公开(公告)号：US09785424B2

公开(公告)日：2017-10-10

申请号：US14732610

申请日：2015-06-05

Applicant: Apple Inc.

Inventor： Donald Matthew Firlik ,  Patrick O. Heynen ,  David Makower ,  Andrew D. Boyko ,  Anders Bertelrud ,  Christopher T. Parker ,  Paul William Chinn ,  Robert Marini ,  Eric Olaf Carlson

IPC: G06F9/445 ,  H04L29/08 ,  G06F9/54

CPC classification number: G06F8/61 ,  G06F9/54 ,  H04L67/34

Abstract: A method and an apparatus for an application thinning mechanism are described. The thinning mechanism can select a subset of components from a universal application to assemble an application variant to be distributed and installed to a specific type of devices. The universal application may include every component, such as asset, resource or executable, built/developed for targeted device attributes to install one common application to multiple devices. For example, the thinning mechanism can use a trait vector associated with a type of devices to iterate through the components and identify assets to be included or packaged into in each target device specific application or application variant.

公开(公告)号：US20160357536A1

公开(公告)日：2016-12-08

申请号：US14732610

申请日：2015-06-05

Applicant: Apple Inc.

Inventor： Donald M. Firlik ,  Patrick O. Heynen ,  David Makower ,  Andrew D. Boyko ,  Anders Bertelrud ,  Christopher T. Parker ,  Paul William Chinn ,  Robert Marini ,  Eric Olaf Carlson

IPC: G06F9/445 ,  G06F9/54

CPC classification number: G06F8/61 ,  G06F9/54 ,  H04L67/34

Abstract: A method and an apparatus for an application thinning mechanism are described. The thinning mechanism can select a subset of components from a universal application to assemble an application variant to be distributed and installed to a specific type of devices. The universal application may include every component, such as asset, resource or executable, built/developed for targeted device attributes to install one common application to multiple devices. For example, the thinning mechanism can use a trait vector associated with a type of devices to iterate through the components and identify assets to be included or packaged into in each target device specific application or application variant.

Abstract translation: 描述了一种应用稀疏机制的方法和装置。 稀疏机制可以从通用应用程序中选择一个组件的子集，以组装要分发和安装到特定类型设备的应用程序变体。 通用应用可以包括针对目标设备属性构建/开发的每个组件，例如资产，资源或可执行文件，以将一个通用应用安装到多个设备。 例如，稀疏机制可以使用与一类设备相关联的特征向量来遍历组件并且识别要包含或打包在每个目标设备特定应用或应用变体中的资产。

公开(公告)号：US09420070B2

公开(公告)日：2016-08-16

申请号：US13744007

申请日：2013-01-17

Applicant: Apple Inc.

Inventor： Paul William Chinn ,  Eric Olaf Carlson ,  Ronnie Misra

IPC: G06F15/16 ,  H04L29/06 ,  H04L29/08

CPC classification number: H04L67/06 ,  H04L65/607 ,  H04L67/145 ,  H04L69/04

Abstract: A system is described to create and transmit a streamable ZIP file container. The streamable ZIP file container contains stream metadata, files, and a central directory. The stream metadata, files, and central directory can be saved in a contiguous stream without any intervening bytes. When the streamable ZIP file container is read by a client device that supports streamable ZIP file containers, the client device can exit the data stream without receiving the central directory. Interruptions during transmission of the ZIP file container can be resumed.

Abstract translation: 描述了一个系统来创建和传输可流式的ZIP文件容器。 可流式ZIP文件容器包含流元数据，文件和中央目录。 流元数据，文件和中央目录可以保存在连续的流中，而不会有任何中间字节。 当可流式ZIP文件容器由支持可流式ZIP文件容器的客户端设备读取时，客户端设备可以退出数据流而不接收中央目录。 可以恢复ZIP文件容器传输过程中的中断。

公开(公告)号：US20130339715A1

公开(公告)日：2013-12-19

申请号：US13941373

申请日：2013-07-12

Applicant: Apple Inc.

