Abstract: A method and apparatus for performing privacy preserving fraud detection in network based transactions are described. The method may include receiving a fraud detection message during a transaction between a user system and a merchant system, the message having a set of cryptographically transformed universal resource locator (URL) components generated from a URL of a web page of the merchant system on which the transaction is to occur. The method may also include generating one or more secure and anonymous fraud detection features, each fraud detection feature comprising a select subset of the cryptographically transformed URL components. The method may also include performing fraud detection for the web page using the one or more secure and anonymous fraud detection features to determine a likelihood that fraud is occurring in the transaction.

Abstract: The disclosure generally describes one or more techniques for supporting deployment of application extensions for a client system.

Abstract: A method for preventing race conditions in a database comprises: setting a first numerical entry and a second numerical entry in a database; receiving a first online transaction; responsive to determining a lock of the database is in progress due to a second received online transaction, suspending the first online transaction; removing the lock after the second received online transaction is completed; responsive to determining that the first entry is greater than zero, decrementing the first entry by an amount indicated in the first online transaction; responsive to determining the second entry is greater than zero, decrementing the second entry; processing the first transaction; and generating an online transaction record for the first transaction and storing the generated record in an online transaction database.

Abstract: In an example embodiment, rate limiting is performed at the instance level (i.e., locally), but utilizing throughput statistics of other instances. These statistics may be measured locally by each instance and then transmitted to a central store, where they are aggregated. Each instance is then able to asynchronously request the aggregated statistics from the central store and use this information to manage the parameters of its own local rate limiter.

Abstract: An electronic device can be synchronized with a broadcast of a live sporting event to obtain supplemental sports data over a data network from a server storing data associated with the live sporting event. Supplemental sports data is obtained from the server for display on the electronic device following a triggering activity associated with the broadcast of the live sporting event. Supplemental sports data can be transmitted for rendering on a display associated with the electronic device. Supplemental sports data can include display of an instant replay video of a sports athlete combined with audio of a pre-recorded statement by the sports athlete associated with the instant replay video, an announcement of a score change for a sporting event monitored by the electronic device, and a display of a football widget providing updates on football game status (e.g., possession, ball location, current score) monitored by the electronic device.

Abstract: A method and apparatus for performing multi-factor authentication of a merchant system by a commerce platform are described. The method may include authenticating the commerce platform to a cloud services provider, the cloud services provider providing a private communications network for use by the commerce platform and the merchant system. The method may also include receiving, by the commerce platform, an authentication request from the merchant system, wherein the request received from the merchant system originates from the private communications network provided by the cloud services provider, and wherein the authentication request uses an encryption key.

Abstract: A method and apparatus for job submission are described. In one embodiment, the jobs are submitted by a job submission service or gateway that schedules large-scale data processing jobs on remote infrastructure. In one embodiment, the method comprises: receiving a request at a proxy service from a client, via a network communication, to submit a job to a cluster; and managing the job externally to the client, including sending a request to an orchestration system to launch an orchestration system job in a container to start the job running on the cluster via a client process run on a job client in the container and provide state information back to the proxy service regarding the orchestration system job.

Abstract: A method and apparatus is described for performing transaction tracing. The method may include mapping one or more funds flow transactions into each account to one or more funds flow transactions out of said each account based on a first-in-first-out ordering. The method may also include generating an initial graph from the mappings of the transactions for each said account. Furthermore, the method may include transforming the initial graph to a function graph, wherein the functional graph is a directed pseudoforest where each node has an out degree of at most one. Then, the method may include for a node in the functional graph, performing a trace of the transaction generating a set of transactions that contributed to the transaction.

Abstract: A method and apparatus for a distributed service provider augmenting user data during data access and deletion is described. The method may include monitoring a plurality of user data returned by service system responses to requests for user data associated with a user identifier. The method may further include building an additional user data search query using a subset of user data from the monitored plurality of user data returned by the service system responses to the initial requests for user data. Furthermore, the method can include executing the additional user data search query at each of the plurality of service systems to identify additional user data stored by one or more of the plurality of service systems, wherein the identified additional data is not associated with the user identifier.

Abstract: A method for de-duplicating data records may include generating a nodal data structure comprising a set of nodes, in response to receiving a first set of transaction data corresponding to aggregated data associated with a first set of transactions, associating a first subset of nodes with the first set of transaction data, responsive to receiving a second set of transaction data corresponding to aggregated data associated with a second set of transactions and at least a subset of the first set of transactions, associating a second subset of nodes to the first set of transaction data, combining the first subset and the second subset, executing an analytical protocol to identify data associated with the transaction, disassociating the transaction with the first subset, and associating the data associated with the transaction identified via the analytical protocol with the first subset and the second subset.

