公开(公告)号：US12141266B2

公开(公告)日：2024-11-12

申请号：US16921283

申请日：2020-07-06

Applicant: Apple Inc.

Inventor： Benjamin D. Chester ,  Hubert Greiche ,  Richard W. Heard ,  Yousuf H. Vaid ,  Gianpaolo Fasoli

IPC: G06F21/45 ,  G06Q20/36 ,  G06Q30/018 ,  G06Q40/02 ,  H04L9/32 ,  H04L9/40 ,  G06Q20/40

Abstract: Systems, methods, and computer-readable media for facilitating frictionless credential provisioning on a user computing device are provided. Special “frictionless tokens” (e.g. ownership tokens) may be generated for each existing credential in a user's digital wallet. Such tokens may be stored in a user's AE locker (e.g. iCloud keychain) and synchronized across the user's devices using any suitable security features (e.g. using any suitable secure enclave processor (“SEP”)-based encryption). Such a token, as may be stored in a device's SEP, may be configured only to be read on that physical device. In this manner, the user may no longer need provide further proof of ownership of a credential or be hassled by passing any other challenge, but, instead, the additional security may be achieved using the ownership token, which may use the user's AE or device passcode in association with the user's physical device (and its SEP).

公开(公告)号：US20220303120A1

公开(公告)日：2022-09-22

申请号：US17835421

申请日：2022-06-08

Applicant: Apple Inc.

Inventor： Vishnu Pillai Janardhanan Pillai ,  Rantao Chen ,  Gianpaolo Fasoli ,  Frederic Jacobs ,  Rupamay Saha ,  Yannick L. Sierra ,  Dian Wen ,  Ka Yang

IPC: H04L9/08 ,  H04L9/40 ,  G06Q20/38 ,  H04L9/32

Abstract: Embodiments described herein provide cryptographic techniques to enable a recipient of a signed message containing encrypted data to verify that the signer of the message and the encryptor of the encrypted data are the same party, or at the least, have joint possession of a common set of secret cryptographic material. These techniques can be used to harden an online payment system against interception and resigning of encrypted payment information.

公开(公告)号：US11107071B2

公开(公告)日：2021-08-31

申请号：US15275122

申请日：2016-09-23

Applicant: Apple Inc.

Inventor： Karl Anders Carlsson ,  Anton K. Diederich ,  Christopher Sharp ,  Gianpaolo Fasoli ,  Maciej Stachowiak ,  Matthew C. Byington ,  Nicholas J. Shearer ,  Samuel M. Weinig

IPC: G06Q20/38 ,  G06Q20/12 ,  G06Q20/40 ,  H04L29/06 ,  G06Q20/32

Abstract: Systems, methods, and computer-readable media for validating online access to secure device functionality are provided that may use shared secrets between different subsystems and limited use validation data.

公开(公告)号：US11025644B2

公开(公告)日：2021-06-01

申请号：US16509412

申请日：2019-07-11

Applicant: Apple Inc.

Inventor： Gianpaolo Fasoli ,  Matthew C. Byington ,  Christopher Sharp ,  Anton K. Diederich ,  Nicholas J. Shearer ,  Roberto G. Yepez ,  Petr Kostka ,  Gianluca Barbieri ,  Abhinav Gupta

IPC: H04L29/06 ,  G06F21/74 ,  G06F21/84 ,  H04L29/08

Abstract: A content request communication, e.g., generated using a first processor of a device, can be transmitted to a web server. A response communication including content identifying a first value can be received from the web server. The first processor can facilitate presentation of the content on a first display of the device. A communication can be received at a second processor of the device from a remote server. The communication can include data representing a second value and can be generated at the remote server using information received from the web server. Further, the second processor can produce a secure verification output that can be presented on a separate, second display, representing at least the second value. The presentation on first display can at least partially overlap in time with the presentation on the second display.

公开(公告)号：US10586260B2

公开(公告)日：2020-03-10

申请号：US13668109

申请日：2012-11-02

Applicant: Apple Inc.

Inventor： Thomas Matthieu Alsina ,  Scott T. Boyd ,  Michael Kuohao Chu ,  Augustin J. Farrugia ,  Gianpaolo Fasoli ,  Patrice O. Gautier ,  Sean B. Kelly ,  Payam Mirrashidi ,  Pedraum Pardehpoosh ,  Conrad Sauerwald ,  Kenneth W. Scott ,  Rajit Shinh ,  Braden Jacob Thomas ,  Andrew R. Whalley

IPC: G06Q30/06

Abstract: In one embodiment, a unique (or quasi unique) identifier can be received by an application store, or other on-line store, and the store can create a signed receipt that includes data desired from the unique identifier. This signed receipt is then transmitted to a device that is running the application obtained from the on-line store and the device can verify the receipt by deriving the unique (or quasi-unique) identifier from the signed receipt and comparing the derived identifier with the device identifier stored on the device, or the vendor identifier assigned to the application vendor.

