Abstract: A method of controlling a terminal is provided. The method includes analyzing a sensed voice when a voice is sensed, recognizing a context based a result of the analysis, and performing a predetermined control operation based on the recognized context.

Abstract: A display device includes a plurality of pixels, a plurality of gate signal lines extending in a first direction and connected to the plurality of pixels, and a plurality of data signal lines extending in a second direction and connected to the plurality of pixels. The second direction crosses the first direction. The display device further includes a fingerprint sensor configured to detect fingerprint information, and a driver integrated circuit (IC) configured to transmit a plurality of scan signals to the pixels via the gate signal lines, transmit a plurality of data signals to the pixels via the data signal lines, receive the fingerprint information from the fingerprint sensor, and encrypt the received fingerprint information. The display device further includes an application processor configured to receive the encrypted fingerprint information from the driver IC.

Abstract: Apparatuses, systems, and methods of the present disclosure may provide access security in a process control system. For example, current biometric data representative of a user may be acquired and compared to stored biometric data representative of previously identified users. Access to the process control system may be authorized when the current biometric data matches stored biometric data.

Abstract: Methods and systems for converting biometric data into two-dimensional images for use in authentication processes are described. Biometric data is received and then hashed into a string of characters. A 2-D image is created based on the hashed string of characters. The 2-D image is then provided for printing on a personal transaction card.

Abstract: One or more computing devices, systems, and/or methods for user authentication by an authentication entity are provided. For example, an authentication relationship is established between a remote device and an authentication entity. The remote device may provide a service for which a user has registered an account, such as an email account, a social network account, etc. A request is received from the remote device to authenticate the user. The authentication entity facilitates a biometric authentication challenge through a user device. Results of the biometric authentication challenge are determined and used to transmit a message of successful authentication or failed authentication over a network to the remote device.

Abstract: Systems, methods, and devices are disclosed which allow a mobile device user to complete financial transactions even when the mobile device is not connected to a wireless network. The systems, methods, and devices of the present disclosure may utilize a combination of an encrypted lockbox containing out of network payment codes on the mobile device and a matching set of out of network payment codes stored on a server of a payment authority.

Abstract: The invention proposes a method for the remote control of a locking equipment (2) for a vehicle (20) via a mobile terminal (1) comprising data processing means (11) configured to implement a given cryptographic function and biometric acquisition means (14), the mobile terminal (1) being connected to the locking equipment (2) and to a server (3) via a network (10), the method being characterized in that it comprises the implementation of steps of: (a) Issuing, from the terminal (1) to the server (3), an authentication request to the locking equipment (2); (b) Acquiring a candidate biometric datum by the acquisition means (14); (c) Verifying, by data processing means (31) of the server (3) or the data processing means (11) of the terminal (1), that the candidate biometric datum matches with a reference biometric datum; (d) Transmitting, to the mobile terminal (1) from the server (3), an encrypted form of a virtual key of the locking equipment (2); (e) Authenticating the mobile terminal (1) to the locking equ

Abstract: In particular embodiments, one or more notifications are presented on a screen of a personal computing device while the personal computing device is in a locked state. Entry of one or more user responses may be detected on the personal computing device while still in the locked state. Each user response may be associated with at least one notification. An authorization event associated with the personal computing device may be detected, thereby unlocking the personal computing device. The one or more user responses on the personal computing device may then be presented to the user for confirmation. Once user confirmation is received, confirmed user responses may then be published.

Abstract: A transaction card construction and computer-implemented methods for a transaction card are described. The transaction card has vector formatted visible information lasered onto its surface. In some embodiments, systems and methods are disclosed for enabling the sourcing of visible information using a scalable vector format. The systems and methods may receive a request to add a first plurality of visible information to a transaction card and capture an image of the first plurality of visible information. The systems and methods may also map the image to a bounding box and convert the mapped image into vector format. In addition, the systems and methods may provide the converted image to a laser machine.

