公开(公告)号：US20200382495A1

公开(公告)日：2020-12-03

申请号：US16888479

申请日：2020-05-29

Applicant: Apple Inc.

Inventor： Dmitry V. BELOV ,  Brent A. FULGHAM ,  Sudhakar N. MAMBAKKAM ,  Richard J. MONDELLO ,  Kaylan C. GOPAVARAPU ,  Edgar Tonatiuh Barragan CORTE ,  Libor SYKORA

IPC: H04L29/06 ,  H04L29/08 ,  H04L12/24

Abstract: A method and apparatus of a device that authorizes a device for a service is described. In an exemplary embodiment, the device intercepts a request for a web page from a web browser executing on the device, wherein the request includes an indication associated with an authorization request for the service and the web page provides the service. In addition, the device presents an authorization user interface on the device. The device further performs a local authorization using a set of user credentials entered via the authorization user interface. The device additionally performs a server authorization with a server. Furthermore, the device redirects the web browser to the requested web page, wherein the web browser is authorized for the service provided by the web page.

公开(公告)号：US20200380510A1

公开(公告)日：2020-12-03

申请号：US16712895

申请日：2019-12-12

Applicant: Apple Inc.

Inventor： Peter J. HARE ,  Vijay SUNDARAM ,  Sudhakar N. MAMBAKKAM ,  Venkatesh VENISHETTY ,  Vamsi K. KONDADASULA ,  Quenton D. JONES

IPC: G06Q20/40 ,  G06Q20/10 ,  G06Q20/38 ,  H04W4/80 ,  H04L9/32 ,  H04W12/06

Abstract: A device implementing a system to associate a user account with a content output device includes at least one processor configured to receive an invitation to access content associated with a first user account on another device associated with a second user account, the other device being connected to a local area network. The at least one processor is further configured to send, to a server, a request for authorization to access the content associated with the first user account on the other device associated with the second user account, the request comprising information included with the invitation, and to receive, from the server, the authorization to access the content. The at least one processor is further configured to access, based at least in part on the authorization, the content associated with the first user account on the other device associated with the second user account.

公开(公告)号：US20240372855A1

公开(公告)日：2024-11-07

申请号：US18777443

申请日：2024-07-18

Applicant: Apple Inc.

Inventor： Max M. GUNTHER ,  Onar VIKINGSTAD ,  Ramiro CALVO ,  Isabella M. FUNKE ,  Eric D. FRIEDMAN ,  Hervé SIBERT ,  David P. REMAHL ,  Yannick L. SIERRA ,  Frank B. DANCS ,  Sudhakar N. MAMBAKKAM

IPC: H04L9/40 ,  G06F21/71 ,  G06K7/14 ,  G06K19/06 ,  H04L9/08 ,  H04L9/32 ,  H04L65/1069

Abstract: This application relates to establishing a communication session between a host device and a trusted client device. A host device generates a one-time secret (OTS) and transmits the OTS to a trusted client device via an out-of-band communication channel. The trusted client device verifies an identity of a user of the trusted client device utilizing one or more sensors of the trusted client device. Responsive to verifying the identity of the user, the trusted client device negotiates an encryption key with the host device based on the OTS. The trusted client device then establishes a communication session with the host device utilizing the encryption key. The communication session can be utilized to pass credentials in a protected manner from the trusted client device to the host device that enable the host device to access a user account associated with a service.

公开(公告)号：US20220393867A1

公开(公告)日：2022-12-08

申请号：US17649924

申请日：2022-02-03

Applicant: Apple Inc.

Inventor： Gokul P. THIRUMALAI ,  Alexandre A. AYBES ,  Dmitry V. BELOV ,  Jean-Luc GIRAUD ,  Kalyan C. GOPAVARAPU ,  Sudhakar N. MAMBAKKAM ,  Rebekah H. MERCER ,  Keaton F. MOWERY ,  Steven A. MYERS ,  Munish K. POONIA ,  Nihar SHARMA ,  Assar E. WESTERLUND ,  Frederic JACOBS

IPC: H04L9/08 ,  G06F21/60

Abstract: This Application sets forth techniques for establishing a custodial relationship between a user device and a custodian device for recovering access to a user account and/or to encrypted user data with assistance provided by the custodian device to effect access recovery. A server of a cloud network service provides an anonymous identifier to associate with the custodian device and an account recovery key to store at the custodian device. Identity of an account of the cloud network service associated with the custodian device can be hidden from the server. The user device generates a data recovery key and provides a first portion of the data recovery key to the custodian device and a second portion of the data recovery key to the server. Integrity of the stored account recovery key and portions of the data recovery key are checked regularly by the custodian device and the user device.

