公开(公告)号：US09027112B2

公开(公告)日：2015-05-05

申请号：US13890161

申请日：2013-05-08

Applicant: Apple Inc.

Inventor： Gordie Freedman ,  David Rahardja

IPC: G06F7/04 ,  H04W12/08 ,  H04L29/06 ,  H04W4/00 ,  H04W12/06

CPC classification number: H04W12/08 ,  H04L63/02 ,  H04L63/0823 ,  H04W4/50 ,  H04W8/22 ,  H04W12/06

Abstract: Methods and apparatuses that enroll a wireless device into an enterprise service with a management server addressed in a management profile are described. The enrollment may grant a control of configurations of the wireless device to the management server via the management profile. In response to receiving a notification from the management server, a trust of the notification may be verified against the management profile. If the trust is verified, a network session may be established with the management server. The network session may be secured via a certificate in the management profile. Management operations may be performed for management commands received over the secure network session to manage the configurations transparently to a user of the wireless device according to the control.

Abstract translation: 描述了使用管理简档中寻址的管理服务器将无线设备注册到企业服务中的方法和装置。 注册可以通过管理简档向管理服务器授予对无线设备的配置的控制。 响应于从管理服务器接收到通知，可以针对管理简档来验证通知的信任。 如果信任被验证，则可以与管理服务器建立网络会话。 可以通过管理简档中的证书来保护网络会话。 可以对通过安全网络会话接收的管理命令执行管理操作，以根据该控制向无线设备的用户透明地管理配置。

公开(公告)号：US20130339715A1

公开(公告)日：2013-12-19

申请号：US13941373

申请日：2013-07-12

Applicant: Apple Inc.

Inventor： Dallas Blake De Atley ,  Gordon Freedman ,  Thomas Brogan Duffy, Jr. ,  Tahoma Madrone Toelkes ,  Michael John Smith ,  Paul William Chinn ,  David Rahardja

IPC: G06F21/60

CPC classification number: G06F9/4406 ,  G06F9/4401 ,  G06F21/602 ,  H04L9/0816 ,  H04L9/0891 ,  H04L9/0894 ,  H04L9/12 ,  H04L9/30 ,  H04L9/3226 ,  H04L2209/80 ,  H04W12/02 ,  H04W12/04 ,  H04W12/06

Abstract: Disclosed herein are systems, methods, and non-transitory computer-readable storage media for erasing user data stored in a file system. The method includes destroying all key bags containing encryption keys on a device having a file system encrypted on a per file and per class basis, erasing and rebuilding at least part of the file system associated with user data, and creating a new default key bag containing encryption keys. Also disclosed herein is a method of erasing user data stored in a remote file system encrypted on a per file and per class basis. The method includes transmitting obliteration instructions to a remote device, which cause the remote device to destroy all key bags containing encryption keys on the remote device, erase and rebuild at least part of the file system associated with user data, and create on the remote device a new default key bag containing encryption keys.

Abstract translation: 这里公开了用于擦除存储在文件系统中的用户数据的系统，方法和非暂时的计算机可读存储介质。 该方法包括在具有每个文件和每个类基础上加密的文件系统的设备上破坏包含加密密钥的所有密钥袋，擦除和重建与用户数据相关联的文件系统的至少一部分，以及创建新的默认密钥袋， 加密密钥。 本文还公开了一种擦除存储在以每个文件和每个类为基础加密的远程文件系统中的用户数据的方法。 该方法包括向远程设备发送闭塞指令，这导致远程设备破坏包含远程设备上的加密密钥的所有密钥袋，擦除并重建与用户数据相关联的文件系统的至少一部分，并在远程设备上创建 一个包含加密密钥的新的默认密钥袋。

公开(公告)号：US11263020B2

公开(公告)日：2022-03-01

申请号：US16017940

申请日：2018-06-25

Applicant: Apple Inc.

Inventor： Dallas Blake De Atley ,  Gordon Freedman ,  Thomas Brogan Duffy, Jr. ,  Tahoma Madrone Toelkes ,  Michael John Smith ,  Paul William Chinn ,  David Rahardja

IPC: G06F9/4401 ,  H04L9/08 ,  H04W12/04 ,  H04L9/12 ,  H04L9/32 ,  H04W12/082 ,  G06F21/60 ,  H04L9/30 ,  H04W12/02 ,  H04W12/06

Abstract: Disclosed herein are systems, methods, and non-transitory computer-readable storage media for erasing user data stored in a file system. The method includes destroying all key bags containing encryption keys on a device having a file system encrypted on a per file and per class basis, erasing and rebuilding at least part of the file system associated with user data, and creating a new default key bag containing encryption keys. Also disclosed herein is a method of erasing user data stored in a remote file system encrypted on a per file and per class basis. The method includes transmitting obliteration instructions to a remote device, which cause the remote device to destroy all key bags containing encryption keys on the remote device, erase and rebuild at least part of the file system associated with user data, and create on the remote device a new default key bag containing encryption keys.

