Abstract: A method and system to automate payment for a network-based commerce transaction provide a buyer an option to enable an automatic payment service, wherein automatic payment service automatically provides payment to a seller upon a termination event of a network-based commerce transaction. Payment information of the buyer is provided to a network-based payment system upon the occurrence of the termination event.

Abstract: Systems and methods of conducting a payment transaction using a mobile phone having a camera. The systems and methods receive an image of a merchant access device and optionally location data from a mobile device of a user engaged in the transaction. The systems and methods also receive transaction information associated with the transaction and account information associated with an account of the user. The systems and methods use the information to authorize or decline the transaction.

Abstract: In electronic commerce (e-commerce) sites that are executed on a single e-commerce application, a user's session is only associated with a single user identity for e-commerce site domain. Acting under a single identity across the site may not be desired. There may be requirements to associate an individual user with one or more separate identities within parts of the site. Aspects of the invention provide a method, system and computer program product for managing multiple user identities for a user of an electronic commerce (e-commerce) site.

Abstract: In one aspect, a computing apparatus is configured to generate trigger records for a transaction handler to identify authorization requests that satisfy the conditions specified in the trigger records, identify communication preferences of the users associated with the identified authorization requests, and use the communication preferences to target real-time messages at the users in parallel with the transaction handler providing responses to the respective authorization requests.

Abstract: Embodiments herein include a method implemented by a client device used by a consumer to securely conduct a financial transaction. The method includes generating a unique message digest by applying a cryptographic hash function to payment information uniquely associated with the consumer. The method also entails encrypting the unique message digest using a public key of a public-private key pair uniquely issued to the consumer, to obtain an encrypted digest. Finally, the method includes encrypting the encrypted digest and an index value using a symmetric key, to generate a card number to be sent to an authorization server for authorization of the financial transaction. This index value maps at the authorization server to the private key of the public-private key pair and to the payment information.

Abstract: A method and apparatus for executing electronic transactions using cryptographically-enabled accounts stores cryptographically-enabled account information and instructions, receives a cryptographically-encoded permission certificate, and processes the received permission certificate to execute the transactions.

Abstract: A financial portal is provided which allows the transfer of funds between “friends” within a social network application.

Abstract: A method and apparatus for verifying that a user is the owner of a public listing is provided. The user selects an option to claim ownership of the public listing offered by an online service provider. The online service provider uses information regarding the user and the public listing to generate a verification code. The online service provider delivers the verification code to the owner of the public listing via the contact information provided by the public listing. If the user owns the public listing, the user receives the verification code via contact information associated with the public listing. The user verifies ownership by inputting a code to the online service provider. If the inputted code matches the verification code, then the online service provider identifies the user as the owner of the listing. Once verified, the user modifies the listing.

Abstract: The invention relates to a method for generating a list signature for a message to be signed, said method comprising steps which are carried out by an electronic material support of a member of a list. During said step, the electronic material support only generates an electronic signature according to a sequence number supplied to the electronic material support by a certifying authority, according to evidence of belonging to the list of members, to data relating to the electronic material support, and optionally to a key of an authority qualified to lift the anonymity of the generated signature.

Abstract: The present invention is directed to a system and method that allows a central election office to maintain control over actions taken on voting devices located at various polling locations. In an exemplary embodiment, a poll worker or other user contacts the central election office with a request to perform an action on a voting device. An election management system located at the central election office executes a hashing algorithm to generate a first hash code associated with the action. The central election office communicates the first hash code to the polling location, and the poll worker or other user inputs the first hash code into the voting device. The voting device executes the same hashing algorithm to generate a second hash code associated with the action, and compares the second hash code to the first hash code to verify the validity of the first hash code.

Abstract: A method for digital rights management includes receiving a selection input from a user, associating a customer number with a file based on the selection input, embedding the customer number and a file identifier associated with the file in the file, and sending the file with the embedded customer number and file identifier to the user. One embodiment includes receiving a customer number change request, revising the central database in response to the customer number change request, determining a new customer number responsive to the customer number change request, and embedding the determined new customer number in the file. Another embodiment includes receiving an authorization request associated with a file, determining an authorization based on the central database and authorization request, and sending an authorization notice response to the determined authorization.