Abstract: A system and a method perform a priority-based determination of attendance in a target area with minimized processing and computational requirements. The system dynamically generates seat preference information of each attendee of the target area for generating a prioritized attendee scan data set (PASDS) including one or more priority pairs of attendees frequently identified at each seat. The system generates a reduced feature scan data set including one or more distinct features of each attendee in each priority pair and dynamically configures a seat scan order. For each seat in the seat scan order, the system performs rapid facial recognition of the distinct features of each attendee in each priority pair; and based on the recognition, locks occupancy of the current seat by a recognized attendee and dynamically reduces the PASDS for the subsequent seat, or proceeds to scan the subsequent seat, or determines an absentee in the target area.

Abstract: A method for creating and registering the authentication information is provided. The method includes steps of: (a) an intermediate server determining whether the specific user's public key is registered if (i) the specific user's public key and (ii) a hash value of the specific user's information or its processed value are acquired from the biometric authentication server which received a request for registration of authentication information; and (b) the intermediate server, if the specific user's public key is determined to be unregistered and at least one certain anchoring condition is satisfied, registering with a database a representative hash value or its processed value in a certain data structure, wherein the representative hash value is created by using (1) a specific hash value and (2) at least one hash value of at least one neighboring node which corresponds to a node of the specific hash value.

Abstract: The present disclosure generally relates to devices and systems that configure data access control and device-associated operating environment parameters based on a detected user identifier. In some examples, a user device identifies a user and configures the electronic device using a user's data access control profile settings and configures an ergonomic environment using the user's operating environmental profile settings. In some examples, the electronic device changes the ergonomic environment for the user, but maintains a data access control setting which was previously set for a different user.

Abstract: An active security token includes: a sentry that controls access to token data disposed on the active security token through verification of user authentication data; the token data including: reference authentication data for verification of user authentication data; and a security phantom including a password file, the security phantom being a public key certificate or a biometric template.

Abstract: A fingerprint sensing integrated circuit device includes a fingerprint sensing device, an encryption unit, a multiplexer and a transmission interface. The encryption unit is connected to the fingerprint sensing device. The multiplexer has an output end, a first input end and a second input end. The first input end of the multiplexer is connected to the fingerprint sensing device. The second input end of the multiplexer is connected to the encryption unit. The multiplexer connects the output end to the second end according to a selection signal. The transmission interface is connected to the output end of the multiplexer.

Abstract: A method, apparatus and computer program product are disclosed to provide for the selective establishment and use of secure communication channels to facilitate the exchange of data objects containing potentially sensitive information in a network environment. In some example implementations, upon detection that the processing of a network entity request implicates the exchange of non-public information amongst one or more other network entities, one or more secure communication channels are established between a secure transfer system and the relevant network entities such that non-public information neither passes to nor resides on system components associated with non-secure network entities.

Abstract: A system may include a first automated teller machine (ATM) and a second ATM, wherein the first ATM and the second ATM are in communication via a local area network. The first ATM obtains a user input value, generate an encryption key based on the user input value, and generates encrypted authentication information based on the encryption key. The first ATM also obtains a first biometric reading, updates a user record based on the first biometric reading, and stores the encrypted authentication information at the first ATM in association with the user record. The second ATM obtains a second biometric reading and a duplicate value, retrieves the encrypted authentication information associated with the user record based on the second biometric reading, generates a decryption key based on the duplicate value, and decrypts the encrypted authentication information to retrieve the authentication information.

Abstract: Adjusting network bandwidth is provided. An indication that a client device corresponding to a user is using a level of bandwidth of a network that the computer and client device are connected to is received. An indication via a set of biometric sensors communicatively coupled to the client device that the user is experiencing an increased stress level also is received. The level of bandwidth allocated to the client device of the user is increased based on the received indication that the user is experiencing the increased stress level.

