Abstract: An artist or a music company creates multimedia music contents using interactive media creating tools on their computer and upload to a fans club server. The fans club server maintains all fans registration information and client uploaded multimedia music/songs contents. An interactive media description module on the fans club server generates the interactive media using the multimedia contents provided by the client or the artist as its input. The generated interactive media will be distributed among the fans of the respective artist for playing on their mobile phones and review their contents online for a feedback before the songs being released in the market. The interactive media also prompts mobile phone user for purchasing the songs online. The mobile phone user can also purchase trial songs, and download on their mobile phone and make the online payment.

Abstract: A device is configured to allow a user to select any of a plurality of accounts to employ in a financial transaction. The user device includes a biometric sensor configured to receive a biometric input, a user interface configured to receive a user input including secret information known to the user and identifying information concerning an account selected by the user from the plurality of accounts. The user device includes a communication link configured to communicate with a secure registry, and a processor coupled to the biometric sensor to receive information concerning the biometric input, the user interface, and the communication link. The processor is configured to generate a non-predictable value and encrypted authentication information from the non-predictable value, the identifying information, and at least one of the information concerning the biometric input and the secret information, and communicate the authentication information via the communication link to the secure registry.

Abstract: A portable handheld device for wireless order entry and real time payment authorization may include a portable housing, a display carried by the housing, an order entry input device carried by the housing, a transaction card input device carried by the housing for reading user sensitive information from a transaction card, a wireless transceiver carried by the housing, and a processor carried by the housing and connected to the display, order entry input device, transaction card input device and wireless transceiver. The processor may be for wirelessly sending input order information, and encrypting and wirelessly sending the user sensitive information from the transaction card without storing and without displaying. The processor may also be for wirelessly receiving and displaying payment authorization information based upon real time authorization from a transaction card issuing entity.

Abstract: Aspects of the invention are directed to a two phase payment link and authorization method and system for mobile devices. A method for payment and authorization according to an embodiment includes: requesting and receiving, at a mobile device, a transaction identifier from a payment service; displaying the transaction identifier on a display of the mobile device, wherein the transaction identifier is in a machine readable format; scanning the transaction identifier at a point of sale system; sending the transaction identifier and transaction information associated with items to be purchased from the point of sale system to the payment service; creating, at the payment service, a logical link between the mobile device and the point of sale system, based on the transaction identifier; and sending the transaction information from the payment system to the mobile device.

Abstract: A first server device is configured to receive an authentication request from a second server device; add the authentication request to a queue associated with a user; and provide a representation of the queue to a mobile device of the user. The representation of the queue includes an entry for the authentication request. The first server device is further configured to receive, from the mobile device, authentication information, provided by the user, for the authentication request; determine that authentication, of the user, for the authentication request is successful based on the authentication information; generate an authentication response that indicates that the authentication, of the user, for the authentication request is successful; and transmit, by the first server device, the authentication response to the second server device.

Abstract: A system and method may allow for flexible transaction processing based on for example the risk assessment of a transaction and/or a user or party to a transaction. Based on a risk level, for example, a level of authentication for the transaction may be set or altered.

Abstract: Provided are exemplary embodiments including a method for creating and using a personal encounter history using a communication device. The method involves the communication device receiving the transmission of a pseudo identifier from a proximal communication device where the pseudo identifier is associated with the user of the proximal communication device. Once received, the method continues with the wireless communication device requesting and receiving the actual identification of the user of the proximal communication device that is correlated with the pseudo identifier. The communication device includes a transceiver capable of communicating wirelessly with a mobile telecommunications network, a memory device and a processor. To ensure privacy, the processor is capable of receiving a pseudo identifier from a proximate communication device and then requesting an actual identification correlated with the pseudo identifier of the proximate communication device.

Abstract: An embodiment defines access control allowing the expression of access control rules using ontology based semantics and references an ontology subset using XPath as the ontological expression. The access control rules or access criteria are defined by an access control statement and may be expressed using classification criteria and ontology classes. The access control statement comprises a structural description that is used to define an asset and a logical expression that may be used to express the classification criteria. The access control statement defines access policy for various assets.

