosure addresses unresolved problems of multifactor authentication by enabling two or more factors to be assessed simultaneously making the authentication process faster without sacrificing the robustness of authentication process. Embodiments of the present disclosure analyzes spoken response of the user to a dynamically generated question for multifactor authentication.

Abstract: A computer-implemented system for streamlining encryption payload of a card transaction from a transaction code transaction via a merchant inside a restricted computer network firewall. A wallet application stores data of a payment device, and the wallet application retrieves information of a merchant and a transaction via a transaction code. In response to the retrieved information, the wallet application generates an encrypted payload. The wallet application transmits the encrypted payload to a payment facilitator within the restricted computer network firewall. After decryption of the encrypted payload, the payment facilitator transmits a decrypted payload in one payment packet to the payment processing server outside the restricted computer network firewall.

Abstract: Methods, apparatus, systems, and articles of manufacture are disclosed that determine a dynamic password update notification interval based on a breach risk classification and an automatic password update mechanism of an online service with which a user has an account. The disclosed methods, apparatus, systems, and articles of manufacture generate a password update suggestion and/or an automatic password update for the user at the dynamic password update notification interval determined by the processor circuitry.

Abstract: A method, apparatus, and method for facilitating communications with an underwater platform. A communications system comprises an unmanned aerial vehicle, a radio frequency communications system, a laser communications system, and a controller. The unmanned aerial vehicle comprises a first section and a second section. The first section is moveably connected to the second section. The radio frequency communications system is connected to the first section of the unmanned aerial vehicle. The radio frequency communications system comprises a first parabolic antenna. The laser communications system is connected to the second section of the unmanned aerial vehicle. The laser communications system comprises a second parabolic antenna. The controller is configured to control the laser communications system to transmit incoming information in a transmit laser beam to the underwater platform submerged in a body of water.

Abstract: A ticket exchange server is configured to monitor seat usage in a stadium during an event. The ticket exchange server provides a first ticket for a seat to a first client device in response to a request from a first user of the first client device. The ticket exchange server unlocks the seat in response to detecting a presence of the first user at the seat. The ticket exchange server receives an indication from the first user surrendering the seat prior to completion of the event and locks the seat. The ticket exchange server provides a second ticket for the seat for a remainder of the event to a second client device of a second user in response to a request for the seat from the second client device. The ticket exchange server unlocks the seat in response to detecting a presence of the second user at the seat.

Abstract: A method for issuing a personalized financial transaction card including receiving customer information and card information from a customer at the branch location, the card information including a card PIN, inputting the customer information and at least some the card information into a data processing terminal at the branch, communicating the customer information and the card information across a network to a card services provider, entering the PIN into a PIN database, generating a reference number, storing the reference number and at least some of the customer data and card data in a card file, retrieving the PIN from the PIN database, using the retrieved PIN to apply calculations to the card file, securely sending the card file from the card services provider across the network to the branch location, and using information from the card file, printing the financial transaction card for the customer at the branch location.

Abstract: Disclosed is an RFID antenna including: a central inductive circuit; and at least two lobes extending radially from the central inductive circuit.

Abstract: Systems, computer-implemented methods, apparatus, and/or computer program products that can facilitate electronic generation and/or display of enhanced, transaction-based QR codes are provided. In various embodiments, a system can receive, from an electronic beacon of a point-of-sale device, context data characterizing a transaction facilitated by the point-of-sale device. In various instances, the system can generate a quick response (QR) code based on the context data and based on financial instrument data, such that the context data and the financial instrument data are embedded within or correlated to the QR code. In various aspects, the system can visually render the QR code on an electronic display, such that the QR code is scannable by the point-of-sale device.

Abstract: A system for accepting the input of a PIN comprises a first device receiving a randomized PIN layout derived on a fourth device. The randomized PIN layout is displayed on a display of the first device. A second device comprises an input for accepting a series of key presses to produce a PIN token. The PIN token indicating each of the series of key presses. A third device is in communication with the second device. The third device derives the randomized PIN layout and receives the PIN token from the second device without the PIN token being present on the first device. The third device combines the PIN layout and the PIN token to produce a PIN. The PIN is used to authenticate a transaction. The fourth and third devices each store a shared secret used to independently derive the randomized PIN layout on the fourth and third devices.

Abstract: Systems, methods, articles of manufacture, and computer-readable media for verification of medical status using a contactless card. An application may receive a request specifying a subject and a medical condition. The application may receive a cryptogram from a contactless card. The application may receive a decryption result from a server and determine that the server decrypted the cryptogram. The application may receive, from the contactless card, a medical attestation, a digital signature of the medical attestation, and a public key of the digital signature. The application may decrypt the digital signature based on the public key of the digital signature and verify the medical attestation based on the decrypted digital signature. The application may determine, based on the verification of the medical attestation, that the subject is immune to the medical condition. The application may output a result that the subject is immune to the medical condition.

