公开(公告)号：US11263020B2

公开(公告)日：2022-03-01

申请号：US16017940

申请日：2018-06-25

Applicant: Apple Inc.

Inventor： Dallas Blake De Atley ,  Gordon Freedman ,  Thomas Brogan Duffy, Jr. ,  Tahoma Madrone Toelkes ,  Michael John Smith ,  Paul William Chinn ,  David Rahardja

IPC: G06F9/4401 ,  H04L9/08 ,  H04W12/04 ,  H04L9/12 ,  H04L9/32 ,  H04W12/082 ,  G06F21/60 ,  H04L9/30 ,  H04W12/02 ,  H04W12/06

Abstract: Disclosed herein are systems, methods, and non-transitory computer-readable storage media for erasing user data stored in a file system. The method includes destroying all key bags containing encryption keys on a device having a file system encrypted on a per file and per class basis, erasing and rebuilding at least part of the file system associated with user data, and creating a new default key bag containing encryption keys. Also disclosed herein is a method of erasing user data stored in a remote file system encrypted on a per file and per class basis. The method includes transmitting obliteration instructions to a remote device, which cause the remote device to destroy all key bags containing encryption keys on the remote device, erase and rebuild at least part of the file system associated with user data, and create on the remote device a new default key bag containing encryption keys.

公开(公告)号：US10349270B2

公开(公告)日：2019-07-09

申请号：US16024370

申请日：2018-06-29

Applicant: Apple Inc.

Inventor： Tyler Hawkins ,  Christopher Wilson ,  Conrad Sauerwald ,  Gregory Novick ,  Neil G. Crane ,  Rudolph Van Der Merwe ,  Samuel Noble ,  Paul William Chinn

IPC: H04W8/26 ,  G06K7/14 ,  H04W4/80 ,  H04W12/04 ,  H04W8/18 ,  H04W8/00

Abstract: A method of establishing communications with a first device is disclosed. The method includes: the first device presenting connection information to a second device; receiving a response from a second device; establishing an association with the second device; transmitting, in response to a determination that the first device and the second device are connected for data, first data to the second device, the first data comprising addressing information for a server; receiving second data from the second device, the second data comprising second information for establishing communications with the first device; and configuring the first device to receive third data from a location remote to the first device using the second information from the second data.

公开(公告)号：US10015668B2

公开(公告)日：2018-07-03

申请号：US15872801

申请日：2018-01-16

Applicant: Apple Inc.

Inventor： Tyler Hawkins ,  Christopher Wilson ,  Conrad Sauerwald ,  Gregory Novick ,  Neil G. Crane ,  Rudolph Van Der Merwe ,  Samuel Noble ,  Paul William Chinn

IPC: H04W8/26 ,  H04W8/18 ,  H04W4/80 ,  G06K7/14 ,  H04W12/04 ,  H04W8/00

CPC classification number: H04W8/265 ,  G06K7/1447 ,  H04W4/80 ,  H04W8/005 ,  H04W8/18 ,  H04W12/0023 ,  H04W12/003 ,  H04W12/04

Abstract: A method of establishing communications with a first device is disclosed. The method includes: the first device presenting connection information to a second device; receiving a response from a second device; establishing an association with the second device; transmitting, in response to a determination that the first device and the second device are connected for data, first data to the second device, the first data comprising addressing information for a server; receiving second data from the second device, the second data comprising second information for establishing communications with the first device; and configuring the first device to receive third data from a location remote to the first device using the second information from the second data.

公开(公告)号：US08756419B2

公开(公告)日：2014-06-17

申请号：US13941373

申请日：2013-07-12

Applicant: Apple Inc.

Inventor： Dallas Blake De Atley ,  Gordon Freedman ,  Thomas Brogan Duffy, Jr. ,  Tahoma Madrone Toelkes ,  Michael John Smith ,  Paul William Chinn ,  David Rahardja

IPC: H04L29/06 ,  G06F11/30 ,  G06F7/04

CPC classification number: G06F9/4406 ,  G06F9/4401 ,  G06F21/602 ,  H04L9/0816 ,  H04L9/0891 ,  H04L9/0894 ,  H04L9/12 ,  H04L9/30 ,  H04L9/3226 ,  H04L2209/80 ,  H04W12/02 ,  H04W12/04 ,  H04W12/06

Abstract: Disclosed herein are systems, methods, and non-transitory computer-readable storage media for erasing user data stored in a file system. The method includes destroying all key bags containing encryption keys on a device having a file system encrypted on a per file and per class basis, erasing and rebuilding at least part of the file system associated with user data, and creating a new default key bag containing encryption keys. Also disclosed herein is a method of erasing user data stored in a remote file system encrypted on a per file and per class basis. The method includes transmitting obliteration instructions to a remote device, which cause the remote device to destroy all key bags containing encryption keys on the remote device, erase and rebuild at least part of the file system associated with user data, and create on the remote device a new default key bag containing encryption keys.

Abstract translation: 这里公开了用于擦除存储在文件系统中的用户数据的系统，方法和非暂时的计算机可读存储介质。 该方法包括在具有每个文件和每个类基础上加密的文件系统的设备上破坏包含加密密钥的所有密钥袋，擦除和重建与用户数据相关联的文件系统的至少一部分，以及创建新的默认密钥袋， 加密密钥。 本文还公开了一种擦除存储在以每个文件和每个类为基础加密的远程文件系统中的用户数据的方法。 该方法包括向远程设备发送闭塞指令，这导致远程设备破坏包含远程设备上的加密密钥的所有密钥袋，擦除并重建与用户数据相关联的文件系统的至少一部分，并在远程设备上创建 一个包含加密密钥的新的默认密钥袋。

公开(公告)号：US10230796B2

公开(公告)日：2019-03-12

申请号：US14500926

申请日：2014-09-29

Applicant: Apple Inc.

