Cross-Channel Matches

Cross-channel matches enrich your users' profiles, enabling you to reach them across several channels.

Match Providers

Match Providers are first or third-party data sources that have their own user IDs (such as cookies, email hashes or login IDs), which can be matched to your first-party IDs.

Match Providers can be added to the system using the Dashboard under Collect > ID Matches, by clicking the Match Providers tab, followed by the New Match Provider button.

The following fields are available:

• Name: Name for the Match Provider.

• Key: Identifier for the Match Provider. It is used later to create matches for this specific match provider.

• Active: Enables/Disables matches from this Match Provider.

• Allow extra iFrame Activations: Enables activations on match requests to this provider, replying to the match request with the appropriate HTML or Image tag as set in the Activation.

• Encryption Key: When enabled, the new user ID parameter must be base64-encoded and encrypted using AES/ECB with the SHA256 hash of this key kept secret. Using encryption, particularly when done server-side, ensures the user ID is unusable in the event of a data leak during transport.

  Examples of how to encrypt your ID with the configured encryption Key:

  JavaScript

  <script src="//cdnjs.cloudflare.com/ajax/libs/crypto-js/3.1.2/rollups/aes.js"></script>

  <script src="//cdnjs.cloudflare.com/ajax/libs/crypto-js/3.1.2/rollups/sha256.js"></script>

  <script src="//cdnjs.cloudflare.com/ajax/libs/crypto-js/3.1.2/components/enc-base64-min.js"></script>

  <script src="//cdnjs.cloudflare.com/ajax/libs/crypto-js/3.1.2/components/mode-ecb-min.js"></script>

  <script src="//cdnjs.cloudflare.com/ajax/libs/crypto-js/3.1.2/components/pad-nopadding-min.js"></script>

  <script type="text/javascript">

  var EmailHash = {

  generate: function(email, secret) {

  var hash = CryptoJS.SHA256(email.trim().toLowerCase());

  var aesKey = CryptoJS.SHA256(secret);

  var encrypted = CryptoJS.AES.encrypt(hash, aesKey, {

  mode: CryptoJS.mode.ECB, padding: CryptoJS.pad.Pkcs7

  });

  var b64 = encrypted.ciphertext.toString(CryptoJS.enc.Base64);

  return b64.replace(/\+/g, '-').replace(/\//g, '_').replace(/=+$/, '');

  }

  }

  </script>

  PHP

  <?php

  class Security {

  private static function encryptAES($input, $key) {

  $data = openssl_encrypt($input, "AES-256-ECB", $key, $options=OPENSSL_RAW_DATA);

  return $data;

  }

  private static function base64url_encode($data) {

  return rtrim(strtr(base64_encode($data), '+/', '-_'), '=');

  }

  public static function encrypt($input, $key) {

  $hashValue = hash("sha256", strtolower(trim($input)), $raw_output = true);

  $aes256Key = hash("sha256", $key, $raw_output = true);

  $encryptedHashValue = Security::encryptAES($hashValue, $aes256Key);

  return Security::base64url_encode($encryptedHashValue);

  }

  }

  ?>

  Java

  import java.io.UnsupportedEncodingException;

  import java.security.InvalidKeyException;

  import java.security.NoSuchAlgorithmException;

  import java.util.Locale;

  import javax.crypto.BadPaddingException;

  import javax.crypto.Cipher;

  import javax.crypto.IllegalBlockSizeException;

  import javax.crypto.NoSuchPaddingException;

  import javax.crypto.spec.SecretKeySpec;

  import org.apache.commons.codec.binary.Base64;

  import org.apache.commons.codec.digest.DigestUtils;

  import org.bouncycastle.jce.provider.BouncyCastleProvider;

  public class EmailHash {

  public static String generate(String email, String secret) throws

  UnsupportedEncodingException, NoSuchAlgorithmException, NoSuchPaddingException,

  nvalidKeyException, IllegalBlockSizeException, BadPaddingException {

  byte[] hash = DigestUtils.sha256(email.trim().toLowerCase(Locale.US).getBytes("UTF-8"));

  byte[] key = DigestUtils.sha256(secret.getBytes("UTF-8"));

  BouncyCastleProvider provider = new BouncyCastleProvider();

  Cipher encryptor = Cipher.getInstance("AES/ECB/PKCS5Padding", provider);

  SecretKeySpec skey = new SecretKeySpec(key, "AES/ECB/PKCS5Padding");

  encryptor.init(Cipher.ENCRYPT_MODE, skey);

  byte[] encrypted = encryptor.doFinal(hash);

  return Base64.encodeBase64URLSafeString(encrypted);

  }

  }

Matching User IDs

To link together 2 or more User IDs under the same user profile we provide 2 approaches:

• Via JavaScript tag: After including the tag in your website, you can perform match requests by following the instructions in Using the tag - Match.

• Via HTTP API: See the API reference for details.