公开(公告)号：US11128478B2

公开(公告)日：2021-09-21

申请号：US16490418

申请日：2018-03-01

Applicant: Apple Inc.

Inventor： Florian Galdo ,  Arun G. Mathias ,  Matthias Lerch ,  Najeeb M. Abdulrahiman ,  Onur E. Tackin ,  Yannick Sierra

IPC: H04W12/50 ,  H04L9/32 ,  H04L9/08 ,  H04L29/06

Abstract: Techniques are disclosed relating to electronic security, e.g., for authenticating a mobile electronic device to allow access to system functionality (e.g., physical access to the system, starting an engine/motor, etc.). In some embodiments, a system and mobile device exchange public keys of public key pairs during a pairing process. In some embodiments, an asymmetric transaction process includes generating a shared secret using a key derivation function over a key established using a secure key exchange (e.g., elliptic curve Diffie-Hellman), and verifying a signature of the system before transmitting any information identifying the mobile device. In various embodiments, disclosed techniques may increase transaction security and privacy of identifying information.

公开(公告)号：US20200052905A1

公开(公告)日：2020-02-13

申请号：US16490418

申请日：2018-03-01

Applicant: Apple Inc.

Inventor： Arun G. Mathias ,  Florian Galdo ,  Matthias Lerch ,  Najeeb M. Abdulrahiman ,  Onur E. Tackin ,  Yannick Sierra

IPC: H04L9/32 ,  H04L29/06 ,  H04L9/08

Abstract: Techniques are disclosed relating to electronic security, e.g., for authenticating a mobile electronic device to allow access to system functionality (e.g., physical access to the system, starting an engine/motor, etc.). In some embodiments, a system and mobile device exchange public keys of public key pairs during a pairing process. In some embodiments, an asymmetric transaction process includes generating a shared secret using a key derivation function over a key established using a secure key exchange (e.g., elliptic curve Diffie-Hellman), and verifying a signature of the system before transmitting any information identifying the mobile device. In various embodiments, disclosed techniques may increase transaction security and privacy of identifying information.

公开(公告)号：US09563765B2

公开(公告)日：2017-02-07

申请号：US14632917

申请日：2015-02-26

Applicant: Apple Inc.

Inventor： Samuel D. Post ,  Onur E. Tackin ,  Yannick L. Sierra ,  Peng Liu

IPC: G06F7/04 ,  G06F12/14 ,  G06F17/30 ,  G11C7/00 ,  G06F21/44 ,  H04W40/06 ,  G06F9/44 ,  G06F21/57

CPC classification number: G06F21/44 ,  G06F9/4401 ,  G06F21/57 ,  G06F21/572 ,  G06F21/575 ,  H04W40/06

Abstract: In order to simplify and reduce the cost of an electronic device, the size of a first non-volatile memory associated with an integrated circuit is significantly reduced. Instead of using the first non-volatile memory, a second non-volatile memory associated with a processor in the electronic device is used to store an embedded operating system of the integrated circuit, as well as associated data and a configuration of the integrated circuit. To reduce the security risks associated with using this remote second non-volatile memory, the first non-volatile memory may store authorization information and anti-replay information. During a secure boot of the integrated circuit, the authorization information is used to verify that the embedded operating system, the data and the configuration are authorized. In addition, the anti-replay information is used to determine that the embedded operating system, the data and the configuration are different than previously received versions of these items.

Abstract translation: 为了简化和降低电子设备的成本，与集成电路相关联的第一非易失性存储器的尺寸显着降低。 代替使用第一非易失性存储器，与电子设备中的处理器相关联的第二非易失性存储器用于存储集成电路的嵌入式操作系统，以及相关联的数据和集成电路的配置。 为了减少与使用该远程第二非易失性存储器相关联的安全风险，第一非易失性存储器可以存储授权信息和反重放信息。 在集成电路的安全启动期间，授权信息用于验证嵌入式操作系统，数据和配置是否被授权。 此外，反重放信息用于确定嵌入式操作系统，数据和配置与先前接收到的这些项目的版本不同。

公开(公告)号：US20150092585A1

公开(公告)日：2015-04-02

申请号：US14500059

申请日：2014-09-29

Applicant: Apple Inc.