Inventor： Dallas Blake De Atley ,  Gordon Freedman ,  Thomas Brogan Duffy, Jr. ,  Tahoma Madrone Toelkes ,  Michael John Smith ,  Paul William Chinn ,  David Rahardja

IPC: G06F21/60

CPC classification number: G06F9/4406 ,  G06F9/4401 ,  G06F21/602 ,  H04L9/0816 ,  H04L9/0891 ,  H04L9/0894 ,  H04L9/12 ,  H04L9/30 ,  H04L9/3226 ,  H04L2209/80 ,  H04W12/02 ,  H04W12/04 ,  H04W12/06

Abstract: Disclosed herein are systems, methods, and non-transitory computer-readable storage media for erasing user data stored in a file system. The method includes destroying all key bags containing encryption keys on a device having a file system encrypted on a per file and per class basis, erasing and rebuilding at least part of the file system associated with user data, and creating a new default key bag containing encryption keys. Also disclosed herein is a method of erasing user data stored in a remote file system encrypted on a per file and per class basis. The method includes transmitting obliteration instructions to a remote device, which cause the remote device to destroy all key bags containing encryption keys on the remote device, erase and rebuild at least part of the file system associated with user data, and create on the remote device a new default key bag containing encryption keys.

Abstract translation: 这里公开了用于擦除存储在文件系统中的用户数据的系统，方法和非暂时的计算机可读存储介质。 该方法包括在具有每个文件和每个类基础上加密的文件系统的设备上破坏包含加密密钥的所有密钥袋，擦除和重建与用户数据相关联的文件系统的至少一部分，以及创建新的默认密钥袋， 加密密钥。 本文还公开了一种擦除存储在以每个文件和每个类为基础加密的远程文件系统中的用户数据的方法。 该方法包括向远程设备发送闭塞指令，这导致远程设备破坏包含远程设备上的加密密钥的所有密钥袋，擦除并重建与用户数据相关联的文件系统的至少一部分，并在远程设备上创建 一个包含加密密钥的新的默认密钥袋。

公开(公告)号：US10410003B2

公开(公告)日：2019-09-10

申请号：US13913059

申请日：2013-06-07

Applicant: Apple Inc.

Inventor： Kelly B. Yancey ,  Jacques Anthony Vidrine ,  Eric Olaf Carlson ,  Paul William Chinn ,  Simon P. Cooper

IPC: G06F21/53 ,  G06F21/62

Abstract: The disclosed technology addresses the need in the art for assigning multiple containers to a single application. A container can be a specified area of a file system that an assigned application can access to store data, while other applications are restricted access to the container. In some instances, it may be beneficial for multiple applications to share some data, while still maintaining other data in a secure location, thus an application can be assigned to multiple containers, a personal container that can only be accessed by the application, and a shared container that can be accessed by multiple applications. Further, an application can be assigned an alternate container, in addition to the personal container. The alternate container can be used when an alternate user is using the client device, thus restricting the alternate user from accessing any sensitive data stored in the personal container.

公开(公告)号：US10025597B2

公开(公告)日：2018-07-17

申请号：US14992798

申请日：2016-01-11

Applicant: Apple Inc

Inventor： Dallas Blake De Atley ,  Gordon Freedman ,  Thomas Brogan Duffy, Jr. ,  Tahoma Madrone Toelkes ,  Michael John Smith ,  Paul William Chinn ,  David Rahardja

IPC: H04L9/00 ,  G06F9/4401 ,  H04L9/08 ,  H04L9/12 ,  H04L9/32 ,  G06F21/60 ,  H04L9/30 ,  H04W12/04 ,  H04W12/02 ,  H04W12/06

Abstract: Disclosed herein are systems, methods, and non-transitory computer-readable storage media for erasing user data stored in a file system. The method includes destroying all key bags containing encryption keys on a device having a file system encrypted on a per file and per class basis, erasing and rebuilding at least part of the file system associated with user data, and creating a new default key bag containing encryption keys. Also disclosed herein is a method of erasing user data stored in a remote file system encrypted on a per file and per class basis. The method includes transmitting obliteration instructions to a remote device, which cause the remote device to destroy all key bags containing encryption keys on the remote device, erase and rebuild at least part of the file system associated with user data, and create on the remote device a new default key bag containing encryption keys.

