公开(公告)号：US10382578B2

公开(公告)日：2019-08-13

申请号：US14871567

申请日：2015-09-30

Applicant: Apple Inc.

Inventor： Srinivas Vedula ,  Daniel P. Carter ,  Gianpaolo Fasoli ,  Augustin J. Farrugia ,  Eugene Jivotovski

IPC: H04L29/06 ,  H04L29/08

Abstract: This application relates to embodiments for providing a content stream to a device from a content server based on a protocol that is established between the device and an account server. The account server can initiate a session with the device and provide the device with a list of channels available for a user account associated with the device. When a channel is selected at the device, conditional access information can be provided from the account server to the device, which can thereafter relay the conditional access information to the content server. The content server can use the conditional access information to verify that the device has the appropriate permission to receive streaming content. In this way, because the conditional access information originates at the account server, permission to access streaming content can be managed by correspondence between the account server and the device, rather than the content server.

公开(公告)号：US20140082695A1

公开(公告)日：2014-03-20

申请号：US13732056

申请日：2012-12-31

Applicant: APPLE INC.

Inventor： Thomas Alsina ,  Michael K. Chu ,  Augustin J. Farrugia ,  Gianpaolo Fasoli ,  Sean B. Kelly ,  Delfin Jorge Rojas ,  Nicholas T. Sullivan ,  Zhiyuan Zhao

IPC: H04L29/06

CPC classification number: H04L63/08 ,  H04L29/06 ,  H04L63/0807 ,  H04L63/126

Abstract: In one embodiment, non-transitory computer-readable medium stores instructions for establishing a trusted two-way communications session for account creation for an online store, which include instructions for causing a processor to perform operations comprising retrieving and verifying a signed configuration file from a server, requesting a communication session using the configuration file, receiving a payload of account creation forms from a network client, signing the payload according to the server configuration file, and sending the signed payload containing account creation information to the server. In one embodiment, a computer-implemented method comprises analyzing timestamps for requests for data forms for supplying account creation information for evidence of automated account creation activity and rejecting the request for the locator of the second account creation form if evidence of automated account creation activity is detected. Methods for secure account authentication and asset purchase are also disclosed.

Abstract translation: 在一个实施例中，非暂时性计算机可读介质存储用于建立用于在线商店的帐户创建的可信双向通信会话的指令，其包括用于使处理器执行操作的指令，所述指令包括从以下操作检索和验证签名配置文件： 服务器，使用配置文件请求通信会话，从网络客户端接收帐户创建表单的有效载荷，根据服务器配置文件签名有效载荷，以及将包含帐户创建信息的签名的有效载荷发送到服务器。 在一个实施例中，计算机实现的方法包括分析用于数据表单的请求的时间戳，用于提供用于创建自动化帐户的活动的证据的帐户创建信息，并且如果自动帐户创建活动的证据是拒绝第二帐户创建表单的定位者的请求， 检测到。 还披露了安全帐户认证和资产购买的方法。

公开(公告)号：US20240333512A1

公开(公告)日：2024-10-03

申请号：US18623263

申请日：2024-04-01

Applicant: Apple Inc.

Inventor： Vishnu Janardhanan ,  Ahmer A. Khan ,  Gianpaolo Fasoli ,  Dian Wen ,  Hicham Lozi

IPC: H04L9/32 ,  H04L9/08

CPC classification number: H04L9/3231 ,  H04L9/0825 ,  H04L9/3247

Abstract: Techniques are described for generating a verified data package. An example method includes receiving data including biographical information and an associated portrait. The method further includes causing a prompt for a user to capture a self-portrait photograph to be displayed based at least in part on receiving the data. The method further includes receiving the self-portrait photograph based at least in part on the displayed prompt. The method further includes causing data and the self-portrait photograph to be transmitted to a server. The method further includes receiving, from the server, a verified data package comprising the biographical information, the portrait, and an attestation that the self-portrait photograph and the portrait are the user.

公开(公告)号：US20240320721A1

公开(公告)日：2024-09-26

申请号：US18418654

申请日：2024-01-22

Applicant: Apple Inc.

Inventor： Thomas Matthieu Alsina ,  Scott T. Boyd ,  Michael Kuohao Chu ,  Augustin J. Farrugia ,  Gianpaolo Fasoli ,  Patrice O. Gautier ,  Sean B. Kelly ,  Payam Mirrashidi ,  Pedraum Pardehpoosh ,  Conrad Sauerwald ,  Kenneth W. Scott ,  Rajit Shinh ,  Braden Jacob Thomas ,  Andrew R. Whalley

IPC: G06Q30/0601 ,  B63H20/02 ,  B63H20/06 ,  G06Q20/00

CPC classification number: G06Q30/0601 ,  B63H20/02 ,  B63H20/06 ,  G06Q20/00

Abstract: In one embodiment, a unique (or quasi unique) identifier can be received by an application store, or other on-line store, and the store can create a signed receipt that includes data desired from the unique identifier. This signed receipt is then transmitted to a device that is running the application obtained from the on-line store and the device can verify the receipt by deriving the unique (or quasi-unique) identifier from the signed receipt and comparing the derived identifier with the device identifier stored on the device, or the vendor identifier assigned to the application vendor.

公开(公告)号：US12039525B2

公开(公告)日：2024-07-16

申请号：US17443419

申请日：2021-07-26

Applicant: Apple Inc.