Abstract: A computer implemented method for masking a primary account number between a party and a service provider. A plurality of transaction records from a database is retrieved. A masking value is generated in response to having a first hash function executed on a primary account number. The receiving, at the service provider, the masking value from the client execution environment without the primary account number; wherein the server execution environment lacks identification of the affiliation between the primary account number and the party. Upon confirming that the first hash function is identical to the second hash function, matching the masking value to the second masking value. In response to a match, querying the database for transaction history associated with the masking value. An analysis report is generated.

Abstract: A method for providing identification using an endpoint device is disclosed. The endpoint device may include an electronic identity that is unique and can be securely stored. The electronic identity may be passed to an access device along with signed interaction data and a cryptogram. The access device may generate an authorization request with the cryptogram and may send it to a remote server computer for further processing.

Abstract: Disclosed implementations may include receiving a first communication comprising first content generated by a first user; identifying authentication metadata embedded within the first communication; receiving a second communication generated by a second user, wherein the second communication comprises second content and the authentication metadata; decoding the authentication metadata from the second communication; parsing the first content of the first communication and the second content of the second communication; determining that the first content is different than the second content based at least in part on the parsing; and generating an alteration notification based at least in part on the determining.

Abstract: There are provided systems and methods for monitoring device application usage for completion of checkout data processing. A computing device may be utilized to perform one or more actions while utilizing an application executable by the device, including a browser application or merchant application that allows a user to view an online marketplace and purchase items in a transaction. Prior to checkout and transaction processing, the device may be used to browse items, and items may be added to a shopping cart. However, the device may not finish electronic transaction processing for the items, for example, where the device does not enter transaction processing details and/or navigates away from the items or cart. A service provider may utilize past actions to determine whether the action indicates that the device is abandoning use of the application, including electronic transaction processing. If so, an incentive may be provided to continue use.

Abstract: Systems and methods for facilitating identity verification and authentication for users are disclosed. Exemplary implementations may: receive items of personal information pertaining to a particular user, through an online platform associated with a particular organization; perform verification actions based on the received items; create a user data vault to securely store the received items; create a user token and transfer it to the online platform; receive an identity verification request on behalf of the particular user; initiate challenge protocols; responsive to the one or more challenge protocols completing satisfactorily, transfer the user token to the online platform; receive a validation request from a backend server of the particular organization, wherein the validation request includes the user token; access the user data vault based on the validation request; transfer a response to the backend server; and/or other steps.

Abstract: Methods and systems are disclosed for providing Near Field Communications. In certain embodiments, an Android mobile operating system based mobile device is configured with software that, when executed by one or more processors, determines whether the mobile device is to perform an NFC communication with a contactless payment terminal (CPT) using a secure element associated with an NFC controller included in the mobile device. Based on the determination, the mobile device is configured to execute software that performs communications with the CPT using the NEC controller.

Abstract: Systems and methods of anti-vishing OTP protection via machine learning techniques are disclosed. In one embodiment, an exemplary computer-implemented method may comprise: receiving a permission indicator identifying a permission by the user to detect OTPs and calls being received by a computing device; receiving an indication of an OTP data item being received; processing the OTP data item to determine a time duration during which a particular OTP included therein is valid; utilizing a trained OTP protection machine learning model to determine phone number(s) as presenting a security risk with respect to the OTP data item; and instructing the computing device to commence at least one security measure based at least in part on a contact list updated with an indication that the phone number(s) present a security risk with regard to the particular OTP during the time duration of the particular OTP.

Abstract: A system for digitally verifying credential sets and its method of use are provided. A credentials set is made up of a number of credentials, each linked to a particular Entity. If all of the credentials are validated and verified, then the credentials' status identifier will be set to a value. If the various status identifiers meet a predetermined value, the set will be verified and digitally signed.

Abstract: A point-of-sale system is a dual-screen stand assembly that includes a merchant terminal and a consumer terminal. The merchant terminal and the consumer terminal can be mated together in a fixed position to form a single unitary stand, or can be separated from each other in a separated position with each terminal serving as its own separate stand. The merchant terminal supports a merchant computing device and is oriented in a merchant-facing direction. The consumer terminal is detachably mated to the merchant terminal and supports a consumer computing device that is oriented in a consumer-facing direction. The point-of-sale system also includes a card reader as part of the customer terminal to perform a payment. The card reader is configured to accepting swipe cards, chip cards or contactless (EMV or NFC) payments.

