Abstract: A system and method are disclosed for user fraud protection and prevention of access to a distributed network communication system. A first set of identification data associated with a first network access are stored. A second set of identification data associated with a second network access are stored. The first and second sets of identification data comprise a first computing device identification and a second computing device identification, respectively. If one or more fraud indicators are determined in the two sets of identification data, then the first and/or second network access may be revoked. The fraud indicators may include, e.g., use of the same username with different computing device identifications, use of the same computing device identification at different geographical locations, violation of a threshold for computing device identifications, violation of a threshold for authentication failures, and violation of a threshold for rate of network propagation by a user account.

Abstract: A personal device is provided. The personal device includes an identification verification system that receives first identification data from a physical identification device, such as by inserting a driver's license into a card reader that is adapted to receive a driver's license. Second identification data such as a PIN number is also received. Payment authorization data or other suitable data is generated if the driver's license corresponds to the PIN. A payment selection system or other suitable system receives the payment authorization data and displays one or more payment accounts for selection by a user. Where a payment selection system is used, the payment selection system transmits payment account data to a point-of-sale system.

Abstract: A method and system for utilizing remote code generation terminals to generate authorization codes that control and authorize the activation of a service device. The remote code generation terminals each allow a customer to select between multiple service levels for operation of the remote service device. The code generation terminal generates an authorization code that includes various groups each having a specified number. The groups are encoded into an authorization code, which is then encrypted and printed for the user. The customer enters the encrypted co authorization code into the remote service device that validates the authorization code and begins operation of the service device. A computer controller in the service device keeps track of the used authorization codes in its own internal database such that each authorization code can only be used once.

Abstract: The present invention is directed to an apparatus and method for conducting delegated tasks in response to a remote signal. The apparatus includes terminals, such as coin-operated electronic apparatus or consumer electronic apparatus, that are equipped with a module having a controller component configured to transfer and receive telephonic and data commands to activate a function of the terminal remotely and monitor certain conditions within the terminal. The method comprises the steps of accessing an electronic communication device of the terminal through a communication device of the user (i.e. mobile phone, PDA, etc.), a module receiving, authenticating and executing the command inputted at the user's communication device in response to the command and, optionally, monitoring the functions of the terminal and communicating a related signal to an associated data network.

Abstract: Systems and methods relating to the establishment of EDI trading partner relationships. Sending partners convey a series of data transmissions to a computer system, where they are checked for internal consistency and compliance with applicable trading rules. Data attributes extracted from the transmissions allow the capabilities of the sending system to be ascertained. Differing senders meeting different appropriate qualifications may be issued specific certifications. Receiving partners conveyed a series of EDI transmissions by a third party report the results of receipt and analysis back thereto. From the reported results, the capabilities and accuracy of the receiving system are ascertained. Specific certifications for differing types of receiving partners may then be issued. Trading partners may be matched by capabilities. A directory of trading partner certifications and capabilities may be periodically replicated to selected users.

Abstract: A system and method for isolating a computer system from entry of a personal identification number (PIN) to a smart card. The system and method includes a computer system that is in communication with an unsecure network to allow a user to engage in a purchase transaction. The system and method also includes a smart card reader in which a smart card is inserted and read. A secure personal-identification-number (PIN) entry device is coupled between the computer system and the smart card reader. The secure PIN entry device is used for entering a correct code for the PIN. Communication between computer system and secure PIN entry device is disconnected until the correct code for the PIN is entered at secure PIN entry device and sent to the smart card in order to authorize use of the smart card for the purchase transaction. In response to the correct code for the PIN being entered and sent to the smart card, communication between computer system and secure PIN entry device is established.

Abstract: Secure electronic transaction system is provided between a plurality of computer systems and other electronic terminals wholly or partly over a public communication system such as the internet, a closed communication system such as a banking network or point-to-point communications such as dial-up connections and leased lines. Secure transmission of transaction information instructions and payment instructions is provided from a customer's computer system to the customer's bank's computer system. The bank's computer system processes and evaluates the instructions and transmits by way of secure transmissions the transaction instructions and payment instructions to the merchant's computer system.