Abstract: A permission level associated with an associate's web access is identified. A relationship ticket is obtained from an authentication server and a request is generated to set the identified permission level. The request and the relationship ticket are sent to a Web server and a success code is received from the Web server if the requested permission level is established.

Abstract: An apparatus includes a processor configured to initiate an on-line transaction during a transaction session. The apparatus can identify an attempt to terminate the transaction session prior to completion of the on-line transaction. The apparatus can provide a notification in response to the identified attempt. The notification can include an indication of at least one selection made during the transaction session prior to the completion of the on-line transaction.

Abstract: A method for generating and provisioning payment credentials to a mobile device lacking a secure element includes: generating a card profile associated with a payment account, wherein the card profile includes at least payment credentials corresponding to the associated payment account and a profile identifier; provisioning, to a mobile device lacking a secure element, the generated card profile; receiving, from the mobile device, a key request, wherein the key request includes at least a mobile identification number (PIN) and the profile identifier; using the mobile PIN; generating a single use key, wherein the single use key includes at least the profile identifier, an application transaction counter, and a generating key for use in generating a payment cryptogram valid for a single financial transaction; and transmitting the generated single use key to the mobile device.

Abstract: Systems and methods for authenticating a user of a service are disclosed. A Personal Identification Number (PIN) is generated using a plurality of variables, and a user is authenticated by comparing the PIN generated at the user's mobile device with a PIN generated on an authentication server. The authentication enables the user to access a service or resource hosted on a host server. When requesting access to the resource, the user generates a device PIN and transmits the device PIN along with their unique key into the host server. The host server forwards the device PIN and the key to the authentication server. The authentication server generates a server PIN and compares the server PIN to the device PIN. If the two PINS match, the authentication server transmits a successful authentication response to the host server.

Abstract: A system for mobile devices that facilitates the creation and dissemination of interactive media to a plurality of mobile devices and PCs/laptops that comprise a client component. The interactive media may comprise of a list of products and services that are for sale and the user can select one or more for purchase. It may also comprise a list of real estate entries with associated user interest solicitation and the user can indicate his interest in one or more of the entries. The server can help the user make an appointment to view the corresponding real estate properties.

Abstract: A computer implemented method, apparatus, and computer usable program product is provided for managing network based preferences associated with charging transactions for electric vehicles. The network based energy preference service receives an identification of a principal associated with a first computing device using a network connection. The network based energy preference service receives a selection of preferences from the principal associated with the first computing device over the network connection to form a set of preferences for the principal. In response to receiving a request for a subset of preferences from the set of preferences for the principal from a preference requesting service, the network based energy preference service retrieves the subset of preferences from the set of preferences by the network based energy preference service and sends the subset of preferences to the preference requesting service.

Abstract: A method and apparatus for conducting a transaction involving transmission of a dynamic authentication code in place of a static PIN block using currently existing messaging standards or PIN acceptance devices. Minimal changes to existing processes an equipment are made while greatly improving security and fraud minimization.

Abstract: A system for multipath contactless transaction processing, comprising a networked server comprising a processing unit, a billing entity based on a first networked computing device comprising a processing unit and a video feed, the feed interloping a television broadcast video signal, the signal made available to potential purchasers to watch, wherein, during said viewing, a cue is provided whenever a transaction or interaction is available for scanning by a mobile device, and wherein, the user is prompted accordingly to act upon using the device.

Abstract: Technologies are generally described for security algorithm methods in authorizing and using digital certificates to perform banking transactions. A customer can register and associate a personal identification number with a digital certificate. The personal identification number can be used by a client device to generate a certificate request. A request to perform a banking transaction along with a certificate request can be sent to a bank server, where, upon authorization of a valid certificate request, the banking operation can be performed. Using the digital certificate as one authentication factor and a customer login and password as a second authentication factor, banking transactions can be performed more reliably and securely.

