Methods and apparatus for varying soft information related to the display of hard information
DC CAFCFirst Claim
1. A security processor apparatus comprising a memory including instructions, which when executed, cause the security processor apparatus to:
- receive, from a transaction server, i) hard information to transmit to a client device within at least one message related to a transaction with the client device, the hard information including at least one of a) a data entry field in a webpage for a user of the client device to provide information associated with the transaction and b) text or data for display within the webpage that provides information related to the transaction, and ii) soft information for transmission to the client device within the at least one message, the soft information including a first set of program code for the webpage that specifies how the hard information is to be displayed within the webpage on the client device;
create a variation of the soft information configured to prevent a malicious application from determining the transaction with the client device by interacting with the hard information, the variation of the soft information including a second set of program code that specifies how the hard information is to be displayed within the webpage on the client device;
determine whether the variation of the soft information changes how the hard information is displayed at the client device compared to how the hard information was to be displayed using the soft information;
responsive to determining the variation of the soft information does not change how the hard information is displayed, replace the first set of program code with the second set of program code for the at least one message and transmit the at least one message to the client device including the hard information and the variation of the soft information;
responsive to determining that the variation of the soft information changes how the hard information is displayed at the client device, determine a second variation of the soft information configured to prevent a malicious application from interacting with the hard information, the second variation of the soft information including a third set of program code that specifies how the hard information is to be displayed within the webpage on the client device;
determine the second variation of the soft information does not change how the hard information is displayed at the client device compared to how the hard information was to be displayed using the soft information; and
responsive to determining the second variation of the soft information does not change how the hard information is displayed, replace the first set of program code with the third set of program code for the at least one message and transmit the at least one message to the client device including the hard information and the second variation of the soft information.
1 Assignment
Litigations
1 Petition
Accused Products
Abstract
Methods, systems, and apparatuses for varying soft information are disclosed. In an example embodiment, a security processor receives, from a transaction server, hard information to transmit to a client device related to a transaction with the client device, and soft information related to the display of the hard information on the client device. The security processor determines a variation of the soft information configured to prevent a malicious application from interacting with the hard information and determines the variation of the soft information does not change how the hard information is displayed at the client device compared to how the hard information was to be displayed using the soft information. Responsive to determining the variation of the soft information does not change how the hard information is displayed, the security processor transmits the hard information and the variation of the soft information to the client device.
26 Citations
22 Claims
-
1. A security processor apparatus comprising a memory including instructions, which when executed, cause the security processor apparatus to:
-
receive, from a transaction server, i) hard information to transmit to a client device within at least one message related to a transaction with the client device, the hard information including at least one of a) a data entry field in a webpage for a user of the client device to provide information associated with the transaction and b) text or data for display within the webpage that provides information related to the transaction, and ii) soft information for transmission to the client device within the at least one message, the soft information including a first set of program code for the webpage that specifies how the hard information is to be displayed within the webpage on the client device; create a variation of the soft information configured to prevent a malicious application from determining the transaction with the client device by interacting with the hard information, the variation of the soft information including a second set of program code that specifies how the hard information is to be displayed within the webpage on the client device; determine whether the variation of the soft information changes how the hard information is displayed at the client device compared to how the hard information was to be displayed using the soft information; responsive to determining the variation of the soft information does not change how the hard information is displayed, replace the first set of program code with the second set of program code for the at least one message and transmit the at least one message to the client device including the hard information and the variation of the soft information; responsive to determining that the variation of the soft information changes how the hard information is displayed at the client device, determine a second variation of the soft information configured to prevent a malicious application from interacting with the hard information, the second variation of the soft information including a third set of program code that specifies how the hard information is to be displayed within the webpage on the client device; determine the second variation of the soft information does not change how the hard information is displayed at the client device compared to how the hard information was to be displayed using the soft information; and responsive to determining the second variation of the soft information does not change how the hard information is displayed, replace the first set of program code with the third set of program code for the at least one message and transmit the at least one message to the client device including the hard information and the second variation of the soft information. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A method of varying soft information related to the display of hard information, the method comprising:
-
receiving in a security processor from a transaction server, i) the hard information to transmit to a client device within at least one message related to a transaction between the transaction server and the client device, the hard information including at least one of a) a data entry field in a webpage application for a user of the client device to provide information associated with the transaction and b) text or data for display within the webpage application that provides information related to the transaction, and ii) the soft information for transmission to the client device within the at least one message, the soft information including a first set of program code for the webpage application that specifies how the hard information is to be displayed within the webpage application on the client device; determining, via the security processor, a variation of the soft information configured to prevent a malicious application from determining the transaction between the client device and the transaction server by at least identifying the hard information, the variation of the soft information including a second set of program code that specifies how the hard information is to be displayed within the webpage application on the client device; determining, via the security processor, whether the variation of the soft information changes how the hard information is displayed at the client device compared to how the hard information was to be displayed using the soft information; responsive to determining the variation of the soft information does not change how the hard information is displayed, replacing the first set of program code with the second set of program code for the at least one message and transmitting, from the security processor to the client device, the at least one message including the hard information and the variation of the soft information; responsive to determining that the variation of the soft information changes how the hard information is displayed at the client device, determining a second variation of the soft information configured to prevent a malicious application from determining the transaction between the client device and the transaction server, the second variation of the soft information including a third set of program code that specifies how the hard information is to be displayed within the webpage application on the client device; determining the second variation of the soft information does not change how the hard information is displayed at the client device compared to how the hard information was to be displayed using the soft information; and responsive to determining the second variation of the soft information does not change how the hard information is displayed, replacing the first set of program code with the third set of program code for the at least one message and transmitting, from the security processor to the client device, the at least one message including the hard information and the second variation of the soft information. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
-
15. An apparatus comprising:
a security processor configured to; receive, from a transaction server, i) hard information to transmit to a client device related to a transaction with the client device, the hard information including at least one of a) a data field in a webpage for a user of the client device to provide information associated with the transaction and b) text or data for display within the webpage that provides information related to the transaction, and ii) soft information including a first set of program code for the webpage that specifies how the hard information is to be displayed on the client device; determine a variation of the soft information configured to prevent a malicious application from identifying the transaction with the client device, the variation of the soft information including a second set of program code that specifies how the hard information is to be displayed on the client device; responsive to determining the variation of the soft information does not change how the hard information is displayed, replace the first set of program code with the second set of program code; responsive to determining that the variation of the soft information changes how the hard information is displayed, determine a second variation of the soft information configured to prevent a malicious application from identifying the transaction with the client device, the second variation of the soft information including a third set of program code that specifies how the hard information is to be displayed on the client device; responsive to determining the second variation of the soft information does not change how the hard information is displayed, replace the first set of program code with the third set of program code; and transmit at least one message to the client device including the hard information and the variation of the soft information or the second variation of the soft information. - View Dependent Claims (16, 17, 18, 19, 20, 21, 22)
Specification