Abstract: A computer-implemented platform (1000) for conducting an electronic payment transaction between a user (104) and a merchant (102, 103) is provided. The platform (104) includes a computer system (100) configured for the generation of a data structure containing payment data; a mobile device (106, 800) associated with a user (104) configured to use the data structure generated by the computer system (100) to communicate an electronic message reflecting payment instructions; and a merchant or processing terminal (102, 103, 108) configured for communication with the mobile device (106) to receive the electronic message, and formulate a request to process the electronic payment transaction. Corresponding methods and computer-readable media are also provided.

Abstract: Methods, systems, and apparatuses are described herein for improving the security of personal information by preventing attempts at gleaning personal information from authentication questions. A computing device may receive a request for access to an account associated with a user. The request may comprise candidate authentication information. Based on comparing the candidate authentication information with the account data, the computing device may generate a synthetic authentication question. The synthetic authentication question may be generated as if the candidate authentication information is valid. A response to the synthetic authentication question may be received, and the request for access to the account may be denied.

Abstract: A electronic device including an integrated circuit, the integrated circuit comprising a secure element electronic circuit and an electronic radio communication circuit, the secure element having stored therein firmware program code configured to implement operating system functions, the operating system functions including a data receiving function and a data transmitting function, wherein the firmware program code is further configured to control the secure element to determine in the received data custom program code for a custom application, and to store the custom program code in the memory of the secure element, and to implement an application programming interface configured to receive from the custom application requests for called operating system functions, and to execute the called operating system functions for the custom application.

Abstract: Methods and systems for virtual checking are described. In some embodiments, information for a virtual check created in a mobile device associated with a payor can be received from the mobile device. The information may include an amount of the virtual check. A computer system may determine whether there are sufficient funds to cover the amount of the virtual check and may place the funds in the amount of the virtual check in reserve when the funds are sufficient to cover the amount of the virtual check.

Abstract: Methods and systems for secure communication over an unsecure communication channel, including a server, to send at least one access token to a computerized device over a secured communication channel, and a terminal, to receive from the computerized device, over an unsecure communication channel, at least a second token, where said second token is based on the access token received from the server.

Abstract: Systems, methods, and apparatuses for providing a customer a central location to manage permissions provided to third-parties and devices to access and use customer information maintained by a financial institution are described. The central location serves as a central portal where a customer of the financial institution can manage all access to account information and personal information stored at the financial institution. Accordingly, the customer does not need to log into each individual third-party system or customer device to manage previously provided access to the customer information or to provision new access to the customer information. A user additionally is able to have user data and third-party accounts of the user deleted from devices, applications, and third-party systems via a central portal.

Abstract: A system for associating a device to a user of a service hosted at a remote location may include a device, a WAN, and equipment. The user may identify a wireless network of the device and connect to the device using equipment. An application on the equipment may generate a key and send the key to the device. The device may then connect with the service and transmit the key to the service. The application may disconnect from the device and connect with the service. The application may send a request to the service to associate with the device, sending the key with the request. The service compares the keys received from the device and the application. If the respective keys match, then the service may associate the device to the user of the service. Otherwise, the association is denied.

Abstract: To provision a client application on a client device, a user may be provided with a QR code, a one-time password, or a manual entry page for starting a credential provisioning process via a credential provisioning service provided by a credential provisioning server in a secure network. The client application may include information on trusted servers operating in the secure network. The credential provisioning server may operate to perform a sequence of actions to verify user credentials and determine, based on rules applicable to the user, the client device, or a combination thereof, whether the client application is to be provisioned on a client device. If so, the credential provisioning server may operate to generate a key pair, obtain a signed certificate, encrypt them, and send them to the client device such that the client application can use them to establish a mutual secure connection with a trusted server.

Abstract: A login system allows users to access computer systems without using a password. The passwordless system and method can use other information to securely and reliably identify true authorized system users. The identity of a user can be associated with their mobile device. The login can be based upon a minimal amount of information such as a name and a phone number which can be stored as an identification record for each of the users in a database.

Abstract: Systems and methods for enabling exchange of tradeable items are disclosed. Exemplary implementations may: receive the first tradeable item from a user; determine whether the received first tradeable item is a valid tradeable item within the online gaming platform by identifying the first tradeable item based on the first item-identifying information and by verifying the first tradeable item is a valid tradeable item within the online gaming platform; responsive to determining the received first tradeable item is valid within the online gaming platform, select a second tradeable item from a repository of tradeable items; and dispense, from the repository, the second tradeable item to the user.

Abstract: An example apparatus can include a processor and an external communication component. The external communication component can be coupled to the processor and can be configured to, in response to determining a vehicular entity is within a particular proximity to the external communication component, generate an external private key and an external public key. The external communication component can further provide the external public key and data to a vehicular communication component associated with the vehicular entity. The external communication component can further receive data from the vehicular communication component in response to providing the external public key and data to the vehicular communication component. The external communication component can further decrypt the received data using the external private key, and provide a service to the vehicular entity based on the decrypted received data.

