-
公开(公告)号:US20210014051A1
公开(公告)日:2021-01-14
申请号:US16927186
申请日:2020-07-13
发明人: Iftekhar Akoob , Bernard Wagner , Riaan Jacobs , Gerhard Gysbert Oosthuizen , Daniel Deetlefs Bester , Xolisa Solwandle , Petrus Johannes De Wet , Francois Archibald Nolte , Dino Dominique Rodrigues Alves , Philip Johannes Cornelis Nel
摘要: A method and system for secure input at a remote service are provided. In a method conducted at a secure input device, a hash operation is performed on a data structure including shared data, the shared data having been obtained from a remote service via an encrypted payload. User input for secure entry at the remote service is received and encoded by performing an operation on corresponding symbols of the user input and an output of the hash operation to output an encoded message, the user input and the encoded message having the same length. The encoded message is output for entry at the remote service.
-
公开(公告)号:US11763309B2
公开(公告)日:2023-09-19
申请号:US16966448
申请日:2019-01-30
CPC分类号: G06Q20/4016 , G06Q20/3825 , G06Q20/3829 , H04L9/3247 , H04L2209/56
摘要: A system and method for maintaining a fraud risk profile in a fraud risk engine are described. In a method conducted at a remote server, a payload from a secure mobile application executing on a user mobile device associated with a user is received. The payload including contextual data having been obtained by the secure mobile application and a trust indicator linked to the contextual data. Validity of the contextual data is confirmed by verifying the trust indicator. If the trust indicator is verified, the contextual data is input into a fraud risk engine as truth data. The fraud risk engine maintains a fraud risk profile associated with the user. The fraud risk profile is usable by the fraud risk engine in evaluating a fraud risk associated with an activity associated with the user.
-
公开(公告)号:US11936649B2
公开(公告)日:2024-03-19
申请号:US17452048
申请日:2021-10-22
CPC分类号: H04L63/0861 , H04L9/0894 , H04L9/3263 , H04L9/3271 , H04L63/0823 , H04L2463/082
摘要: Systems and methods for multi-factor authentication are based on validation of an inherence factor and a possession factor obtained in a “frictionless” or almost frictionless manner. A method conducted at a software application executing on a user device associated with a user and connected to a server computer, includes obtaining signing or encryption of a set of data elements using a cryptographic key securely stored for exclusive use by the software application and transmitting the signed or encrypted data elements to the server computer. The method includes transmitting, to the server computer, a payload including contextual data which includes behavioural data collected via one or more contextual data sources. The signed data elements represent a possession factor and the payload including contextual data represents an inherence factor for validation and multi-factor authentication by the server computer.
-
4.发明授权公开(公告)号:US11538034B2
公开(公告)日:2022-12-27
申请号:US17286082
申请日:2019-10-17
发明人: Gerhard Gysbert Oosthuizen , Daniël Deetlefs Bester , Tertius Wessels , Jonathan Daniel Van Der Merwe
IPC分类号: G06Q20/40
摘要: A system and method for providing computer-generated contextual data to an end-point during a digital transaction is provided. A method includes receiving a trigger message relating to a digital transaction between a consumer and a second entity. The trigger message includes a consumer identifier uniquely associated with the consumer and transaction details at least including a characteristic associated with the digital transaction. A data message including information based on an evaluation of the transaction details against a consumer-linked transaction matrix is obtained. The consumer-linked transaction matrix is linked to the consumer and includes information relating to the digital transaction. The data message is transmitted to a remote device with which the consumer interacts during pendency of the transaction and is configured to cause the device to output a prompt to the consumer displaying the data message.
-
公开(公告)号:US11343078B2
公开(公告)日:2022-05-24
申请号:US16927186
申请日:2020-07-13
发明人: Iftekhar Akoob , Bernard Wagner , Riaan Jacobs , Gerhard Gysbert Oosthuizen , Daniel Deetlefs Bester , Xolisa Solwandle , Petrus Johannes De Wet , Francois Archibald Nolte , Dino Dominique Rodrigues Alves , Philip Johannes Cornelis Nel
摘要: A method and system for secure input at a remote service are provided. In a method conducted at a secure input device, a hash operation is performed on a data structure including shared data, the shared data having been obtained from a remote service via an encrypted payload. User input for secure entry at the remote service is received and encoded by performing an operation on corresponding symbols of the user input and an output of the hash operation to output an encoded message, the user input and the encoded message having the same length. The encoded message is output for entry at the remote service.
