| 发明名称 | Method for securing an interface between a user and an application, corresponding system, terminal and computer program product | ||
| 摘要 | An interface securing method between a user and a non certified application running on an electronic device and providing at least one view to be rendered on a screen, and a view comprising or associated to at least one interface control component. The method implements, prior to rendering a view: analysis of the interface control components of the view, so as to detect at least one interface control component that could pose a security problem, called a suspicious component; and if at least one suspicious component is detected, restriction or invalidation of the functions of at least one input control component, distinct from the at least one suspicious component and able to allow the information to be provided by the user to the application. | ||
| 申请公布号 | US8935615(B2) | 申请公布日期 | 2015.01.13 |
| 申请号 | US201012689704 | 申请日期 | 2010.01.19 |
| 申请人 | Compagnie Industrielle et Financiere d'Ingenierie “Ingenico” | 发明人 | Grandemenge Jérôme |
| 分类号 | G06F3/00;G06F21/83;G06Q20/10;G06F3/0481;G06F21/31;G06F21/82 | 主分类号 | G06F3/00 |
| 代理机构 | Westman, Champlin & Koehler, P.A. | 代理人 | Brush David D.;Westman, Champlin & Koehler, P.A. |
| 主权项 | 1. An interface securing method between a user and a non-certified application running on an electronic device and providing at least one view to be rendered on a screen, said view comprising or associated to at least two interface control components, wherein the method comprises, when said application is running, the following steps: analysis by the electronic device of the interface control components of said view, so as to detect at least one suspicious component, being a first interface control component suspected to pose a security problem by inciting said user to provide sensitive information, wherein said analysis step takes into account a predetermined set of rules to restrict use of at least one of said at least two interface control components and/or at least one combination of at least two of said at least two interface control components and concludes to the identification of said suspicious component according to one non-respected rule of said predetermined set of rules; if at least one suspicious component is detected: determining an action of restriction or invalidation to be taken depending on said suspicious component and said non-respected rule;identifying at least one second interface control component of said electronic device on which said action of restriction or invalidation is to be made, said second interface control component being distinct from said at least one suspicious component, and being an input interface control component able to allow said information to be provided by said user to said non-certified application, said second interface control component belonging to one zone of the viewing screen, wherein said zone is identified as a function of a display zone associated to said at least one suspicious component;and restriction or invalidation of functions of said second interface control component, wherein said restriction or invalidation comprises prohibiting entry of information by means of said second interface control component; and generation of a rendering of said view and reproduction of said view by the electronic device on said screen. | ||
| 地址 | Neuily Sure Seine FR | ||