公开(公告)号：US20240146724A1

公开(公告)日：2024-05-02

申请号：US18405858

申请日：2024-01-05

Applicant: Apple Inc.

Inventor： Dmitry V. BELOV ,  Brent A. FULGHAM ,  Sudhakar N. MAMBAKKAM ,  Richard J. MONDELLO ,  Kalyan C. GOPAVARAPU ,  Edgar Tonatiuh Barragan CORTE ,  Libor SYKORA

IPC: H04L9/40 ,  H04L41/22 ,  H04L67/02

CPC classification number: H04L63/0861 ,  H04L41/22 ,  H04L63/083 ,  H04L63/20 ,  H04L67/02

Abstract: A method and apparatus of a device that authorizes a device for a service is described. In an exemplary embodiment, the device intercepts a request for a web page from a web browser executing on the device, wherein the request includes an indication associated with an authorization request for the service and the web page provides the service. In addition, the device presents an authorization user interface on the device. The device further performs a local authorization using a set of user credentials entered via the authorization user interface. The device additionally performs a server authorization with a server. Furthermore, the device redirects the web browser to the requested web page, wherein the web browser is authorized for the service provided by the web page.

公开(公告)号：US20240144267A1

公开(公告)日：2024-05-02

申请号：US18407352

申请日：2024-01-08

Applicant: Apple Inc.

Inventor： Peter J. HARE ,  Vijay SUNDARAM ,  Sudhakar N. MAMBAKKAM ,  Venkatesh VENISHETTY ,  Vamsi K. KONDADASULA ,  Quenton D. JONES

IPC: G06Q20/40 ,  G06Q20/10 ,  G06Q20/38 ,  H04L9/32 ,  H04W4/80 ,  H04W12/06

CPC classification number: G06Q20/40 ,  G06Q20/10 ,  G06Q20/385 ,  H04L9/3228 ,  H04W4/80 ,  H04W12/06

Abstract: A device implementing a system to associate a user account with a content output device includes at least one processor configured to receive an invitation to access content associated with a first user account on another device associated with a second user account, the other device being connected to a local area network. The at least one processor is further configured to send, to a server, a request for authorization to access the content associated with the first user account on the other device associated with the second user account, the request comprising information included with the invitation, and to receive, from the server, the authorization to access the content. The at least one processor is further configured to access, based at least in part on the authorization, the content associated with the first user account on the other device associated with the second user account.

公开(公告)号：US20230141236A1

公开(公告)日：2023-05-11

申请号：US18153118

申请日：2023-01-11

Applicant: Apple Inc.

Inventor： Dmitry V. BELOV ,  Brent A. FULGHAM ,  Sudhakar N. MAMBAKKAM ,  Richard J. MONDELLO ,  Kalyan C. GOPAVARAPU ,  Edgar Tonatiuh Barragan CORTE ,  Libor SYKORA

IPC: H04L9/40 ,  H04L41/22 ,  H04L67/02

CPC classification number: H04L63/0861 ,  H04L41/22 ,  H04L63/20 ,  H04L63/083 ,  H04L67/02

Abstract: A method and apparatus of a device that authorizes a device for a service is described. In an exemplary embodiment, the device intercepts a request for a web page from a web browser executing on the device, wherein the request includes an indication associated with an authorization request for the service and the web page provides the service. In addition, the device presents an authorization user interface on the device. The device further performs a local authorization using a set of user credentials entered via the authorization user interface. The device additionally performs a server authorization with a server. Furthermore, the device redirects the web browser to the requested web page, wherein the web browser is authorized for the service provided by the web page.