1 / 14

IAB SafeFrames

Dec 11th, 2012. IAB SafeFrames. Co-Chairs Sean Snider, Yahoo! Prabhakar Goyal, Microsoft. SafeFrames : An Overview. What are SafeFrames ?

torgny
Download Presentation

IAB SafeFrames

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Dec 11th, 2012 IAB SafeFrames Co-Chairs Sean Snider, Yahoo! Prabhakar Goyal, Microsoft

  2. SafeFrames: An Overview • What are SafeFrames? • A secure and flexible framework that provides the ability to create containers around HTML content served from sources external (e.g. Ad Server)to a host server (i.e. Publisher)

  3. SF In-page Communication Publisher Webpage External Party Server 1. External Content Received (as data) 2. API Initiated 3. Vendor Content Rendered SafeFrame 4. Communication

  4. SafeFrames Technology Host External Content Ads Content Domain

  5. SafeFrames Technology Host Host Secondary Domain External Content Where SafeFrame lives Where external party content is served Ads Content Domain

  6. SafeFrames Technology Host Safe-Frame API Host Secondary Domain External Content Where SafeFrame lives Where external party content is served Protocols for communication Ads Content Domain

  7. SafeFrames: Value Added • Consumer Safety • Host Benefits (i.e. Publisher) • Transparency • Control / Stability • External PartyBenefits (i.e. Ad Agency) • More rich-media demand in more places • Transparency • Standardized Functionality

  8. SafeFrames: Consumer Safety • Content from un-vetted sources do not have direct access to the host web page • Cannot set/read host cookies without explicit publisher permission • Cannot set/read HTML form data • Proprietary rules can be implemented to further enhance security

  9. SafeFrames: Transparency • Host web page has a container around content • Allows for geometric information about the external content to be easily measured and shared (e.g. viewability). • Meta-data passing between host and external content is explicitly defined • Both host and external content are aware of various rich-media functions

  10. SafeFrames: Control / Stability • No JavaScript/CSS/HTML element name pollution • Host can measure performance easily • Rich-media functionality is clearly defined and known

  11. Safe Frames: Standardization • Functionality clearly defined and is extensible over time • Rich-media • Meta-data • Host URL

  12. SafeFrames: Host Decisions Currently using iframe? Yes No Implement SafeFrame Allowing rich media? Yes* No Does SafeFrame support my rich media types? Yes

  13. SafeFrames: External Party Decisions Inside iframe? No Use current behavior Yes Nested immediately under host? window.parent == top No Yes Implement SafeFrame $sf.ext JavaScript namespace exists? No Yes

  14. SafeFrames: Rich-Media Matrix

More Related