Abstract: There is provided a method of, computer programs for and apparatus for providing and accessing digital content such as a news item. A news provider generates a news item, creates a digitally signed version of the news item and packages them together with a digital certificate issued by a certificate authority containing the public key required to decrypt the digitally signed version. The package is posted to a server and is transmitted, or made available or transmission, over a public data network together with a computer program for verifying the news item. A receiving party receives, over the public data network, the package at a client device and is provided with means for launching, and if necessary first downloading, the verifying program. The verifying program uses the public key contained in the certificate to verify the digitally signed news item.

Abstract: A method of performing a payment transaction is provided. Transaction information is received from a payee, which has been provided to the payee by a payor using near-field communications and includes a payment amount and payee account information. A transaction authentication request is sent to the payor, and, after a transaction authentication is received from the payor, the payment amount is sent to the payee. After the payment has been completed, a payment confirmation is sent to the payor. A method for processing a payment transaction using a generated remittance key is also provided. The remittance key, which includes an encrypted alphanumeric key having a payment amount and payment provider account information for a payor, is generated and transmitted to a payee who, in turn, transmits the remittance key to a remittance agent. The remittance agent transmits the remittance key and a payment request to a payment provider who processes the request and transmits a payment to the payee.

Abstract: A method and system for reselling an object in a client-server environment is disclosed. The method and system also enables a user using a client device can order an object, order a customized object, order a composite object, and order a customized composite object. The system includes an object order form handler, an object order handler, a view objects handler, a reseller form handler, a reseller handler, a reseller permission handler, an add object handler and a server database.

Abstract: The invention concerns a system for controlling user access to a service having a read device (210) arranged to contactlessly read a payment card (211) of a user; and a control block (214) coupled to an entry gate (202), the control block arranged to determine whether online payment authorization should be requested for the payment card, wherein if it is determined that online payment authorization should be requested, the control block is arranged to allow the user access to the service prior to completing an online payment authorization for the payment card.

Abstract: A system providing enhanced security for device based transactions, constituted of: a server associated with a network address; a first device associated with a user, the first device in communication with the server over a first communication channel responsive to an obtained server network address; a second device associated with the user arranged to obtain the server network address from the first device; and a mobile device server in communication with the second device over a second communication channel, the mobile device server in communication with the server via a third communication channel, the mobile device server arranged to: obtain the server network address from the second device over the second communication channel; obtain the server network address from a trusted source; and authorize to the server over third communication channel a transaction only in the event that the server network addresses are consonant.

Abstract: A system for point-to-point encryption is provided. A card reader system reads unencrypted card data stored on a magnetic stripe of a card and encrypts the card data, the card reader system being contained in a first housing. A point of sale device coupled to the card reader system and contained in a second housing separate from the first housing has a user interface for obtaining a transaction amount. A transaction request system transmits the transaction amount and the encrypted card data to an authorization gateway, wherein the unencrypted card data is prevented from being processed by the point of sale device.

Abstract: Transaction processing involves receiving data from an access transaction application of a portable consumer device, wherein the received data comprises data from an access transaction data string that includes a transit verification value wherein, with the exception of the transit verification value, the access transaction data string is substantially similar to a retail data string comprising retail data, wherein the access application data string is adapted for use with an access transaction processing system and the retail data string is adapted for use with a retail processing system. The transaction processing involves processing access transaction application data for selective authorization of the transaction.

Abstract: The invention concerns a method of making an electronic payment by an electronic payment device comprising: transmitting from said electronic payment device (206) to an electronic receiving device (208, 210) a first money token (204) comprising at least data indicating an identifier of said first money token and an amount indicating a payment sum of said first money token, wherein said first money token further comprises an electronic watermark.