Abstract: Systems and methods are provided for use in processing transactions based on biometric data used in connection with authenticating consumers to payment accounts to which the transactions are directed. One exemplary method includes prompting a consumer to provide a biometric in connection with a transaction by the consumer, and receiving a payment account credential specific to a payment account for use in the transaction. The method also includes appending a biometric score and an indication of a biometric technology used to capture the biometric to an authorization request associated with the transaction, and transmitting, by the computing device, the authorization request to an issuer.

Abstract: An augmented reality system enables consumers to access additional data and services when reviewing printed account statements. A built-in camera of a mobile device captures an image of the account statement. The captured image is processed to correlate the account statement to an account provider, effectively unlocking a set of customized services related to the account statement being reviewed. The mobile device displays customized services for the user to view and interact with.

Abstract: Method and system for authenticating a user comprising: transmitting a network authentication of a user, which is provided by an authentication medium, from a mobile terminal belonging to the user to a back-end server of a wireless network to carry out authentication, connecting the mobile terminal to the wireless network, starting a software application to carry out authentication with respect to an application server accessible via the wireless network, on the mobile terminal by the user, and transmitting an application authentication of the user, which is assigned to the started software application, to the application server.

Abstract: Techniques for enhancing the security of a communication device when conducting a transaction using the communication device may include using a limited-use key (LUK) to generate a transaction cryptogram, and using a signature key to generate a signature. The transaction can be an offline data authentication transaction, and access can be granted based on authentication of the signature prior to verifying the transaction cryptogram.

Abstract: Embodiments of the present specification provide methods and apparatuses for generating two-dimensional codes. One method comprising: receiving, by a secure element chip comprised in a two-dimensional code display device, code information comprising an account identifier of an account associated with the two-dimensional code display device; in response to obtaining a digital certificate for a private key stored in the secure element chip, signing, by the security element chip, the code information by using the private key to generate signed code information; and providing, the signed code information to the two-dimensional code display device for the two-dimensional code display device to generate and display a two-dimensional code based on the code information, wherein the two-dimensional code comprises information associated with the account identifier and changes dynamically over time.

Abstract: Systems and methods are disclosed for executing an electronic transaction using a digital wallet. One method includes receiving a guest checkout request and electronic transaction data from an electronic transaction browser. Whether a user is enrolled in the digital wallet system may be determined by the digital wallet system. The digital wallet system may authorize an electronic transaction based on the electronic transaction data upon determining the user is not enrolled in the digital wallet system. The digital wallet system may initiate a digital wallet enrollment upon authorizing the electronic transaction. The digital wallet system may store the user data in the digital wallet system and transmit a verification request to the electronic transaction browser. The digital wallet system may receive a verification response from the electronic transaction browser and may generate a digital wallet enrollment status message based on the verification response.

Abstract: A method is suggested for providing a response, wherein the method comprises: obtaining a challenge from a host, determining the response based on the challenge, determining an auxiliary value based on the response or the challenge, providing the auxiliary value to the host, obtaining a random value from the host, checking the validity of the challenge based on the random value, and providing the response to the host only if the challenge is valid. Also, corresponding methods running on the host and system are provided. Further, corresponding devices, hosts and systems are suggested.

Abstract: Various embodiments are generally directed to NFC-based mobile currency transfers. A mobile payment may be programmatically initialized when at least two mobile devices come into NFC communications range. A payment card associated with an account used to fund the currency transfer may be tapped to one or more of the devices to allow a server to validate the currency transfer.

Abstract: There is a need for solutions that perform predictive data analysis using a value-based predictive input.

Abstract: A technique is disclosed for providing an interactive digital receipt on a user device, where the receipt offers transaction information associated with a financial transaction and one or more interactive components including an interactive tipping component that allows a customer to add a gratuity amount for the financial transaction. The interactive digital receipt is generated in response to an occurrence of the particular financial transaction. In one embodiment, the interactive tipping component is time-based and is associated with a timeframe that defines a time period for which the customer may submit the gratuity amount. Based on determining that no input to the interactive tipping component has been received within the timeframe, a payment is processed for a transaction amount and a default gratuity amount.

Abstract: Techniques for enhancing the security of a communication device may include providing an application agent and a transaction application that executes on a communication device. The application agent may receive, from the application, a cryptogram key generated by a remote computer, and store the cryptogram key on the communication device. When the application agent receives a request to conduct a transaction from the application, the application agent may generate a transaction cryptogram using the cryptogram key, and provides the transaction cryptogram to an access device.