Inventor： Karl Anders Carlsson ,  Anton K. Diederich ,  Christopher Sharp ,  Gianpaolo Fasoli ,  Maciej Stachowiak ,  Matthew C. Byington ,  Nicholas J. Shearer ,  Samuel M. Weinig

IPC: G06Q20/38 ,  G06Q20/12 ,  G06Q20/32 ,  G06Q20/40 ,  H04L9/40

CPC classification number: G06Q20/3821 ,  G06Q20/12 ,  G06Q20/3227 ,  G06Q20/3278 ,  G06Q20/40 ,  H04L63/10 ,  G06Q2220/00

Abstract: Systems, methods, and computer-readable media for validating online access to secure device functionality are provided that may use shared secrets between different subsystems and limited use validation data.

公开(公告)号：US11727376B2

公开(公告)日：2023-08-15

申请号：US16417470

申请日：2019-05-20

Applicant: Apple Inc.

Inventor： Augustin J. Farrugia ,  Thomas Dowdy ,  Gianpaolo Fasoli

IPC: G06Q20/12 ,  H04N21/00 ,  G06F21/10 ,  G06F21/62

CPC classification number: G06Q20/1235 ,  G06F21/10 ,  G06F21/6218 ,  H04N21/00 ,  G06Q2220/12

Abstract: A method for distributing content. The method distributes a single media storage structure to a device (e.g., a computer, portable player, etc.). The media storage structure includes first and second pieces of encrypted content. Based on whether the device is allowed to access the first piece of content, the second piece of content, or both, the method provides the device with a set of keys for decrypting the pieces of the content that the device is able to access. The provided set of keys might include one or more keys for decrypting only one of the two encrypted pieces of content. Alternatively, it might include one or more keys for decrypting both encrypted pieces of content. For instance, the selected set of keys might include a first key for decrypting the first encrypted piece and a second key for decrypting the second encrypted piece.

公开(公告)号：US11663309B2

公开(公告)日：2023-05-30

申请号：US17485086

申请日：2021-09-24

Applicant: Apple Inc.

Inventor： Haya Iris Villanueva Gaviola ,  Antonio A. Allen ,  Mayura D. Deshpande ,  Thomas John Miller ,  Policarpo Bonilla Wood, Jr. ,  Ho Cheung Chung ,  Gianpaolo Fasoli ,  Vinay Ganesh ,  Irene M. Graff ,  Martijn Theo Haring ,  Ahmer A. Khan ,  Franck Farian Rakotomalala ,  Gordon Scott ,  Christopher Sharp ,  David W. Silver ,  Ka Yang

IPC: G06F21/00 ,  G06F21/32 ,  G06V40/40 ,  G06V40/50 ,  G06F3/0482 ,  G06F3/048 ,  G06F21/34 ,  G06F21/60

CPC classification number: G06F21/32 ,  G06F3/048 ,  G06F3/0482 ,  G06F21/34 ,  G06F21/604 ,  G06V40/45 ,  G06V40/50

Abstract: The present disclosure generally relates to digital identification credential user interfaces.

公开(公告)号：US20220391482A1

公开(公告)日：2022-12-08

申请号：US17485098

申请日：2021-09-24

Applicant: Apple Inc.

Inventor： Haya Iris VILLANUEVA GAVIOLA ,  Antonio A. ALLEN ,  Mayura D. DESHPANDE ,  Thomas John MILLER ,  Policarpo Bonilla WOOD, JR. ,  Ho Cheung Chung ,  Gianpaolo Fasoli ,  Vinay Ganesh ,  Irene M. Graff ,  Martijn Theo Haring ,  Ahmer A. Khan ,  Franck Farian Rakotomalala ,  Gordon Scott ,  Christopher Sharp ,  David W. Silver ,  Ka Yang

IPC: G06F21/32 ,  G06F3/0482 ,  G06V40/50 ,  G06V40/40

Abstract: The present disclosure generally relates to digital identification credential user interfaces.

公开(公告)号：US11354390B2

公开(公告)日：2022-06-07

申请号：US15701400

申请日：2017-09-11

Applicant: Apple Inc.

Inventor： Charles T. Ahn ,  Libor Sykora ,  Gianpaolo Fasoli

IPC: G06F21/32 ,  G06F21/35 ,  H04W12/06 ,  H04W4/80 ,  H04L9/40

Abstract: Techniques are disclosed relating to biometric authentication. In one embodiment, a computing device includes a controller circuit, a camera, and a secure circuit. The controller circuit is coupled to a button and detects when the button has been pressed. The camera captures a set of biometric data of a user. The secure circuit performs an authentication of the user by confirming that a notification identifying the button being pressed was received from the controller circuit and by comparing the set of biometric data with another set of biometric data for an authorized user of the computing device. In some embodiments, the controller circuit is configured to maintain a timestamp indicative of when the button has been pressed and usable by the secure circuit to confirm that the button is pressed within a threshold time period of the authentication being performed.

公开(公告)号：US20210359842A1

公开(公告)日：2021-11-18

申请号：US15930838

申请日：2020-05-13

Applicant: Apple Inc.

Inventor： Vishnu Pillai Janardhanan Pillai ,  Rantao Chen ,  Gianpaolo Fasoli ,  Frederic Jacobs ,  Rupamay Saha ,  Yannick L. Sierra ,  Dian Wen ,  Ka Yang

IPC: H04L9/08 ,  H04L29/06 ,  H04L9/32 ,  G06Q20/38

Abstract: Embodiments described herein provide cryptographic techniques to enable a recipient of a signed message containing encrypted data to verify that the signer of the message and the encryptor of the encrypted data are the same party, or at the least, have joint possession of a common set of secret cryptographic material. These techniques can be used to harden an online payment system against interception and resigning of encrypted payment information.