Abstract: A callback component embedded on a web site determines a current location of the web site. The current location is compared to a known legitimate location of the web site to determine if the web site has been copied to a different host location. Responsive to determining that the web site has been copied to a different location, the callback component alerts a central authority that the web site may be a fraudulent web site set up to launch phishing attacks. If the central authority determines that the web site is fraudulent, the central authority alerts appropriate entities to take down the fraudulent web site. The callback component generates a visual component viewable on the web site to deter phishing attackers from removing the callback component when the web site is copied.

Abstract: There is disclosed a transaction processing server (300), comprising: means (304) for receiving a request (224) to initiate a transaction, the request including user identification data (220) and monetary value authorization data; validating means (302) for validating the monetary value authorization data; processing means (302) for processing the monetary value authorization data to select monetary value data (210) corresponding to the monetary value authorization data; storing means (306) for storing data representing an association between the user identification data (220) and the monetary value data (210); and output means (302) for outputting a monetary value identifier (228) associated with the monetary value data (210). The invention finds particular application in the field of transferring monetary value from a sender to a recipient.

Abstract: A method and system providing access to electronic content includes receiving a request to access the electronic content from a user device, accessing a unique ID of the user device, and comparing the unique ID to a list of authorized user devices. The unique ID is used to determine if the user device is an authorized user device. If the user device is authorized, access is provided to the electronic content. If the user device is not authorized, determining if a maximum number of authorized user devices is reached. The user device is converted to an authorized user device, if the maximum number is not reached. If the maximum number of authorized user devices is reached, the user can be denied access to the electronic content or the system can request de-authorization of one of the authorized user devices to convert the user device to an authorized user device.

Abstract: Methods and systems for performing micropayment transactions over communication networks is provided. These methods and systems enable ubiquitous micropayments by providing a seamless payment solution in which micropayment is one of a plurality of payments facilitated. In an embodiment, the transaction value may be compared to a predefined threshold, and processed as a micropayment if said value is less than said threshold, and otherwise processed using a second processing system. In another embodiment, the transaction may be processed as a micropayment if the payee has previously been verified by the micropayment processing system. In a third embodiment, the transaction takes place using the payee's website.

Abstract: Methods in which an encrypted transaction validation code is received which positively identifies a first transaction for a first entity, the first entity having a first entity identifier, and the first transaction is electronically verified as being valid by use of the first entity identifier and the validation code. The first entity identifier can be transferred as an account number and the validation code transferred to the money source in a non-account data field. A money source can validate the validation code by duplicating the encryption process used to create the validation code and by then comparing the result to the validation code received. The validation code can be, at least in part, encrypted, and a money source can validate the validation code by duplicating a validation code encryption process and by then comparing the result to the validation code received.

Abstract: A customer may provide a merchant with primary account number information in connection with a purchase transaction. The merchant may send an associated authorization request to a payment card processor. A tokenization server at the payment card processor may generate a token corresponding to the primary account number. To secure the token, the token may be encrypted at the payment card processor using a cryptographic key shared with the merchant. A structure preserving encryption algorithm may be used in encrypting the token. A processor identifier may be embedded in the encrypted version of the token during the structure preserving encryption operation. The merchant can use the shared key to decrypt the token and extract the processor identifier. A settlement request may be directed to the processor from the merchant to settle the transaction using the processor identifier.

Abstract: Methods and systems for virtual checking are described. A virtual check is created by a payor's device and then sent to the payee's device. The payee can be another mobile device. The virtual check has many of the same features as a regular, paper check plus additional features only available in digital form. In an example, the data can be encrypted by either the banks key or the payor's key. Further encryption can occur between the payor's device and the payee's device, which can connect on a peer-to-peer network. The check can be an image with tag data. In an example, data can be encoded into the image itself. The virtual check can include populated data that cannot be changed by the payee. In an example, the virtual check application of the payee can automatically perform a funds availability check.

Abstract: A method and apparatus of encouraging distribution, registration, and purchase of free copyable software and other digital information which is accessed on a User's System via a Programmer's Program. Software tools which can be incorporated into a Programmer's Program allow the User to access Advanced Features of the Programmer's Program only in the presence of a valid Password which is unique to a particular Target ID generated on an ID-Target such as the User's System. Advanced features will thus re-lock if the Password is copied to another ID-target. If a valid Password is not present, the User is invited to obtain one, and provided with the means of doing so, and of installing that Password in a place accessible to the User's System on subsequent occasions. The present invention also provides Programmers with means to invoke business operations as well as computational operations with their programs, and thus to automatically obtain payment from Users who elect to obtain passwords.

