HOSTED SENSITIVE DATA FORM FIELDS FOR COMPLIANCE WITH SECURITY STANDARDS
First Claim
1. A system, comprising:
- non-transitory memory storing instructions; and
one or more hardware processors coupled to the non-transitory memory and operable to execute instructions from the non-transitory memory to cause the system to perform operations comprising;
providing first programming code that can be used as part of a webpage, the code being executable by a user device when accessing the webpage;
receiving an identification token from a user device executing at least a portion of the code in response to accessing the webpage;
responding to the user device in response to receiving the identification token;
receiving one or more API calls from the user device; and
in response to receiving the one or more API calls and the identification token, sending second programming code to the user device that will generate a plurality of iframes when executed by the user device, the plurality of iframes being hosted by the system, each of the plurality of iframes providing a data entry field that gathers input and is configured to communicate the input directly with the system, each data entry field stylized based on a configuration specified in the one or more API calls.
1 Assignment
0 Petitions
Accused Products
Abstract
Systems and methods providing, by a third party, input form fields for sensitive data on a web page provided by an organization. A user may request a web page from an organization, such as a merchant'"'"'s checkout web page, that requires entry of sensitive data. The merchant'"'"'s checkout web page may include reference to a script file that provides hosted sensitive data form fields. In response to rendering the merchant web page in a web browser of the user, a request to provide sensitive data form fields on the merchant web page may be received. The request may include a call to a function in a scripting file provided by the third party, and the provided file may cause one or more inline frames to be rendered in the web browser, each inline frame including a sensitive data form field. Data entered by the user in the sensitive data form fields may be received by a third party payment processor device.
28 Citations
20 Claims
-
1. A system, comprising:
-
non-transitory memory storing instructions; and one or more hardware processors coupled to the non-transitory memory and operable to execute instructions from the non-transitory memory to cause the system to perform operations comprising; providing first programming code that can be used as part of a webpage, the code being executable by a user device when accessing the webpage; receiving an identification token from a user device executing at least a portion of the code in response to accessing the webpage; responding to the user device in response to receiving the identification token; receiving one or more API calls from the user device; and in response to receiving the one or more API calls and the identification token, sending second programming code to the user device that will generate a plurality of iframes when executed by the user device, the plurality of iframes being hosted by the system, each of the plurality of iframes providing a data entry field that gathers input and is configured to communicate the input directly with the system, each data entry field stylized based on a configuration specified in the one or more API calls. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A computer implemented method, comprising:
-
providing first programming code that can be used as part of a webpage, the code being executable by a user device when accessing the webpage; receiving an identification token from a user device executing at least a portion of the code in response to accessing the webpage; responding to the user device in response to receiving the identification token; receiving one or more API calls from the user device; and in response to receiving the one or more API calls and the identification token, sending second programming code to the user device that will generate a plurality of iframes when executed by the user device, the plurality of iframes being hosted by the system, each of the plurality of iframes providing a data entry field that gathers input and is configured to communicate the input directly with the system, each data entry field stylized based on a configuration specified in the one or more API calls. - View Dependent Claims (9, 10, 11, 12, 13, 14, 15)
-
-
16. A non-transitory machine-readable medium comprising a plurality of machine-readable instructions which, when executed by one or more processors, are adapted to cause the one or more processors to perform a method comprising:
-
providing first programming code that can be used as part of a webpage, the code being executable by a user device when accessing the webpage; receiving an identification token from a user device executing at least a portion of the code in response to accessing the webpage; responding to the user device in response to receiving the identification token; receiving one or more API calls from the user device; and in response to receiving the one or more API calls and the identification token, sending second programming code to the user device that will generate a plurality of iframes when executed by the user device, the plurality of iframes being hosted by the system, each of the plurality of iframes providing a data entry field that gathers input and is configured to communicate the input directly with the system, each data entry field stylized based on a configuration specified in the one or more API calls. - View Dependent Claims (17, 18, 19, 20)
-
Specification