Systems, methods, and computer program products may store, in a distributed cache, a rule associated with a plurality of accounts in a Real-Time Payments (RTP) network, the rule being stored in association with account data associated with the plurality of accounts; receive an account level exclusion directive associated with the account; store, in the distributed cache, the account level exclusion directive in association with the account; receive transaction data associated with a transaction in the RTP network between the account and another account; retrieve, from the distributed cache, the rule, the account level exclusion directive, and the account data associated with the account; exclude, based on the account level exclusion directive, use of the rule for processing the transaction; and process, without applying the rule, the transaction in the RTP network.
G06Q 20/40 - Autorisation, p.ex. identification du payeur ou du bénéficiaire, vérification des références du client ou du magasin; Examen et approbation des payeurs, p.ex. contrôle des lignes de crédit ou des listes négatives
G06Q 20/10 - Architectures de paiement spécialement adaptées aux systèmes de banque à domicile
An event driven system and method for traveler thematic destination segmentation are disclosed. The event driven system includes a processor and a memory coupled to the processor to store machine instructions executable by the processor. When executed by the processor the machine instructions cause the processor to extract clearance and settlement transaction data from a database, prepare the clearance and settlement transaction data, clean geo-data associated with the clearance and settlement transaction data, enrich and standardize the geo-data, scrape theme data associated with a trip from a public network, verify the relevant theme data associated with the trip, enrich and standardize geo-data associated with the relevant theme data associated with the trip, and map the enriched and standardized geo-data associated with the clearance and settlement transaction data to the enriched and standardized geo-data associated with the relevant theme data associated with the trip.
G06Q 20/40 - Autorisation, p.ex. identification du payeur ou du bénéficiaire, vérification des références du client ou du magasin; Examen et approbation des payeurs, p.ex. contrôle des lignes de crédit ou des listes négatives
G06Q 20/38 - Architectures, schémas ou protocoles de paiement - leurs détails
3.
System, Method, and Computer Program Product for Testing a Machine Learning Model Based on Simulations in an Offline Environment
Provided is a system for testing a machine learning (ML) model based on simulations in an offline environment that includes at least one processor programmed or configured to receive historical transaction data, generate online simulation data, wherein generating the online simulation data includes modifying the historical timestamp of each data record to provide online simulation data. The processor is further programmed or configured to determine a timeline for a plurality of data insertion actions and a plurality of data request actions based on the online simulation data, perform a simulation of online activities involving a stateful ML model using the timeline for the plurality of data insertion actions and the plurality of data request actions, and validate the stateful ML model based on the simulation of online activities. Methods and computer program products are also provided.
Methods are provided for maintaining user privacy, and may include establishing a secret key for communication between a plurality of user devices, the plurality of user devices including a first user device associated with a requesting user and a second user device associated with a second user, wherein at least one server computer does not have access to the secret key; receiving from the first user device, a split-payment request message comprising encrypted data, the encrypted data included in the split-payment request message encrypted based on the secret key; generating an encrypted balance for the requesting user and the second user based on the encrypted data of the split-payment request message; and transmitting to the second user device, a split-payment confirmation message including the encrypted balance for the requesting user and/or the second user. Systems and computer program products are also provided.
A method is disclosed. The method comprises generating, by sender device or a sender computer associated with a sender, a base token in a token space associated with parameters. The base token can comprise one or more token attributes within the parameters, and an amount. The base token can then be signed, by the sender device or the sender computer, to form a minted token. The method may then include transmitting, by the sender device to a receiver device, a transfer request comprising the minted token.
G06Q 20/10 - Architectures de paiement spécialement adaptées aux systèmes de banque à domicile
G06Q 20/36 - Architectures, schémas ou protocoles de paiement caractérisés par l'emploi de dispositifs spécifiques utilisant des portefeuilles électroniques ou coffres-forts électroniques
G06Q 20/38 - Architectures, schémas ou protocoles de paiement - leurs détails
G06Q 20/40 - Autorisation, p.ex. identification du payeur ou du bénéficiaire, vérification des références du client ou du magasin; Examen et approbation des payeurs, p.ex. contrôle des lignes de crédit ou des listes négatives
6.
MULTI-DIRECTIONAL WALLET CONNECTOR APPARATUSES, METHODS AND SYSTEMS
The W-CONNECTOR (“W-CONNECTOR”) facilitates the enrollment of payment accounts in a consumer's virtual wallet. The consumer may be logged into their payment account issuer's web site and designate one or more payment accounts for enrollment in a virtual wallet. The issuer may then share account, billing and/or other relevant information with the virtual wallet provider to facilitate the enrollment of the designated payment accounts in the virtual wallet. The W-CONNECTOR may also be configured to facilitate the creation and funding of pre-paid accounts in a consumer's virtual wallet.
G06Q 20/10 - Architectures de paiement spécialement adaptées aux systèmes de banque à domicile
G06Q 20/28 - Schémas de prépaiement, c. à d. de "paiement préalable"
G06Q 20/36 - Architectures, schémas ou protocoles de paiement caractérisés par l'emploi de dispositifs spécifiques utilisant des portefeuilles électroniques ou coffres-forts électroniques
A Web site comprise detection method and system are disclosed. The method includes obtaining a resource identifier associated with a remote computer, and then receiving source code associated with the resource identifier. The method also includes parsing the source code, analyzing the source code to determine an indicator of compromise is present in the source code, determining that the indicator of compromise is associated with malware meta-data, and storing the resource identifier associated with the source code associated with the malware meta-data in a database.
Methods, systems, and computer program products for learning continuous embedding space of real time payment (RTP) transactions are provided. A method may include receiving RTP data including a plurality of attributes, including a sender and a receiver. One attribute is selected as a target attribute. The remaining attributes are input into a first machine learning model (e.g., NLP model), comprising at least one embedding layer and one hidden layer, which is trained to predict the target attribute. After the model is trained, each of the remaining attributes are converted to a first vector using the at least one embedding layer of the machine learning model to form a first set of vectors. The first set of vectors are stored and subsequently input into a second machine learning model to perform at least one second task different than the first task.
G06Q 20/40 - Autorisation, p.ex. identification du payeur ou du bénéficiaire, vérification des références du client ou du magasin; Examen et approbation des payeurs, p.ex. contrôle des lignes de crédit ou des listes négatives
G06N 5/022 - Ingénierie de la connaissance; Acquisition de la connaissance
G06N 5/04 - Modèles d’inférence ou de raisonnement
A computer-implemented method comprising providing a graphical user interface for user selection of fraud rules that comprises fraud transaction parameters determined based on transaction parameters included in a plurality of known fraudulent transactions. The GUI also comprises high risk merchants with a fraud rate that exceeds a threshold fraud rate. The method includes receiving a user selection of fraud rules relating to at least the fraud transaction parameters, the high risk merchants, and the high frequency merchants. The method includes receiving test transaction data including at least one transaction parameter and at least one merchant associated with the test transaction, applying the fraud rules to the received transaction data to identify probable fraudulent transactions.
G06Q 20/40 - Autorisation, p.ex. identification du payeur ou du bénéficiaire, vérification des références du client ou du magasin; Examen et approbation des payeurs, p.ex. contrôle des lignes de crédit ou des listes négatives
G06N 20/20 - Techniques d’ensemble en apprentissage automatique
G06Q 20/42 - Confirmation, p.ex. contrôle ou autorisation de paiement par le débiteur légal
10.
Method and System for Enabling Speaker De-Identification in Public Audio Data by Leveraging Adversarial Perturbation
Provided is a method for enabling speaker de-identification in public audio data by leveraging adversarial perturbation. The method may include receiving audio data associated with at least one voice sample. One or more of the voice sample(s) may be perturbed toward an edge of a decision boundary of at least one classifier model. One pitch of each voice sample may be perturbed to shift each voice sample across the decision boundary of the at least one classifier model to provide at least one de-identified voice sample. A media file with the at least one de-identified voice sample may be encoded. A system and computer program product are also disclosed.
G10L 21/013 - Adaptation à la hauteur tonale ciblée
G10L 25/18 - Techniques d'analyses de la parole ou de la voix qui ne se limitent pas à un seul des groupes caractérisées par le type de paramètres extraits les paramètres extraits étant l’information spectrale de chaque sous-bande
G10L 25/90 - Détermination de la hauteur tonale des signaux de parole
A method is disclosed and includes receiving a push transfer message with a first transaction amount, and a digital tag, a credential or a token from an application server computer, in a transaction. In the transaction, a first user using a first user device interacts with a second user using the digital tag. The digital tag associated with the credential or the token, and the first user device has a transfer application that receives the digital tag and is in communication with the application server computer. The push transfer message is transmitted to an authorizing entity computer where a second amount is credited to the second user's account.
G06Q 20/10 - Architectures de paiement spécialement adaptées aux systèmes de banque à domicile
G06Q 20/32 - Architectures, schémas ou protocoles de paiement caractérisés par l'emploi de dispositifs spécifiques utilisant des dispositifs sans fil
G06Q 20/40 - Autorisation, p.ex. identification du payeur ou du bénéficiaire, vérification des références du client ou du magasin; Examen et approbation des payeurs, p.ex. contrôle des lignes de crédit ou des listes négatives
The Board of Trustees of the Leland Stanford Junior University (USA)
Inventeur(s)
Agrawal, Shashank
Bünz, Karl Benedikt
Zamani, Mahdi
Boneh, Dan
Abrégé
Blockchain-based, smart contract platforms have great promise to remove trust and add transparency to distributed applications. However, this benefit often comes at the cost of greatly reduced privacy. Techniques for implementing a privacy-preserving smart contract is described. The system can keep accounts private while not losing functionality and with only a limited performance overhead. This is achieved by building a confidential and anonymous token on top of a cryptocurrency. Multiple complex applications can also be built using the smart contract system.