Inventor： Tiange Shao ,  Onur E. Tackin ,  Oren M. Elrad

IPC: H04W28/02 ,  H04L12/26 ,  H04L12/853 ,  H04W24/08

CPC classification number: H04L47/2416 ,  H04L43/0835 ,  H04L43/087 ,  H04L47/283 ,  H04L47/564 ,  H04L65/608 ,  H04L65/80 ,  H04W4/80 ,  H04W28/0236

Abstract: This disclosure relates to adjusting a jitter buffer at a wireless device based on inter-arrival-jitter (IAJ). In one embodiment, an IAJ value may be calculated for each of multiple received packets. An IAJ distribution may be generated for the received packets. A target packet loss rate may be determined. A quality of service value for IAJ distributions corresponding to the target packet loss rate may be determined. A de-jitter delay value may be calculated based on the IAJ distribution and the quality of service value for IAJ distributions. The de-jitter delay value may be used to adjust the jitter buffer at the wireless device.

Abstract translation: 本公开涉及基于到达间抖动（IAJ）来调整无线设备处的抖动缓冲器。 在一个实施例中，可以为多个接收的分组中的每一个计算IAJ值。 可以为接收到的分组生成IAJ分发。 可以确定目标分组丢失率。 可以确定与目标丢包率相对应的IAJ分发的服务质量值。 可以基于IAJ分布和IAJ分布的服务质量值来计算去抖动延迟值。 去抖动延迟值可用于调整无线设备处的抖动缓冲区。

公开(公告)号：US11790365B2

公开(公告)日：2023-10-17

申请号：US17384488

申请日：2021-07-23

Applicant: Apple Inc.

Inventor： Herve Sibert ,  Oren M. Elrad ,  Jerrold V. Hauck ,  Onur E. Tackin ,  Zachary A. Rosen ,  Matthias Lerch

IPC: G06Q20/40 ,  G06Q20/32 ,  G06Q20/20 ,  G06Q20/38 ,  G06F21/32 ,  G06F21/31 ,  H04W12/065 ,  H04W12/06 ,  H04L9/32

CPC classification number: G06Q20/40145 ,  G06F21/31 ,  G06F21/32 ,  G06Q20/204 ,  G06Q20/3278 ,  G06Q20/382 ,  G06Q20/4014 ,  H04L9/3231 ,  H04W12/065 ,  H04W12/068

Abstract: Techniques are disclosed relating to secure data storage. In various embodiments, a mobile device includes a wireless interface, a secure element, and a secure circuit. The secure element is configured to store confidential information associated with a plurality of users and to receive a request to communicate the confidential information associated with a particular one of the plurality of users. The secure element is further configured to communicate, via the wireless interface, the confidential information associated with the particular user in response to an authentication of the particular user. The secure circuit is configured to perform the authentication of the particular user. In some embodiments, the mobile device also includes a biosensor configured to collect biometric information from a user of the mobile device. In such an embodiment, the secure circuit is configured to store biometric information collected from the plurality of users by the biosensor.

公开(公告)号：US20180225662A1

公开(公告)日：2018-08-09

申请号：US15941705

申请日：2018-03-30

Applicant: Apple Inc.