Inventor： Paul William Chinn ,  Timothy P. Hannon ,  Cameron S. Birse ,  Ronnie G. Misra

IPC: H04L29/08

Abstract: Disclosed herein is a technique for managing disk space in user devices. A disk space manager is configured to manage the disk space by requesting clients running on the user device to free up disk space. The clients receive the requests and respond to the requests by deleting their own data to free up the requested disk space.

公开(公告)号：US09661495B2

公开(公告)日：2017-05-23

申请号：US14474716

申请日：2014-09-02

Applicant: Apple Inc.

Inventor： Tyler Hawkins ,  Christopher Wilson ,  Conrad Sauerwald ,  Gregory Novick ,  Neil G. Crane ,  Rudolph Van Der Merwe ,  Samuel Noble ,  Paul William Chinn

IPC: H04W4/00 ,  H04W8/26 ,  G06K7/14 ,  H04W12/04 ,  H04W8/18 ,  H04W8/00

CPC classification number: H04W8/265 ,  G06K7/1447 ,  H04W4/80 ,  H04W8/005 ,  H04W8/18 ,  H04W12/04

Abstract: A method of activating a first device is disclosed. The method includes: the first device pairing with a second device; receiving a connection request from a second device; connecting to the second device; opening a communication channel to the second device; transmitting an activation package to the second device; receiving an activation payload from the second device; and performing an activation using information from the activation payload.

公开(公告)号：US20140366157A1

公开(公告)日：2014-12-11

申请号：US13913059

申请日：2013-06-07

Applicant: Apple Inc.

Inventor： Kelly B. Yancey ,  Jacques Anthony Vidrine ,  Eric Olaf Carlson ,  Paul William Chinn ,  Simon P. Cooper

IPC: G06F21/62 ,  G06F21/53

CPC classification number: G06F21/62 ,  G06F21/53 ,  G06F21/6245

Abstract: The disclosed technology addresses the need in the art for assigning multiple containers to a single application. A container can be a specified area of a file system that an assigned application can access to store data, while other applications are restricted access to the container. In some instances, it may be beneficial for multiple applications to share some data, while still maintaining other data in a secure location, thus an application can be assigned to multiple containers, a personal container that can only be accessed by the application, and a shared container that can be accessed by multiple applications. Further, an application can be assigned an alternate container, in addition to the personal container. The alternate container can be used when an alternate user is using the client device, thus restricting the alternate user from accessing any sensitive data stored in the personal container.

Abstract translation: 所公开的技术解决了本领域对单个应用分配多个容器的需要。 容器可以是分配的应用程序可以访问以存储数据的文件系统的指定区域，而其他应用程序被限制访问容器。 在某些情况下，多个应用程序共享一些数据可能是有益的，同时仍然将其他数据保持在安全位置，因此应用程序可以分配给多个容器，只能由应用程序访问的个人容器，以及 可以由多个应用程序访问的共享容器。 此外，除了个人容器之外，还可以为应用分配备用容器。 当替代用户使用客户端设备时，可以使用备用容器，从而限制备用用户访问存储在个人容器中的任何敏感数据。

公开(公告)号：US20190354705A1

公开(公告)日：2019-11-21

申请号：US16526253

申请日：2019-07-30

Applicant: Apple Inc.

Inventor： Kelly B. Yancey ,  Jacques Anthony Vidrine ,  Eric Olaf Carlson ,  Paul William Chinn ,  Simon P. Cooper

IPC: G06F21/62 ,  G06F21/53

Abstract: The disclosed technology addresses the need in the art for assigning multiple containers to a single application. A container can be a specified area of a file system that an assigned application can access to store data, while other applications are restricted access to the container. In some instances, it may be beneficial for multiple applications to share some data, while still maintaining other data in a secure location, thus an application can be assigned to multiple containers, a personal container that can only be accessed by the applications, and a shared container that can be accessed by multiple applications. Further, an application can be assigned an alternate container, in addition to the personal container. The alternate container can be used when an alternate user is using the client device, thus restricting the alternate user from accessing any sensitive data stored in the personal container.

公开(公告)号：US10965732B2

公开(公告)日：2021-03-30

申请号：US16287798

申请日：2019-02-27

Applicant: Apple Inc.

Inventor： Paul William Chinn ,  Eric Olaf Carlson ,  Ronnie Misra

IPC: H04L29/08 ,  H04L29/06

Abstract: A system is described to create and transmit a streamable ZIP file container. The streamable ZIP file container contains stream metadata, files, and a central directory. The stream metadata, files, and central directory can be saved in a contiguous stream without any intervening bytes. When the streamable ZIP file container is read by a client device that supports streamable ZIP file containers, the client device can exit the data stream without receiving the central directory. Interruptions during transmission of the ZIP file container can be resumed.

公开(公告)号：US10250670B2

公开(公告)日：2019-04-02

申请号：US15236268

申请日：2016-08-12

Applicant: Apple Inc.

Inventor： Paul William Chinn ,  Eric Olaf Carlson ,  Ronnie Misra

IPC: G06F15/16 ,  H04L29/08 ,  H04L29/06

Abstract: A system is described to create and transmit a streamable ZIP file container. The streamable ZIP file container contains stream metadata, files, and a central directory. The stream metadata, files, and central directory can be saved in a contiguous stream without any intervening bytes. When the streamable ZIP file container is read by a client device that supports streamable ZIP file containers, the client device can exit the data stream without receiving the central directory. Interruptions during transmission of the ZIP file container can be resumed.