Abstract: A mechanism is provided for direct interaction between an individual and a communication network. Captured data is received of the individual in an environment to be analyzed by a network management computer. The data is captured by network sensors. The network management computer determines that the individual is a subscriber to services of the communication network by identifying the subscriber from the data that has been captured. The subscriber is registered with a network carrier that operates and provides the services on the communication network. The data is obtained without assistance from a subscriber owned device providing the data. The data is analyzed to interpret commands when presented by the subscriber via the network sensors. The commands include gesture commands from the subscriber. An action is performed for the subscriber based on the commands.

Abstract: Disclosed are an apparatus and method that enables an owner/administrator to manage access to a shared resource based on identity that is established by use of biometric data. For example, access to a shared physical resource can be restricted via use of a biometric locking device. An access management platform can be used to authorize a new user to access the shared resource. Once authorized, the new user can unlock the biometric locking device based on, for example, fingerprint data of his finger. The access management platform can similarly be used to manage access to a virtual shared resource, such as an online account. A virtual locking device, such as a computer that acts as an intermediary between the user and the online account, can be used to restrict access to the online account. The access management platform can enable the user to access the online account based on biometric data.

Abstract: Techniques are described for authenticating a user to perform secure transactions with a secure system via social media channels. In one example, the secure system may comprise a financial institution with which the user has at least one financial account, and the transaction may comprise a transfer of funds initiated within a social media application executing on a user computing device. According to the techniques of this disclosure, the secure system authenticates the user to perform the transactions based on a combination of a device identifier (ID) associated with the user computing device, a biometric ID of the user of the user computing device, and a social media ID associated with a social media account held by the user.

Abstract: Identity management systems and methods. A first and/or second device includes a secure storage storing user-associated security credentials for authorized access to restricted access locations. The second device is associated with a unique identifier.

Abstract: There is provided a biometric authentication method using a portable electronic device. The method includes identifying a gesture of a user to be authenticated through a gesture recognition unit of the portable electronic device and acquiring biometric information of the user through an information input unit of the portable electronic device. The method further includes comparing the identified gesture and the acquired biometric information with an authentication information stored in an information storage unit to perform the biometric authentication of the user, and outputting a result of the biometric authentication.

Abstract: Techniques and devices for seamless authentication using radar are described. In some implementations, a radar field is provided through a radar-based authentication system. The radar-based authentication system can sense reflections from an object in the radar field and analyze the reflections to determine whether the object is a person. In response to determining that the object is a person, the radar-based authentication system can sense an identifying characteristic associated with the person. Based on the identifying characteristic, the radar-based authentication system can determine that the person is an authorized user.

Abstract: Disclosed herein is a device and method for validating users, such as for entry into a given area. The method includes transmitting a plurality of access control tokens from an access control system to a portable device, and detecting proximity a user portable device associated with one of the plurality of access control tokens to the portable device. A symbolic representation of the access control token associated with the user portable device is generated by and displayed on the portable device. Selection of the displayed symbolic representation is accepted at the portable device. The access control system is notified of selection of the displayed symbolic representation, thereby indicating identification of a user associated with the access control token symbolically represented by the symbolic representation. The venue symbolic representation includes at least one pictograph.

Abstract: A user terminal apparatus is provided. The user terminal apparatus for performing a remote control function for an electronic apparatus includes a communication unit configured to communicate with an electronic apparatus for providing a text input user interface (UI), an input unit configured to receive a user command for input of a specific text on the text input UI, a fingerprint scanner provided in the input unit and configured to recognize a user fingerprint, and a controller configured to recognize a user fingerprint according to the user command and to transmit information corresponding to the recognized user fingerprint to the electronic apparatus in response to the electronic apparatus entering a preset text input mode.

Abstract: A system for providing bi-directional visualization of authority of users over SACs in an enterprise-wide network, the system including functionality for providing user-wise visualization of the authority of a given user over at least one SAC in respect of which the user has authority, and functionality for providing SAC-wise visualization for a given SAC of the authority of at least one user over the given SAC.