Abstract: An electronic settlement system with extremely high security based on the use of a mobile terminal with an electronic camera therein. Display units for commodity information provided at a place for payment with cash, a sales control server for managing the display units, a server for controlling the mobile terminals, and an authentication server authorizing the mobile terminals are connected to each other through the Internet, and the authentication server and the sales control server are connected to each other through a dedicated communication line.

Abstract: A system includes at least one resource, such as a computer, and a high-security authentication device, the at least one resource being selectively utilizable by an operator. The high-security authentication device is configured to perform an authentication operation in connection with a prospective operator and generate a credential for the prospective operator if it authenticates the prospective operator. The at least one resource is configured to, in response to the prospective operator attempting to utilize the resource, initiate an operator authentication verification operation using the credential to attempt to verify the authentication of the operator, and allow the prospective operator to utilize the at least one resource in response to the operator authentication verification operation.

Abstract: A method for performing a money transfer receive transaction includes loading payout funds, corresponding to a desired amount of money to be transferred from a sender to a recipient, in a payout account associated with a payout card, such that the payout funds are electronically accessible by the recipient using the payout card. A system for performing a money transfer receive transaction is also provided.

Abstract: A ticket issuing and examining system comprises a ticket issuing management center, an automatic gate apparatus, and a ticket issuing apparatus. The ticket issuing management center receives an ID code of a user and a ticket data desired to purchase and transmitted from the user who has an ID recording medium recording an ID code thereon through a communication line and stores the received ID code and the ticket data in a memory by correlating them. The automatic gate apparatus reads an ID code from an ID recording medium and based on this read ID code, judges the entry of a user for approval or disapproval, and when the entry is judged to be approved, approves the entry of a user. Further, the ticket issuing management center receives an ID code transmitted from the automatic gate apparatus and based on this received ID code, reads out ticket data from a memory, and transmits the ticket data and the ID code to the ticket issuing apparatus.

Abstract: A remote monitoring system includes an object apparatus and a monitoring apparatus monitoring a current state of the object apparatus over a communications network. The object apparatus includes a state information reporting unit reporting information about the current state of the object apparatus, and a test data generating unit generating test data and controlling the state information reporting unit to output the test data to the monitoring apparatus via the communications network. The monitoring apparatus includes a test data returning unit returning the test data back to the object apparatus via the communications network so that the test data generating unit of the object apparatus compares the returned test data with the test data generated by the test generating unit to discriminate whether the state information reporting unit is in condition for normal reporting.

Abstract: A system, method, and computer program product which allows a server system to verify the geographic location of a client system in order to authenticate the user or authorize a transactions. The server system, in the preferred embodiment, uses the client system's network address to determine a corresponding geographic location. In an alternative embodiment, the client system is equipped with a geographic positioning system which precisely determines the geographic location of the client system, and reports this location to the server system. The preferred embodiment is particularly drawn to a secure system, method, and computer program product for authorizing an automated teller machine (ATM) application running on a data processing system.

Abstract: An object of the present invention is to provide a data supplying method that can simply arrange photographing data together with supplementary information and a portable terminal unit used in the method and a data supplying apparatus.

Abstract: A first embodiment of a money tube includes a centrally divided tube body having a first end, a second end, and a central portion. The tube body is composed of a first body portion and a second body portion. The first body portion includes the first end and defines a first central connector. The second body portion includes a second end and defines a second central connector. The first and second central connectors engage each other at the tube body central portion when connected to each other to hold the first body portion and the second body portion together.

Abstract: A personal data/time notary device is embodied in a token device such as a “smart card”. The portable notary device includes an input/output (I/O) port, which is coupled to a single integrated circuit chip. The I/O port may be coupled to a conventional smart card reading device which in turn is coupled to a PC, lap-top computer or the like. A tamper resistant secret private key storage is embodied on the chip. The private key storage is coupled to the processor which, in turn, is coupled to a permanent memory that stores the program executed by the processor. At least one clock is embodied on the card. A second clock 14 and a random value generator 10 are also preferably coupled to the processor. The device combines digital time notarization into a digital signature operation to ensure that a time stamp is always automatically present. The user does not need to be involved in any additional decision making as to whether time stamping is necessary.

Abstract: A monitoring module reports registration certification to an accounting server from a terminal device when contents determined as a target to be charged for are accessed in the terminal device which is previously registered in the accounting server. The accounting server confirms properlity of the registration certification in the accounting server, and performs fee charging. The application program, when the properlity of the registration certification is confirmed, reports permission of access to the contents from the accounting server to the terminal device, and enabling the contents to be accessed in the terminal device.

