公开(公告)号：US12277546B2

公开(公告)日：2025-04-15

申请号：US18177420

申请日：2023-03-02

Applicant: The Toronto-Dominion Bank

Inventor： Milos Dunjic ,  David Samuel Tax ,  Vipul Kishore Lalka ,  Bryan Michael Gleeson ,  Jeffrey Aaron Ecker ,  Derek Richard Castell ,  Anthony Haituyen Nguyen

IPC: G06Q20/34 ,  G06Q20/20 ,  H04L9/06 ,  H04L9/32

Abstract: In some implementations, a method of providing contactless payments at a point of sale terminal includes: causing a point-of-sale terminal processing a transaction to display a machine-readable code, the machine-readable code encoding a web address; receiving a request from a device that scanned the machine-readable code, the request received at the web address; in response to receiving the request, causing the device that scanned the machine-readable code to output an interface that includes a prompt for input required to complete the transaction; receiving a response to the prompt; and sending an indication of the response to the prompt to the point-of-sale terminal to allow for completion of the transaction based on the response at the point-of-sale terminal through use of a physical token at the point-of-sale terminal.

公开(公告)号：US12236433B2

公开(公告)日：2025-02-25

申请号：US17016436

申请日：2020-09-10

Applicant: The Toronto-Dominion Bank

Inventor： David Samuel Tax ,  Milos Dunjic ,  Kushank Rastogi

IPC: G06Q20/20 ,  G06Q20/10 ,  G06Q20/22 ,  G06Q20/34 ,  G06Q20/40 ,  H04L9/40

Abstract: A processor-implemented method is disclosed. The method includes: receiving, via a terminal device, input of a first password during a card session that begins when a value transfer card is inserted into the terminal device, the value transfer card being associated with a plurality of passwords; verifying that the first password is a valid password associated with the value transfer card; identifying at least one card control setting associated with the first password, the at least one card control setting being a setting that is not associated with another one of the plurality of passwords; and processing a transaction initiated at the terminal device based on the identified at least one card control setting.

公开(公告)号：US12229411B2

公开(公告)日：2025-02-18

申请号：US17950471

申请日：2022-09-22

Applicant: The Toronto-Dominion Bank

Inventor： Milos Dunjic ,  David Samuel Tax ,  Kushank Rastogi

IPC: G06Q10/00 ,  G06F3/06 ,  G06Q10/0631

Abstract: Methods and computer systems for managing access to resources in a computing environment. Detecting a projected overload condition from a projected demand for a resource. Identifying a server associated with a resource demand scheduled to be fulfilled prior to the projected overload condition. Generating a rescheduling request to reschedule the resource demand until after the projected overload condition. Sending the rescheduling request to the identified server. Providing access to the resource at a rescheduled time.

公开(公告)号：US12137089B2

公开(公告)日：2024-11-05

申请号：US17738816

申请日：2022-05-06

Applicant: The Toronto-Dominion Bank

Inventor： Milos Dunjic ,  Arthur Carroll Chow ,  David Samuel Tax ,  Armon Rouhani ,  Keith Sanjay Ajmani ,  Gregory Albert Kliewer ,  Anthony Haituyen Nguyen ,  Martin Albert Lozon ,  Kareem El-Onsi ,  Ashkan Alavi-Harati ,  Arun Victor Jagga

IPC: H04L29/06 ,  H04L9/40 ,  H04W12/0433 ,  H04W12/082

Abstract: The disclosed exemplary embodiments include computer-implemented systems, apparatuses, and processes that dynamically manage consent, permissioning, and trust between computing systems and unrelated, third-party applications operating within a computing environment. By way of example, the apparatus may receive a request for an element of data that includes an access token and first credential data associated with an application program. When the first credential data corresponds to second credential data associated with the application program, may determine that the requested data element is accessible to the application program and perform operations that validate the access token. Further, and based on the validation of the access token, that apparatus may obtain and encrypt the requested data element, and may transmit the encrypted data element to a device via the communications interface.

公开(公告)号：US12021876B2

公开(公告)日：2024-06-25

申请号：US17993939

申请日：2022-11-24

Applicant: The Toronto-Dominion Bank

Inventor： Milos Dunjic ,  Anthony Haituyen Nguyen ,  David Samuel Tax

IPC: H04L9/40

CPC classification number: H04L63/102 ,  H04L63/105

Abstract: A server comprises a communications module, a processor coupled to the communications module, and a memory coupled to the processor, the memory storing processor-executable instructions which, when executed, configure the processor to receive, via the communications module and from a monitoring application installed on a remote computing device, on-device application data, generate a risk profile for a user based at least on the on-device application data, configure a data sharing configuration option for sharing data associated with the user based on the risk profile for the user, and share the data based on the data sharing configuration option.

