Abstract: Since the earliest ages, the human being has not ceased to develop its system of exchange of goods. The first system introduced is barter, it has evolved over time into currency by taking various forms (shells, teeth, feathers, etc.). The evolution of micro-electronics has favoured the appearance of a new form of payment that is the credit card. Currently it is the most used means of payment throughout the world. Today financial institutions want to replace the credit card by mobile phone for the implementation of contactless payment systems via NFC. This mode of operation is called Host Card Emulation or HCE. We will present in this article the basic element at the heart of this technology, which is the Secure Element. We will present the different forms that this element can take and possible cases of use of this technology for the establishment of an ecosystem of payment by mobile or purchase tickets transport.

Abstract: Systems and methods are described for providing fraud deterrents during payment card transactions especially for e-commerce and e-transactions. Fraud deterrents may be selected and configured by a client, bank, or other third-party and provided to a client in customized manners which may be configured on a client's authorized device Or otherwise as defined in an e-profile associated with a payment card. Fraud deterrent options may be contingent upon transaction features including a client's profile, transaction value, or other preferences. The deterrent features may be customized by the client and include use of conceptual passwords.

Abstract: The present disclosure provides a protection method and device of mobile payment information, the method includes: dynamically updating, by a card manufacturer's server, replacement code information corresponding to each payment account information stored in the card manufacturer's server; each time after the card manufacturer's server updates the replacement code information corresponding to each payment account information stored in the card manufacturer's server, updating a mapping relationship between the payment account information stored in the card manufacturer's server and the replacement code information according to the updated replacement code information; sending the updated replacement code information and payment account information corresponding to the updated replacement code information to a mobile terminal, to enable the mobile terminal to perform a mobile payment using the updated replacement code information. The present disclosure can avoid leaking the mobile payment information and protect user privacy data.

Abstract: Credit card frauds are increasing with the increase in use of plastic money. These frauds include the transactions done either by stealing the physical card or using card data such as card number, expiry date and pin number. There is a need to recognize customer spending pattern and apply validations for incoming transaction. Suspicious transactions can go under rigorous security checks. This paper describes the database implementation of credit card fraud detection system which is adaptive to concept drift environment. The system is designed using PL-SQL stored procedures and JAVA. The validation procedure and testing results are included in this paper.

Abstract: This system for authenticating a user comprises a microcircuit card (1000) comprising means for generating a dynamic security code (DCCVi) and a terminal (TRM) comprising: - means (MS) for obtaining the dynamic security code (DCCVi) generated by the microcircuit card (1000); - means (MOTP) for generating an authentication code on the basis of said dynamic security code (DCCVi), of a secret shared with said authentication server (SRV) and of a temporal datum obtained by said terminal. The authentication code can be dispatched to the authentication server by the terminal or by another device.

Abstract: A system for facilitating micro-donations comprises a financial institution, a linked payment card or bank account, and a server in communication the financial institution and configured to host an application. The application monitors transactions performed by the linked payment card or bank account and provisionally rounds them up to the next dollar. When a donation target amount or time period is reached, the user is sent a message noting the total amount and asking for a selection to donate the amount to a previously selected philanthropic organization, or to keep the funds.

Abstract: The invention discloses an embedded type WEB security authentication method. The method is applied to an embedded system and comprises the following steps: S1. acquiring user data and an equipment characteristic code input by a user, wherein the user data comprise a user name and a user password; S2. according to the user data and the equipment characteristic code, calculating a security code; S3. transmitting the security code and the user name to a server; S4. according to the user name, acquiring pre-stored user data corresponding to the user name by the server, and acquiring the equipment characteristic code by the server; S5. according to the pre-stored user data and the equipment characteristic code, calculating a security verification code; S6. judging whether the security code is accordant with the security verification code; and S7. according to the verification result, processing a remote access control request. The embedded type WEB security authentication method has the advantages that the user name and the user password are encrypted by using a security algorithm, and the encrypted security code is transmitted to the server, so that the user name and the user password are not transmitted visibly any longer, and are not easy to decrypt, and security access control on embedded equipment is achieved.