Abstract: The present invention relates electronic receipts. There is provided a method for generating an electronic receipt in a communication system providing a public key infrastructure, the method comprising the steps of receiving by a second party a request message from a first party, the request message comprising a transaction request and a first public key based on a secret owned by the first party and wherein the secret is associated with at least the secret of a further public key of the first party, electronically signing at least part of the request message with a second public key assigned to the second party to issue the electronic receipt, and providing the electronic receipt to the first party.

Abstract: A computer-implemented method for facilitating electronic funds transactions is disclosed. According to one embodiment, the method may comprise the steps of: issuing a transaction card to a cardholder by associating the transaction card with a demand deposit account from which the cardholder is authorized to electronically disburse funds; receiving an authorization request for an attempted transaction between a merchant and the cardholder, the authorization request containing information associated with the transaction card and the attempted transaction; processing the authorization request based on one or more predetermined business rules; authorizing the transaction without immediately settling the transaction against the demand deposit account of the cardholder; and settling the transaction, at a time subsequent to the execution of the transaction, through automated clearing house (ACH) from funds retained within the demand deposit account of the cardholder.

Abstract: Embodiments of a portable wagering game machine and a stationary wagering game machine are described herein. In one embodiment, a plurality of portable wagering game machines are associated with a stationary wagering game machine. Group wagering game data is displayed on the stationary wagering game machine. The group wagering game data includes wagering content for viewing by multiple players. At each of the plurality of portable wagering game machines, individual wagering game data is displayed. The individual wagering game data and the group wagering game data relate to a wagering game.

Abstract: Online fraud prevention including receiving a rules set to detect fraud, mapping the rules set to a data set, mapping success data to members of the rules set, filtering the members of the rules set, and ordering members of the data set by giving priority to those members of the data set with a greater probability for being fraudulent based upon the success data of each member of the rule set in detecting fraud. Further, a receiver coupled to an application server to receive a rules set to detect fraud, and a server coupled to the application server, to map the rules set to a data set, and to map the success data to each members of the rules set. The server is used to order the various members of the data set by giving priority to those members of the data set with a greatest probability for being fraudulent.

Abstract: A system and method facilitating purchase transactions over a computer network, including the purchase of electronically storable items. The embodiments herein encrypt “customer identifier string” in an encryption stream and cause the encryption stream to be transferred from the customer to a merchant in the purchase transaction. A verification entity receives the encryption stream which is sent by the merchant for identity verification and payment authorization. Then, the verification entity verifies the identifiers contained in the encryption stream and transfers an identity verification and payment authorization from the verification entity to the merchant.

Abstract: A device for facilitating financial account transactions is described which includes a processing unit including a cryptographic processor. The device also includes an input unit, a display unit and a memory device connected to the processing unit. The memory device contains a private cryptographic key, a first data element and a second data element. The processing unit encrypts the first data element using the private cryptographic key and the second data element, modifies the second data element, combines the encrypted first data element and the second data element to generate a single-use financial account identifier, and displays the single-use financial account identifier. This identifier is then transmitted to a central processor for authorization of the transaction.

Abstract: Methods and systems are described for transferring funds from a sender to a recipient. Source funds are received from a sender. An amount of recipient funds is determined from a value of the source funds. A transfer identifier associated with the recipient funds is generated and provided to the sender. The transfer identifier is received from the recipient, prompting a transfer in control of the recipient funds to the recipient. At least one of the source funds and the recipient funds are in the form of one or more electronic tokens. Each such electronic token has a currency amount and a digital signature identifying a financial institution that backs the electronic token for the currency amount.

Abstract: An apparatus and method for are provided. The method includes determining that a barcode displayed on a mobile terminal has been scanned, retrieving metadata corresponding to the barcode when the barcode has been scanned, and triggering a context-aware action in the mobile terminal based on the barcode and/or the retrieved metadata.

