| 摘要 |
A system and method for secure transmission of sensitive end-user information from an Internet portal operated by a distrusted domain. The method operates by receiving a request for a sensitive data form from the distrusted domain, sending a trusted data form from a second domain to a web browser of the end-user, receiving information from the trusted data form input by the end-user, and sending information to the trusted data form in the web browser. The trusted data form is inserted into a sensitive data interface provided by the distrusted domain in the web browser of the end-user, and the end-user can interact/generate information intended for the distrusted domain. The distrusted domain has no access to any information in the trusted data form from the second domain due to cross site scripting protection security standard of web browsers. The trusted data form forwards the information to a frame residing in the distrusted domain, and the information in the frame is accessible to the distrusted domain. |
| 申请人 |
CHAIN REACTION ECOMMERCE, INC.;IOZZIA, SALVATORE, F.;MCGRAW, GREGORY, P.;FULLER, MICHAEL, G.;RUFF, EVAN, M. |
发明人 |
IOZZIA, SALVATORE, F.;MCGRAW, GREGORY, P.;FULLER, MICHAEL, G.;RUFF, EVAN, M. |