Abstract: Systems and methods of processing electronic payment authorization are disclosed. The system includes a computing device where an online payment transaction is initiated. The computing device transmits a payment authorization request to a merchant server, and the merchant server transmits a corresponding authorization request to a virtual issuer server. Upon receiving the corresponding authorization request, the virtual issuer server transmits a request to an origin issuer server to obtain a first indication of whether the online payment transaction initiated at the computing device should be approved. In parallel with the transmission of the request to obtain the first indication, there is a transmission of a request to a third-party advisor server to obtain a second indication of whether the online payment transaction initiated at the computing device should be approved. Based on one or more of the first indication and the second indication, it is determined whether to approve the online payment transaction initiated at the computing device.

Abstract: Disclosed herein are system, method, and computer program product embodiments for credit card fraud prevention. An embodiment operates by a credit card terminal capturing an interaction of a credit card with the credit card terminal and reading data stored on the credit card. The credit card terminal then transmits the data to a controller. Upon receipt of the data by the controller, the controller transmits an activation signal to a camera to capture media of a user who interacted the credit card with the credit card terminal. Once the media is captured, the controller transmits both the captured media and the data to a financial institution for security measures. Then, a message is received from the financial institution regarding the security measures, wherein the type of the message either authorizes the transaction or takes appropriate action regarding the transaction.

Abstract: The invention discloses a credit card payment request processing method and device. The credit card payment request processing method comprises the steps of receiving a payment request of a user side; judging whether a credit card security code is required to be used or not in the current time of payment under the condition that the payment request is a payment request based on a bound credit card; if so, generating a prompt message so as to prompt a user to input the security code of the credit card; acquiring the security code inputted by the user according to the prompt message; reconstructing the payment request of the user side by using the acquired security code and binding information of the credit card so as to acquire a payment request carrying security code information; and sending the payment request carrying the security code information to a bank side. According to the scheme, the user operation convenience and the input success rate can be improved, the payment failure rate of a third-party payment platform is reduced, and unnecessary consumption of system resources is reduced.

Abstract: The current analysis examines three different solutions that Mexico implemented within its ports and offshore installations in order to improve the country’s maritime security framework, as well as ensuring compliance with the International Ship and Port Facility Security Code (ISPS Code): privatisation, militarisation and, finally, their combination. The findings of an on-going research effort include inconsistencies within the data of the necessary security incident records, or even their total absence. Inadequate competence and training among the Port Facility Security Officers (PFSO) also stands out. Another important issue was the use of different procedures among the ports under investigation for dealing with exactly the same security incidents. The clear conclusion is that after twelve years of the ISPS Code implementation, Mexico, which is leading the Interamerican Port’s Commission of the Organisation of American States (OAS), does not comply with the requirements of the ISPS Code at an acceptable level; the lack of a national maritime security policy has resulted in a poor (maritime) security culture, despite the severe (security) challenges that this nation is facing. It is also true that the country under discussion is currently reorganising its maritime security apparatus, with some positive results; tools and recommendations for enhancing the Mexican maritime security operating framework are therefore provided, along with areas of potential future research.

Abstract: A method and system to generate a random and alternating postal code attached both to the financial institution and the credit or debit card issued to the account holder The postal code is generated with an algorithm based random number generator (RNG) or a pseudo random number generator (PRNG) as an added security feature The authorized card holder is in possession of a device that would provide the card holder the correct randomized postal code

Abstract: The invention discloses a method, a device and a system used for equipment authentication, which relate to the field of Internet technologies. The method comprises the steps of: sending an access request to access equipment when logging in to the access equipment, so that the access equipment sends equipment identifier thereof and the access request to an authentication platform for authentication, wherein the access request comprises a user identifier; after receiving a security code sent by the access equipment, extracting the saved security code, wherein the access equipment forwards a security code in an authentication success response after receiving the authentication success response sent by the authentication platform; judging whether the received security code and the saved security code are identical; and logging into the access equipment if the received security code and the saved security code are identical. Therefore, a secure network environment is established for the user when the user completes the network surfing request, and bidirectional security authentication is realized through single information interaction, thereby the network security is higher.