-
公开(公告)号:US11870769B2
公开(公告)日:2024-01-09
申请号:US17597361
申请日:2020-07-10
发明人: Daniël Deetlefs Bester , Gerhard Gysbert Oosthuizen , Francois Archibald Nolte , Petrus Johannes De Wet
CPC分类号: H04L63/0823 , H04L9/0894 , H04L9/3073 , H04L9/3268 , H04L9/3271
摘要: A system and method are provided for identifying a browser instance in a browser session between a server hosting a web domain and the browser instance executing on a user computing device. The method conducted at the browser instance includes obtaining a private key and a public key of a key pair unique to a combination of a web domain and the browser instance being used to access the web domain. The method includes obtaining a browser certificate issued for the key pair and storing the private key at a storage provided by the browser instance for use by the browser instance during an active browser session with the web domain. The private key is stored as unextractable from the storage and with configuration for use by the browser instance during an active browser session with the web domain in signing or cryptographic operations without the private key being revealed.
-
7.发明授权公开(公告)号:US11797992B2
公开(公告)日:2023-10-24
申请号:US18068848
申请日:2022-12-20
发明人: Gerhard Gysbert Oosthuizen , Daniël Deetlefs Bester , Tertius Wessels , Jonathan Daniel Van Der Merwe
IPC分类号: G06Q20/40
CPC分类号: G06Q20/401
摘要: A method provides computer-generated contextual data to an end-point during a digital transaction. The method includes receiving a trigger message relating to a digital transaction between a consumer and a second entity. The trigger message includes a consumer identifier uniquely associated with the consumer and transaction details at least including a characteristic associated with the digital transaction. A data message including information based on an evaluation of the transaction details against a consumer-linked transaction matrix is obtained. The consumer-linked transaction matrix is linked to the consumer and includes information relating to the digital transaction. The data message is transmitted to a remote device with which the consumer interacts during pendency of the transaction and is configured to cause the device to output a prompt to the consumer displaying the data message.
-
公开(公告)号:US11329824B2
公开(公告)日:2022-05-10
申请号:US16635649
申请日:2018-08-03
摘要: A system and method for authenticating a transaction are provided. In a method at a server computer of an authentication service provider, an authentication request is received which requests authentication of a transaction and includes transaction details describing the transaction. An encryption key being unique to the authentication service provider and a user mobile device is obtained. An authentication prompt including at least some of the transaction details is generated. A payload including the authentication prompt is encrypted using the encryption key to output an encrypted payload. The encrypted payload is provided via a first communication channel to a user for acquisition and decryption by the user mobile device using a decryption key corresponding to the encryption key.
-
公开(公告)号:US20210135868A1
公开(公告)日:2021-05-06
申请号:US16635649
申请日:2018-08-03
摘要: A system and method for authenticating a transaction are provided. In a method at a server computer of an authentication service provider, an authentication request is received which requests authentication of a transaction and includes transaction details describing the transaction. An encryption key being unique to the authentication service provider and a user mobile device is obtained. An authentication prompt including at least some of the transaction details is generated. A payload including the authentication prompt is encrypted using the encryption key to output an encrypted payload. The encrypted payload is provided via a first communication channel to a user for acquisition and decryption by the user mobile device using a decryption key corresponding to the encryption key.
-
公开(公告)号:US20190251561A1
公开(公告)日:2019-08-15
申请号:US16346458
申请日:2017-11-01
CPC分类号: G06Q20/3821 , G06Q20/32 , G06Q20/3278 , G06Q20/4014 , G06Q30/06 , G06Q40/00 , G07F7/10 , H04L63/0853 , H04L63/0876
摘要: A system and method for verifying an association between a communication device and a user are provided. In a method conducted at a remote server, a token is received from a communication device via a secure communication channel by way of which the communication device is uniquely identifiable by the remote server. At least a portion of the token includes or has been derived from a credential stored within a portable credential device of the user and having previously been associated with the user in a user account. The received token is validated and, if valid, the association between the communication device and the user is verified. In one embodiment the communication device executes an application and the method includes verifying the association between the application and the user. In one embodiment, the user account is a user financial account against which the user may conduct financial transactions.
-
-
-
-
-
-
-
-
-
搜索结果
10 条记录 (耗时 0.023 秒)