Abstract: According to an aspect of the present inventive concept there is provided a method for eye tracking, comprising: capturing a sequence of digital images of an eye of a user; outputting data including said sequence of images to an image processing unit; processing said data by the image processing unit to determine a sequence of positions of the eye, each position being indicative of a gaze direction, acquiring biosignal data representing an activity of the eye; and in response to detecting closing of the eye based on the acquired biosignal data, pausing at least one of said capturing, said outputting and said processing. A system for implementing the method is also disclosed.

Abstract: Systems and methods are disclosed which may allow a merchant to wirelessly transmit accepted forms of payment using a beacon installed in the merchant location or near the merchant location. A consumer having a device capable of receiving the wireless transmission may receive the accepted forms of payment and have them displayed on a screen of the device. The device may also send the accepted forms of payment to a remote server that has issued the consumer a programmable credit card such that the remote server can program the credit card based on the forms of payment accepted by the merchant.

Abstract: The invention provides a worksite ingress/egress system for an enclosed worksite with a locked gate capable of being unlocked by an actuator upon receipt of a travel signal communicated via a communications network from an access computer system operating an access authorization system in communications with an identification system. Identification system comprises a reader configured to read a personal token presented by an individual seeking passage through locked gate. Access authorization system sends a pass signal to actuator after a successful parity check between data of a worksite criteria file and data related to said individual, the employer, and worksite.

Abstract: Techniques are disclosed relating to automating permission requests, e.g., in the context of multi-factor authentication. A mobile device may allow a user to automate responses to future permission requests for multi-factor authentication procedures. The mobile device may automatically respond to subsequent permission requests based on one or more automation criteria. Authorized actions may include login, transaction approval, physical access, vehicle ignition, account recovery, etc. The automation criteria may include location, acceleration, velocity, wireless connectivity, proximity to another device, temperature, lighting, noise, time, biometrics, altitude, pressure, image characteristics, etc. Disclosed techniques may increase authorization security while reducing user interaction for multi-factor authentication, in some embodiments.

Abstract: A system for verifying a user identity. The system comprises one or more memory devices storing instructions and one or more processors configured to execute the instructions. The processors are configured to receive information associated with an account of a user. The processors are further configured to generate a first profile, where the first profile being related to the user. The processors also receives an indication that the account is accessed by an accessor through an accessor device; and receive, from the accessor device, identity data comprising a plurality of data subsets associated with the accessor. The processors are configured to store the data subsets in respective clusters. The processors are further configured generate cluster analyses by analyzing the data subsets in respective clusters; and output the cluster analyses to node instances that weighs the cluster analyses outputs.

Abstract: Systems and methods verifying a user during authentication of an integrated device. In one embodiment, the system includes an integrated device and an authentication unit. The integrated device stores biometric data of a user and a plurality of codes and other data values comprising a device ID code uniquely identifying the integrated device and a secret decryption value in a tamper proof format, and when scan data is verified by comparing the scan data to the biometric data, wirelessly sends one or more codes and other data values including the device ID code. The authentication unit receives and sends the one or more codes and the other data values to an agent for authentication, and receives an access message from the agent indicating that the agent successfully authenticated the one or more codes and other data values and allows the user to access an application.

Abstract: An electronic device for acquiring biometric information may include a display, and a fingerprint sensor configured to acquire fingerprint data through at least a partial display region of the display. A processor may execute a first application in which a graphical object is displayed, for controlling a designated function other than a fingerprint registration function. A user input on the graphical object may be used to collect fingerprint information, which is used as part of a fingerprint registration function.

Abstract: Methods, systems, and apparatus, including computer programs encoded on computer storage media, for mapping decentralized identifiers (DIDs) to real-world entities. One of the methods includes: receiving a request for creating a DID; obtaining a proof of identity authentication based on the received request; obtaining the DID based on the proof of identity authentication; and storing a mapping relationship between the proof of identity authentication and the DID.