Abstract: A system and method for facilitating electronic transactions using an intelligent instrument is disclosed. An authorization server enables users to obtain authorization credentials through the use of the intelligent instrument by issuing a challenge to an intelligent token of the intelligent instrument. The intelligent token generates a challenge response and transmits the challenge response to the authorization server, which assembles credentials including a key for the electronic transaction upon validating the response. The authorization server sends the assembled credentials to the intelligent instrument and the intelligent instrument transmits the assembled credentials to the authorization server during a subsequent transaction. The authorization server validates the assembled credentials and provides authorization for the transaction in response to the validating the assembled credentials.

Abstract: There is provided a computer-implemented method for authentication, the method comprising: defining a demanded level of security in an authorization service of a server; providing at least one authentication mechanism comprising at least one instance for at least one client; providing a policy comprising a security level for the at least one instance; receiving at least one request from the client to the server; authenticating the request based on the policy and the demanded level of security by the authentication service; and permitting the request if the demanded level of security is reached.

Abstract: Methods and systems are provided for secure electronic payment for merchandise at a point of sale. The secure verification of a personal identification number (PIN) via a mobile payment system is facilitated. A memory stores account information for a plurality of users, the account information includes a personal identification number (PIN) for at least some of the users. A processor receives a communication including an indication of a desire of a user to purchase an item from a merchant. The processor accesses an account of the user and provides a random keypad to the merchant. The user uses the random keypad to enter the PIN. The processor receives touch screen information from a mobile device of the user and makes a reconstructed PIN from the random keypad and the touch screen information. The processor authorizes the purchase if the reconstructed PIN is the PIN of the user.

Abstract: The present invention discloses methods, media, and systems for handling hard-coded credentials, the system including: an interception module configured for: intercepting credential usage upon receiving an application request for application credentials in order to provide access to a host application; a configuration/settings module configured for reading system configurations and settings for handling the application credentials; a credential-mapping module configured for: applying appropriate credential-mapping logic based on the system configurations and settings; and upon determining that the application credentials need to be replaced, obtaining appropriate credentials from a secured storage.

Abstract: A computer-based method includes receiving, at a computer-based authorization system, a request to authorize payment to a first party at an electronic payment device from an account with funds that have been paid by a second party. The request includes an encrypted indication of an account number that corresponds to the account and a cash card number entered by the first party at the electronic payment device. The method further includes deriving an unencrypted version of the account number from the encrypted indication; comparing the unencrypted version of the account number to one or more identification codes in an electronic database, where one of the identification codes corresponds to the account; and authorizing payment from the account at the payment device based, at least in part, on whether the comparing yields a match between the unencrypted version of the account number and the identification code that corresponds to the account.

Abstract: Systems and methods for providing secure application support for NFC devices in both battery on and battery off modes are provided. A first application that requires available host battery supply and a second application that does not require available host battery supply are loaded onto a mobile device. When the second application is enabled, the reader requests user input on a POS device. The first application is enabled when host battery supply is available, and the second application is enabled when no host battery supply is available.

Abstract: A password-encrypted key (PEK) is generated from a user-supplied password or other identifying data and then used to encrypt the user's password. The encrypted password is stored in a user record on a server. At login a would-be user's password is again used to make a key, which is then used to decrypt and compare the stored encrypted password with the would-be user's password to complete the login. The successful PEK is stored in a temporary session record and can be used to decrypt other sensitive user information previously encrypted and stored in the user record as well as to encrypt new information for storage in the user record. A public/private key system can also be used to maintain limited access for the host to certain information in the user record.

Abstract: A method and system for conducting an online payment transaction through a point of sale device. The method includes receiving input from a user selecting an item for purchase through the point of sale device; calculating a total purchase amount for the item in response to a request from the user to purchase the item; and sending payment authorization for the total purchase amount from the point of sale device to a payment entity, in which the payment authorization is sent to the payment entity via a mobile communication device of the user. The method further includes receiving a result of the payment authorization from the payment entity through the mobile communication device; and completing the payment transaction based on the result of the payment authorization.

