Abstract: Methods, systems, and computer readable medium are provided for generating, by a secure processor, a plurality of configurable data entry elements configured into a webpage, receiving sensitive data entered via the plurality of configurable data entry elements during a user data entry session, generating a hidden controller iframe in the webpage, aggregating, by the hidden controller iframe, the sensitive data across the plurality of configurable data entry elements, and directing aggregated sensitive data to the secure processor hosted by a first server separate from a second server hosting the webpage.

Abstract: Methods, systems, and media are provided for enabling encryption key distribution when a processor is in offline mode. When offline, key distribution servers can distribute private/public key pairs in place of the processor. The servers can distribute a private key to a first server for encryption of data and a public key to the processor, when it is online, to decrypt the data.

Abstract: In an example embodiment, information about one or more failed payment attempts via an electronic payment processing system is obtained. One or more features are extracted from the information. Then, for each of a plurality of potential candidate retry time points, the one or more features and the potential candidate retry time point are fed into a dunning model, the dunning model trained via a machine-learning algorithm to produce a dunning score indicative of a likelihood that a retry attempt at an input retry time point will result in a successful payment processing. The dunning scores for the plurality of potential candidate retry time points are used to select a desired retry time point. Then the electronic payment processing system is caused to attempt to reprocess a payment associated with one of the failed payment attempts at a time matching the desired retry time point.

Abstract: A method and apparatus for hard deletion of user data are described. The method may include receiving a request from a user computer system to delete user data. The method may also include determining a unique user identifier associated by a system with a user making the request. The method may also include determining whether a data partition, in which data generated by a job or subsystem of the computer system is stored, is predicted to contain a record having the unique user identifier. Then, the method may include searching, when the data partition is predicted to contain a record having the unique user identifier, data records stored in the data partition for a user data record based on the unique identifier, and performing a hard deletion of the user data record from the partition when found during the searching.

Abstract: A method and apparatus for a commerce platform providing proof of application ownership of a network distributable application are described. The method may include receiving a request to approve an application developed by a merchant system, wherein the application includes an application programming interface (API) component, a software development kit (SDK) component, or a combination thereof provided by the commerce platform to the merchant system. The method may also include generating a unique identifier (ID) for the application to be included as metadata within the application. Furthermore, the method may include obtaining, from an application information system, data describing the application, and extracting an ID from metadata in the data obtained by the application information system.

Abstract: In an example embodiment, a solution is provided that aggregates records as they are submitted to a third party (on the write path) rather than performing a real-time aggregation when a request is processed that needs the aggregation (read path). More particularly, in an example embodiment, a caching layer is introduced that avoids having to read all usage events to compute an aggregation when a request is received for aggregated data. The caching layer maintains values for various metrics that require aggregation.

Abstract: A method and apparatus for generating and using secure sharded onboarding user interfaces are described. The method may include determining, based on account type of a merchant account being onboarded for a merchant by a first user, that information for a user type associated with a second user associated with the merchant is to be collected to satisfy minimum merchant account compliance requirements. The method may also include allocating a person object in an accounts data store maintained by the commerce platform system, the person object associated in the accounts data store with the merchant account. Furthermore, the method can include generating a secure link and transmitting the secure link to the second user, the secure link resolving at the commerce platform system and comprising a unique identifier that is associated with the person object.

Abstract: A method and apparatus for managing liquidity when processing transactions are disclosed. In some embodiments, the method is implemented by a computing device and comprises: receiving data for a plurality of transactions; continuously reading in and aggregating, with an aggregator implemented at least partially in hardware of the computing device, transactions to produce one or more netted currency positions based on a plurality of properties of the transactions and on a plurality of netting constraints; generating one or more tasks, using a trade generator implemented at least partially in hardware of the computing device, to route cash movements as one or more batched fund transfers based on one or more trading policies; and sending the one or more tasks via network communications to one or more entities to execute the batched fund transfers.

Abstract: Methods and systems for providing an end to end full stack customer portal are provided. A customer portal may be configured by a commerce platform based on configuration settings received from a merchant, the configuration settings indicating a set of functions to be provided by the customer portal. Upon receiving a request to generate a portal session, the commerce platform may generate the portal session and a portal session object, the portal session object comprising a uniform resource locator (URL) to provide access to the portal session. The portal session object may be transmitted to the merchant. In response to a portal access request made via the URL, the commerce platform may provide access to the customer portal via the portal session, to a customer who made the portal access request.

Abstract: Disclosed embodiments provide systems, methods, and apparatuses for facilitating transfers between user commerce accounts associated with a merchant of a commerce platform within a computing environment supported by a processor and a memory to execute such functionality. An exemplary system may include a means for creating a merchant account platform at the payment system; creating a single charge from a customer at the merchant account platform; creating multiple transfers from the merchant account platform to different connected accounts, wherein the multiple transfers are to each transfer a sub-portion of proceeds associated with the single charge from the customer to each of the different connected accounts; performing the single charge from the customer to the merchant account platform; and performing each of the multiple transfers from the merchant account platform to the different connected accounts. Other embodiments are also disclosed.