Abstract: An operator number acquiring code is set in the macro-key data with correspondence to a macro-key. If the macro-key is depressed and there is the operator number acquiring code, the operator (logged on) number is supplied to the following key decode processing. A manager number may be also acquired. If a repetition start and end codes are set, the set data stored between these codes are repeatedly executed the specified number times. If a magnetic card data squiring code is set, data in a magnetic card is read and supplied to the key decode process as input key code.

Abstract: A network-based authentication scheme is provided that performs authentication in a centralized manner for the stand-alone computers of a particular organization. Since authentication is centralized, the individual computers do not need to store authentication information, and control over all of the computers rests in a single location, enabling the system administrator to manage access and utilization of the computers from this location. The network-based authentication scheme includes an authentication manager, remotely located with respect to a local computer, that performs authentication for the local computer. The authentication manager receives login information from the local computer, verifies this information against an authentication file, and returns indications of the services on the local computer that the user is able to utilize. The local computer receives these indications and displays icons representing the services available to that user.

Abstract: The present invention comprises a method of activating a prepaid account using an existing electronic funds transfer network which includes a point-of-sale (POS) terminal, debit/credit card processing infrastructure and an account insurer authorization center.

Abstract: A roaming user needing an his authentication credential (e.g., private key) to access a computer server to perform an electronic transaction may obtain the authentication credential in an on-demand fashion from a credential server accessible to the user over a computer network. In this way, the user is free to roam on the network without having to physically carry his authentication credential. Access to the credential may be protected by one or more challenge-response protocols involving simple shared secrets, shared secrets with one-to-one hashing, or biometric methods such as fingerprint recognition. If camouflaging is used to protect the authentication credential, decamouflaging may be performed either at the credential server or at the user's computer.

Abstract: A mobile computer and a packet encryption and authentication method which are capable of controlling an activation of a packet encryption and authentication device belonging to the mobile computer according to the security policy at the visited network of the mobile computer. The mobile computer is provided with a packet encryption and authentication unit having an ON/OFF switchable function for applying an encryption and authentication processing on input/output packets of the mobile computer.

Abstract: An interactive bi-directional telecommunication method using a handheld low power user device to access a host computer server along a telecommunication path, and to command the host computer server to transmit audio and/or visual reports to the user device. A system for host computer ordering of consumer products and services using the telecommunications method and handheld low power user device.

Abstract: In order to provide a banking system having an IC card available anytime anywhere with no risk of the security information plagiary because of the missing IC card, no complexity of the IC card usage, nor problem of the discharged battery, a banking system of the present invention comprises radio communication means to be connected to a center terminal (5) of a financial organization (4) by way of a radio communication network for drawing an amount from and depositing an amount to a bank account in the financial organization (4), the bank account being identified by a bank password. The radio communication means includes a radio linked portable terminal (1) and an IC card (2) to be connected to the radio linked portable terminal, the IC card comprising a memory for storing information of an available amount reserved for the IC card (2) and a processor for adding an amount drawn from the bank account to the available amount and subtracting an amount to be deposited to the bank account from the available amount.

Abstract: The invention relates to protected keypad apparatus, in particular for machines actuated by insertion of an electronic smart card. The keypad proper (10) comprises n sensitive zones (Zi), each sensitive zone being associated with a respective sensor and with an individual processing circuit (14i) that includes in particular an encryption function. The sensor and the circuit form a monolithic unit. The apparatus further includes a driver unit (18) connected to each circuit (14i) via a bus (16). The circuits periodically and cyclically transmit encrypted signals indicating activation or non-activation of the sensitive zones.

Abstract: A method of providing security for a self-service checkout terminal includes the step of determining a time-of-day value and a day-of-week value. The method also includes the step of operating the terminal at a first security level if (i) the time-of-day value is within a first predetermined time-of-day range, and (ii) the day-of-week value is within a first predetermined day-of-week range. The method further includes the step of operating the terminal at a second security level if (i) the time-of-day value is within a second predetermined time-of-day range, and (ii) the day-of-week value is within a second predetermined day-of-week range.