Inventor： Herve Sibert ,  Onur E. Tackin ,  Matthias Lerch ,  Ahmer A. Khan ,  Franck Rakotomalala ,  Oren M. Elrad

IPC: G06Q20/38 ,  G06Q20/40 ,  G06Q20/32 ,  H04L9/32 ,  H04L29/06

CPC classification number: G06Q20/3829 ,  G06Q20/204 ,  G06Q20/3227 ,  G06Q20/3278 ,  G06Q20/3825 ,  G06Q20/385 ,  G06Q20/4014 ,  G06Q20/40145 ,  G06Q20/405 ,  G06Q2220/00 ,  H04L9/0894 ,  H04L9/3231 ,  H04L9/3247 ,  H04L9/3263 ,  H04L63/083 ,  H04L63/0861 ,  H04L2209/805 ,  H04L2463/082 ,  H04W12/06

Abstract: Techniques are disclosed relating to authenticate a user with a mobile device. In one embodiment, a computing device includes a short-range radio and a secure element. The computing device reads, via the short-range radio, a portion of credential information stored in a circuit embedded in an identification document issued by an authority to a user for establishing an identity of the user. The computing device issues, to the authority, a request to store the credential information, the request specifying the portion of the credential information. In response to an approval of the request, the computing device stores the credential information in the secure element, the credential information being usable to establish the identity of the user. In some embodiments, the identification document is a passport that includes a radio-frequency identification (RFID) circuit storing the credential information, and the request specifies a passport number read from the RFID circuit.

公开(公告)号：US09882818B2

公开(公告)日：2018-01-30

申请号：US14500059

申请日：2014-09-29

Applicant: Apple Inc.

Inventor： Tiange Shao ,  Onur E. Tackin ,  Oren M. Elrad

IPC: H04L1/00 ,  H04L12/26 ,  H04L12/853 ,  H04W28/02 ,  H04L12/875 ,  H04L12/841 ,  H04L29/06 ,  H04W4/00

CPC classification number: H04L47/2416 ,  H04L43/0835 ,  H04L43/087 ,  H04L47/283 ,  H04L47/564 ,  H04L65/608 ,  H04L65/80 ,  H04W4/80 ,  H04W28/0236

Abstract: This disclosure relates to adjusting a jitter buffer at a wireless device based on inter-arrival-jitter (IAJ). In one embodiment, an IAJ value may be calculated for each of multiple received packets. An IAJ distribution may be generated for the received packets. A target packet loss rate may be determined. A quality of service value for IAJ distributions corresponding to the target packet loss rate may be determined. A de-jitter delay value may be calculated based on the IAJ distribution and the quality of service value for IAJ distributions. The de-jitter delay value may be used to adjust the jitter buffer at the wireless device.

公开(公告)号：US20170213211A1

公开(公告)日：2017-07-27

申请号：US15415467

申请日：2017-01-25

Applicant: Apple Inc.

Inventor： Herve Sibert ,  Onur E. Tackin ,  Matthias Lerch ,  Ahmer A. Khan ,  Franck Rakotomalala ,  Oren M. Elrad

IPC: G06Q20/38 ,  G06Q20/40 ,  G06Q20/32 ,  H04L9/32 ,  H04L29/06

CPC classification number: G06Q20/3829 ,  G06Q20/204 ,  G06Q20/3227 ,  G06Q20/3278 ,  G06Q20/3825 ,  G06Q20/385 ,  G06Q20/4014 ,  G06Q20/40145 ,  G06Q20/405 ,  G06Q2220/00 ,  H04L9/0894 ,  H04L9/3231 ,  H04L9/3247 ,  H04L9/3263 ,  H04L63/083 ,  H04L63/0861 ,  H04L2209/805 ,  H04L2463/082 ,  H04W12/06

Abstract: Techniques are disclosed relating to authenticate a user with a mobile device. In one embodiment, a computing device includes a short-range radio and a secure element. The computing device reads, via the short-range radio, a portion of credential information stored in a circuit embedded in an identification document issued by an authority to a user for establishing an identity of the user. The computing device issues, to the authority, a request to store the credential information, the request specifying the portion of the credential information. In response to an approval of the request, the computing device stores the credential information in the secure element, the credential information being usable to establish the identity of the user. In some embodiments, the identification document is a passport that includes a radio-frequency identification (RFID) circuit storing the credential information, and the request specifies a passport number read from the RFID circuit.

