Abstract: A method and apparatus for performing search system upgrades is described. The method may include processing a software upgrade for a search system cluster distributed over one or more nodes, the one or more nodes comprising current search system data nodes. The method may also include allocating at least a set of one or more search system data nodes for the software upgrade including at least one upgraded search system data node. Furthermore, the method can include receiving, during the software upgrade, transaction data for a transaction, and receiving search requests to be executed by the search system cluster.

Abstract: A method and apparatus for conducting multi-factor authentication of a merchant system by a commerce platform are provided. The process includes the commerce platform authenticating itself to a cloud services provider, which supplies a private communications network for the platform and merchant system. The platform receives an authentication request from the merchant system originating from the provider's private network, using an encryption key. The validity of the encryption key is verified by the platform. If the request is from within the private network and the API key is valid, the platform authenticates the merchant system to perform the requested operation.

Abstract: A method and apparatus for a commerce platform providing proof of application ownership of a network distributable application are described. The method may include receiving a request to approve an application developed by a merchant system, wherein the application includes an application programming interface (API) component, a software development kit (SDK) component, or a combination thereof provided by the commerce platform to the merchant system. The method may also include generating a unique identifier (ID) for the application to be included as metadata within the application. Furthermore, the method may include obtaining, from an application information system, data describing the application, and extracting an ID from metadata in the data obtained by the application information system.

Abstract: In embodiments, methods and systems for order management and processing based on a distributed commerce platform are provided. A distributed commerce platform supports end-to-end integrated product publication, order-management and payment services. In particular, the distributed commerce platform supports components based on Application Programming Interfaces (API) that standardize the implementation of a distributed commerce solution or configuration of off-site buying experiences. Using the distributed commerce platform, merchants can concurrently offer, sell, and process orders for products through a plurality of different affiliate channels. The distributed commerce platform can also be implemented as a federated portal from which a merchant can identify affiliate channels to publish product objects, access the plurality of affiliate channels and define configurations for processing objects of the merchant's distributed commerce solution.

Abstract: A method and apparatus for providing a document-integrated software integration validation by a service provider system are described. The method includes detecting an application program interface (API) call generated by a user system in a test transaction, the API call comprising a test identifier (ID) and a user system ID, the test ID identifying an API integration test scenario and the user system ID identifying the user system. The method also includes tracking a sequence of API calls and responses. Furthermore, the method includes receiving login credentials from the user system. The method also includes verifying the received login credentials with previously established login credentials associated with the user system ID. Additionally, the method includes determining whether the sequence of API calls and responses is performed correctly for the test transaction and serving the interactive integration guide to the user system indicating a result for the API integration test scenario.

Abstract: Methods, systems, and computer readable medium are provided for generating, by a secure processor, a plurality of configurable data entry elements configured into a webpage, receiving sensitive data entered via the plurality of configurable data entry elements during a user data entry session, generating a hidden controller iframe in the webpage, aggregating, by the hidden controller iframe, the sensitive data across the plurality of configurable data entry elements, and directing aggregated sensitive data to the secure processor hosted by a first server separate from a second server hosting the webpage.

Abstract: Described herein are systems and methods for fraud detection in network operations. The method may receive a request for execution of a network operation, the request including a first identifier associated with a user device. The method may extract, using the first identifier, attributes of the network operation and user device attributes. The method may extract a second identifier previously generated for the user device. The method may execute a cryptographic protocol using the second identifier and a cryptographic key to generate a first authentication code. The method may execute a machine learning model to predict a likelihood of fraud using mismatched attributes based on determining that the first authentication code matches a second authentication code parsed from the first identifier. The method may reject the request to execute the network operation in response to determining that a prediction of likelihood of fraud fails to satisfy a security threshold.

Abstract: A method and apparatus for performing privacy preserving fraud detection in network based transactions are described. The method may include receiving a fraud detection message during a transaction between a user system and a merchant system, the message having a set of cryptographically transformed universal resource locator (URL) components generated from a URL of a web page of the merchant system on which the transaction is to occur. The method may also include generating one or more secure and anonymous fraud detection features, each fraud detection feature comprising a select subset of the cryptographically transformed URL components. The method may also include performing fraud detection for the web page using the one or more secure and anonymous fraud detection features to determine a likelihood that fraud is occurring in the transaction.

Abstract: Described herein are systems and methods to use modeling techniques to identify gradual changes in various metrics identified as a result of analyzing an aggregated transaction dataset. In one method, a computer model dynamically slice the data using an attribute, calculates an entropy value for using a rolling time window, and uses the entropy value to identify anomalous behavior. The model may use information gain to determine whether to further segmented the data slice into smaller data slices. The model may iteratively slice and analyze the data until a data slice corresponding to the root cause is determined. The model may then traverse the hierarchy of data slices and combine the data slices until an optimized combined data slice. The model may train a machine learning component, such as a booted tree algorithm, to optimize its traversal of the hierarchy of data slices.