公开(公告)号：US20170347226A1

公开(公告)日：2017-11-30

申请号：US15168183

申请日：2016-05-30

Applicant: APPLE INC.

Inventor： Keith Stattenfield ,  Douglas R. Edmonson ,  Marc Krochmal ,  John J. Iarocci ,  Kevin S. Perry ,  David Rahardja ,  Christopher S. Linn

IPC: H04W4/00 ,  H04W48/16 ,  H04W76/02 ,  H04L29/08 ,  H04W84/12

CPC classification number: H04W4/80 ,  G06F3/0481 ,  G06F9/543 ,  H04L67/16 ,  H04L67/306 ,  H04W48/10 ,  H04W48/16 ,  H04W76/14 ,  H04W84/12

Abstract: A device may comprise at least one wireless transceiver, a memory configured to store a local pasteboard, and a processor. The processor may be configured to receive local selections of data to be placed on a local pasteboard, broadcast advertisements indicating that the local data is on the local pasteboard, and wirelessly transmit the local data to remote device pasteboards. The processor may also be configured to receive advertisements indicating that remote data is available on remote pasteboards of other devices, request the remote data in response to a paste command, wirelessly receive the remote data, and paste the remote data.

公开(公告)号：US20170102975A1

公开(公告)日：2017-04-13

申请号：US15294300

申请日：2016-10-14

Applicant: Apple Inc.

Inventor： David Rahardja ,  Toby C. Paterson ,  Anthony D'Auria

IPC: G06F9/54 ,  G06F21/53 ,  G06F21/60

CPC classification number: G06F9/546 ,  G06F9/45533 ,  G06F9/545 ,  G06F21/53 ,  G06F21/606 ,  G06F2009/45587 ,  G06F2209/547 ,  G06F2221/2149 ,  H04L67/10

Abstract: The described embodiments include a computing device that executes a broker application. The broker application performs a mediated data exchange to exchange data between a first sandboxed application and a second application. For example, the broker application can import data from the second application into the first sandboxed application. As another example, the broker application can export data from the first sandboxed application into the second application.

公开(公告)号：US09473562B2

公开(公告)日：2016-10-18

申请号：US14025696

申请日：2013-09-12

Applicant: Apple Inc.

Inventor： David Rahardja ,  Toby C. Paterson ,  Anthony D'Auria

IPC: H04L29/08 ,  G06F9/455 ,  G06F9/54 ,  G06F21/60

CPC classification number: G06F9/546 ,  G06F9/45533 ,  G06F9/545 ,  G06F21/53 ,  G06F21/606 ,  G06F2009/45587 ,  G06F2209/547 ,  G06F2221/2149 ,  H04L67/10

Abstract: The described embodiments include a computing device that executes a broker application. The broker application performs a mediated data exchange to exchange data between a first sandboxed application and a second application. For example, the broker application can import data from the second application into the first sandboxed application. As another example, the broker application can export data from the first sandboxed application into the second application.

Abstract translation: 所描述的实施例包括执行代理应用的计算设备。 经纪人应用程序执行中介数据交换以在第一沙盒应用程序和第二应用程序之间交换数据。 例如，代理应用程序可以将数据从第二个应用程序导入第一个沙盒应用程序。 作为另一个例子，代理应用程序可以将数据从第一个沙盒应用程序导出到第二个应用程序。

公开(公告)号：US09467334B2

公开(公告)日：2016-10-11

申请号：US13913219

申请日：2013-06-07

Applicant: Apple Inc.

Inventor： Mark W. Whittemore ,  Michael D. Santos ,  Todd R. Fernandez ,  Christopher G. Skogen ,  Jussi-Pekka Mantere ,  David Rahardja

IPC: G06F15/177 ,  H04L12/24 ,  G06F9/44

CPC classification number: H04L41/0853 ,  G06F9/4411 ,  G06F9/4416 ,  H04L41/0806 ,  H04L41/0816 ,  H04L41/22 ,  H04L67/34

Abstract: In the described embodiments, a device configuration file is used to set configuration settings on a computing device during a configuration operation (e.g., an initial configuration or a re-configuration of the computing device). The device configuration file is retrieved from a location where the device configuration file is hosted using a reference to the location from a bootstrap configuration. The bootstrap configuration is provided by a bootstrap configuration server and is retrieved by the computing device from the bootstrap configuration server during the configuration operation.

