Abstract: A system for providing updatable secure content resource. A content server may pay a content resource on the content author for an access by a requester. The content server receives a session request call from the requester prior to accessing the content resource. In response to the session request, the content server generates a session for the requester. The content server generates a payload that includes a location identifying the content resource on the content author and embeds the embedded cryptographic content. The content server transmits the generated payload to the requester. A resource server may receive an authentication access request in response to the embedded cryptographic content. In response to authenticating the authentication access request, the resource server provides the access to the requester.

Abstract: A system for providing updatable secure content resource. A content server may pay a content resource on the content author for an access by a requester. The content server receives a session request call from the requester prior to accessing the content resource. In response to the session request, the content server generates a session for the requester. The content server generates a payload that includes a location identifying the content resource on the content author and embeds the embedded cryptographic content. The content server transmits the generated payload to the requester. A resource server may receive an authentication access request in response to the embedded cryptographic content. In response to authenticating the authentication access request, the resource server provides the access to the requester.

Abstract: A system for providing updatable secure content resource. A content server may pay a content resource on the content author for an access by a requester. The content server receives a session request call from the requester prior to accessing the content resource. In response to the session request, the content server generates a session for the requester. The content server generates a payload that includes a location identifying the content resource on the content author and embeds the embedded cryptographic content. The content server transmits the generated payload to the requester. A resource server may receive an authentication access request in response to the embedded cryptographic content. In response to authenticating the authentication access request, the resource server provides the access to the requester.

Abstract: A system for providing updatable secure content resource. A content server may pay a content resource on the content author for an access by a requester. The content server receives a session request call from the requester prior to accessing the content resource. In response to the session request, the content server generates a session for the requester. The content server generates a payload that includes a location identifying the content resource on the content author and embeds the embedded cryptographic content. The content server transmits the generated payload to the requester. A resource server may receive an authentication access request in response to the embedded cryptographic content. In response to authenticating the authentication access request, the resource server provides the access to the requester.

Abstract: Techniques for reducing compromise of sensitive data in a virtual machine are described. During initiation of a secure string instance of a program module in memory allocated to the virtual machine, the program module can receive sensitive data in plaintext and retrieves parameters sourced from outside the allocated memory. During the execution of the program module, the sensitive data can be encrypted using a key based on the parameters to obtain encrypted data. The program module can overwrite the sensitive data with the encrypted data. The program module can receive a trigger to send a message that is generated using the sensitive data. The encrypted data can be decrypted using the key based on the parameters to obtain the sensitive data. After encryption and decryption, the program module can generate the message using the sensitive data and overwrite the sensitive data and the parameters used to encrypt the sensitive data.

Abstract: A system for providing updatable secure content resource. A content server may pay a content resource on the content author for an access by a requester. The content server receives a session request call from the requester prior to accessing the content resource. In response to the session request, the content server generates a session for the requester. The content server generates a payload that includes a location identifying the content resource on the content author and embeds the embedded cryptographic content. The content server transmits the generated payload to the requester. A resource server may receive an authentication access request in response to the embedded cryptographic content. In response to authenticating the authentication access request, the resource server provides the access to the requester.

Abstract: A secure iframe and a combination of security elements are used in rendering a web page of a content provider. The security elements may be both pre-provisioned and executed in real time to allow a third party to securely collect sensitive information while allowing the content provider to retain total control of the look and feel of the web page. A microform within the secure iframe uses a combination of Content Security Policies (CSP), HSTS, and HPKP to generate a secure connection between the iframe and the third party while still allowing the content provider control the look and feel of the iframe. The content provider never handles the sensitive data, reducing the content provider's financial exposure in the event of a data breach. The secure service collects sensitive data and returns a tokenized identifier for use by the content provider when interacting with the customer.

Abstract: Embodiments of the present invention are directed to systems and methods for queuing and sending messages to recipients according to historical latency values associated with each recipient. In some embodiments, a plurality of messages are received, each message including a network address of a recipient. The messages are sent to the recipients by threads that remain active (i.e., cannot be used to send another message) until confirmation responses are received from the recipients. Latency times are measured between when the messages were sent and when the confirmation responses were received. The latency times may be used to assign future messages to queues designated by certain latency ranges.

Abstract: Techniques for reducing compromise of sensitive data in a virtual machine are described. During initiation of a secure string instance of a program module in memory allocated to the virtual machine, the program module can receive sensitive data in plaintext and retrieves parameters sourced from outside the allocated memory. During the execution of the program module, the sensitive data can be encrypted using a key based on the parameters to obtain encrypted data. The program module can overwrite the sensitive data with the encrypted data. The program module can receive a trigger to send a message that is generated using the sensitive data. The encrypted data can be decrypted using the key based on the parameters to obtain the sensitive data. After encryption and decryption, the program module can generate the message using the sensitive data and overwrite the sensitive data and the parameters used to encrypt the sensitive data.

Abstract: A secure iframe and a combination of security elements are used in rendering a web page of a content provider. The security elements may be both pre-provisioned and executed in real time to allow a third party to securely collect sensitive information while allowing the content provider to retain total control of the look and feel of the web page. A microform within the secure iframe uses a combination of Content Security Policies (CSP), HSTS, and HPKP to generate a secure connection between the iframe and the third party while still allowing the content provider control the look and feel of the iframe. The content provider never handles the sensitive data, reducing the content provider's financial exposure in the event of a data breach. The secure service collects sensitive data and returns a tokenized identifier for use by the content provider when interacting with the customer.

Abstract: Embodiments of the present invention are directed to systems and methods for queuing and sending messages to recipients according to historical latency values associated with each recipient. In some embodiments, a plurality of messages are received, each message including a network address of a recipient. The messages are sent to the recipients by threads that remain active (i.e., cannot be used to send another message) until confirmation responses are received from the recipients. Latency times are measured between when the messages were sent and when the confirmation responses were received. The latency times may be used to assign future messages to queues designated by certain latency ranges.

Abstract: Embodiments of the present invention are directed to systems and methods for queuing and sending messages to recipients according to historical latency values associated with each recipient. In some embodiments, a plurality of messages are received, each message including a network address of a recipient. The messages are sent to the recipients by threads that remain active (i.e., cannot be used to send another message) until confirmation responses are received from the recipients. Latency times are measured between when the messages were sent and when the confirmation responses were received. The latency times may be used to assign future messages to queues designated by certain latency ranges.

Abstract: Embodiments of the present invention are directed to systems and methods for queuing and sending messages to recipients according to historical latency values associated with each recipient. In some embodiments, a plurality of messages are received, each message including a network address of a recipient. The messages are sent to the recipients by threads that remain active (i.e., cannot be used to send another message) until confirmation responses are received from the recipients. Latency times are measured between when the messages were sent and when the confirmation responses were received. The latency times may be used to assign future messages to queues designated by certain latency ranges.