Techniques for anonymous rate limiting for services

    公开(公告)号:US12041051B2

    公开(公告)日:2024-07-16

    申请号:US18085430

    申请日:2022-12-20

    Applicant: APPLE INC.

    CPC classification number: H04L63/10 H04L9/3213 H04L9/3247

    Abstract: A service client on a device can generate an access control identifier using a server seeded and client-specific secret. The device can generate a blinded access control identifier (ACI) using a randomness factor as part of a request message for a blinded ACI signature including authentication data. The device can transmit the request message to a verification server and upon verification receive a blinded ACI signature message that can subsequently be unblinded using the randomness factor to obtain the ACI signature. The device may send the ACI and the ACI signature to a verification server and after verifying the signature receive a service token. The device may transmit the service token to a service provider server requesting access to the service. When a rate associated with the service token is below a threshold rate, the device can access the service provided by the service provider service.

    TECHNIQUES FOR ANONYMOUS RATE LIMITING FOR SERVICES

    公开(公告)号:US20230396619A1

    公开(公告)日:2023-12-07

    申请号:US18085430

    申请日:2022-12-20

    Applicant: APPLE INC.

    CPC classification number: H04L63/10 H04L9/3213 H04L9/3247

    Abstract: A service client on a device can generate an access control identifier using a server seeded and client-specific secret. The device can generate a blinded access control identifier (ACI) using a randomness factor as part of a request message for a blinded ACI signature including authentication data. The device can transmit the request message to a verification server and upon verification receive a blinded ACI signature message that can subsequently be unblinded using the randomness factor to obtain the ACI signature. The device may send the ACI and the ACI signature to a verification server and after verifying the signature receive a service token. The device may transmit the service token to a service provider server requesting access to the service. When a rate associated with the service token is below a threshold rate, the device can access the service provided by the service provider service.

    Health status monitoring for services provided by computing devices

    公开(公告)号:US10938696B2

    公开(公告)日:2021-03-02

    申请号:US15962885

    申请日:2018-04-25

    Applicant: Apple Inc.

    Abstract: This application sets forth various techniques for monitoring a status of a service. According to some embodiments, a DNS server can implement a health check engine that monitors the status of the service in order to implement round-robin DNS among a plurality of availability zones. Each service instance for the service can include a monitoring agent configured to (1) monitor the status of the service instance, and (2) respond to health check messages received from the health check engine. The monitoring agent can also be configured to (1) collect statistics associated with one or more service dependencies of the service instance during a tracking window, (2) calculate at least one ratio based on the statistics collected during the tracking window, and (3) generate the status of the service instance by comparing the at least one ratio to a threshold value.

Patent Agency Ranking