Abstract: Techniques are provided for client-side security key generation. An initial request is received from an application executing on a client device. The application includes a security component includes security code. In response to the initial request, a key component is generated. The key component includes one or more parameters from which a valid security key can be generated at the client device by executing the security code. The key component is provided to the client device. A security key associated with a request from the client device to an application server is received. The security key is checked for validity. In response to determining that the security key is valid, processing of the request by the application server is caused.

Abstract: Now days the use of credit card has dramatically increased. As credit card become the most popular manner for both online as well as orderly purchase cases of fraud joined with it are also increasing. In this paper, k-means clustering is used for credit card fraud detection. Data is developing haphazardly for credit card and the k-means algorithm is used for discovering transaction weather it is fraud transaction or legitimate transaction. Cluster is developed to discover fraud in credit card fraud transaction which is divided into low risky cluster, high risky cluster and medium risky cluster. K-means clustering algorithm is easy and powerful algorithm for credit card fraud detection.

Abstract: The technical scheme of the invention provides a payment method, payment equipment and a payment server. The payment method comprises the following steps that: receiving a request payment instruction by the payment equipment to obtain a payment security code in TEE (Trusted Execution Environment), generating a security payment authentication code according to the payment security code, and displaying the security payment authentication code in the TUI (Trusted User Interface) of the TEE; and obtaining the security payment authentication code by the payment server, verifying the validity of the security payment authentication code according to the payment security code, and finishing payment according to the security payment authentication code. By use of the technical scheme of the invention, payment security can be improved.

Abstract: Methods, systems, and computer readable media for utilizing payment card transaction data to provide alert messages relating to unpurchased items to cardholder users are disclosed. In some aspects, the methods can include receiving a message including payment card transaction data designating one or more products or services purchased during a most recent payment card transaction conducted by a cardholder user, identifying the one or more products or services that were not purchased, but that should have been purchased, during the most recent payment card transaction, using aggregate payment card transaction data designating the one or more products or services purchased during any previous payment card transactions conducted by the cardholder user, generating an alert message identifying the one or more products or services that were not purchased, but that should have been purchased, during the most recent payment card transaction, and providing, to a cardholder user device, the alert message.

Abstract: The present disclosure presents a method for a card based transaction between a mobile terminal and a service provider system having one or several computer servers. The mobile terminal obtains (310) a CSC from credit card/debit card. The mobile terminal obtains (320) a data seed. The mobile terminal applies (330) a minimal perfect hash function to the CSC as well as the data seed to generate a temporary CSC. The mobile terminal initiates (340) a card based transaction with the service provider system utilizing the generated temporary CSC. The service provider system obtains (610) the temporary CSC and applies (620) a same minimal perfect hash function to the temporary CSC until a match is found between the obtained temporary CSC and one CSC stored at the service provider system. In response to a match the service provider system continues (630) the initiated card based transaction with the mobile terminal.

Abstract: Australia’s payment card regulations are similar to those used in a variety of countries around the world. However, as we argue below, they are complex, open to gaming and have failed to win support from consumers.In this paper, we present an alternative approach to regulation involving direct charging for card fees. This approach is technically feasible, improves transparency, meets the objective of efficiency of the payment’s system, and is simpler than current regulation.

Abstract: A method for authorizing a transaction request for a payment card is disclosed, the method comprising the steps of receiving at a transaction processing platform, data indicating that a first authorization request for the payment card has been declined; referencing at the transaction processing platform, a circuit of payment cards where the circuit of payment cards comprises the payment card, at least one other payment card and association data indicative of the association between the payment card and the at least one other payment card; selecting at the transaction processing platform, a second payment card from the at least one other payment card based on the association data; identifying at the transaction processing platform, an issuer server associated with the second payment card; and sending from the transaction processing platform to the issuer server, a second authorization request for the second payment card.