G06Q 20/38 - Architectures, schémas ou protocoles de paiement - leurs détails
G06Q 20/06 - Circuits privés de paiement, p.ex. impliquant de la monnaie électronique utilisée uniquement entre les participants à un programme commun de paiement
G06Q 20/36 - Architectures, schémas ou protocoles de paiement caractérisés par l'emploi de dispositifs spécifiques utilisant des portefeuilles électroniques ou coffres-forts électroniques
H04L 9/00 - Dispositions pour les communications secrètes ou protégées; Protocoles réseaux de sécurité
H04L 9/06 - Dispositions pour les communications secrètes ou protégées; Protocoles réseaux de sécurité l'appareil de chiffrement utilisant des registres à décalage ou des mémoires pour le codage par blocs, p.ex. système DES
H04L 9/32 - Dispositions pour les communications secrètes ou protégées; Protocoles réseaux de sécurité comprenant des moyens pour vérifier l'identité ou l'autorisation d'un utilisateur du système
A method includes a host computer creating a log file containing data used to determine if the host computer is being controlled by a viewer computer. The host computer transmits an interaction request message comprising the log file to an authentication server computer. The authentication server computer determines if an interaction associated with the interaction request message is authentic or not authentic.
A method is configured to perform a continuous software testing. A processor receives, from a code developer computer, a request to commit a code portion for a microservice to a code repository including a source code for a plurality of microservices. The processor executes, using the source code into which the code portion is incorporated, a test transaction routine including tests respectively associated with the plurality of microservices. The processor determines if one or more errors occurred in response to the executing the test transaction routine. If no errors occurred, the code portion is committed to the code repository, and, if one or more errors occurred, a notification is sent to the code developer computer regarding the one or more errors without committing the code portion to the code repository.
Described are a method, system, and computer program product for generating robust graph neural networks using universal adversarial training. The method includes receiving a graph neural network (GNN) model and a bipartite graph including an adjacency matrix, initializing model parameters of the GNN model, initializing perturbation parameters, and sampling a subgraph of a complementary graph based on the bipartite graph. The method further includes repeating until convergence of the model parameters: drawing a random variable from a uniform distribution; generating a universal perturbation matrix based on the subgraph, the random variable, and the perturbation parameters; determining Bayesian Personalized Ranking (BPR) loss by inputting the bipartite graph and the universal perturbation matrix to the GNN model; updating the perturbation parameters based on stochastic gradient ascent; and updating the model parameters based on stochastic gradient descent. The method further includes, in response to convergence of the model parameters, outputting the model parameters.
Provided is a computer-implemented method for generating synthetic graphs that simulate real-time payment transactions that includes generating a base payment graph includes a plurality of nodes and a plurality of edges connecting the plurality of nodes, wherein each node represents an entity and each edge represents a probability that a real-time-payment transaction may be conducted involving two entities that are connected by the edge, wherein the real-time payment transaction is artificially created, generating a plurality of dynamic payment graphs based on the base payment graph, inserting patterns representing adversarial activity into the plurality of dynamic payment graphs, and performing an action associated with a machine learning technique using the plurality of dynamic payment graphs. Systems and computer program products are also provided.
G06Q 20/40 - Autorisation, p.ex. identification du payeur ou du bénéficiaire, vérification des références du client ou du magasin; Examen et approbation des payeurs, p.ex. contrôle des lignes de crédit ou des listes négatives
17.
NEIGHBORHOOD-SPECIFIC LOSS FOR CORRECTING SCORE DISTRIBUTION DISTORTION
A method is disclosed. The method includes receiving a training dataset including a set of training samples. The method then includes obtaining a first parameter value and a second parameter value. After the parameters are determined, the training dataset can be fed into a machine learning model to train the machine learning model using a neighborhood-specific loss function. The method can then include receiving a second dataset including a set of second samples. Each second sample can then be input into the trained machine learning model to determine a prediction score for each second sample, and the prediction scores can form a bimodal distribution centered around the first parameter and the second parameter.
Provided are systems for analyzing a relational database using embedding learning that may include at least one processor programmed or configured to generate one or more entity-relation matrices from a relational database and perform, for each entity-relation matrix of the one or more entity-relation matrices, an embedding learning process on an embedding associated with an entity. When performing the embedding learning process on the embedding associated with the entity, the at least one processor is programmed or configured to generate an updated embedding associated with the entity. Computer-implemented methods and computer program products are also provided.
Embodiments of the invention involve using biometric templates to wirelessly authenticate individuals. In one embodiment, a mobile device may generate a first biometric template and a first public value from a first biometric sample of a user and generate a first cryptographic key by passing the first biometric template to a fuzzy extractor's generate function. An access device may generate a second biometric template from a second biometric sample of the user, generate a second secret cryptographic key by passing the second biometric template and the first public value to the fuzzy extractor's reproduce function, encrypt the second biometric template with the second secret cryptographic key, and broadcast the encrypted template to a plurality of nearby mobile devices including the mobile device. If the mobile device is able to decrypt the encrypted template with the first cryptographic key, the access device can associate the user with the mobile device.
G06Q 20/40 - Autorisation, p.ex. identification du payeur ou du bénéficiaire, vérification des références du client ou du magasin; Examen et approbation des payeurs, p.ex. contrôle des lignes de crédit ou des listes négatives
G06F 18/22 - Critères d'appariement, p.ex. mesures de proximité
G06F 21/32 - Authentification de l’utilisateur par données biométriques, p.ex. empreintes digitales, balayages de l’iris ou empreintes vocales
G06F 21/45 - Structures ou outils d’administration de l’authentification
G06N 7/02 - Agencements informatiques fondés sur des modèles mathématiques spécifiques utilisant la logique floue
G06Q 20/32 - Architectures, schémas ou protocoles de paiement caractérisés par l'emploi de dispositifs spécifiques utilisant des dispositifs sans fil
G06Q 20/38 - Architectures, schémas ou protocoles de paiement - leurs détails
G06V 10/75 - Appariement de motifs d’image ou de vidéo; Mesures de proximité dans les espaces de caractéristiques utilisant l’analyse de contexte; Sélection des dictionnaires
G06V 40/50 - Traitement de données biométriques ou leur maintenance
H04L 9/32 - Dispositions pour les communications secrètes ou protégées; Protocoles réseaux de sécurité comprenant des moyens pour vérifier l'identité ou l'autorisation d'un utilisateur du système
A system, method, and computer program product are provided for consent management. A method may include receiving a first data request for user data associated with a user, the user data stored in a user data database; communicating a consent request to the requester system; receiving a consent response from the requester system; storing consent data associated with the consent response for the user data requested in the first data request in an immutable ledger; receiving a consent verification request from the user data database, the consent verification request based on a second data request for the user data from the requester system to the user data database; verifying the consent verification request based on the consent data; and communicating a consent verification response to the user data database, the consent verification response indicating consent from the user to share the user data with the requester system.
Techniques for managing an application token may include providing, by a first service provider application on a communication device to a first service provider computer, a first request for a first application token, receiving, by an account management application on the communication device from a token service computer in communication with the first service provider computer, the first application token, and storing the first application token in a token container in the account management application.
G06F 21/33 - Authentification de l’utilisateur par certificats
G06F 21/44 - Authentification de programme ou de dispositif
G06F 21/62 - Protection de l’accès à des données via une plate-forme, p.ex. par clés ou règles de contrôle de l’accès
H04L 9/32 - Dispositions pour les communications secrètes ou protégées; Protocoles réseaux de sécurité comprenant des moyens pour vérifier l'identité ou l'autorisation d'un utilisateur du système
Methods and systems for mobile cardholder authentication are provided. An access device can obtain interaction data produced during an interaction between a user and the resource provider computer in which the user attempts to obtain a resource from a resource provider and user device data comprising a cryptogram and supplemental data from the user device or another user device operated by the user. The cryptogram of the user device can be validated and the interaction data and user device data can be compared to determine that the user interacting with the access device is the same user as the user that interacted with the resource provider computer. The access device can provide an indication that the resource will be provided to the user responsive to determining that the user interacting with the access device is the same user as the user that interacted with the resource provider computer.
G06F 21/35 - Authentification de l’utilisateur impliquant l’utilisation de dispositifs externes supplémentaires, p.ex. clés électroniques ou cartes à puce intelligentes communiquant sans fils
G06Q 20/32 - Architectures, schémas ou protocoles de paiement caractérisés par l'emploi de dispositifs spécifiques utilisant des dispositifs sans fil
G06Q 20/40 - Autorisation, p.ex. identification du payeur ou du bénéficiaire, vérification des références du client ou du magasin; Examen et approbation des payeurs, p.ex. contrôle des lignes de crédit ou des listes négatives
H04W 12/069 - Authentification utilisant des certificats ou des clés pré-partagées
H04W 12/47 - Dispositions de sécurité utilisant des modules d’identité utilisant la communication en champ proche [NFC] ou des modules d’identification par radiofréquence [RFID]
A method includes establishing, with a second computer, a first interaction channel with a first initial value associated with the first computer and a second initial value associated with the second computer, and recording them on a blockchain. The method includes conducting with the second computer, a plurality of interactions without recording the interactions on the blockchain. After that, the method includes determining a first current value associated with the first computer, which is than the first initial value. The method also includes initiating a transfer of transfer value from the first computer to a third computer. The method also includes conducting, with the second computer, an update interaction to update of the first current value by the transfer value to obtain a second current value, the second current value used by the first computer in the first interaction channel.
G06Q 20/06 - Circuits privés de paiement, p.ex. impliquant de la monnaie électronique utilisée uniquement entre les participants à un programme commun de paiement
H04L 9/00 - Dispositions pour les communications secrètes ou protégées; Protocoles réseaux de sécurité
24.
