-
公开(公告)号:US12141266B2
公开(公告)日:2024-11-12
申请号:US16921283
申请日:2020-07-06
Applicant: Apple Inc.
Inventor: Benjamin D. Chester , Hubert Greiche , Richard W. Heard , Yousuf H. Vaid , Gianpaolo Fasoli
Abstract: Systems, methods, and computer-readable media for facilitating frictionless credential provisioning on a user computing device are provided. Special “frictionless tokens” (e.g. ownership tokens) may be generated for each existing credential in a user's digital wallet. Such tokens may be stored in a user's AE locker (e.g. iCloud keychain) and synchronized across the user's devices using any suitable security features (e.g. using any suitable secure enclave processor (“SEP”)-based encryption). Such a token, as may be stored in a device's SEP, may be configured only to be read on that physical device. In this manner, the user may no longer need provide further proof of ownership of a credential or be hassled by passing any other challenge, but, instead, the additional security may be achieved using the ownership token, which may use the user's AE or device passcode in association with the user's physical device (and its SEP).
-
公开(公告)号:US20210004454A1
公开(公告)日:2021-01-07
申请号:US16921283
申请日:2020-07-06
Applicant: Apple Inc.
Inventor: Benjamin D. Chester , Hubert Greiche , Richard W. Heard , Yousuf H. Vaid
Abstract: Systems, methods, and computer-readable media for facilitating frictionless credential provisioning on a user electronic device are provided.
-
公开(公告)号:US11164179B2
公开(公告)日:2021-11-02
申请号:US16428724
申请日:2019-05-31
Applicant: Apple Inc.
Inventor: Hubert Greiche , Gianpaolo Fasoli , Stacey R. Abrams , Richard W. Heard
Abstract: Techniques are disclosed relating to securely receiving and storing credentials. In some embodiments, a computing device includes an application executable to supply a credential to an external system. A secure circuit of the computing device is configured to send, to a credential storage, a request for the credential, the request including a first certificate identifying a first public key and a stipulation to perform a user authentication before permitting use of a first private key corresponding to the first public key. The secure circuit receives, from the credential storage, the credential encrypted using the first public key and, based on the stipulation, performs the user authentication prior to decrypting the credential and supplying it to the application. In some embodiments, the secure circuit receives the first certificate by providing information about hardware included in the computing device to a hardware verification service.
-
公开(公告)号:US20200234283A1
公开(公告)日:2020-07-23
申请号:US16428724
申请日:2019-05-31
Applicant: Apple Inc.
Inventor: Hubert Greiche , Gianpaolo Fasoli , Stacey R. Abrams , Richard W. Heard
Abstract: Techniques are disclosed relating to securely receiving and storing credentials. In some embodiments, a computing device includes an application executable to supply a credential to an external system. A secure circuit of the computing device is configured to send, to a credential storage, a request for the credential, the request including a first certificate identifying a first public key and a stipulation to perform a user authentication before permitting use of a first private key corresponding to the first public key. The secure circuit receives, from the credential storage, the credential encrypted using the first public key and, based on the stipulation, performs the user authentication prior to decrypting the credential and supplying it to the application. In some embodiments, the secure circuit receives the first certificate by providing information about hardware included in the computing device to a hardware verification service.
-
-
-
Search Results
4
records
(took 0.01 seconds)
