NFC mobile currency transfer

What is claimed is: 1. A non-transitory computer-readable storage medium having computer-readable program code embodied therewith, the computer-readable program code executable by a processor circuit to cause the processor circuit to: receive, by a management application executing on the processor circuit, a first cryptogram from a first application executing on a first device, the first cryptogram generated by a contactless card associated with a first account; increment, by the management application, a counter value stored in a memory of a server responsive to receiving the first cryptogram from the first device; generate, by the management application using one or more cryptographic algorithms, a diversified key based on a master key and the counter value; decrypt, by the management application using the one or more cryptographic algorithms and the diversified key, the first cryptogram to yield a customer identification value; determine, by the management application, that the customer identification value matches a customer identifier of the first account in an account database; receive, by the management application from the first application, an indication that the first account has been authenticated based on received input; receive, by the management application from the first application, a request to transfer funds from the first account to a second account; increment, by the contactless card, a counter value stored in a memory of the contactless card responsive to a tap of the contactless card to a second device; generate, by the contactless card responsive to the tap, a second diversified key using the counter value stored in the memory of the contactless card and the master key; encrypt, by the contactless card, the customer identification value stored in the memory of the contactless card using one or more cryptographic algorithms and the second diversified key to yield a second cryptogram; transmit, by the contactless card, the second cryptogram to the second device; receive the second cryptogram by the management application from a second application executing on the second device; increment, by the management application, the counter value stored in the memory of the server responsive to receiving the second cryptogram from the second device; generate, by the management application using the one or more cryptographic algorithms, a second instance of the second diversified key based on the master key and the counter value stored in the memory of the server; decrypt the second cryptogram by the management application using the one or more cryptographic algorithms and the second instance of the second diversified key; determine, by the management application, that decrypting the second cryptogram yields the customer identifier of the first account; determine, by the management application, that the second cryptogram is received within a threshold amount of time of receiving the first cryptogram; and authorize, by the management application, the request to transfer funds from the first account to the second account based at least in part on: (i) the determination that the customer identification value yielded by decrypting the first cryptogram matches the customer identifier of the first account, (ii) the decryption of the second cryptogram yielding the customer identifier of the first account, and (iii) the determination that the second cryptogram is received within the threshold amount of time of receiving the first cryptogram. 2. The non-transitory computer-readable storage medium of claim 1 , further comprising computer-readable program code executable by the processor circuit to cause the processor circuit to: start a timer by the management application responsive to receiving the first cryptogram from the first application, wherein the management application determines that the second cryptogram is received within the threshold amount of time of receiving the first cryptogram from the first application based on the timer. 3. The non-transitory computer-readable storage medium of claim 1 , further comprising computer-readable program code executable by the processor circuit to cause the processor circuit to: receive, by the management application from the second application, an indication that the second account has been authenticated based on received input comprising one or more of a username and password, or biometric credentials. 4. The non-transitory computer-readable storage medium of claim 1 , the first and second cryptograms comprising message authentication code (MAC) cryptograms. 5. A method, comprising: receiving, by a server, a first cryptogram from an application executing on a first device, the first cryptogram generated by a contactless card associated with a first account; incrementing, by the server, a counter value stored in a memory of the server responsive to receiving the first cryptogram from the first device; generating, by the server using one or more cryptographic algorithms, a first diversified key based on a master key and the counter value; decrypting, by the server using one or more cryptographic algorithms and the first diversified key, the first cryptogram to yield a customer identification value; determining, by the server, that the customer identification value yielded by decrypting the first cryptogram matches a customer identifier in an account database; receiving, by the server from the application executing on the first device, an indication that the first account has been authenticated based on received input; receiving, by the server from the application, a request to transfer funds from the first account to a second account; incrementing, by the contactless card, the counter value stored in the memory of the contactless card responsive to a tap of the contactless card to a second device; generating, by the contactless card responsive to the tap, a second diversified key using the counter value stored in the memory of the contactless card and the master key; encrypting, by the contactless card, the customer identification value stored in the memory of the contactless card using one or more cryptographic algorithms and the second diversified key to yield a second cryptogram; transmitting, by the contactless card, the second cryptogram to the second device; receiving the second-cryptogram by the server from an application executing on the second device; incrementing, by the server, the counter value stored in the memory of the server responsive to receiving the second cryptogram from the second device; generating, by the server using the one or more cryptographic algorithms, a second instance of the second diversified key based on the master key and the counter value stored in the memory of the server; decrypting the second cryptogram by the server using the one or more cryptographic algorithms and the second instance of the second diversified key; determining, by the server, that decrypting the second cryptogram yields the customer identifier of the first account; determining, by the server, that the second cryptogram is received within a threshold amount of time of receiving the first cryptogram; and authorizing, by the server, the request to transfer finds from the first account to the second account based at least in part on: (i) the determination that the customer identification value yielded by decrypting the first cryptogram matches the customer identifier in the account database, (ii) the decryption of the second cryptogram yielding the customer identifier of the first account, and (iii) the determination that the second cryptogram is received within the threshold amount of time of receiving the first cryptogram. 6. The method of claim 5 , wherein the request to transfer funds comprises an a