System, Method, and Computer Program Product for Dynamic Node Classification in Temporal-Based Machine Learning Classification Models
Described are a system, method, and computer program product for dynamic node classification in temporal-based machine learning classification models. The method includes receiving graph data of a discrete time dynamic graph including graph snapshots, and node classifications associated with all nodes in the discrete time dynamic graph. The method includes converting the discrete time dynamic graph to a time-augmented spatio-temporal graph and generating an adjacency matrix based on a temporal walk of the time-augmented spatio-temporal graph. The method includes generating an adaptive information transition matrix based on the adjacency matrix and determining feature vectors based on the nodes and the node attribute matrix of each graph snapshot. The method includes generating and propagating initial node representations across information propagation layers using the adaptive information transition matrix and classifying a node of the discrete time dynamic graph subsequent to the first time period based on final node representations.
A method includes an authorizing entity computer receiving a request for a virtual access credential from a communication device operated by a user. The authorizing entity computer can then transmit the virtual access credential to the communication device operated by the user. The authorizing entity computer can then receive an authorization request message comprising the virtual access credential from an access device associated with a resource provider for an interaction between the user and the resource provider. The authorizing entity computer can then determine an account identifier linked to the virtual access credential. The account identifier being associated with an account maintained by an external entity computer that is external to the authorizing entity computer. The authorizing entity computer can then determine that the interaction is authorized based upon determining the account identifier associated with the virtual access credential.
H04L 9/32 - Dispositions pour les communications secrètes ou protégées; Protocoles réseaux de sécurité comprenant des moyens pour vérifier l'identité ou l'autorisation d'un utilisateur du système
G06Q 20/38 - Architectures, schémas ou protocoles de paiement - leurs détails
G06Q 20/40 - Autorisation, p.ex. identification du payeur ou du bénéficiaire, vérification des références du client ou du magasin; Examen et approbation des payeurs, p.ex. contrôle des lignes de crédit ou des listes négatives
A method is disclosed. The method includes presenting, by a user device, a completion page for a transaction to a user; capturing, by the user device, an image of the completion page; storing, by the user device, completion page image data for the image of the completion page; and presenting, by the user device, transaction data for the transaction along with the image of completion page to the user, the image of the completion page generated using the stored completion page image data.
A system and method is disclosed. The method comprises a client device receiving a verification request comprising an interaction identifier. The client device can then query a full node for a random sampling of block headers from the full node. The client device can receive the random sampling of block headers from the full node, and verify the random sampling of block headers. The client device can then determine that the blockchain maintained by the full node is valid after verifying the random sampling of block headers.
H01B 1/02 - Conducteurs ou corps conducteurs caractérisés par les matériaux conducteurs utilisés; Emploi de matériaux spécifiés comme conducteurs composés principalement de métaux ou d'alliages
H01B 7/28 - Protection contre les dommages provoqués par des facteurs extérieurs, p.ex. gaines ou armatures par l'humidité, la corrosion, les attaques chimiques ou les conditions atmosphériques
H01B 7/295 - Protection contre les dommages provoqués par des facteurs extérieurs, p.ex. gaines ou armatures par des températures extrêmes ou par les flammes en utilisant un matériau résistant aux flammes
H04L 9/32 - Dispositions pour les communications secrètes ou protégées; Protocoles réseaux de sécurité comprenant des moyens pour vérifier l'identité ou l'autorisation d'un utilisateur du système
H05B 1/02 - Dispositions de commutation automatique spécialement adaptées aux appareils de chauffage
H05B 3/04 - Joints étanches à l'eau ou à l'air pour appareils de chauffage
H05B 3/14 - Eléments chauffants caractérisés par la composition ou la nature des matériaux ou par la disposition du conducteur caractérisés par la composition ou la nature du matériau conducteur le matériau étant non métallique
28.
Method and System for Routing Payment Transactions of a Payment Account
Disclosed herein is a method and system for routing payment transactions of a payment account. After the payment transaction is initiated, a payment server identifies flag information from the payment request indicating a payment account to be multi-configurable. When the payment server identifies that the payment request is from the POS device, the payment server retrieves primary configuration details corresponding to the payment account from a routing service and routes the payment transaction for the payment request to an issuer corresponding to the primary configuration details. Further, when the payment server identifies that the payment request is from a payment gateway, the payment server retrieves a list of names of configuration details corresponding to the payment account from the routing service for selection. Upon selection, the payment server retrieves configuration details corresponding to the selected issuer and routes the payment transaction to the issuer for completing the payment transaction.
G06Q 20/20 - Systèmes de réseaux présents sur les points de vente
G06Q 20/02 - Architectures, schémas ou protocoles de paiement impliquant un tiers neutre, p.ex. une autorité de certification, un notaire ou un tiers de confiance
Systems, methods, and computer program products for multi-domain ensemble learning based on multivariate time sequence data are provided. A method may include receiving multivariate sequence data. At least a portion of the multivariate sequence data may be inputted into a plurality of anomaly detection models to generate a plurality of scores. The multivariate sequence data may be combined with the plurality of scores to generate combined intermediate data. The combined intermediate data may be inputted into a combined ensemble model to generate an output score. In response to determining that the output score satisfies a threshold, at least one of an alert may be communicated to a user device, the multivariate sequence data may be inputted into the feature-domain ensemble model to generate a feature importance vector, or at least one of a model-domain, a time-domain, a feature-domain, or the combined ensemble model may be updated.
Provided is a computer-implemented method for communicating transaction data between mobile devices, including: registering account data associated with a merchant account corresponding to short message service (SMS) device data associated with a point-of-sale (POS) device, and account data associated with a user account as corresponding to SMS device data associated with a user device; receiving, via an SMS communication connection, transaction data associated with a transaction from the POS device, verifying the POS device and the user device are registered; in response to determining that an account balance of the user account is greater than the transaction authorization limit, transmitting a first confirmation message associated with the transaction, via an SMS communication connection, to the user device to confirm the transaction; and in response to receiving a first confirmation response associated with the transaction, via an SMS communication connection, processing the transaction data.
G06Q 20/32 - Architectures, schémas ou protocoles de paiement caractérisés par l'emploi de dispositifs spécifiques utilisant des dispositifs sans fil
G06Q 20/20 - Systèmes de réseaux présents sur les points de vente
G06Q 20/40 - Autorisation, p.ex. identification du payeur ou du bénéficiaire, vérification des références du client ou du magasin; Examen et approbation des payeurs, p.ex. contrôle des lignes de crédit ou des listes négatives
G06Q 20/42 - Confirmation, p.ex. contrôle ou autorisation de paiement par le débiteur légal
31.
SYSTEM AND METHOD FOR ACCOUNT VERIFICATION BY AERIAL DRONE
A verification application executing at a user's mobile phone directs the user to take a photo of an identification document (e.g., driver's license or other form of government issued identification) or of their face. After the verification application sends the image to a backend service, the service may then dispatch a drone to the user's location and take a photograph of the user. The service may then validate the previously-imaged document or photo of the user's face against the photograph of the user and the geolocation sent with the first image. The service may then verify the new account and provision a token to the verification application to complete a secured account generation.
G06V 40/16 - Visages humains, p.ex. parties du visage, croquis ou expressions
H04W 4/80 - Services utilisant la communication de courte portée, p.ex. la communication en champ proche, l'identification par radiofréquence ou la communication à faible consommation d’énergie
Provided is a computer-implemented method for dynamically designating a settlement window for a transaction within a settlement cycle between an acquirer and an issuer. The method includes receiving a plurality of transaction records associated with a plurality of transactions, determining a first settlement window of a plurality of settlement windows to assign a transaction record of the plurality of transaction records, assigning the transaction record of the plurality of transaction records to the first settlement window based on determining the first settlement window of the plurality of settlement windows to assign the transaction record, and performing a settlement function for a transaction associated with the transaction record assigned to the first settlement window based on assigning the transaction record of the plurality of transaction records to the first settlement window. A system and computer program product are also disclosed.
G06Q 20/02 - Architectures, schémas ou protocoles de paiement impliquant un tiers neutre, p.ex. une autorité de certification, un notaire ou un tiers de confiance
G06Q 20/34 - Architectures, schémas ou protocoles de paiement caractérisés par l'emploi de dispositifs spécifiques utilisant des cartes, p.ex. cartes à puces ou cartes magnétiques
G06Q 20/40 - Autorisation, p.ex. identification du payeur ou du bénéficiaire, vérification des références du client ou du magasin; Examen et approbation des payeurs, p.ex. contrôle des lignes de crédit ou des listes négatives
33.
VERIFICATION OF BIOMETRIC TEMPLATES FOR PRIVACY PRESERVING AUTHENTICATION
Secure protocols for external-facing authentication are provided for both user templates stored on their devices and the biometric measurement captured by external sensors of an access device. The protocols provide different levels of security, ranging from passive security with some leakage to active security with no leakage. A packing technique is also provided. Zero-knowledge techniques are used during enrollment to validate a norm of user templates and knowledge of the plaintext biometric template. Once enrolled, the verifier can sign the encrypted template for use in a later matching phase with an access device.
H04L 9/32 - Dispositions pour les communications secrètes ou protégées; Protocoles réseaux de sécurité comprenant des moyens pour vérifier l'identité ou l'autorisation d'un utilisateur du système
H04L 9/30 - Clé publique, c. à d. l'algorithme de chiffrement étant impossible à inverser par ordinateur et les clés de chiffrement des utilisateurs n'exigeant pas le secret
An issuing authority (IA) may validate the identity of a user and issue a digital license to the user. IA may generate IA public-private key pair, and provide IA public key to the certification authority (CA). IA may sign the digital license with IA private key, and provision the signed digital license on the user device. IA may request CA to certify the digital license. CA may use IA public key to validate the digital license, and sign IA public key with CA private key, thereby generating a digital certificate associated with the issuing authority that is linked to the digital license. A relying party may use CA public key to validate the digital license. The relying party can retrieve the information from the digital license and trust that the retrieved information is legitimate.
H04L 9/32 - Dispositions pour les communications secrètes ou protégées; Protocoles réseaux de sécurité comprenant des moyens pour vérifier l'identité ou l'autorisation d'un utilisateur du système
G06F 21/10 - Protection de programmes ou contenus distribués, p.ex. vente ou concession de licence de matériel soumis à droit de reproduction
G06F 21/33 - Authentification de l’utilisateur par certificats
35.