公开(公告)号：US11750687B2

公开(公告)日：2023-09-05

申请号：US17400756

申请日：2021-08-12

Applicant: The Toronto-Dominion Bank

Inventor： Milos Dunjic ,  David Samuel Tax ,  Jonathan Joseph Prendergast ,  Kushank Rastogi ,  Vipul Kishore Lalka

IPC: H04L67/06 ,  H04L65/65

CPC classification number: H04L67/06 ,  H04L65/65

Abstract: A server computer system, comprises a processor; a communications module coupled to the processor; and a memory coupled to the processor, the memory storing instructions that, when executed, configure the processor to obtain information associated with a request to transfer data to a data record; determine, based on an identifier associated with the data record, whether a real-time transfer protocol is available to complete the transfer; and send, via the communications module and to a client device associated with a recipient of the request to transfer the data to the data record, a signal updating one or more interface elements of an interface displayed on the client device based on whether the real-time transfer protocol is available to complete the transfer.

公开(公告)号：US11381574B2

公开(公告)日：2022-07-05

申请号：US17372641

申请日：2021-07-12

Applicant: The Toronto-Dominion Bank

Inventor： Milos Dunjic ,  Anthony Haituyen Nguyen ,  David Samuel Tax

IPC: G06F15/173 ,  H04L9/40 ,  H04L67/306

Abstract: A server comprises a communications module; a processor coupled to the communications module; and a memory coupled to the processor, the memory storing processor-executable instructions which, when executed, configure the processor to receive, via the communications module and from a remote computing device, user input indicating a response to one or more prompts; generate an aspirational profile for a user based at least on the received user input; receive, via the communications module and from a monitoring application installed on the remote computing device, monitoring data; generate a behavior profile for the user based at least on the monitoring data; and when the behavior profile is misaligned with the aspirational profile, send, via the communications module and to the remote computing device, a notification indicating that the behavior profile is misaligned with the aspirational profile.

公开(公告)号：US11343239B2

公开(公告)日：2022-05-24

申请号：US16561260

申请日：2019-09-05

Applicant: The Toronto-Dominion Bank

Inventor： Milos Dunjic ,  David Samuel Tax ,  Gregory Albert Kliewer

IPC: G06F21/00 ,  H04L29/06 ,  G06F9/451

Abstract: A method for controlling third-party access of a protected data resource is disclosed. The method includes: receiving an access token associated with a first application, the access token indicating access permissions for the first application to access a user account at a protected data resource; receiving a first request to perform a first access operation of accessing the user account using the access token; determining whether the first access operation is permitted based on the access permissions; in response to determining that the first access operation is not permitted: modifying the first request to obtain a second request for performing a second access operation of accessing the user account using the access token, the second access operation complying with the access permissions for the first application; transmitting the second request to a server associated with the protected data resource.

公开(公告)号：US11303642B2

公开(公告)日：2022-04-12

申请号：US16429719

申请日：2019-06-03

Applicant: The Toronto-Dominion Bank

Inventor： Milos Dunjic ,  Arthur Carroll Chow ,  David Samuel Tax ,  Armon Rouhani ,  Keith Sanjay Ajmani ,  Gregory Albert Kliewer ,  Anthony Haituyen Nguyen ,  Martin Albert Lozon ,  Kareem El-Onsi ,  Ashkan Alavi-Harati ,  Arun Victor Jagga

IPC: H04L29/06 ,  H04L9/06

Abstract: The disclosed exemplary embodiments include computer-implemented systems, apparatuses, and processes that dynamically manage consent, permissioning, and trust between computing systems that maintain confidential data and unrelated third-party applications. By way of example, an apparatus may obtain interaction data that identifies an interaction between an application program executed at a first computing system and a programmatic interface of a second computing system. Based on the interaction data, the apparatus may generate outcome data characterizing a probability that the requested access to the data element is inconsistent with an access permission granted to the executed application program, and may modify the access permission in accordance with the outcome data. The apparatus may also perform that generate permissioning data indicative of the modified access permission and that store the permissioning data within a locally accessible or cloud-based repository.

公开(公告)号：US11275842B2

公开(公告)日：2022-03-15

申请号：US16577185

申请日：2019-09-20

Applicant: The Toronto-Dominion Bank

Inventor： Milos Dunjic ,  David Samuel Tax ,  Gregory Albert Kliewer ,  Anthony Haituyen Nguyen ,  Sairam Srinivasa Poguluru ,  Shishir Dattatraya Bhat

IPC: G06F21/00 ,  G06F21/57 ,  G06F21/52

Abstract: A method for evaluating security of third-party application is disclosed. The method includes: receiving, from a first application, a request to obtain first account data for a user account associated with a protected data resource; generating fake data for at least a portion of the requested first account data; providing, to the first application, a first data set in response to the request, the first data set including at least the generated fake data; monitoring use of the first data set by the first application; detecting a trigger condition indicating misuse of account data based on monitoring use of the first data set by the first application; in response to detecting the trigger condition, generating a notification identifying the misuse of account data; and transmitting the notification to a computing device associated with an application user.