Abstract: A system and method for facilitating electronic transactions using an intelligent instrument is disclosed. An authorization server enables users to obtain authorization credentials through the use of the intelligent instrument by issuing a challenge to an intelligent token of the intelligent instrument. The intelligent token generates a challenge response and transmits the challenge response to the authorization server, which assembles credentials including a key for the electronic transaction upon validating the response. The authorization server sends the assembled credentials to the intelligent instrument and the intelligent instrument transmits the assembled credentials to the authorization server during a subsequent transaction. The authorization server validates the assembled credentials and provides authorization for the transaction in response to the validating the assembled credentials.

Abstract: A portable handheld device for wireless order entry and real time payment authorization may include a portable housing, a display carried by the housing, an order entry input device carried by the housing, a transaction card input device carried by the housing for reading user sensitive information from a transaction card, a wireless transceiver carried by the housing, and a processor carried by the housing and connected to the display, order entry input device, transaction card input device and wireless transceiver. The processor may be for wirelessly sending input order information, and encrypting and wirelessly sending the user sensitive information from the transaction card without storing and without displaying. The processor may also be for wirelessly receiving and displaying payment authorization information based upon real time authorization from a transaction card issuing entity.

Abstract: A system and method for facilitating electronic transactions using an intelligent instrument is disclosed. An authorization server enables users to obtain authorization credentials through the use of the intelligent instrument by issuing a challenge to an intelligent token of the intelligent instrument. The intelligent token generates a challenge response and transmits the challenge response to the authorization server, which assembles credentials including a key for the electronic transaction upon validating the response. The authorization server sends the assembled credentials to the intelligent instrument and the intelligent instrument transmits the assembled credentials to the authorization server during a subsequent transaction. The authorization server validates the assembled credentials and provides authorization for the transaction in response to the validating the assembled credentials.

Abstract: A system and method for data recipient invoked electronic commerce allowing data subjects to provide and data recipients to receive information over a network relating to the needs of a data subject such as purchases, distribution of application information and the like. The system includes a server having software which gathers the information from a data subject to complete a transaction. The system has a data subject data structure that stores information for registered data subjects. The software can access the data subject data structure and enter the data subject's information during subsequent transactions. Having the software obtain and enter the data subject's purchasing information, the data subject does not have to enter the same information every time the data subject desires to effect a transaction over the network. In alternate embodiments, the same technology can be applied to other arenas where a user enters the same repetitive information.

Abstract: Embodiments of methods and apparatus for tag-based personalization of kiosk computing devices are disclosed. In embodiments, an authentication server/system may receive, from a mobile device, a plurality data packets having data associated with a display tag of a kiosk computing device. The authentication system/server may, in response, instruct the kiosk to activate an account-specific mode based on an account associated with the mobile device. Other embodiments may be described and/or claimed.

Abstract: A method and system for transferring an electronic payment between a purchaser and a merchant that includes assigning a role of a merchant account to a first account and a role of a purchaser account to a second account within a payment system, adding an item from a product catalog stored in the payment system to a purchase list, obtaining a user ID token of a purchaser from a merchant terminal, communicating identity confirmation information associated with the user ID token to the merchant terminal, and transferring funds for the purchase price total from the purchaser account to the merchant account.

Abstract: A computer processing system for auditing transaction information between vendors and service providers servicing a third party's needs. The system also includes those transactions involving shippers and carriers. The system is particularly suited to efficiently and automatically audit and effect payment of a transaction and to efficiently provide access to relevant transaction and subscription information. According to one example embodiment, the system includes a processor arrangement that helps vendors validate transactions between service providers and third party customers. In some cases the system is able to monitor transactions initiated by the service provider, for the benefit of the customer, committing the vendor to certain actions not readily known by vendor.

Abstract: A method for securing data transmitted over a network to an image display device. In one embodiment, the method may include identifying at least one image display device on the network, selecting the at least one image display device for transmission of data, activating a data protection process to generate locked data and transmitting the locked data to the image display device. The method may further include receiving a key to unlock the locked data such that the data is available to the image display device.