System, Method, and Computer Program Product for Diagnosing Faulty Components in Networked Computer Systems
Described are a system, method, and computer program product for diagnosing faulty components in networked computer systems. The method includes generating a graph of a network topology of a networked computer system and determining a set of nodes of the graph affected by a fault in the networked computer system based on an alert associated with the set of nodes. The method also includes determining a faulty component of the networked computer system based on a common node having a plurality of edges connected to nodes in the set of nodes affected by the fault. The method further includes retrieving a set of records of operational changes to the networked computer system and determining an operational change that caused the fault. The method further includes resetting the networked computer system to a prior state before the operational change.
H04L 41/0631 - Gestion des fautes, des événements, des alarmes ou des notifications en utilisant l’analyse de la corrélation entre les notifications, les alarmes ou les événements en fonction de critères de décision, p.ex. la hiérarchie ou l’analyse temporelle ou arborescente
H04L 41/0659 - Gestion des fautes, des événements, des alarmes ou des notifications en utilisant la reprise sur incident de réseau en isolant ou en reconfigurant les entités défectueuses
H04L 41/12 - Découverte ou gestion des topologies de réseau
A method is disclosed. The method includes transmitting, by a user device to an access device, a digital certificate and a seed. The access device encrypts the seed and a first access device key with a public key from the digital certificate to form encrypted data. The method also includes receiving from the access device, the encrypted data, decrypting the encrypted data using a private key corresponding to the public key to obtain the seed and the first access device key, verifying that the seed received from the access device matches the seed sent to the access device, encrypting a secret or derivative thereof with the first access device key to form an encrypted secret or derivative thereof, and transmitting to the access device, the encrypted secret or derivative thereof.
H04L 9/32 - Dispositions pour les communications secrètes ou protégées; Protocoles réseaux de sécurité comprenant des moyens pour vérifier l'identité ou l'autorisation d'un utilisateur du système
H04L 9/30 - Clé publique, c. à d. l'algorithme de chiffrement étant impossible à inverser par ordinateur et les clés de chiffrement des utilisateurs n'exigeant pas le secret
37.
STRUCTURED GRAPH CONVOLUTIONAL NETWORKS WITH STOCHASTIC MASKS FOR NETWORK EMBEDDINGS
A method includes receiving a first data set comprising embeddings of first and second types, generating a fixed adjacency matrix from the first dataset, and applying a first stochastic binary mask to the fixed adjacency matrix to obtain a first subgraph of the fixed adjacency matrix. The method also includes processing the first subgraph through a first layer of a graph convolutional network (GCN) to obtain a first embedding matrix, and applying a second stochastic binary mask to the fixed adjacency matrix to obtain a second subgraph of the fixed adjacency matrix. The method includes processing the first embedding matrix and the second subgraph through a second layer of the GCN to obtain a second embedding matrix, and then determining a plurality of gradients of a loss function, and modifying the first stochastic binary mask and the second stochastic binary mask using at least one of the plurality of gradients.
An automation computer can receive a set of instructions pertaining to a transaction. The automation computer can generate a request to generate and activate a virtual account, where the virtual account is associated with a transaction value and a transaction amount. The virtual account can be managed by an authorization computer that can load a transaction value onto the virtual account in an amount equal to the transaction amount. The authorization computer managing both issuer and acquirer functionality in a transaction settlement can settle the transaction rapidly using the loaded virtual account by depositing the transaction value associated with the virtual account directly into an account of a resource provider.
G06Q 20/06 - Circuits privés de paiement, p.ex. impliquant de la monnaie électronique utilisée uniquement entre les participants à un programme commun de paiement
G06Q 20/28 - Schémas de prépaiement, c. à d. de "paiement préalable"
G06Q 20/36 - Architectures, schémas ou protocoles de paiement caractérisés par l'emploi de dispositifs spécifiques utilisant des portefeuilles électroniques ou coffres-forts électroniques
When a merchant fails to provide payment service details, a system matches in real time information from a data processor with data from the payment service to allow matching a request from the payment system to a particular transaction. The matching system may use high speed buffers and hardware logic to rapidly match related data from different sources at speeds of thousands a second or more. This allows characterization of the transaction for recognition of current offers applicable to the transaction as well as generation of future offers.
Provided is a method for matching card transaction data to mobile application data. The method may include generating a plurality of regions within a geographic area, each region of the plurality of regions associated with a region identifier. Transaction data associated with an account identifier and mobile application data associated a user identifier may be received. A region for each transaction and for each interaction may be determined based on the transaction and interaction locations. A transaction signature may be generated for each account and an interaction signature may be generated for each user identifier. At least one transaction may be matched to at least one interaction signature. At least one account identifier may be linked to at least one user identifier based on matching the at least one transaction signature to the at least one interaction signature. A system and computer program product are also disclosed.
In some embodiments, a method includes receiving zonal topology information related to a zonal topology of a plurality of zones; utilizing the zonal topology information to perform a level strength assessment of each level of a plurality of levels associated with the zonal topology of the plurality of zones; and based on the level strength assessment of each level of the plurality of levels, scaling a target number of resources to at least a first level of the plurality of levels of the zonal topology. In some embodiments of the method, the level strength assessment includes performing a level-by-level breadth analysis of each level of the plurality of levels of the zonal topology.
A plurality of wireless charging systems may be employed within a network at a venue or other physical area to precisely locate a battery-operated node of the network. The location of the node may then be used to manage a transaction between that node and another node within the network when the transaction is associated with that precise location.
H02J 50/40 - Circuits ou systèmes pour l'alimentation ou la distribution sans fil d'énergie électrique utilisant plusieurs dispositifs de transmission ou de réception
H02J 50/80 - Circuits ou systèmes pour l'alimentation ou la distribution sans fil d'énergie électrique mettant en œuvre l’échange de données, concernant l’alimentation ou la distribution d’énergie électrique, entre les dispositifs de transmission et les dispositifs de réception
H02J 50/12 - Circuits ou systèmes pour l'alimentation ou la distribution sans fil d'énergie électrique utilisant un couplage inductif du type couplage à résonance
H02J 50/20 - Circuits ou systèmes pour l'alimentation ou la distribution sans fil d'énergie électrique utilisant des micro-ondes ou des ondes radio fréquence
Systems and methods for processing a financial transaction are provided. In a method conducted at an issuing server computer associated with a first entity, a transaction request message is transmitted to an acquiring server computer associated with a second entity. The transaction request message is in respect of a push transaction in which funds from the first entity are transferred to the second entity and includes a first set of data elements. In response to transmitting the transaction request message, a transaction response message and a second set of data elements are received. The second set of data elements are associated with the first set of data elements and the financial transaction is processed using information contained in the first set of data elements and the second set of data elements.
A method is disclosed. The method includes receiving, by a processing network computer from a relying party computer associated with a relying party, a request for data associated with a user operating a user device. The processing network computer may retrieve first encrypted data of the user having a user-layer of encryption. The processing computer can then generate a second symmetric key to add a relying party-layer of encryption to the first encrypted data using a stream cipher. The doubly encrypted data may be transmitted to a user device that removes the user-layer of encryption on the first doubly encrypted data, and then adds a second relying party-layer of encryption to form second doubly encrypted data. The second doubly encrypted data may be transmitted to the relying party computer, which can remove both relying party-layers of encryption to gain access to the data associated with the user.
H04L 9/14 - Dispositions pour les communications secrètes ou protégées; Protocoles réseaux de sécurité utilisant plusieurs clés ou algorithmes
H04L 9/06 - Dispositions pour les communications secrètes ou protégées; Protocoles réseaux de sécurité l'appareil de chiffrement utilisant des registres à décalage ou des mémoires pour le codage par blocs, p.ex. système DES
Embodiments provide methods and systems for associating a single token with multiple accounts of a user, and enabling the user to define rules for processing transactions using the token. A Federated Virtual Card (FVC) may be provisioned on a digital wallet of a user device through a token associated with the FVC. Transactions conducted using the FVC may be divided among the two or more user accounts based on user-defined rules. An account (e.g. card) may be added to or removed from the FVC without disrupting the card holder's ability to use the card to transact outside the FVC. A mobile application or an online platform may be provided for managing the FVC.
G06Q 20/40 - Autorisation, p.ex. identification du payeur ou du bénéficiaire, vérification des références du client ou du magasin; Examen et approbation des payeurs, p.ex. contrôle des lignes de crédit ou des listes négatives
G06Q 20/34 - Architectures, schémas ou protocoles de paiement caractérisés par l'emploi de dispositifs spécifiques utilisant des cartes, p.ex. cartes à puces ou cartes magnétiques
47.
System, Method, and Computer Program Product for Feature Similarity-Based Monitoring and Validation of Models
Systems, methods, and computer program products calculate a historical feature similarity point distribution associated with a first machine learning model, calculate a real-time feature similarity point distribution associated with a second machine learning model, and automatically provide, based on a comparison of the historical feature similarity point distribution to the real-time feature similarity point distribution, an indication of whether the second machine learning model is aligned with the first machine learning model.
G06N 20/20 - Techniques d’ensemble en apprentissage automatique
G06K 9/62 - Méthodes ou dispositions pour la reconnaissance utilisant des moyens électroniques
G06Q 20/40 - Autorisation, p.ex. identification du payeur ou du bénéficiaire, vérification des références du client ou du magasin; Examen et approbation des payeurs, p.ex. contrôle des lignes de crédit ou des listes négatives
48.
System, method, and computer program product for cleaning noisy data from unlabeled datasets using autoencoders
Methods, systems, and computer program products are provided for cleaning noisy data from unlabeled datasets using autoencoders. A method includes receiving training data including noisy samples and other samples. An autoencoder network is trained based on the training data to increase a first metric based on the noisy samples and to reduce a second metric based on the other samples. Unlabeled data including unlabeled samples is received. A plurality of third outputs is generated by the autoencoder network based on the plurality of unlabeled samples. For each respective unlabeled sample, a respective third metric is determined based on the respective unlabeled sample and a respective third output, and whether to label the respective unlabeled sample as noisy or clean is determined based on the respective third metric and a threshold. Each respective unlabeled sample determined to be labeled as noisy is cleaned.
