Invention Grant
US09251372B1 Secure service for receiving sensitive information through nested iFrames
有权
通过嵌套iFrames接收敏感信息的安全服务
- Patent Title: Secure service for receiving sensitive information through nested iFrames
- Patent Title (中): 通过嵌套iFrames接收敏感信息的安全服务
-
Application No.: US14794733Application Date: 2015-07-08
-
Publication No.: US09251372B1Publication Date: 2016-02-02
- Inventor: Maria Eugenia Tornos Lahoz , Anna Chu-Sumida , Nikunj Koolar , Peter Chan , Aditi Sinha Gundlapalli , Surajit Dutta , Binu Ramakrishnan , Venkatesh Dharmar
- Applicant: Yahoo! Inc.
- Applicant Address: US CA Sunnyvale
- Assignee: Yahoo! Inc.
- Current Assignee: Yahoo! Inc.
- Current Assignee Address: US CA Sunnyvale
- Agency: Martine Penilla Group, LLP
- Main IPC: G06F7/04
- IPC: G06F7/04 ; G06F17/30 ; H04N7/16 ; H04L29/06 ; H04L9/32 ; G06F21/62 ; G06Q20/38
Abstract:
Methods and systems for receiving sensitive information include receiving a request for entering sensitive information, the request received from a user interface rendered on a client device. The methods and systems rely upon nested iframes, each of which is hosted by a different server. An inner iframe is hosted by a server within a secure zone, such as a digital vault. A middle iframe is hosted within the secure zone and is invoked by an intermediate server. An outer iframe is hosted by a server that provides the user interface. The server that provides the user interface may be hosted by a cloud service provider, for example. Using the nested iframes and the network topology described in the present disclosure, users are able to exchange sensitive information with a server within the secure zone through a user interface provided outside the secure zone.
Information query
