Hosted sensitive data form fields for compliance with security standards

• Main Authors: KLUN THOMAS, MRAK ERIC, HAHN EVAN, TURUMELLA ROHIT, MILLS BENJAMIN, DETELLA KYLE, REISS MICKEY, CARPENTER GEORGE V, DOWNEY JOHN
• Format: Patent
• Language: Chinese; English
• Published: 19.01.2018
• Subjects: CALCULATING; COMPUTING; COUNTING; DATA PROCESSING SYSTEMS OR METHODS, SPECIALLY ADAPTED FORADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL, SUPERVISORYOR FORECASTING PURPOSES; PHYSICS; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE,COMMERCIAL, FINANCIAL, MANAGERIAL, SUPERVISORY OR FORECASTINGPURPOSES, NOT OTHERWISE PROVIDED FOR

A user may request a web page from an organization, such as a merchant's checkout web page, that requires entry of sensitive data. The merchant's checkout web page may include reference to a script file that provides hosted sensitive data form fields. In response to rendering the merchant web page in a web browser of the user, a request to provide sensitive data form fields on the merchant web page may be received. The request may include a call to a function in a scripting file provided by a third party, and the provided file may cause one or more inline frames to be rendered in the web browser, each inline frame including a sensitive data form field. Data entered by the user in the sensitive data form fields may be received by a third party payment processor device. 本发明公开了用户可从组织请求网页，诸如商家的结账网页，所述结账网页要求输入敏感数据。所述商家的结账网页可包括对脚本文件的标引，所述脚本文件提供托管的敏感数据表单字段。响应于在所述用户的web浏览器中呈现所述商家网页，可接收到在所述商家网页上提供敏感数据表单字段的请求。所述请求可包括对由第三方提供的脚本文件中的函数的调用，并且所提供的文件可使得个或多个内联框架呈现在所述web浏览器中，每个内联框架包括敏感数据表单字段。由所述用户输入到所述敏感数据表单字段中的数据可由第三方支付处理商设备接