Abstract: Methods and systems are provided for a proactive approach for computer forensic investigations. The invention allows organizations anticipating the need for forensic analysis to prepare in advance. Digital representations are generated proactively for a specified target. A digital representation is a digest of the content of the target. Digital representations of a collection of targets indexed and organized in a data structure, such as an inverted index. The searching and comparison of digital representations of a collection of targets allows quick and accurate identification of targets having identical or similar content. Computational and storage costs are expended in advance, which allows more efficient computer forensic investigations. The present invention can be applied to numerous applications, such as computer forensic evidence gathering, misuse detection, network intrusion detection, and unauthorized network traffic detection and prevention.

Abstract: A person to person cash transfer transaction method using mobile phones comprising the steps of: —sender sends a transfer command to the recipient containing the transfer amount, sender's PIN and the recipient's mobile number; —telco verifies if the sender's mobile phone cash account has sufficient balance to effect the transfer of the amount of virtual cash being transferred; —telco deducts the sender's mobile phone cash account with the amount of virtual cash to e transferred and credits the same amount of recipient's mobile phone cash account; —sender and recipient receive SMS acknowledgment with confirmation number from telco; —recipient if registered may not use the virtual cash for any financial transaction.

Abstract: Techniques for secure network communication are provided. Credentials for a user along with a transparently generated secret are sent to a resource that the user desires to establish a secure communication session with. After successful authentication of the user, an initial sequence number for a first transaction of the session is set on a client of the user. Thereafter, with each transaction of the session the client supplies a new and unique sequence number to a server of the resource and uses the secret to encode and validate that transaction. The server of the resource does not permit any transaction that includes an invalid or previously used sequence number.

Abstract: Example embodiments of methods and apparatus for challenging an online user. In an example embodiment, a method includes receiving, at an online service provider, a request from a user to access one or more features of an online service running on a host server and also receiving an indication of a geography associated with the user. The example method further includes sending, to the user, information associated with the indicated geography in combination with information not associated with the indicated geography and a request that the user select the information associated with the indicated geography from the combined information or select the information not associated with the indicated geography from the combined information. The example method still further includes receiving, at the online service provider, a selection from the user and, in the event the selection correctly corresponds with the request, allowing the user access to the one or more features.

Abstract: An on-line value bearing item (VBI) printing system that includes one or more cryptographic modules and a central database is disclosed. The cryptographic modules are capable of implementing the USPS Information Based Indicia Program Postal Security Device Performance Criteria and other required VBI standards. The modules encipher the information stored in the central database for all of the on-line VBI system customers and are capable of preventing access to the database by unauthorized users. Additionally, the cryptographic module is capable of preventing unauthorized and undetected modification, including the unauthorized modification, substitution, insertion, and deletion of VBI related data and cryptographically critical security parameters.

Abstract: Methods and systems for anti money laundering screening are provided. A risk score and a first validation code is determined based on information related to a funds transfer transaction. The first validation code is associated with the risk score. Thereafter, a second validation code is calculated and compared with the first validation code. The risk score and the validation score are included in a payment authorization message sent to a payment processing network. The payment processing network extracts the validation code and communicates the payment authorization message including the risk score to a receiving financial institution. The receiving financial entity accepts or denies the incoming funds transfer based on the risk score included in the payment authorization message.

Abstract: A system and method for conducting electronic commerce are disclosed. In various embodiments, the electronic transaction is a purchase transaction. A user is provided with an intelligent token, such as a smartcard containing a digital certificate. The intelligent token suitably authenticates with a server on a network that conducts all or portions of the transaction on behalf of the user. In various embodiments a wallet server interacts with a security server to provide enhanced reliability and confidence in the transaction. In various embodiments, the wallet server includes a toolbar. In various embodiments, the digital wallet pre-fills forms. Forms may be pre-filled using an auto-remember component.