Abstract: In an example embodiment, a method for updating a database with dimensional balancing comprises receiving a transaction request to transfer a portion of a first balance from the first balance to a second balance; determining a subset of the first balance less than or equal to the portion in the first balance compliant with dimensional rules based on one or more attributes of the subset and an identifier of an account holding the second balance; moving the determined subset from the first balance to the second balance; and updating attributes of the moved subset in the second balance.

Abstract: A method and apparatus for generating and using immutable records generated from transaction records maintained at a cloud storage system for transaction ledger generation are described. The method may include accessing transaction records in a transaction record data store maintained by a cloud services provider system, where each transaction record generated by the commerce platform in response to the commerce platform processing a transaction. The method further includes accessing a plurality of revenue records, each having a unique key. The method may also include generating a plurality of candidate ledger entries, each candidate ledger entry comprises at least a subset of the plurality of data fields from the revenue record data object, and determining whether a revenue record matches a candidate ledger entry based on a comparison of the unique key.

Abstract: A transaction is conducted between a merchant site and a customer's electronic device using a payment processor. The merchant site is associated with a client-side application and a server-side application. The client-side application executes on the customer's electronic device. The client-side application electronically sends payment information retrieved from the customer's electronic device to the payment processor. The client-side application does not send the payment information to the server-side application. The payment processor creates a token from the payment information sent by the client-side application. The token functions as a proxy for the payment information. The payment processor electronically sends the token to the client-side application. The client-side application electronically sends the token to the server-side application for use by the server-side application in conducting the transaction.

Abstract: A method and apparatus for performing multi-factor authentication of a merchant system by a commerce platform are described. The method may include authenticating the commerce platform to a cloud services provider, the cloud services provider providing a private communications network for use by the commerce platform and the merchant system. The method may also include receiving, by the commerce platform, an authentication request from the merchant system, wherein the request received from the merchant system originates from the private communications network provided by the cloud services provider, and wherein the authentication request uses an encryption key.

Abstract: A method and apparatus for a first service processing system receiving and responding to a service request using a time context of a service time protocol is described. The method may include receiving a network based message associated with a service. The method may also include determining whether a service time context has been passed to the first service processing system from a second service processing system in the request. Furthermore, the method can include when no service time context is determined to have been passed to the first service processing system in the request, generating a current service time from a combination of a current physical time of the first service processing system and an initial counter time, performing a task associated with the service, and transmitting a second network based message that comprises the current service time as time context metadata associated with the performance of the task to a second service processing system.

Abstract: A method and apparatus is described for performing transaction tracing. The method may include mapping one or more funds flow transactions into each account to one or more funds flow transactions out of said each account based on a first-in-first-out ordering. The method may also include generating an initial graph from the mappings of the transactions for each said account. Furthermore, the method may include transforming the initial graph to a function graph, wherein the functional graph is a directed pseudoforest where each node has an out degree of at most one. Then, the method may include for a node in the functional graph, performing a trace of the transaction generating a set of transactions that contributed to the transaction.

Abstract: A method and apparatus for processing a commerce transaction performed with a terminal reader for reading a card are disclosed. In one embodiment, the method includes receiving transaction information for a merchant regarding a transaction involving the terminal reader without the terminal reader having an assigned terminal identifier (TID) that is used for transaction authorization and assigning the terminal reader a pre-allocated TID for the merchant as the assigned TID, where the pre-allocated TID is selected from a group of one or more pre-allocated available terminal IDs (TIDs) associated with the merchant, and using that pre-allocated TID to obtain authorization for the transaction.

Abstract: A method for maintaining database integrity comprises: receiving event data from a producer; converting the received event data to a standard set of ledger entries; publishing the converted entries to a database; determining if two accounts in the database balance out; performing a remedial action to maintain the database integrity if the accounts do not balance.

Abstract: A method and apparatus for authenticating a user commerce account associated with a merchant of a commerce platform are described. The method may include initiating authentication of the user commerce account associated with the merchant of the commerce platform from a commerce platform user interface of a user device, the user commerce account established for a user of the merchant. The method may also include sending an electronic message to a mobile device associated with the user account at the commerce platform, wherein the electronic message comprises an authentication code, and receiving the authentication code from the commerce platform user interface. Furthermore, the method may include generating an authentication key for the mobile device in response to matching the received authentication code with the sent authentication code and receiving a cookie provided from the commerce platform to the mobile device.

Abstract: A magnetic reader head assembly includes a magnetic reader head compartment, a frame and an elastic component. The magnetic reader head compartment comprises electronic and mechanical components of the magnetic reader head. The frame has a front side and a back side and has a footprint matching the footprint of the magnetic reader head compartment. The front side is configured to attach to a back wall of the magnetic reader head compartment while allowing the magnetic reader head compartment to move out or retract from the frame. The elastic component is configured to be placed at the back side of the frame and to push the frame out in order to press the magnetic reader head compartment against a magnetic card stripe.