Communication across domains

US 8,489,878 B2
Filed: 03/13/2012
Issued: 07/16/2013
Est. Priority Date: 06/23/2006
Status: Active Grant

First Claim

Patent Images

1. A computing device comprising:

a computer-readable storage device comprising instructions that are executable by the computing device to;

receive a first secret to enable communication of data with a sender across domains via an Iframe, the receipt of the first secret indicating that the computing device is determined to be untrusted by the sender as confirmed by a user of the sender;

apply a function to the first secret and a second secret provided by the computing device;

send a result of the function to the sender from the computing device; and

receive the data from the sender via a secure communication channel formed across the domains via the Iframe using the result and the second secret.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Communication across domains is described. In at least one implementation, a determination is made that an amount of data to be communicated via an Iframe exceeds a threshold amount. The data is divided into a plurality of portions that do not exceed the threshold amount. A plurality of messages is formed to communicate the divided data across domains.

397 Citations

20 Claims

1. A computing device comprising:
- a computer-readable storage device comprising instructions that are executable by the computing device to;
  
  receive a first secret to enable communication of data with a sender across domains via an Iframe, the receipt of the first secret indicating that the computing device is determined to be untrusted by the sender as confirmed by a user of the sender;
  
  apply a function to the first secret and a second secret provided by the computing device;
  
  send a result of the function to the sender from the computing device; and
  
  receive the data from the sender via a secure communication channel formed across the domains via the Iframe using the result and the second secret.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
- - 2. A computing device as described in claim 1, wherein receipt of the first secret further indicates that the computing device is determined to be associated with a third-party site relative to the sender.
  - 3. A computing device as described in claim 1, wherein the first secret received by the computing device is configured as a cryptographic number from the sender and the second secret is configured as a cryptographic number.
  - 4. A computing device as described in claim 3, wherein the cryptographic numbers are random numbers.
  - 5. A computing device as described in claim 1, wherein the data received by the computing device is received via a server.
  - 6. A computing device as described in claim 1, wherein the data received by the computing device is received directly from the sender without use of a server.
  - 7. A computing device as described in claim 1, wherein the function applied to the first secret and the second secret is known by the sender.
  - 8. A computing device as described in claim 1, wherein the function applied to the first secret and the second secret is unknown by the sender.
  - 9. A computing device as described in claim 1, wherein the data received by the computing device is received in a message that includes the result of the function applied to the first secret and the second secret, inclusion of the result in the message indicating that the message originated from the sender.
  - 10. A computing device as described in claim 1, wherein the data received by the computing device is received in a message that includes the result of the function applied to the first secret and the second secret, the message including the result of the function within a body of the message.
  - 11. A computing device as described in claim 10, wherein the instructions are further executable by the computing device to parse the message to locate the result.

12. A method comprising:
- receiving a first secret by a recipient, using a computing device, to enable communication of data with a sender across domains via an Iframe, the receiving of the first secret indicating that the recipient is determined to be untrusted by the sender and is associated with a third-party site relative to the sender as confirmed by a user of the sender;
  
  applying a function by the recipient to the first secret and a second secret provided by the recipient;
  
  sending a result of the function to the sender by the recipient;
  
  receiving the data by the recipient as a plurality of messages via a secure communication channel formed across the domains via the Iframe using the result and the second secret.
- View Dependent Claims (13, 14, 15, 16, 17, 18, 19)
- - 13. A method as described in claim 12, wherein each of the plurality of messages includes the result of the function applied to the first secret and the second secret within a body of said message.
  - 14. A method as described in claim 12, further comprising parsing each of the plurality of messages to locate the result of the function applied to the first secret and the second secret contained in a body of each said message.
  - 15. A method as described in claim 12, further comprising sending notifications to the sender indicating that the plurality of messages are received, the notifications including the result of the function applied to the first secret and the second secret and being parsable by the recipient to locate the result.
  - 16. A method as described in claim 12, wherein the Iframe is incorporated within a web-page.
  - 17. A method as described in claim 12, wherein the communication is enabled between an Iframe of the sender and an Iframe of the recipient.
  - 18. A method as described in claim 12, wherein the data exceeds a threshold amount of data permitted for a single message.
  - 19. A method as described in claim 12, wherein each of the plurality of messages includes a portion of the data that does not exceed a threshold amount of data permitted for a single said message.

20. A computer-readable storage device comprising instructions that are executable by a computing device to:
- receive a first secret to enable communication of data with a sender across domains via an Iframe, the receipt of the first secret indicating that the computing device is determined to be untrusted by the sender as confirmed by a user of the sender;
  
  apply a function to the first secret and a second secret provided by the computing device;
  
  send a result of the function to the sender from the computing device; and
  
  receive the data from the sender via a secure communication channel formed across the domains via the Iframe using the result and the second secret.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Microsoft Technology Licensing LLC (Microsoft Corporation)
Original Assignee
Microsoft Corporation
Inventors
Isaacs, Scott, Moore, George, Thorpe, Danny, Zissimopoulos, Vasileios
Primary Examiner(s)
Chai, Longbit

Application Number

US13/419,215
Publication Number

US 20120173868A1
Time in Patent Office

490 Days
Field of Search

713/168
US Class Current

713/168
CPC Class Codes

G06F 16/957 Browsing optimisation, e.g....

Communication across domains

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

397 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Communication across domains

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

397 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links