Abstract: Systems and methods for classification using an explicit feature map or an approximate feature map based on a relative locality measure. In at least one embodiment, a method of authenticating a user operates data points having feature vectors pertaining to user events comprises selecting an approximate feature map based on a subset of features in each data point and a relative locality measure of a cluster including a plurality of the data points; mapping, to a feature space, the subset of features in each data point and a new data point pertaining to a phone call of the user using the selected approximate feature map; determining a classification of the new data point based on its relative locality measure with respect to a cluster in the feature space; storing the classification of the new data point in a memory device; and authenticating the user during the phone call.

Abstract: Systems and methods for securely managing biometric data are provided. In a method conducted at a secure element which is directly connected to a biometric input, biometric data is received directly from the biometric input. A biometric signature based on the biometric data is obtained. A seed value specific to the biometric data is accessed by obtaining the seed value from the biometric data or biometric signature. The biometric signature is encoded using an obscured algorithm and the seed value to generate a token which is output for secure storage within the secure element or secure transmission to a secure server for registration or authentication of the biometric data. Obtaining the seed value from the biometric data or biometric signature can be repeated reliably to obtain the same the seed value.

Abstract: Systems and methods are provided for authorizing a user to access an access-controlled environment. The system includes a system server platform that communicates with fixed PC's, servers and mobile devices (e.g., smartphones) operated by users. The systems and methods described herein enable a series of operations whereby a user attempting to access an access-controlled environment is prompted to biometrically authenticate using the user's preregistered mobile device. Biometric authentication can include capturing images of the user's biometric features, encoding the features as a biometric identifier, comparing the biometric identifier to a previously generated biometric identifier and determining liveness. In addition, the authentication system can further authorize the user and electronically grant access to the access-controlled environment.

Abstract: Data is received as part of an authentication procedure to identify a user. Such data characterizes a user-generated biometric sequence that is generated by the user interacting with at least one input device according to a desired biometric sequence. Thereafter, using the received data and at least one machine learning model trained using empirically derived historical data generated by a plurality of user-generated biometric sequences (e.g., historical user-generated biometric sequences according to the desired biometric sequence, etc.), the user is authenticated if an output of the at least one machine learning model is above a threshold. Data can be provided that characterizes the authenticating. Related apparatus, systems, techniques and articles are also described.

Abstract: The invention is a method for deploying a trusted identity for a user issued by an issuer. The user has a user device configured to send a request for signature to an issuer device handled by the issuer. The request comprises a user public key allocated to the user. The issuer device is configured to compute an issuer signature by signing both the user's trusted identity and the user public key using an issuer private key allocated to the issuer. A block chain transaction containing the issuer signature is created and submitted to a Block Chain for transaction verification and storage.

Abstract: A system and method for authentication are provided. The system for authentication according to one embodiment of the present disclosure includes: a service server configured to: receive a first authentication request message from an authentication server and convert a random number included in the first authentication request message into an optical code; a first user terminal configured to receive the optical code from the service server and display the optical code; and a second user terminal configured to: recognize the random number by capturing an image of the displayed optical code in response to receiving a second authentication request message from the service server and authenticate a user by using the random number, the second authentication request message, and biometric information of the user.

Abstract: A method for estimating the weight of a subject while moving includes attaching one or more force sensors to the subject such that the force sensors measure a force exerted between each foot of the subject and a surface on which the subject is positioned, monitoring the one or more force sensors while the subject is moving to obtain a moving force measurement, processing the moving force measurement to determine a peak level of the moving force, a valley level of the moving force measurement, and a force range of the moving force measurement, determining an acceleration of center of mass of the subject from the force range, and estimating the weight of the subject while moving from the valley level and the acceleration of center of mass.

