Systems and methods for using a domain-specific security sandbox to facilitate secure transactions

摘要

Computer systems, methods, and computer readable media for facilitating a secure transaction are provided in which a client application is executed on a client computer. The client application initiates a request to a first domain comprising (i) a credential for the client application, (ii) a transaction identifier that uniquely identifies the request, and (iii) optionally, an identification of a user of the client application. Responsive to this request, the client receives a validated transaction module from the first domain. The client application loads the validated transaction module into a separate domain security sandbox that is segregated from memory space in which the client application is run. The validated transaction module conducts a validated transaction between the second domain and the validated transaction module. Separately, through the client application, a determination is made as to whether the transaction is complete by querying the first domain.

主权项

1. A system for facilitating secure transactions, comprising:
one or more processing units; a memory, coupled to at least one of the one or more processing units, the memory storing instructions that are executed by at least one of the one or more processing units and that when executed by the one or more processing units cause the system to:
execute a client application;generate, through the client application, a request associated with a secure in-application transaction;submit the request for the secure in-application transaction to a first domain;receive a validated transaction module from the first domain wherein a source URL of the transaction module is identified as the first domain;cause the client application to execute the validated transaction module such that the validated transaction module is loaded into a separate secure memory space within said memory, wherein
the separate secure memory space is segregated from memory space in said memory in which the client application is run,the separate secure memory space is associated with, and limited to, programs that identify their source URL as being the first domain,the validated transaction module is executed such that the identity of the source URL of the validated transaction module is not altered or destroyed, andthe validated transaction module does not grant the client application power to introspect the validated transaction module;issue a transaction call to a second domain; andconduct a validated transaction between the second domain and the validated transaction module.