Abstract: In an example embodiment, a solution is provided that balances between speed of access and capabilities of an accessed file. More specifically, the concept of a service worker is introduced. The service worker has the ability to intercept requests, such as HTTP requests, for file and to modify them, if necessary. By acting as a middleman between the web browser instance and the web server, the service worker is able to elect to choose to either request versions of files in the cache or to allow the older versions of the files in the cache to remain and be used, balancing between the need for timely responses to requests for files and the need to have updated versions of the files be used. It can then modify web requests from the web browser (such as from web workers of a browser context) as needed to accomplish the aforementioned balance.

Abstract: The present disclosure is directed to models for predicting customer behavior, including the use or adoption of products by current customers and prospective customers of a service platform offering multiple service products.

Abstract: Various embodiments described herein support or provide for data management operations, such as receiving a request to access a webpage; determining that accessing the webpage requires secure access via a secure browser; identifying a virtual machine that is configured to allow access to the webpage; and causing display of the webpage in the secure browser embedded in a local browser of the sender device.

Abstract: A method and apparatus for updating data router nodes in a distributed storage system are described. The method can include querying, by a first database agent of a database node, a cache data store for health status metrics of the cache data store. The method can also include storing, by the first database agent of the database node, the health status metrics in a data repository. Furthermore, the method can include obtaining, by a second database agent of a router node, the health status metrics from the data repository, and updating, by the second database agent of the router node, a database topology file based on the health status metrics.

Abstract: The subject technology performs a transaction locally at a computing node. The subject technology determines that the transaction has been completed. The subject technology determines a set of immutable attributes from the completed transaction. The subject technology generates an aggregate identifier based on the set of immutable attributes. The subject technology publishes the generated aggregate ID. The subject technology stores the published aggregate ID to an external storage location.

Abstract: In an example embodiment, a shared worker object is used in a web browser to synchronize data across tabs in the web browser, without relying upon a web server to perform or coordinate that synchronization. More particularly, each browsing context includes a web page and zero or more web worker objects, each web worker object corresponding to a different module of the web page. The zero or more web worker objects in each web page user interface are then configured to communicate with a single shared worker, through which all data requests and data changes are sent. The single shared worker forwards data requests and data changes to the web server, but also tracks such data requests and then automatically updates any browsing context that requested a particular piece of data in the past with a change that occurred to that particular piece of data.

Abstract: Systems and methods are provided for filtering and/or creating Points-of-Interest (POIs). In one embodiment, a list of POIs is obtained and then filtered based on crowd data related to the list of POIs to provide a filtered list of POIs. In another embodiment, one or more crowd-sourced POIs are created based on one or more crowds relevant to a corresponding bounding region for POI creation.

Abstract: A method and apparatus for verifying integrity of search system data is described. The method may include accessing a first and second snapshot of search system data, the search system data in each snapshot including transaction data generated by a commerce platform system in response to transactions performed by the commerce platform system. The method may also include accessing an operation log of operations performed on the transaction data during a time between when the first snapshot was generated and a time when the second snapshot was generated. Furthermore, the method may include transforming the transaction data from the first snapshot based on the operations in the operation log to generate validated transaction data in a validated second snapshot, and determining a reliability of the transaction data at the second time period based on a comparison of transaction data from the second snapshot with the validated transaction data from the validated second snapshot.

Abstract: In an example embodiment, interactions among services in a service proxy are recorded in an interaction log. A service graph manager then parses the interaction log. The service graph manager reads each interaction and then processes the interaction to determine if it violates the rules. If so, the service graph manager reports the violation to the software developer and also recommends an action to remedy the violation. In an example embodiment, this recommendation takes the form of an indication of which files to modify to allow the service interaction (e.g., which rule(s) to modify to ensure that the service interaction is not a violation). The software developer can then approve the proposed action, which can then be automatically implemented to ensure that once the service is sent to a quality assurance environment there will be no rules violation from the corresponding interaction(s).

Abstract: A method and apparatus for using cryptographically signed secure identifiers to detect fraud during network based transactions are described. The method may include receiving a transaction from a user device, the transaction comprising a secure identifier purported to be associated with the user device, and the transaction further comprising transaction data. The method may also include extracting a first identifier and a second identifier from the secure identifier purported to be associated with the user device, and then regenerating a true second identifier using the first identifier. Furthermore, when it is determined that the true second identifier matches the second identifier extracted from the secure identifier purported to be associated with the user device, the method may include determining that the secure identifier is valid, and processing the transaction based at least in part on the determination that the secure identifier is valid.

Abstract: Methods and systems for installing and running an application for a terminal are described. The method may include uploading an application to an application store. The method may also include downloading, by a terminal, the application from the application store, wherein the terminal is connected to the application store by a network. Furthermore, the method may include authorizing, by a terminal management server (TMS) coupled to the terminal and the application store via the network, the terminal to install and run the downloaded application.