Abstract: A method and system for connecting an Internet of Things (IoT) hub to a wireless network. One embodiment of the method includes establishing a secure communication channel between an IoT hub and an IoT service through a client device using a first secret; generating a second secret on the client device and transmitting it to the IoT hub; encrypting a wireless key using the second secret to generate a first-encrypted key and transmitting it to the IoT service; encrypting the first-encrypted key using the first secret to generate a twice-encrypted key and transmitting it to the IoT hub over the secure communication channel; decrypting the twice-encrypted key at the IoT hub using the first secret to generate the first-encrypted key and decrypting it using the second secret to generate the wireless key usable to establish a secure wireless connection between the IoT hub and the local wireless network.

Abstract: Maintaining a plurality of different sets of data groups for virtualized credentials of a holder includes storing a first subset of the data groups according to a standard for storing data groups, where the standard verifies each data group in the first subset of data groups, storing a second subset of the data groups as a plurality of auxiliary data elements that are separate from the first subset, where auxiliary data elements are not directly accessible using the standard, providing at least one custom data group in the first subset that verifies each of the auxiliary data elements, and verifying at least one of the auxiliary data elements using the custom data group and verifying the custom data group using the standard. The standard may be ISO 18013. The digital signature may be provided by a party that is trusted by a relying party that receives data from the holder.

Abstract: A system includes a client device and a server computer coupled to a network and in communication, via the network, with the client device. The server computer is configured to receive, from the client device, a queue request. The queue request includes a candidate identifier.

Abstract: A system includes a client device including a processor configured to implement a candidate evaluation software application and a server computer in communication, via a network, with the client device. The server computer is configured to receive, from the client device, a queue request. The queue request includes a candidate identifier. The server computer includes determine, using the candidate identifier, a candidate target attribute, identify a first candidate queue from a plurality of candidate queues using the candidate target attribute, and encode into the first candidate queue a reference to the candidate identifier. The server computer is configured to identify, in a first administrative queue, an administrator identifier, the first administrative queue being associated with the candidate target attribute, and establish at least one of a video and an audio data connection between the client device and an administrator device associated with the administrator identifier.

Abstract: A method, apparatus and a computer-readable medium for securing an automobile ignition key, including scanning an authorized user's fingerprint, as well as inputting a security code chosen by the authorized user. Verifying users whether they are authorized to access the automobile ignition key, allowing a user when verified, and denying access when the verification steps fails.

Abstract: A method for verifying the identity of a user is provided that includes generating, by a computing device, a parameter for each processed frame in a video of biometric data captured from a user. The parameter results from movement of the computing device during capture of the biometric data. Moreover, the method includes generating a signal for the parameter and calculating a confidence score based on the generated signal and a classification model specific to the user. The classification model is generated from other signals generated for the parameter. Furthermore, the method includes verifying the identity of the user as true when the confidence score is at least equal to a threshold score.

Abstract: Described is a secure system for generic pattern matching. In operation, the system determines if a pattern p, as presented by a second party, is within a textual pattern T, as maintained by a first party. In making such a determination, the system uses a series of binary value matrices and corresponding pairs of encrypted permuted matrices. Challenge bits are then used to generate permutations and later verify correctness of the various encrypted permuted matrices. If it is determined that pattern p is within text T, the, for example, an access protocol is initiated.

Abstract: A technology for a swappable wearable device that is operable to monitor one or more physiological parameters of a user. Physiological measurement data from a physiological measurement sensor attached to the swappable wearable device or a physiological measurement sensor in communication with the swappable wearable device can be received at the swappable wearable device. The physiological measurement data can be stored on a non-transitory computer readable medium coupled to swappable wearable device. The stored physiological measurement data can be communicated to another swappable wearable device or a synchronization platform when a selected event occurs.

Abstract: Methods and systems for permitting sensitive cardholder data to be securely stored in a regular storage element of a smart transaction card. In an embodiment, a transaction card processor of the smart transaction card installs a security application compatible with the operating system of the smart transaction card and that includes a white box cardlet. The transaction card processor uses a code protection process of the white box cardlet to obfuscate biometric reference template data stored in the regular memory of a biometric sensor, next stores the obfuscated biometric reference template data in the regular memory, and then re-obfuscates the biometric reference template data at a predetermined time interval.