公开(公告)号：US20180349585A1

公开(公告)日：2018-12-06

申请号：US15701400

申请日：2017-09-11

Applicant: Apple Inc.

Inventor： Charles T. Ahn ,  Libor Sykora ,  Gianpaolo Fasoli

IPC: G06F21/32 ,  G06F21/35

Abstract: Techniques are disclosed relating to biometric authentication. In one embodiment, a computing device includes a controller circuit, a camera, and a secure circuit. The controller circuit is coupled to a button and detects when the button has been pressed. The camera captures a set of biometric data of a user. The secure circuit performs an authentication of the user by confirming that a notification identifying the button being pressed was received from the controller circuit and by comparing the set of biometric data with another set of biometric data for an authorized user of the computing device. In some embodiments, the controller circuit is configured to maintain a timestamp indicative of when the button has been pressed and usable by the secure circuit to confirm that the button is pressed within a threshold time period of the authentication being performed.

公开(公告)号：US20150347996A1

公开(公告)日：2015-12-03

申请号：US14722019

申请日：2015-05-26

Applicant: Apple Inc.

Inventor： Thomas Alsina ,  Augustin J. Farrugia ,  Edward T. Schmidt ,  Gianpaolo Fasoli ,  Sean B. Kelly

IPC: G06Q20/12 ,  G06F21/10 ,  G06Q20/40 ,  G06Q20/22 ,  H04L29/08 ,  H04L29/06

CPC classification number: G06Q20/1235 ,  G06F21/10 ,  G06F2221/0717 ,  G06F2221/0771 ,  G06F2221/0777 ,  G06Q10/063114 ,  G06Q20/29 ,  G06Q20/405 ,  H04L67/306 ,  H04L67/42

Abstract: One or more user accounts can be linked together to form a group of linked user accounts to access content items assigned to the other user accounts in the group of linked user accounts. Prior to completing a purchase for a content item, a requesting user can be alerted that a member of the group of linked user accounts has access to the content item. Content items assigned to a member of a group of linked user accounts can be downloaded by one or more other members of the group of linked user accounts along with a Digital Rights Management (DRM) key that enables use of the content item. The DRM key can represent the group relationship between the downloading user account and the content owner's user account to which the content item is assigned.

Abstract translation: 一个或多个用户帐户可以链接在一起以形成一组链接的用户帐户，以访问分配给链接的用户帐户组中的其他用户帐户的内容项。 在完成对内容项目的购买之前，请求用户可以被警告该链接的用户帐户组的成员可以访问该内容项目。 分配给一组链接的用户帐户的成员的内容项可以被连接的用户帐户组的一个或多个其他成员以及能够使用内容项的数字版权管理（DRM）密钥一起下载。 DRM密钥可以表示下载用户帐户与分配内容项目的内容所有者的用户帐户之间的组关系。

公开(公告)号：US12277205B2

公开(公告)日：2025-04-15

申请号：US17900734

申请日：2022-08-31

Applicant: Apple Inc.

Inventor： Pablo Pons Bordes ,  Gianpaolo Fasoli ,  Tyler Gentles ,  Bruno Kindarji ,  Petr Kostka ,  Rohit Narula ,  David W. Silver ,  Libor Sykora ,  Ka Yang

IPC: G06F21/32

Abstract: The present disclosure generally relates to digital identification user interfaces.

公开(公告)号：US20240406162A1

公开(公告)日：2024-12-05

申请号：US18205244

申请日：2023-06-02

Applicant: Apple Inc.

Inventor： Ravi Chotrani ,  Ahmer A. Khan ,  David W. Silver ,  Gianpaolo Fasoli ,  Ka Yang ,  Vishnu Janardhanan

IPC: H04L9/40 ,  H04L67/306

Abstract: A computing device can receive a request from a requesting device for one or more data elements associated with a digital credential. The computing device can store the digital credential which includes a set of data elements and a security object. The computing device can determine a subset of the data elements based at least in part on the request. The computing device can generate the response, wherein the response includes the subset of the data elements and the security object. The computing device can transmit the response to the requesting device.

公开(公告)号：US12095907B2

公开(公告)日：2024-09-17

申请号：US17835421

申请日：2022-06-08

Applicant: Apple Inc.

Inventor： Vishnu Pillai Janardhanan Pillai ,  Rantao Chen ,  Gianpaolo Fasoli ,  Frederic Jacobs ,  Rupamay Saha ,  Yannick L. Sierra ,  Dian Wen ,  Ka Yang

IPC: H04L9/08 ,  G06Q20/38 ,  H04L9/32 ,  H04L9/40

CPC classification number: H04L9/085 ,  G06Q20/3829 ,  H04L9/3247 ,  H04L63/0428 ,  H04L63/061 ,  H04L63/0823

Abstract: Embodiments described herein provide cryptographic techniques to enable a recipient of a signed message containing encrypted data to verify that the signer of the message and the encryptor of the encrypted data are the same party, or at the least, have joint possession of a common set of secret cryptographic material. These techniques can be used to harden an online payment system against interception and resigning of encrypted payment information.