公开(公告)号：US09900767B2

公开(公告)日：2018-02-20

申请号：US15599088

申请日：2017-05-18

Applicant: Apple Inc.

Inventor： Tyler Hawkins ,  Christopher Wilson ,  Conrad Sauerwald ,  Gregory Novick ,  Neil G. Crane ,  Rudolph Van Der Merwe ,  Samuel Noble ,  Paul William Chinn

IPC: H04W8/26 ,  H04W4/00 ,  G06K7/14 ,  H04W12/04 ,  H04W8/18 ,  H04W8/00

CPC classification number: H04W8/265 ,  G06K7/1447 ,  H04W4/80 ,  H04W8/005 ,  H04W8/18 ,  H04W12/04

Abstract: A method of establishing communications with a first device is disclosed. The method includes: the first device presenting connection information to a second device; receiving a response from a second device; establishing an association with the second device; transmitting, in response to a determination that the first device and the second device are connected for data, first data to the second device, the first data comprising addressing information for a server; receiving second data from the second device, the second data comprising second information for establishing communications with the first device; and configuring the first device to receive third data from a location remote to the first device using the second information from the second data.

公开(公告)号：US09237016B2

公开(公告)日：2016-01-12

申请号：US14299359

申请日：2014-06-09

Applicant: Apple Inc

Inventor： Dallas Blake De Atley ,  Gordon Freedman ,  Thomas Brogan Duffy, Jr. ,  Tahoma Madrone Toelkes ,  Michael John Smith ,  Paul William Chinn ,  David Rahardja

IPC: H04L9/30 ,  H04L9/12 ,  H04L9/08 ,  G06F11/30 ,  H04L9/32 ,  G06F21/60 ,  G06F9/44 ,  H04W12/04 ,  H04W12/02 ,  H04W12/06

CPC classification number: G06F9/4406 ,  G06F9/4401 ,  G06F21/602 ,  H04L9/0816 ,  H04L9/0891 ,  H04L9/0894 ,  H04L9/12 ,  H04L9/30 ,  H04L9/3226 ,  H04L2209/80 ,  H04W12/02 ,  H04W12/04 ,  H04W12/06

Abstract: Disclosed herein are systems, methods, and non-transitory computer-readable storage media for erasing user data stored in a file system. The method includes destroying all key bags containing encryption keys on a device having a file system encrypted on a per file and per class basis, erasing and rebuilding at least part of the file system associated with user data, and creating a new default key bag containing encryption keys. Also disclosed herein is a method of erasing user data stored in a remote file system encrypted on a per file and per class basis. The method includes transmitting obliteration instructions to a remote device, which cause the remote device to destroy all key bags containing encryption keys on the remote device, erase and rebuild at least part of the file system associated with user data, and create on the remote device a new default key bag containing encryption keys.

公开(公告)号：US20140201316A1

公开(公告)日：2014-07-17

申请号：US13744007

申请日：2013-01-17

Applicant: APPLE INC.

Inventor： Paul William Chinn ,  Eric Olaf Carlson ,  Ronnie Misra

IPC: H04L29/06

CPC classification number: H04L67/06 ,  H04L65/607 ,  H04L67/145 ,  H04L69/04

Abstract: A system is described to create and transmit a streamable ZIP file container. The streamable ZIP file container contains stream metadata, files, and a central directory. The stream metadata, files, and central directory can be saved in a contiguous stream without any intervening bytes. When the streamable ZIP file container is read by a client device that supports streamable ZIP file containers, the client device can exit the data stream without receiving the central directory. Interruptions during transmission of the ZIP file container can be resumed.

Abstract translation: 描述了一个系统来创建和传输可流式的ZIP文件容器。 可流式ZIP文件容器包含流元数据，文件和中央目录。 流元数据，文件和中央目录可以保存在连续的流中，而不会有任何中间字节。 当可流式ZIP文件容器由支持可流式ZIP文件容器的客户端设备读取时，客户端设备可以退出数据流而不接收中央目录。 可以恢复在ZIP文件容器传输过程中的中断。