Abstract translation: 在所描述的实施例中，在配置操作（例如，计算设备的初始配置或重新配置）期间，使用设备配置文件来在计算设备上设置配置设置。 从设备配置文件的托管位置检索设备配置文件，该引用来自引导配置中的位置。 引导配置由引导配置服务器提供，并且在配置操作期间由计算设备从引导配置服务器检索。

公开(公告)号：US20150074165A1

公开(公告)日：2015-03-12

申请号：US14025696

申请日：2013-09-12

Applicant: Apple Inc.

Inventor： David Rahardja ,  Toby C. Paterson ,  Anthony D'Auria

IPC: H04L29/08

CPC classification number: G06F9/546 ,  G06F9/45533 ,  G06F9/545 ,  G06F21/53 ,  G06F21/606 ,  G06F2009/45587 ,  G06F2209/547 ,  G06F2221/2149 ,  H04L67/10

Abstract: The described embodiments include a computing device that executes a broker application. The broker application performs a mediated data exchange to exchange data between a first sandboxed application and a second application. For example, the broker application can import data from the second application into the first sandboxed application. As another example, the broker application can export data from the first sandboxed application into the second application.

Abstract translation: 所描述的实施例包括执行代理应用的计算设备。 经纪人应用程序执行中介数据交换以在第一沙盒应用程序和第二应用程序之间交换数据。 例如，代理应用程序可以将数据从第二个应用程序导入第一个沙盒应用程序。 作为另一个例子，代理应用程序可以将数据从第一个沙盒应用程序导出到第二个应用程序。

公开(公告)号：US08756419B2

公开(公告)日：2014-06-17

申请号：US13941373

申请日：2013-07-12

Applicant: Apple Inc.

Inventor： Dallas Blake De Atley ,  Gordon Freedman ,  Thomas Brogan Duffy, Jr. ,  Tahoma Madrone Toelkes ,  Michael John Smith ,  Paul William Chinn ,  David Rahardja

IPC: H04L29/06 ,  G06F11/30 ,  G06F7/04

CPC classification number: G06F9/4406 ,  G06F9/4401 ,  G06F21/602 ,  H04L9/0816 ,  H04L9/0891 ,  H04L9/0894 ,  H04L9/12 ,  H04L9/30 ,  H04L9/3226 ,  H04L2209/80 ,  H04W12/02 ,  H04W12/04 ,  H04W12/06

Abstract: Disclosed herein are systems, methods, and non-transitory computer-readable storage media for erasing user data stored in a file system. The method includes destroying all key bags containing encryption keys on a device having a file system encrypted on a per file and per class basis, erasing and rebuilding at least part of the file system associated with user data, and creating a new default key bag containing encryption keys. Also disclosed herein is a method of erasing user data stored in a remote file system encrypted on a per file and per class basis. The method includes transmitting obliteration instructions to a remote device, which cause the remote device to destroy all key bags containing encryption keys on the remote device, erase and rebuild at least part of the file system associated with user data, and create on the remote device a new default key bag containing encryption keys.

Abstract translation: 这里公开了用于擦除存储在文件系统中的用户数据的系统，方法和非暂时的计算机可读存储介质。 该方法包括在具有每个文件和每个类基础上加密的文件系统的设备上破坏包含加密密钥的所有密钥袋，擦除和重建与用户数据相关联的文件系统的至少一部分，以及创建新的默认密钥袋， 加密密钥。 本文还公开了一种擦除存储在以每个文件和每个类为基础加密的远程文件系统中的用户数据的方法。 该方法包括向远程设备发送闭塞指令，这导致远程设备破坏包含远程设备上的加密密钥的所有密钥袋，擦除并重建与用户数据相关联的文件系统的至少一部分，并在远程设备上创建 一个包含加密密钥的新的默认密钥袋。

公开(公告)号：US10884604B2

公开(公告)日：2021-01-05

申请号：US15721718

申请日：2017-09-29

Applicant: Apple Inc.

Inventor： Bruce D. Nilo ,  David Rahardja ,  Michael T. Turner ,  Kurt A. Revis ,  Christopher K. Thomas ,  Stephen R. Breen ,  Tyler M. Fox ,  Emanuele Rudel ,  Robert D. Boehnke ,  Tom Adriaenssen ,  James R. Montgomerie

IPC: G06F3/0486 ,  G06F3/041 ,  G06F3/0481 ,  G06F3/0482 ,  G06F3/0488 ,  G06F21/62

Abstract: The subject technology provides for receiving a request for a representation of an item from a destination application. The subject technology sends the request for the representation of the item to a source application. The subject technology receives a link to a file provider, the file provider fulfilling a data transfer of the representation of the item. Further, the subject technology sends the link to the file provider to the destination application.