Abstract: A personal device is provided. The personal device includes an identification verification system that receives first identification data from a physical identification device, such as by inserting a driver's license into a card reader that is adapted to receive a driver's license. Second identification data such as a PIN number is also received. Payment authorization data or other suitable data is generated if the driver's license corresponds to the PIN. A payment selection system or other suitable system receives the payment authorization data and displays one or more payment accounts for selection by a user. Where a payment selection system is used, the payment selection system transmits payment account data to a point-of-sale system.

Abstract: A system for mobile devices that facilitates the creation and dissemination of interactive media to a plurality of mobile devices and PCs/laptops that comprise a client component. The interactive media may comprise of a list of products that are for sale and the user can select one or more for purchase. It may also comprise a list of real estate entries with associated user interest solicitation and the user can indicate his interest in one or more of the entries. The server can help the user make an appointment to view the corresponding real estate properties.

Abstract: The invention relates to a system and method of making a financial transaction using a Trusted Personal Device. More particularly, the invention relates to a highly secure and less cumbersome payment platform for making a financial transaction using a trusted personal device, that too without any requirement of any formal means of communication between the customer and the merchant. The system and method is devised to obviate the problems of frauds relating to electronic cards like credit card, debit card, recharge cards, loyalty cards, other chip based cards, traveller's cheques etc.

Abstract: A printer system includes a printer and a printing consumable detachably mounted on the printer. The printer has a first integrated circuit which generates a random number, reference information using the random number and a secret key. The printing consumable has a second integrated circuit which generates validation information using the random number and the secret key received from the first integrated circuit. The printer also has processing circuitry configured for receiving the reference information from the first integrated circuit; receiving the validation information from the second integrated circuit; and comparing the reference information and validation information so as to validate the printing consumable device for use with the printer.

Abstract: In one embodiment, a network element comprises one or more processors, and a memory module communicatively coupled to the processor. The memory module comprises logic instructions which, when executed by the processor, configure the processor to receive, via a first communication channel, a primary authentication request transmitted from a user from a first device, process the primary authentication request to determine whether the user is authorized to access one or more resources, in response to a determination that the user is authorized to access one or more resources, initiate, a secondary authentication request, and transmit the secondary authentication request from the network element to the user via a second communication channel, different from the first communication channel.

Abstract: A system and method for synchronizing broadcast advertising inventory data between a broadcast vendor system and a media buyer's media resource planning system features a database that stores advertising inventory data received from the broadcast vendor system and the media buyer's resource planning system. A matching application in communication with the database performs a comparison between a previous package of advertising inventory data and a revised package of advertising inventory data. An analysis application in communication with the matching application and the database enables a user to review results of the comparison and directs uploading of the revised package of advertising data from the database to the media buyer's resource planning system.

Abstract: Methods for controlling online session inactivity timeouts between a user terminal and a server involves the server polling the user's local terminal to determine whether the user presence at the terminal can be confirmed if there is a period of inactivity within the session. If so, or if the server can otherwise confirm that the terminal is secured from use by other users, then the user session is maintained. Otherwise, the user session is allowed to timeout due to inactivity. The server may issue an alert to the user whenever a timeout is imminent, and may restore any information entered by the user prior to the timeout, if the user later returns and validates his identification.

Abstract: Disclosed are methods, systems, and computer program products for identifying sensitive data from a user-entered input sequence based on user-defined criteria. According to one method, user-defined criteria for identifying sensitive data within user-entered input sequences that include sensitive data and padding data are received. A request for sensitive data from a requesting agent is presented. A user-entered input sequence that includes sensitive data and padding data is received in response to the request for sensitive data. Sensitive data is identified within the user-entered input sequence using the user-defined criteria. The identified sensitive data is provided to the requesting agent in response to the request for sensitive data.

Abstract: The present disclosure relates to a system and method for a secure payment. More, specifically the present disclosure relates to an automated method for enhanced security at point-of-sale (POS) terminals, cash machines (ATMs), or other similar electronic transfer devices during financial electronic transactions. The method includes receiving a request for an xPIN by a mobile device via a mobile gateway, sending the xPIN via the mobile gateway to the mobile device, receiving a transaction request at a transaction means for authorization and an xPIN verification request an interface, verifying the xPIN via the mobile gateway; and authorizing the transaction via the interface.