A method and system for authenticating a payment transaction. The method includes receiving a request for verifying a phone number associated with a Subscriber Identification Module card from a merchant application installed in the user device. Further, obtaining a first key from at least one of a server associated with a manufacturer of the user device and a network server. Furthermore, generating a first cryptogram based on at least one of the phone number and a unique identification value associated with the user device using the first key, wherein the first cryptogram is provided to the server associated with the manufacturer for verification. Upon verification of the first cryptogram, the method includes receiving a second cryptogram from the server associated with the manufacturer, wherein the merchant application provides the second cryptogram and payment transaction details to an issuer server for authentication of the payment transaction.
Enhanced techniques for communicating with an integrated circuit chip card are disclosed. An integrated circuit chip card may include a processor, a memory storing a plurality applications executable by the processor, an input/output (I/O) interface, and a network interface coupled to the (I/O) interface. The network interface may implement a plurality of logical ports, and the network interface can be configurable to select between multiple communication protocols to communicate with an external device in a socket communication mode. The network interface can be configured to establish a plurality of communication channels between the external device the integrated circuit chip card using the plurality of logical ports, and each of the communication channels may support communication with one of the plurality of applications.
Described herein are a system and techniques for updating balance information for a disbursement module on a portable device using a transaction module on that same portable device. In some embodiments, each of the transaction module and the disbursement module may be associated with a different transaction processing system. A client device may be used to interact with the transaction module of the portable device via a communication element. In some embodiments, the client device may be configured to receive an account identifier from the transaction module, generate and transmit an authorization request message to an authorization entity, and upon receiving authorization from the authorization entity, cause the transaction module on the portable device to update a balance associated with the disbursement module.
H04L 9/32 - Dispositions pour les communications secrètes ou protégées; Protocoles réseaux de sécurité comprenant des moyens pour vérifier l'identité ou l'autorisation d'un utilisateur du système
54.
Systems and Methods for Generating Behavior Profiles for New Entities
Disclosed are a method and system for generating a behavior profile for a new entity. The method is performed in response to and immediately after a new entity is added to a fraud detection system. The method includes generating a doppelganger behavior profile for the new entity based on feature data of the new entity and pre-existing entities. Generating the profile includes determining a similarity score for each pre-existing entity, ranking the plurality of pre-existing entities based on the score, selecting pre-existing entities based on the ranking, and combining behavior profiles of the preexisting entities to produce the profile. The method also includes assigning the profile to the new entity and monitoring the new entity. The method further includes detecting fraud, an anomaly, and/or malicious intent based on the profile, and automatically suspending an aspect of the new entity in response to the detection.
A method is disclosed. The method comprises receiving, by a digital identity computer, a request for personal data associated with a user. The digital identity computer may retrieve encrypted personal data, wherein the personal data is encrypted with a public key associated with the user. The digital identity computer may encrypt the encrypted personal data with a first public key associated with a relying party or derivative thereof to form subsequently encrypted personal data. The method may then proceed to transmit the subsequently encrypted personal data or derivative thereof to a relying party computer, or a user device. If the user device receives the subsequently encrypted personal data, the user device may thereafter transmit the subsequently encrypted personal data or derivative thereof to the relying party computer. Then, the relying party computer obtains the personal data from the subsequently encrypted personal data or derivative thereof.
Described are a system and computer program product for secure n-party computation. The system includes a computing device programmed or configured to communicate an input to a trusted execution environment (TEE), and receive a first encrypted output. The computing device is also programmed or configured to post the first encrypted output on a blockchain and receive a first proof of publication. The computing device is further programmed or configured to communicate the first proof of publication to the TEE and receive the first function output of the n-party computation. The computing device is further programmed or configured to communicate a witness to the TEE and receive a second encrypted output. The computing device is further programmed or configured to post the second encrypted output on the blockchain, receive a second proof of publication, communicate the second proof of publication to the TEE, and receive the second function output.
H04L 9/32 - Dispositions pour les communications secrètes ou protégées; Protocoles réseaux de sécurité comprenant des moyens pour vérifier l'identité ou l'autorisation d'un utilisateur du système
H04L 9/30 - Clé publique, c. à d. l'algorithme de chiffrement étant impossible à inverser par ordinateur et les clés de chiffrement des utilisateurs n'exigeant pas le secret
57.
Method, System, and Computer Program Product for Fraud Prevention Using Deep Learning and Survival Models
Provided is a method for fraud prevention using deep learning and survival models. The method may include receiving, with at least one processor, transaction data associated with a plurality of transactions of at least one payment account. At least one attempted attack may be detected based on the transaction data. A fraud risk score for each subperiod of a plurality of subperiods in a time period following the at least one attempted attack may be generated based on the transaction data using a deep learning model and a survival model. The fraud risk score for each respective subperiod may be associated with a probability that a fraudulent transaction will not occur by the respective subperiod. A system and computer program product are also disclosed.
G06Q 20/40 - Autorisation, p.ex. identification du payeur ou du bénéficiaire, vérification des références du client ou du magasin; Examen et approbation des payeurs, p.ex. contrôle des lignes de crédit ou des listes négatives
58.
System, Method, and Computer Program Product for Generating an Inference Using a Machine Learning Model Framework
Provided is a system for generating an inference based on real-time selection of a machine learning model using a machine learning model framework that includes at least one processor programmed or configured to receive a request for inference, wherein the request includes a payload, select a machine learning model of a plurality of machine learning models based on the request for inference, determine an aggregation of data based on the machine learning model and the payload of the request, transform the aggregation of data into inference data, wherein the inference data has a configuration that is capable of being processed by the machine learning model, and generate an inference based on the inference data using the machine learning model. Methods and computer program products are also provided.
Provided is a natural language processing system for determining a merchant based on a natural language query. The system may include a processor to receive a natural language query, convert at least one word of the natural language query to a vector using at least one neural network to form a set of vectors, determine a vector distance from the set of vectors to each profile in a set of profiles, rank the set of profiles based on the vector distance of each profile to the set of vectors, communicate merchant data associated with at least one merchant included in the set of profiles to the user device, receive a selection of a first merchant associated with the merchant data from the user device, and schedule an appointment with the first merchant for a user of the user device. A computer program product and method are also disclosed.
A cross-wallet system generate a cross-platform key or a virtual account number for a first digital wallet provider to be used by the consumer when the consumer wishes to send payment to a second digital wallet provider with which the consumer does not possess an account. Moreover, the virtual account number, in one example, may only include a partial set of card number that does not include the typical set of card number. The virtual account number created by embodiments of the invention further enable security features that prevent fraud and protect the consumer's financial assets.
G06Q 20/36 - Architectures, schémas ou protocoles de paiement caractérisés par l'emploi de dispositifs spécifiques utilisant des portefeuilles électroniques ou coffres-forts électroniques
G06Q 20/38 - Architectures, schémas ou protocoles de paiement - leurs détails
G06Q 20/40 - Autorisation, p.ex. identification du payeur ou du bénéficiaire, vérification des références du client ou du magasin; Examen et approbation des payeurs, p.ex. contrôle des lignes de crédit ou des listes négatives
Methods and systems for performing on demand access transactions are disclosed. In one example, the method includes receiving, by a directory service computer from an authorizing computer, a file including a primary access identifiers and virtual access identifiers, the virtual access identifiers not being capable of being used at resource providers to conduct transactions. The method also includes receiving a request to provide an access token that is associated with an account, the request comprising information that identifies the account. The method further includes retrieving a virtual access identifier based on the identifying information; and requesting, by the directory service computer to a token service computer, that the access token be provisioned on the user device or an application computer associated with an application on the user device.
Systems and methods are for confidentially and securely provisioning data to an authenticated user device. A user device may register an authentication public key with an authentication server. The authentication public key may be signed by an attestation private key maintained by the user device. Once the user device is registered, a provisioning server may send an authentication request message including a challenge to the user device. The user device may sign the challenge using an authentication private key corresponding to the registered authentication public key, and may return the signed challenge to the provisioning server. In response, the provisioning server may provide provisioning data to the user device. The registration, authentication, and provisioning process may use public key cryptography while maintaining confidentiality of the user device, the provisioning server, and then authentication server.
H04L 9/32 - Dispositions pour les communications secrètes ou protégées; Protocoles réseaux de sécurité comprenant des moyens pour vérifier l'identité ou l'autorisation d'un utilisateur du système
A disclosed method includes a data distribution computer receiving a data packet comprising a plurality of data values in response to an interaction between a resource provider and a user. The data distribution computer can then determine a data item for each data value of the plurality of data values and associate each data value to a processing computer using the data item for each data value. It can generate a plurality of authorization request messages comprising at least one data value. It can then transmit the plurality of authorization request messages to a plurality of processing computers adapted to process the data values in the respective authorization request messages, where the plurality of processing computers process the data values in the respective authorization request messages. The plurality of authorization request messages are subsequently forwarded to the authorization computer. The authorization computer then analyzes each authorization request message.
G06F 21/10 - Protection de programmes ou contenus distribués, p.ex. vente ou concession de licence de matériel soumis à droit de reproduction
G06F 21/44 - Authentification de programme ou de dispositif
H04L 67/147 - Méthodes de signalisation ou messages fournissant des extensions aux protocoles définis par la normalisation
G06F 21/78 - Protection de composants spécifiques internes ou périphériques, où la protection d'un composant mène à la protection de tout le calculateur pour assurer la sécurité du stockage de données
64.
