Https URL in iframe behaving oddly in http page (IE8 only)

I have an unsecure (http) page with an iframe in it which is a secure (https) login screen for another website (different URL too).

They are both linked to my client and they wanted some way to have their header above this login page (which can’t be edited as it’s a third-party service) and this was my solution. It works a bit like Google Images frameset used to sit above the page where the image you were viewing had been found, except it’s their header with the logo etc. and this login placed below it.

In all browsers except IE8 the login works fine. But in IE8 the browser security settings must be put to “low” to enable it to login successfully. If it is medium or higher then it simply redirects back to the login page.

Any ideas? I have never encountered this before.

Yes, I have encountered this problem. There is no fix for it. Iframes are unreliable and should be avoided.

So there is no method to make this work? and the only solution is to launch the https page on its own? I get the impression it’s a pretty obvious “yes” from your post, but I might as well ask because it would save us a lot of time if there is a workaround.