Abstract: An electronic control device and method for operating an electric roller shutter include establishing a wireless connection between the electronic control device and an electronic device if a preset login password is input. The electronic control device provides an operation interface to the electronic device, and receives a function instruction from the electronic device if a function key on the operation interface is pressed. The electric roller shutter is operated by the electronic control device according to the received function instruction.

Abstract: Methods and systems are described for processing transactions. The methods and systems enable a consumer to present a customer identifier, such as a merchant loyalty or membership card or other identifier as a payment device at a point of sale. In one implementation, a personal account number is generated by appending a proprietary routing code to a customer registration account number so that the personal account number is formatted for transmission as a payment device number over an electronic funds transfer network. In another implementation, the customer registration account number comprises the proprietary routing code. A preferred payment account identifier is accessed, based on the personal account number, from a database, and a transaction approval message is constructed comprising the preferred payment account identifier. The account from which payment is made may be a credit account, a demand deposit account, a stored value account, or another kind of account.

Abstract: Securely disclosing a personal identification number (“PIN”) associated with a financial account to an account holder and receiving a new PIN from the account holder. A PIN reveal application can interact with a hardware security module (“HSM”) using a PIN offset masking process and randomly generated account data to reveal the PIN to the account holder one or more PIN characters at a time. A PIN set application also can interact the HSM using a PIN offset masking process and randomly generated account data to receive a new PIN for the account one or more PIN characters at a time. In each of the PIN reveal and PIN setting processes, less than the entirety of the PIN is stored in an unencrypted format outside of the HSM only.

Abstract: A presence state inquiry unit refers to a use permission table stored in a data storage unit to extract a user permitted to use a target image forming apparatus, and inquires from an entry control server for a presence state of the extracted user in a particular area where the target image forming apparatus is placed. A mode transition unit transmits a transition command to a lower power consumption mode to the target image forming apparatus when all the users permitted to use the target image forming apparatus exist outside the particular area.

Abstract: A memory device includes: at least one storage area for storing data; a protection control structure adapted to selectively allow an external device access to the at least one storage area of the memory, the storage area being not freely accessible by the external device if protected; a control logic adapted to identify an access request by the external device to the at least one storage area and cooperating with the protection control structure for managing an unlock procedure for selectively granting the external device at least temporary access rights to the storage area if protected; means for providing a first code to the external device in said unlock procedure; means for receiving a second code from the external device in response to said first code; means for verifying validity of the received second code. The means for verifying validity are adapted to ascertain a correspondence of the second code with the first code based on a predetermined relationship.

Abstract: A method of performing a fund transfer at an ATM includes receiving an active authentication transaction key at an ATM from a mobile financial transaction instrument via a wireless communication protocol, generating a PIN at the ATM, and storing the PIN in a machine readable storage medium. An authorization request message is transmitted to a financial institution identified by the active authentication transaction key. The authorization request message includes the PIN and at least a portion of the active authentication transaction key. The PIN is received from a user of the mobile financial transaction instrument, and the funds are dispensed in response to receiving the PIN.

Abstract: Disclosed are systems and methods for establishing a personal identification number (PIN). The systems and methods provide techniques to begin a remote session with a customer, prompt the customer to select a PIN to associate with a financial account card during the remote session, and receive the PIN from the customer during the remote session.

Abstract: A reputation server is coupled to multiple clients via a network. Each client has a security module that detects malware at the client. The security module computes a hygiene score based on detected malware. The security module provides the hygiene score and an identifier of a visited web site to a reputation server. The security module also provides identifiers of files encountered at specified web sites to the reputation server. The reputation server computes secondary hygiene scores for web sites based on the hygiene scores of the clients that visit the web sites. The reputation server further computes reputation scores for files based on the secondary hygiene scores of sites that host the files. The reputation server provides the reputation scores to the clients. A reputation score represents an assessment of whether the associated file is malicious.