System, Method, and Computer Program Product for Data Security
Systems, methods, and computer program products for data security store, in memory, a plurality of ciphers in association with a plurality of public keys, the plurality of ciphers including a plurality of secret keys encrypted with a key encryption key, and the plurality of secret keys corresponding to the plurality of public keys; receive, a data chunk for encryption; generate, a data encryption key based on a hash function, a public key of the plurality of public keys, and a random number; encrypt, the data chunk with the data encryption key to generate an encrypted data chunk; generate, a header including a cipher of the plurality of ciphers corresponding to the public key of the plurality of public keys and key encapsulation data; and store, in a database, a cipher text including the header and the encrypted data chunk.
H04L 9/06 - Dispositions pour les communications secrètes ou protégées; Protocoles réseaux de sécurité l'appareil de chiffrement utilisant des registres à décalage ou des mémoires pour le codage par blocs, p.ex. système DES
H04L 9/30 - Clé publique, c. à d. l'algorithme de chiffrement étant impossible à inverser par ordinateur et les clés de chiffrement des utilisateurs n'exigeant pas le secret
A method and system for processing a transaction based on biometric data and access data is disclosed. Different accounts and providers may be used to process transactions, using different message formats, based on user-configured mappings. In one example, the method includes receiving, by a message processing system, an authorization request message from an access device, the authorization request message comprising a biometric template and access data. An interaction entity record identifier, associated with an interaction entity from among a plurality of different interaction entities that process messages in different message formats, may be retrieved. The authorization request message may be converted from a first format to a second format, the second format being compatible with message processing by the interaction entity. The converted authorization request message may be transmitted to the interaction entity for determining whether to authorize the transaction.
H04L 9/32 - Dispositions pour les communications secrètes ou protégées; Protocoles réseaux de sécurité comprenant des moyens pour vérifier l'identité ou l'autorisation d'un utilisateur du système
66.
System, Method, and Computer Program Product for Dynamic Passcode Communication
Systems, methods, and computer program products for dynamic passcode communication use a merchant application installed on a user device that receives transaction data associated with a transaction at a merchant system. The transaction data may include an account identifier associated with an account at an issuer system. The merchant application determines, based on the account identifier, whether an issuer application associated with the issuer system is installed on the user device. In response to determining that the issuer application is installed on the user device, the merchant application transmits, to the issuer application, a request for a dynamic passcode. The merchant application receives, from the issuer application, the dynamic passcode and transmits, to the issuer system, an authorization request including the account identifier and the dynamic passcode. The merchant application receives, from the issuer system, an authorization response authorizing or denying the transaction.
G06Q 20/38 - Architectures, schémas ou protocoles de paiement - leurs détails
G06Q 20/42 - Confirmation, p.ex. contrôle ou autorisation de paiement par le débiteur légal
G06Q 20/02 - Architectures, schémas ou protocoles de paiement impliquant un tiers neutre, p.ex. une autorité de certification, un notaire ou un tiers de confiance
G06Q 20/40 - Autorisation, p.ex. identification du payeur ou du bénéficiaire, vérification des références du client ou du magasin; Examen et approbation des payeurs, p.ex. contrôle des lignes de crédit ou des listes négatives
67.
System and method for implementing enhanced payment on delivery
In some embodiments, a method includes receiving, from a user of a user device, a request for an authorization-by-proxy payment on delivery (POD); requesting, at the user device, the user identify an authorized proxy for the authorization-by-proxy POD; generating an authorization-by-proxy code based upon buyer-controlled payment control parameters; and using the buyer-controlled payment parameters to control processing of a payment for the authorization-by-proxy POD. In some embodiments, the method further includes pre-authorizing, at shipment time of merchandise associated with the authorization-by-proxy POD, a hold on a monetary amount associated with an order of the merchandise associated with the authorization-by-proxy POD.
G06Q 40/00 - Finance; Assurance; Stratégies fiscales; Traitement des impôts sur les sociétés ou sur le revenu
G06Q 20/02 - Architectures, schémas ou protocoles de paiement impliquant un tiers neutre, p.ex. une autorité de certification, un notaire ou un tiers de confiance
G06Q 20/40 - Autorisation, p.ex. identification du payeur ou du bénéficiaire, vérification des références du client ou du magasin; Examen et approbation des payeurs, p.ex. contrôle des lignes de crédit ou des listes négatives
Improvements to post-quantum lattice-based digital signature schemes are disclosed. By sampling cryptographic material, including cryptographic key matrices and masking vectors from a uniform distribution, embodiments eliminate the need for a security check during generation of a digital signature vector. As a result, digital signatures can be generated faster and at a lower failure rate. A generating device can generate a verification matrix A and a secret matrix S from a uniform distribution, and an error matrix E from a special distribution (such as a Gaussian). The generating device can combine the three matrices to generate a public matrix Y. The first and the fourth matrices (A, Y) can be used as a public key used to verify digital signatures. The second and the third matrices (S, E) can be used as a private key used to generate digital signatures.
H04L 9/32 - Dispositions pour les communications secrètes ou protégées; Protocoles réseaux de sécurité comprenant des moyens pour vérifier l'identité ou l'autorisation d'un utilisateur du système
H04L 9/30 - Clé publique, c. à d. l'algorithme de chiffrement étant impossible à inverser par ordinateur et les clés de chiffrement des utilisateurs n'exigeant pas le secret
70.
System, Method, and Apparatus for Implementing a Blockchain-Based Rewards Network
Provided is a computer-implemented method for implementing a blockchain-based rewards network. The method includes establishing a blockchain network including administrative nodes, client nodes, and entity nodes, maintaining a distributed ledger on at least a portion of the administrative nodes of the blockchain network, receiving, from a plurality of entities, rewards data including a plurality of offers, each offer of the plurality of offers corresponding to at least one entity identifier, publishing the rewards data to the distributed ledger, querying the distributed ledger based on at least one entity identifier received from a client node, and determining, based on the distributed ledger, at least one offer corresponding to the at least one entity identifier received from the client node.
The REMOTE DECOUPLED APPLICATION PERSISTENT STATE APPARATUSES, METHODS AND SYSTEMS (“P-STATE”) transforms purchase action input, cookie states search criteria input, and cookie states selection input via P-STATE components such as cookie/states storage (“CSS”) component; cookie states search presentation (“CSSP”) component; and cookie/states reload/recreate (“CSRR”) component, into cookie state presentation outputs.
G06Q 20/36 - Architectures, schémas ou protocoles de paiement caractérisés par l'emploi de dispositifs spécifiques utilisant des portefeuilles électroniques ou coffres-forts électroniques
A computer-implemented method of communicating with a point of sale terminal. The method includes establishing wireless communication with a point of sale terminal using a first communication channel, and establishing communication with the point of sale terminal using a second communication channel. The method also includes transmitting a first section of communication data via the first communication channel; and transmitting a second section of the communication data using the second communication channel.
A method for providing interactive recording networks is disclosed. Multiple child networks can be established, each child network being coordinated by a respective coordinating entity. Each coordinating entity can also participate in a central parent network. A data package can be sent from one network to another. When a data package is sent to another network, additional data can be added to indicate that the data package is being escalated.
H04L 9/30 - Clé publique, c. à d. l'algorithme de chiffrement étant impossible à inverser par ordinateur et les clés de chiffrement des utilisateurs n'exigeant pas le secret
G16H 10/60 - TIC spécialement adaptées au maniement ou au traitement des données médicales ou de soins de santé relatives aux patients pour des données spécifiques de patients, p.ex. pour des dossiers électroniques de patients
H04L 9/32 - Dispositions pour les communications secrètes ou protégées; Protocoles réseaux de sécurité comprenant des moyens pour vérifier l'identité ou l'autorisation d'un utilisateur du système
74.
System, Method, and Computer Program Product for Secure Real-Time N-Party Computation
Described are a system, method, and computer program product for secure real-time n-party computation. The method includes receiving a first computation input and a first portion of a one-time key from a first computer device, and receiving a second computation input and a second portion of the one-time key from a second computer device. The method also includes generating the one-time key based on the first and second portion of the one-time key, and executing a computation based on the first and second computation input. The method further includes generating an encrypted output by encrypting the computation with the one-time key, and communicating the encrypted output to the first computer device. The method further includes receiving a proof of publication from the first computer device and, in response to receiving the proof of publication, communicating the one-time key to the first computer device.
H04L 9/32 - Dispositions pour les communications secrètes ou protégées; Protocoles réseaux de sécurité comprenant des moyens pour vérifier l'identité ou l'autorisation d'un utilisateur du système
H04L 9/00 - Dispositions pour les communications secrètes ou protégées; Protocoles réseaux de sécurité
A method for testing an interaction system response to different types of interaction devices is disclosed. A testing computer can execute various sets of interaction device logic during different test interaction. The testing computer can electronically communicate with an access device during test interaction through a conduit mobile device. As a result, the testing computer can electronically communicate with the access device even when the testing computer is remotely located.
G06F 11/263 - Génération de signaux d'entrée de test, p.ex. vecteurs, formes ou séquences de test
G06F 11/22 - Détection ou localisation du matériel d'ordinateur défectueux en effectuant des tests pendant les opérations d'attente ou pendant les temps morts, p.ex. essais de mise en route
G06F 11/273 - Matériel de test, c. à d. circuits de traitement de signaux de sortie
A smart device is provided between a transaction terminal (e.g. an access device, a point of sale terminal) and a payment card to facilitate a secure transaction. The smart device receives transaction details from the transaction terminal. The transaction terminal suspends the transaction. The smart device is brought in communication with a payment device in control of the user (e.g. the user of the payment device does not hand over the payment device to a merchant, clerk, waitstaff). The smart device receives a cryptogram identifying an account from the payment device and transmits the cryptogram to the transaction terminal. The transaction terminal resumes the transaction, generates a transaction authorization request message including the cryptogram, and transmits the transaction authorization request message to an issuer of the account. The transaction terminal receives an authorization response message from the issuer, and notifies the smart device of the transaction being approved or declined.
G06Q 20/40 - Autorisation, p.ex. identification du payeur ou du bénéficiaire, vérification des références du client ou du magasin; Examen et approbation des payeurs, p.ex. contrôle des lignes de crédit ou des listes négatives
G06Q 20/32 - Architectures, schémas ou protocoles de paiement caractérisés par l'emploi de dispositifs spécifiques utilisant des dispositifs sans fil
G06Q 20/38 - Architectures, schémas ou protocoles de paiement - leurs détails
77.