Abstract: One method includes identifying a set of fraud-detection ML models to be used to determine a fraud status of a transaction; executing a routing ML model configured to generate a score for at least a subset of the set of fraud-detection ML models, based on an input of an amount and an attribute associated with the transaction, the score indicative of the fraud status for the transaction based on the amount and the attribute; executing using the amount and the attribute associated with the transaction, a subset of the set of fraud-detection ML models selected in accordance with each fraud-detection ML model's respective score, whereby at least one fraud-detection ML model within the subset of the set of fraud-detection models generates a prediction associated with the fraud status of the transaction; and authorizing the transaction based on the prediction.

Abstract: A system may include a network infrastructure having a set of network component nodes, each network component node configured to communicate with at least one other network component node in accordance with a dependency protocol; and a server in communication with the network infrastructure and a fault injection server. The server can be configured to monitor outputs generated by the network infrastructure and attributes of data communication between the set of network component nodes; execute a computer model using the dependency protocol and the monitored attributes and outputs as input to predict a set of faults; in response to presenting the set of faults for display on a user interface, receive a selection of one or more of the set of faults; and instruct the fault injection server to execute a fault injection scenario simulating performance of the network infrastructure operating under the selected one or more faults.

Abstract: A method comprises determining whether a decision can be determined for the request based on a current information available; when the decision can be determined, utilizing a first model to determine a set of questions corresponding to the request, the first model previously trained using training data comprising a set of questions associated with a set of requests; utilizing a second model to determine one or more predicted answers for the set of questions, the second model ingesting the set of questions determined by the first model and at least one attribute associated with the request to generate the one or more predicted answers; and utilizing a third model to determine the decision for the request.

Abstract: A method and apparatus for data mirroring are described. In one embodiment, a method for implementing country-specific data locality to cause data related to local transactions to be stored within the country in which the transactions occurred, comprises: capturing a set of transaction data associated with a set of transactions into a first cloud-based storage resource; and, according to a configuration file, performing data mirroring across a heterogeneous set of cloud providers using a plurality of stages executed by one or more processors.

Abstract: Examples of the present disclosure describe systems and methods for remotebuild software build action-merging. In some examples, a build server receives a first software build action and a second software build action. In examples, it is determined that there is a match between a first hash value of the first software build action and a second hash value of the second software build action. In examples, only the first software build action is run from among the first software build action and the second software build action based on the match to produce a software build action result. In examples, the software build action result is returned as an output of the first software build action and an output of the second software build action.

Abstract: Methods and apparatuses for using secrets and a secrets framework are described. In some embodiments, the method comprises executing, by a computing system, application code that includes a reference to a secret value inaccessible to the application code, the reference being in the form of a handle that contains the secret value, including passing the handle to injector code; and executing the injector code, including accepting the handle; obtaining the secret value from the handle; and using the secret value in an operation on behalf of the application code.

Abstract: A contactless card reader comprises a contactless card reader front-end coupled to a processor. A communications module is coupled to the processor and a set of sensors is coupled to the processor. The set of sensors determines parameters related to the location, orientation and motion of the card reader. The processor receives the parameters from the set of sensors and utilizes the parameters and scenario configuration data to evaluate a rule. The result of the evaluation of the rule results in a limitation on the operation of the card reader. The communications module is configured to intermittently receive the scenario configuration data from external sources.

Abstract: A method and apparatus for managing capabilities of an account of a user system at a commerce platform are described. The method may include receiving, at the commerce platform, a request from a user system that identifies an account at the commerce platform and includes a capability requested for the account, where the requested capability corresponds to a desired functionality of the account. The method may also include mapping the requested capability to a compliance plan that defines a set of account data to be collected before activation of the capability for the account by the commerce platform. Furthermore, the method may include transmitting a message, generated by the commerce platform, that comprises a listing of additional data to be provided by the user system before activation of the capability for the account, where the additional data comprises a minimal set of account data defined by the compliance plan less any data already associated with the account at the commerce platform.

Abstract: A method and apparatus for generating one or more user interfaces are described. The method includes transmitting a request for creating a merchant account that onboards the merchant for use of services provided by the commerce platform system. The method includes in response to executing an onboarding user interface received from the commerce platform, establishing a merchant context for the merchant account in a memory of the merchant system, where the merchant context stores a local copy of merchant account data for the merchant account. Furthermore, the method includes determining, based on data stored in the merchant context, a composition that renders one of a plurality of different user interfaces for collecting a set of the merchant account data associated with the composition, and determining a subset of merchant account data that is required to comply with a minimum set of account information.

Abstract: A method for location-dependent determination comprises: determining, with one or more processors, a geographic location of a user's electronic device using first data; in response to determining the determined geographic location is insufficient for performing a location-dependent determination, requesting second data to determine an updated geographic location of the user's electronic device; performing, with an Application Programming Interface (API), the location-dependent determination based on the updated geographic location; and completing, with the API, a transaction using the location-dependent determination.