-
公开(公告)号:US20200213302A1
公开(公告)日:2020-07-02
申请号:US16726722
申请日:2019-12-24
Applicant: Apple Inc.
Inventor: Rupamay SAHA , Brandon K. LEVENTHAL , Christopher SHARP , Vishnu JANARDHANAN PILLAI , Gianpaolo FASOLI , Augustin J. FARRUGIA
Abstract: A device implementing a system for using a verified claim of identity includes at least one processor configured to receive a verified claim including information to identify a user of a device, the verified claim being signed by a server based on verification of the information by an identity verification provider separate from the server, the verified claim being specific to the device. The at least one processor is further configured to send, to a service provider, a request for a service provided by the service provider, and receive, from the service provider and in response to the sending, a request for the verified claim. The at least one processor is further configured to send, in response to the receiving, the verified claim to the service provider.
-
公开(公告)号:US20250142343A1
公开(公告)日:2025-05-01
申请号:US18990552
申请日:2024-12-20
Applicant: Apple Inc.
Inventor: Haya Iris VILLANUEVA GAVIOLA , Gianpaolo FASOLI , Vinay GANESH , Irene M. GRAFF , Martijn Theo HARING , Ahmer A. KHAN , Franck Farian RAKOTOMALALA , Gordon Y. SCOTT , Ho Cheung CHUNG , Antonio ALLEN , Mayura Dhananjaya DESHPANDE , Thomas John MILLER , Christopher SHARP , David W. SILVER , Policarpo B. WOOD , Ka YANG
Abstract: An embodiment includes a method to increase the efficiency of security checkpoint operations. A security checkpoint kiosk serves as a Relying Party System (RPS). The RPS establishes a secure local connection between the RPS and a User Mobile-Identification-Credential Device (UMD). The RPS sends a user information request to the UMD, via the secure local connection, seeking release of user information associated with a Mobile Identification Credential (MIC). The RPS obtains authentication of the user information received in response to the user information request. The RPS retrieves user travel information based on the user information. The RPS determines that the user travel information matches the user information. When the user travel information matches the user information, the RPS approves the user to proceed past the security checkpoint kiosk.
-
公开(公告)号:US20200382455A1
公开(公告)日:2020-12-03
申请号:US16888461
申请日:2020-05-29
Applicant: Apple Inc.
Inventor: Gianpaolo FASOLI , Evan C. KRASTS , Rahul K. ZINGDE , Leger Nicholas Mottin BROSNAHAN, JR. , Sundhakar N. MAMBAKKAM , Dmitry V. BELOV , Graham S. ORNDORFF , Gokul P. THIRUMALAI
Abstract: A method and apparatus of a device that forwards an email from a first party to a second party is described. In an exemplary embodiment, the device receives an email, where the email includes a first email address associated with the first party, the first party email address is a “from” email address, a second email address associated with a second party, the second email address is a “to” email address; and the second email address is an anonymized email address. The device further extracts a local part of the second email address and the device determines a first party identifier from at least the local part of the first email address. In addition, the device determines a replacement address for the second email address using at least the first party identifier and replaces the second email address with the replacement address. The device further forwards the email using the replacement address.
-
4.
公开(公告)号:US20200279192A1
公开(公告)日:2020-09-03
申请号:US16805625
申请日:2020-02-28
Applicant: Apple Inc.
Inventor: Edouard GODFREY , Gianpaolo FASOLI , Kuangyu WANG
Abstract: The subject technology receives assessment values determined by a first machine learning model deployed on a client electronic device, the assessment values being indicative of classifications of input data and the assessment values being associated with constraint data that comprises a probability distribution of the assessment values with respect to the classifications of the input data. The subject technology applies the assessment values determined by the first machine learning model to a second machine learning model to determine the classifications of the input data. The subject technology determines whether accuracies of the classifications determined by the second machine learning model conform with the probability distribution for corresponding assessment values determined by the first machine learning model. The subject technology retrains the first machine learning model when the accuracies of the classifications determined by the second machine learning model do not conform with the probability distribution.
-
公开(公告)号:US20200097638A1
公开(公告)日:2020-03-26
申请号:US16698621
申请日:2019-11-27
Applicant: Apple Inc.
Inventor: Augustin J. FARRUGIA , Gianpaolo FASOLI
IPC: G06F21/10
Abstract: Some embodiments provide a method for determining whether a subscription for using digital content on a user device has elapsed. The method compares a first collision free image of a first set of entities in the user device with a second collision free image for a second set of entities in the user device at a second instance in time. Based on the comparison, the method determines whether the subscription has elapsed.
-
公开(公告)号:US20250053637A1
公开(公告)日:2025-02-13
申请号:US18932415
申请日:2024-10-30
Applicant: Apple Inc.