SECURE AND SCALABLE PRIVATE SET INTERSECTION FOR LARGE DATASETS
Embodiments of the present disclosure are directed to methods and systems used to determine private set intersections (PSIs) and execute private database joins (PDJs). Some embodiments are characterized by binning techniques that enables PSI and PDJ methods to be performed by worker nodes in a computing cluster in parallel, thus reducing execution time. A first party computing system and a second party computing system can each tokenize their respective datasets, then assign the datasets to bins. The bins can each be padded with dummy tokens. Then the first party computing system and second party computing system can execute several Nparallel PSI on pairs of corresponding bins. The results can then be combined to produce a tokenized intersection set, which can then be detokenized to produce the set intersection.
Embodiments are directed to a method for securely performing biometric authentication online. The method described can be used to securely perform biometric authentication on a mobile device. For protecting the privacy of the user's biometric data, a cryptographic comparison protocol can be used to perform matching of encrypted templates. For example, the cryptographic comparison protocol may involve Fuzzy Extractors (FE), Homomorphic Encryption (HE), and/or Secure Multi-Party Computation (SMPC).
H04L 9/32 - Dispositions pour les communications secrètes ou protégées; Protocoles réseaux de sécurité comprenant des moyens pour vérifier l'identité ou l'autorisation d'un utilisateur du système
H04L 9/00 - Dispositions pour les communications secrètes ou protégées; Protocoles réseaux de sécurité
A method and system for provisioning credentials is disclosed. The method includes receiving, by a token provider computer, a token request message from a token requestor computer that comprises an initial access identifier. The token provider computer transmits the initial access identifier to a first authorization computer, and then the token provider computer receives an intermediate access identifier. The token provider computer then transmits a token activation request message to a second authorization computer based at least in part on the intermediate access identifier. The token provider computer then receives a token activation response message from the second authorization computer. The token provider computer then provides the token to the token requestor computer.
Described are a system, method, and computer program product for generating a synthetic control group. The method includes receiving transaction data associated a first set of transaction accounts in a first time period and generating a synthetic control group including a subset of transaction accounts. The method also includes determining, for each transaction account of the synthetic control group, a propensity score representative of a likelihood of said transaction account being associated with a test group, and a predictive spending score for a second time period. The method further includes balancing the synthetic control group and altering at least one operational parameter of a computer-implemented advertisement program to be executed in a second time period based on the transaction data and the synthetic control group. The method further includes executing the computer-implemented advertisement program in the second time period based on the at least one operational parameter that was altered.
A method for operating a private group transaction network, includes: receiving a group creation request; communicating a group invitation to each of the group members; receiving a plurality of group acceptance messages, one from each of the group members, where each group acceptance message includes an account identifier associated with a payment account of an associated group member, where a group member has a payment account issued by an issuer system different from at least one of the issuer systems of the other group members; generating the private group transaction network; processing an intra-group transfer request by: executing a plurality of pull transfers by pulling the transfer amount from the first and second payment accounts to the group payment account; and executing a single push transfer for the transfer amount by pushing the transfer amount from the group payment account to the third payment account.
Provided is a system that includes at least one processor programmed or configured to provision a client device for access to an online source of information, transmit a private encryption key of a public/private encryption key pair to a software agent of the client device, receive a first hash value from the software agent, wherein the first hash value is generated using the private encryption key, receive a second hash value from the software agent, determine whether to allow access to the online source of information by the software agent based on the first hash value and the second hash value received from the software agent, process a request to access the online source of information involving the software agent, and store a data record associated with a data transaction involving the online source of information in a data structure. Methods and computer program products are also provided.
H04L 9/32 - Dispositions pour les communications secrètes ou protégées; Protocoles réseaux de sécurité comprenant des moyens pour vérifier l'identité ou l'autorisation d'un utilisateur du système
H04L 9/30 - Clé publique, c. à d. l'algorithme de chiffrement étant impossible à inverser par ordinateur et les clés de chiffrement des utilisateurs n'exigeant pas le secret
83.
ROUND-EFFICIENT FULLY SECURE SOLITARY MULTI-PARTY COMPUTATION WITH HONEST MAJORITY
Several round-efficient solitary multi-party computation protocols with guaranteed output delivery are disclosed. A plurality of input devices and an output device can collectively perform a computation using methods such as fully homomorphic encryption. The output of the computation is only known to the output device. Some number of these devices may be corrupt. However, even in the presence of corrupt devices, the output device can still either generate a correct output or identify that the computation was compromised. These protocols operate under different assumptions regarding the communication infrastructure (e.g., broadcast vs point-to-point), the number of participating devices, and the number of corrupt devices. These protocols are round-efficient in that they require a minimal number of communication rounds to calculate the result of the multi-party computation.
H04L 9/30 - Clé publique, c. à d. l'algorithme de chiffrement étant impossible à inverser par ordinateur et les clés de chiffrement des utilisateurs n'exigeant pas le secret
H04L 9/32 - Dispositions pour les communications secrètes ou protégées; Protocoles réseaux de sécurité comprenant des moyens pour vérifier l'identité ou l'autorisation d'un utilisateur du système
84.
Relying Party Risk-Adjusted Indicator System and Method
Provided is a method including receiving, by a user device, a request from an identity service to approve communicating a user proof-of-identity to a relying party. A user of the user device is prompted to request a one-time transaction identifier based on the request. Based on a first input from the user, the user device requests the one one-time transaction identifier from the identity service. In response to the request for the one-time transaction identifier, the user device receives the one-time transaction identifier from the identity server and displays the one-time transaction identifier on a first user device screen. The user inputs the one-time transaction identifier on a second user device screen and the user device communicates the one-time transaction identifier to the identity service. In response to receiving the at least one inputted one-time transaction identifier, the relying party determines whether to approve or deny a transaction.
G06Q 20/40 - Autorisation, p.ex. identification du payeur ou du bénéficiaire, vérification des références du client ou du magasin; Examen et approbation des payeurs, p.ex. contrôle des lignes de crédit ou des listes négatives
G06Q 20/38 - Architectures, schémas ou protocoles de paiement - leurs détails
G06Q 20/32 - Architectures, schémas ou protocoles de paiement caractérisés par l'emploi de dispositifs spécifiques utilisant des dispositifs sans fil
85.
System, Method, and Computer Program Product for Maintaining Transaction Integrity Over Public Networks
A method for maintaining transaction integrity for transactions performed over a public network includes: receiving a transaction message corresponding to an original transaction, the transaction message including a unique, client-assigned, first identifier; in response to receiving the transaction message, assigning a unique, second identifier to the original transaction; generating a request to process the original transaction including at least a portion of the transaction message and the second identifier; transmitting the request to an issuer server to process the original transaction; receiving a first response from the issuer server in connection with the original transaction; in response to the first response, generating a second response corresponding to the original transaction including the first identifier and the second identifier; and transmitting the second response to the client. A system and computer program product for maintaining transaction integrity for transactions performed over a public network is also disclosed.
A method includes forming a communication channel between a user device and an access device. The communication channel is then secured using a user device key pair in the user device and an access device ephemeral key pair in the access device. The access device then generates a session key using at least a private cryptographic key in the access device ephemeral key pair, and a public key in the user device key pair. The access device then uses the session key to secure an ultra-wideband communication channel between the user device and the access device.
H04L 9/30 - Clé publique, c. à d. l'algorithme de chiffrement étant impossible à inverser par ordinateur et les clés de chiffrement des utilisateurs n'exigeant pas le secret
H04L 9/32 - Dispositions pour les communications secrètes ou protégées; Protocoles réseaux de sécurité comprenant des moyens pour vérifier l'identité ou l'autorisation d'un utilisateur du système
H04W 12/106 - Intégrité des paquets ou des messages
H04W 12/122 - Contre-mesures pour parer aux attaques; Protection contre les dispositifs malveillants
87.
Method, System, and Computer Program Product for Processing a Transaction Initiated Using an Electronic Wallet
A method for processing a transaction initiated using an electronic wallet application may include storing a virtual payment device configured to initiate a transaction. A rewards inquiry may be communicated to an issuer. A rewards inquiry response may be received from the issuer containing a rewards amount associated with the virtual payment device. The rewards amount may be displayed. A transaction may be initiated with a merchant using the virtual payment device. A redemption request may be communicated to the issuer. A redemption response including an updated rewards amount may be received from the issuer and include a difference between the rewards amount and the rewards amount applied toward the transaction. A system and computer program product are also disclosed.
G06Q 30/0226 - Systèmes d’incitation à un usage fréquent, p.ex. programmes de miles pour voyageurs fréquents ou systèmes de points
G06Q 20/36 - Architectures, schémas ou protocoles de paiement caractérisés par l'emploi de dispositifs spécifiques utilisant des portefeuilles électroniques ou coffres-forts électroniques
Described herein are systems and techniques in which a service provider may determine one or more capabilities of an authorization provider. To do this, the service provider may, upon receiving a request to determine authorization provider capabilities that includes at least an account identifier and an indication of a transaction type, identify a prototype message template associated with the indicated transaction type from a plurality of prototype transaction templates. The service provider may then overwrite a number of default data values with data values specific to the transaction to generate a prototype message for the transaction, which it may then send to the authorization provider. Upon receiving a response from the authorization provider, the service provider may determine whether the authorization provider is capable of conducting a transaction of the indicated transaction type based on information included within the received response.
G06Q 20/40 - Autorisation, p.ex. identification du payeur ou du bénéficiaire, vérification des références du client ou du magasin; Examen et approbation des payeurs, p.ex. contrôle des lignes de crédit ou des listes négatives
89.
SYSTEMS AND METHODS FOR CREATING A UNIVERSAL RECORD
A method for tracking multiple classes of records in a single blockchain is disclosed. Class identifiers can used for each record entry to distinguish between classes within the blockchain.