Abstract: Systems and methods consistent with the present invention encode a list so users of the list may make inquiries to the coded list without the entire content of the list being revealed to the users. Once each item in the list has been encoded by an encoder, a bit array with high and low values may be used to represent the items in the list. The bit array may be embodied in a validation system for allowing users to query the list to determine whether an inquiry item is on the list. The validation system determines which bits to check by executing the same coding process executed by the encoder. If all the bits are high, then the inquiry item is determined to be part of the list, if at least one bit is low, then the inquiry item is determined not to be part of the original list.

Abstract: A method and system are provided for securing a third-party payment electronic transaction, allowing a customer to seal a self-issued electronic voucher and thereby finalize a payment amount; such electronic voucher is then transmitted to a vendor and then forwarded to a payor for approval and payment or to a creditor in satisfaction of a debt.

Abstract: Wireless personal area network (Zigbee, Bluetooth, UWB) and wireless identification technologies (Near Field Communication (NFC), Radio Frequency Identification (RFID)) are implemented in particular client server functions and communications. Connected with an Authentication Server, a wireless HUB authenticates user identification and provides the user with access to secure data communication with a wireless terminal such as a cellular phone or a PDA. A Location Server provides user locations via methods such as RSSI, TDOA, and GPS and sends location information to a Center Control Server and the Authentication Server. With location information, the Center Control Server initiates and optimizes secure information processes and coordinates the functions of servers and user terminals.

Abstract: In a storage area network, agents provide transactions of data sets containing updates to manageable entities in a SAN. A SAN server avoids intermittent dissemination of events pertaining to a single transaction by storing events in a cache until completion of all subtransactions in the transaction, and then disseminating all events pertaining to the transaction. Transactions are broken down into update sections, each containing one or more subtransactions collectively defining the entire transaction. Update sections corresponding to the transaction are tagged with a section ID. Events indicating completion of processing of the update section are identified by the section ID, and suppressed temporarily by storing them in the event cache pending completion of the transaction. Other events not matching a tagged section ID are allowed to disseminate. Upon completion of the transaction, events for all section IDs corresponding to the transaction are disseminated from the cache.

Abstract: Embodiments of the present invention provide a method, system, and computer program product for authorizing a financial transaction. A financial institution can identify financial risk associated with the financial transaction based on product details. The product details are sent to the financial institution by a merchant along with the authorization request. The financial institution, then, notifies the merchant regarding authorization of the financial transaction based on the risk assessment. Finally, the merchant fulfills or terminates the financial transaction based on the notification received regarding authorization request.

Abstract: A transaction processing service operates as an intermediary between acquirers of financial transaction requests and issuing institutions that process the financial transaction requests. The intermediary receives an authorization request generated based on a transaction initiated by a customer at a point of purchase. The intermediary provides a rules module that stores a set of rules for processing transactions. Each rule specifies one or more conditions to be tested and one or more actions to be executed based on the test. For each authorization request, the system determines the applicable rules and tests conditions for each rule prior to the transaction. Based on the results of the test, the system executes an associated action. Conditions may be specified based on transaction information, customer information, or other information. Actions define the system's response to a particular result in testing a condition.

Abstract: A method for capturing data packets sent on a network for evaluating response time performance, the network including a financial institution and a partner bank. The method includes associating a captured data packet sent to the partner bank with a captured data packet received from the partner bank, by comparing at least one coded field of a data portion of the captured data packet sent to the partner bank with at least one coded field of a captured data portion of the data packet received from the partner bank. The method also includes measuring a response time of the associated data packet received from the partner bank, relative to a transmission time of the captured data packet sent to the partner bank. The method further includes transmitting an alert message upon determining that the response time is not within an adjustable predetermined threshold, wherein the alert message includes data from a data portion of the associated data packets.

Abstract: The instant invention relates to a system and method for ensuring and verifying the identity of all parties involved in an online marketplace transaction involving buyers, sellers, and third parties, such as a marketplace. Anonymous transactions are supported by the present invention. Verification is provided and insurance may be purchased in accordance with the instant invention guaranteeing that the parties are who they represent themselves to be and are capable of entering into the transaction, thereby facilitating completion of the online transaction.