Abstract: Analyze the management vulnerabilities and technology vulnerabilities of current bank cards firstly, explain the technical features of the magnetic stripe and memory chip bank card, and disclose the method probably used by criminals while attacking. Meanwhile analyze the reasons why PKI may be infeasible to guarantee the security of bank cards. Vertical authentication based security solution for bank cards are proposed. Use CPU smart chip to replace the magnetic stripe card and memory chip. Set up signature and encryption protocols dealing with withdrawal form or payment order on the basis of vertical authentication in CPU smart chips, and replace current withdrawal or payment password authentication protocol. Therefore, set up a chip-level withdrawal or payment system for ATM or POS to guarantee the security of bank card withdrawal or payment.

Abstract: The embodiment of the invention provides a device starting method and a device starting system. In one embodiment, the method comprises the steps of acquiring an identification code corresponding to control equipment by a mobile communication terminal, and transmitting the identification code to a control server; generating a corresponding first security code by the control server according to the identification code and transmitting the first security code to the mobile communication terminal; receiving and storing the first security code transmitted by the control server by the mobile communication terminal; and generating a second security code by the mobile communication terminal according to the first security code, matching the received second security code with a pre-stored second security code by the control equipment, and judging whether or not to start controlled equipment which is controlled by the control equipment according to a matching result.

Abstract: Methods and servers are provided for processing payment using a generic gift card. The generic gift card is usable for payment across one or more participating merchants. One of the methods is performed at a server that administers usage of the generic gift card, the method comprises generating a unique code for identifying the generic gift card against which payment will be deducted for purchases made at a selected participating merchant; transmitting the unique code to the selected participating merchant; and calculating and subtracting the purchases made from a balance of the generic gift card in response to receiving from the selected participating merchant an indication of use of the unique code at the selected participating merchant.

Abstract: The embodiments of the invention provide a payment method, a payment apparatus, and a payment server. The payment method comprises: a payment apparatus receives a payment request command, acquires a payment security code in a trusted execution environment (TEE), and generates, according to the payment security code, a secure payment authentication code, and displays, on a trusted user interface (TUI) of the TEE, the secure payment authentication code; and a payment server acquires the secure payment authentication code, verifies, according to the payment security code, validity of the secure payment authentication code, and performs a payment on the basis of the secure payment authentication code. The technical solution in the invention can increase security of a payment.

Abstract: The present system may allow a user to transfer data about a transaction card that has been entered in a payment application to be "on file" with a merchant. As a result, the consumer does not have to enter electronic payment information again as the data is transferred from the payment application to the merchant application where the card is then held on file.

Abstract: A medical system is described that provides discounted prices for medical services. One or more medical providers is identified by a unique identifier (ID) of a card reader associated with respective medical provider. A transaction processing system provides transaction information relating to a first card transaction, wherein the transaction information includes the unique ID of the card reader, a card number, and an amount charged in the transaction. The medical system accesses one or more databases to determine whether a discount program exists for the unique ID of the card reader. In response to determining that a discount program exists for the unique ID of the card reader, the medical system automatically performs a second card transaction to subtract a second amount that reflects the discount for the medical procedure.

Abstract: A protective credit card cover apparatus that hides confidential information in a credit card, but still allows a credit card transaction to commence. The apparatus has a front side that protect a credit card's front side, a back side that protects a credit cards back side. It achieves this by having visible as well as opaque sections. The apparatus has adhesive section or sections that prevent the credit card from falling out of the apparatus and secures the credit card in place.

Abstract: A system and method for a secure remote payments process and for generation of one-time only remote payment cards is presented. Use of the one-time payment (OTP) cards can use multi-factor authentication where one factor is a biometric technique. A process can include generating an OTP card number based on a first encryption algorithm, an expiry date, and a security code based on a second encryption algorithm. A purchase amount, and the OTP card information are decrypted by an issuer to approve payment for a remote payment, after which the OTP card is no longer valid.