H04L 9/32 - Dispositions pour les communications secrètes ou protégées; Protocoles réseaux de sécurité comprenant des moyens pour vérifier l'identité ou l'autorisation d'un utilisateur du système
G06F 16/22 - Indexation; Structures de données à cet effet; Structures de stockage
G06Q 20/02 - Architectures, schémas ou protocoles de paiement impliquant un tiers neutre, p.ex. une autorité de certification, un notaire ou un tiers de confiance
G06Q 20/06 - Circuits privés de paiement, p.ex. impliquant de la monnaie électronique utilisée uniquement entre les participants à un programme commun de paiement
G16H 10/60 - TIC spécialement adaptées au maniement ou au traitement des données médicales ou de soins de santé relatives aux patients pour des données spécifiques de patients, p.ex. pour des dossiers électroniques de patients
H04L 9/06 - Dispositions pour les communications secrètes ou protégées; Protocoles réseaux de sécurité l'appareil de chiffrement utilisant des registres à décalage ou des mémoires pour le codage par blocs, p.ex. système DES
H04L 9/30 - Clé publique, c. à d. l'algorithme de chiffrement étant impossible à inverser par ordinateur et les clés de chiffrement des utilisateurs n'exigeant pas le secret
Techniques of authenticating a first device of a user to a second device are disclosed. The method enables the second device to perform authentication using a biometric template stored on the first device and a biometric measurement. Homomorphic encryption may be used by the first device to encrypt the biometric template and the second device to determine an encrypted similarity metric between the biometric template and the biometric measurement. The second device can also determine an encrypted code using an authentication function and the encrypted similarity metric. The second device sends the encrypted code and the encrypted similarity metric to be decrypted by the first device. The second device can receive a response from the first device, indicating whether a decrypted similarity metric exceeds a threshold; and whether the decrypted code matches a test code. The second device can then authenticate the user based on the response.
H04L 9/32 - Dispositions pour les communications secrètes ou protégées; Protocoles réseaux de sécurité comprenant des moyens pour vérifier l'identité ou l'autorisation d'un utilisateur du système
H04L 9/30 - Clé publique, c. à d. l'algorithme de chiffrement étant impossible à inverser par ordinateur et les clés de chiffrement des utilisateurs n'exigeant pas le secret
Described herein is a platform for providing a resource catalog local to an appliance device, such that the appliance device is able to generate a transaction related to one or more resources within the resource catalog. In some embodiments, the appliance device may receive resource information within streaming data. For example, the appliance device may receive an indication that a portion of streaming media data is related to a resource. Upon determining that a portion of streaming data is related to a resource, the appliance device may be configured to store the portion of data in relation to the identified resource. A user may retrieve and/or execute the portion of streaming data at a later date. In some embodiments, the user may request that a transaction be conducted with respect to the resource and a corresponding transaction request may be generated by the appliance device.
H04N 21/231 - Opération de stockage de contenu, p.ex. mise en mémoire cache de films pour stockage à court terme, réplication de données sur plusieurs serveurs, ou établissement de priorité des données pour l'effacement
92.
System, Method, and Computer Program Products for Modeling Complex Hierarchical Metadata with Multi-Generational Terms
A method, system, and computer program product is provided for modeling business terms based on attributes and characteristics of a data source. The method includes determining principal terms representing at least one first attribute of a payment processing system, generating a plurality of complex terms including a principal term and representing at least one second attribute of a payment processing system, generating a logical model of principal terms and complex terms, and comprising relations between multiple generations of complex terms arranged in a hierarchical data structure, linking the logical model by mapping each physical data field of a plurality of physical data fields to at least one of a principal term and a complex term in the logical model as metadata, and automatically generating an interactive data dictionary for the payment processing system based on each physical data field and corresponding attributes for metadata of physical data fields.
G06F 16/21 - Conception, administration ou maintenance des bases de données
G06Q 20/32 - Architectures, schémas ou protocoles de paiement caractérisés par l'emploi de dispositifs spécifiques utilisant des dispositifs sans fil
G06Q 20/36 - Architectures, schémas ou protocoles de paiement caractérisés par l'emploi de dispositifs spécifiques utilisant des portefeuilles électroniques ou coffres-forts électroniques
G06F 16/22 - Indexation; Structures de données à cet effet; Structures de stockage
93.
ELECTRONIC RECEIPT MANAGER APPARATUSES, METHODS AND SYSTEMS
The ELECTRONIC RECEIPT MANAGER APPARATUSES, METHODS AND SYSTEMS (“ERM”) transforms transaction initiation requests and receipt requests via ERM components into receipt formatting, organization, storage and linkage with transactions. The ERM may be configured to receive a receipt through an interface of a portable device and determine a set of fields for formatting data from the receipt. The ERM may format the data from the receipt to include the set of fields and store the formatted data in a memory element of the portable device.
Provided is a method for protocol parsing for network security. The method may include receiving, by a packet capture system, a plurality of packets, parsing lower layer data from each packet, and communicating a respective payload of each respective packet to at least one first queue. A routing system may route the respective payload of each respective packet to a respective second queue of a plurality of second queues based on a respective protocol of the respective packet. A respective protocol parser node of a parsing system may parse higher layer data from the respective payload of each respective packet from each respective second queue. The packet capture system may communicate the lower layer data for each packet to a third queue, and the parsing system may communicate the higher layer data for each packet to the third queue. A system and computer program product are also disclosed.
Described herein is a network apparatus with secure element and related systems, methods, and apparatuses. A described method includes receiving a request to perform a transaction. The method also includes obtaining confirmation that a network address associated with the request corresponds to a registered physical address. The method further includes obtaining account data and conducting a transaction using the account data.
G06Q 20/40 - Autorisation, p.ex. identification du payeur ou du bénéficiaire, vérification des références du client ou du magasin; Examen et approbation des payeurs, p.ex. contrôle des lignes de crédit ou des listes négatives
A system for providing updatable secure content resource. A content server may pay a content resource on the content author for an access by a requester. The content server receives a session request call from the requester prior to accessing the content resource. In response to the session request, the content server generates a session for the requester. The content server generates a payload that includes a location identifying the content resource on the content author and embeds the embedded cryptographic content. The content server transmits the generated payload to the requester. A resource server may receive an authentication access request in response to the embedded cryptographic content. In response to authenticating the authentication access request, the resource server provides the access to the requester.
G06F 21/62 - Protection de l’accès à des données via une plate-forme, p.ex. par clés ou règles de contrôle de l’accès
G06F 9/50 - Allocation de ressources, p.ex. de l'unité centrale de traitement [UCT]
G06F 21/54 - Contrôle des usagers, programmes ou dispositifs de préservation de l’intégrité des plates-formes, p.ex. des processeurs, des micrologiciels ou des systèmes d’exploitation au stade de l’exécution du programme, p.ex. intégrité de la pile, débordement de tampon ou prévention d'effacement involontaire de données par ajout de routines ou d’objets de sécurité aux programmes
H04L 9/32 - Dispositions pour les communications secrètes ou protégées; Protocoles réseaux de sécurité comprenant des moyens pour vérifier l'identité ou l'autorisation d'un utilisateur du système
A method is disclosed. The method includes a user device storing a message data template comprising a plurality of data fields. A multi-record message may be generated using the message data template in response to an interaction between the user device and an access device. To generate the multi-record message, the user device may increment a counter stored on the user device to produce a counter value, and generate a dynamic cryptogram. The user device may additionally retrieve a credential. The counter value, the dynamic cryptogram, and the credential may then be incorporated into the plurality of data fields of the message data template to form the multi-record message. The multi-record message may be transmitted to the access device, where the access device forwards the multi-record message to an authorization computer to authorize or deny the interaction.
H04L 9/06 - Dispositions pour les communications secrètes ou protégées; Protocoles réseaux de sécurité l'appareil de chiffrement utilisant des registres à décalage ou des mémoires pour le codage par blocs, p.ex. système DES
H04L 9/32 - Dispositions pour les communications secrètes ou protégées; Protocoles réseaux de sécurité comprenant des moyens pour vérifier l'identité ou l'autorisation d'un utilisateur du système
98.
METHOD, SYSTEM AND COMPUTER-READABLE MEDIUM FOR GENERATING PRE-PURCHASING CONFIDENCE RECOMMENDATIONS FOR A USER
A computer-implemented method for generating pre-purchasing confidence recommendations. A browser widget scans post-sale activities of a user and searches for product-specific parameters of items from the scanned purchase records. A system stores the searched product-specific parameters and the post-sale activities in a data storage. The browser widget monitors purchasing activities of the user, and in response to the monitoring, retrieving, relevant product-specific parameters and the post-sale activities matching to the monitored purchasing activities. Based on the retrieving, generating a pre-purchasing confidence recommendation to the user before completion of a purchase by the user.
Provided are a system, method, and computer program product for network anomaly detection. The method includes determining a plurality of nested groups based on event data associated with a plurality of communications in a computer network. The method also includes generating display data configured to cause a display of a computing device to show a first graphical representation of the event data including a plurality of nested graphical nodes. The method further includes receiving new event data associated with a plurality of new communications in the computer network in a subsequent time period and generating new display data configured to cause the display to show a new graphical representation of the new event data. The method further includes determining an anomalous graphical node based at least partly on a size of the anomalous graphical node being increased in the new graphical representation relative to the first graphical representation.
G06Q 40/02 - Opérations bancaires, p.ex. calcul d'intérêts ou tenue de compte
H04L 43/045 - Traitement des données de surveillance capturées, p.ex. pour la génération de fichiers journaux pour la visualisation graphique des données de surveillance
G06F 16/26 - Exploration de données visuelles; Navigation dans des données structurées
G06Q 20/40 - Autorisation, p.ex. identification du payeur ou du bénéficiaire, vérification des références du client ou du magasin; Examen et approbation des payeurs, p.ex. contrôle des lignes de crédit ou des listes négatives
brevets