Inventor: Benjamin D. CHESTER , Hubert GREICHE , Richard W. HEARD , Yousuf H. VAID , Gianpaolo FASOLI
Abstract: Systems, methods, and computer-readable media for facilitating frictionless credential provisioning on a user computing device are provided. Special “frictionless tokens” (e.g., ownership tokens) may be generated for each existing credential in a user's digital wallet. Such tokens may be stored in a user's AE locker (e.g., iCloud keychain) and synchronized across the user's devices using any suitable security features (e.g., using any suitable secure enclave processor (“SEP”)-based encryption). Such a token, as may be stored in a device's SEP, may be configured only to be read on that physical device. In this manner, the user may no longer need provide further proof of ownership of a credential or be hassled by passing any other challenge, but, instead, the additional security may be achieved using the ownership token, which may use the user's AE or device passcode in association with the user's physical device (and its SEP).
-
公开(公告)号:US20250045643A1
公开(公告)日:2025-02-06
申请号:US18766512
申请日:2024-07-08
Applicant: Apple Inc.
Inventor: Edouard GODFREY , Gianpaolo FASOLI , Kuangyu WANG
Abstract: The subject technology receives assessment values determined by a first machine learning model deployed on a client electronic device, the assessment values being indicative of classifications of input data and the assessment values being associated with constraint data that comprises a probability distribution of the assessment values with respect to the classifications of the input data. The subject technology applies the assessment values determined by the first machine learning model to a second machine learning model to determine the classifications of the input data. The subject technology determines whether accuracies of the classifications determined by the second machine learning model conform with the probability distribution for corresponding assessment values determined by the first machine learning model. The subject technology retrains the first machine learning model when the accuracies of the classifications determined by the second machine learning model do not conform with the probability distribution.
-
公开(公告)号:US20230089689A1
公开(公告)日:2023-03-23
申请号:US17900734
申请日:2022-08-31
Applicant: Apple Inc.
Inventor: Pablo PONS BORDES , Gianpaolo FASOLI , Tyler GENTLES , Bruno KINDARJI , Petr KOSTKA , Rohit NARULA , David W. SILVER , Libor SYKORA , Ka YANG
IPC: G06F21/32
Abstract: The present disclosure generally relates to digital identification user interfaces.
-
公开(公告)号:US20200213296A1
公开(公告)日:2020-07-02
申请号:US16726726
申请日:2019-12-24
Applicant: Apple Inc.
Inventor: Rupamay SAHA , Brandon K. LEVENTHAL , Christopher SHARP , Vishnu JANARDHANAN PILLAI , Gianpaolo FASOLI , Augustin J. FARRUGIA
Abstract: A device implementing a system for using a verified claim of identity includes at least one processor configured to send, to a service provider, a request for a service provided by the service provider. The at least one processor may be further configured to receive, from the service provider and in response to the sending, a request for a verified claim, the verified claim comprising plural data fields to identify a user of a device and being a digital certificate signed by a server, the verified claim being associated with to the device. The at least one processor may be further configured to, in response to the receiving, determine a confidence assessment for the verified claim based on a comparison between the plural data fields in the verified claim and corresponding data locally-stored on a device, and send the confidence assessment and the verified claim to the service provider.
-
公开(公告)号:US20160357951A1
公开(公告)日:2016-12-08
申请号:US14872112
申请日:2015-09-30
Applicant: Apple Inc.
Inventor: Gianpaolo FASOLI , Augustin J. FARRUGIA , Mathieu CIET , Jean-Francois RIENDEAU
IPC: G06F21/30 , G06F21/44 , H04L9/32 , H04B1/3827
CPC classification number: G06F21/305 , G06F21/44 , G06F21/73 , H04L9/0894 , H04L9/3213
Abstract: The embodiments set forth systems and techniques to activate and provide other device services for user devices. An activation manager is configured to activate a user device by receiving an activation request for the device, accepting previously stored and encrypted trusted data for the device, getting current data for the device, determining whether the current data compares with the trusted data, and sending an authorization to activate the device when the current data compares favorably with the trusted data. Data can include a seed component divided into seed segments that are each combined with a unique device identifier using varying cryptographic primitives. Each encrypted seed segment and unique device identifier combination can be dedicated to a different device use or service, and can be used separately for device identification for that use or service.
Abstract translation: 实施例阐述了为用户设备激活和提供其他设备服务的系统和技术。 激活管理器被配置为通过接收对设备的激活请求来激活用户设备,接受设备的先前存储和加密的可信数据,获取设备的当前数据,确定当前数据是否与可信数据进行比较,以及发送 当当前数据与可信数据相比较时激活设备的授权。 数据可以包括分为种子段的种子组件,每个种子组件使用不同的加密原语与唯一的设备标识符组合。 每个加密的种子段和唯一的设备标识符组合可以专用于不同的设备使用或服务,并且可以分别用于该用途或服务的设备标识。
-
-
-
-
-
-
-
-
-