公开(公告)号：US20160232343A1

公开(公告)日：2016-08-11

申请号：US14632917

申请日：2015-02-26

Applicant: APPLE INC.

Inventor： Samuel D. Post ,  Onur E. Tackin ,  Yannick L. Sierra ,  Peng Liu

IPC: G06F21/44 ,  G06F9/44 ,  H04W40/06

CPC classification number: G06F21/44 ,  G06F9/4401 ,  G06F21/57 ,  G06F21/572 ,  G06F21/575 ,  H04W40/06

Abstract: In order to simplify and reduce the cost of an electronic device, the size of a first non-volatile memory associated with an integrated circuit is significantly reduced. Instead of using the first non-volatile memory, a second non-volatile memory associated with a processor in the electronic device is used to store an embedded operating system of the integrated circuit, as well as associated data and a configuration of the integrated circuit. To reduce the security risks associated with using this remote second non-volatile memory, the first non-volatile memory may store authorization information and anti-replay information. During a secure boot of the integrated circuit, the authorization information is used to verify that the embedded operating system, the data and the configuration are authorized. In addition, the anti-replay information is used to determine that the embedded operating system, the data and the configuration are different than previously received versions of these items.

Abstract translation: 为了简化和降低电子设备的成本，与集成电路相关联的第一非易失性存储器的尺寸显着降低。 代替使用第一非易失性存储器，与电子设备中的处理器相关联的第二非易失性存储器用于存储集成电路的嵌入式操作系统，以及相关联的数据和集成电路的配置。 为了减少与使用该远程第二非易失性存储器相关联的安全风险，第一非易失性存储器可以存储授权信息和反重放信息。 在集成电路的安全启动期间，授权信息用于验证嵌入式操作系统，数据和配置是否被授权。 此外，反重放信息用于确定嵌入式操作系统，数据和配置与先前接收到的这些项目的版本不同。

公开(公告)号：US20140362830A1

公开(公告)日：2014-12-11

申请号：US14293494

申请日：2014-06-02

Applicant: Apple Inc.

Inventor： Luciano M. Verger ,  Madhusudan Chaudhary ,  Onur E. Tackin ,  Oren M. Elrad ,  Srinivasan Vasudevan ,  Thanigaivelu Elangovan ,  Tiange Shao

IPC: H04W56/00 ,  H04W36/00

CPC classification number: H04W56/003 ,  H04J3/0632 ,  H04L1/203 ,  H04L1/205 ,  H04L29/06027 ,  H04L65/80 ,  H04L67/322 ,  H04W36/0022 ,  H04W36/0072 ,  H04W36/0088 ,  H04W36/08 ,  H04W36/14

Abstract: A jitter buffer in a Voice over LTE receiver may be influenced by radio level feedback (RLF) from both local and remote endpoints to preemptively adjust the jitter buffer delay in anticipation of predicted future losses that have a high probability of occurring. The radio events of the RLF and the scenarios that trigger the preemptive adjustments may be identified, and their use may be expressed in terms of mathematical formulas. In prior art designs, the instantaneous jitter is derived from a weighted history of the media stream, and consequently only packets that have already arrived are used to compute the instantaneous jitter to adjust the length of the buffer. By providing and using RLF from both local and remote endpoints, the anticipated delay—for packets that have not yet arrived—may be used to preemptively adjust the buffer, thereby minimizing packet loss without introducing unnecessary delay.

Abstract translation: 在LTE语音接收机中的抖动缓冲器可能受来自本地和远端端点的无线电电平反馈（RLF）的影响，以预先考虑具有高概率发生的预测未来损耗的抖动缓冲器延迟。 可以识别RLF的无线电事件和触发抢先调整的场景，并且可以用数学公式来表示它们的使用。 在现有技术的设计中，瞬时抖动是从媒体流的加权历史导出的，因此只有已经到达的分组被用于计算瞬时抖动以调整缓冲器的长度。 通过从本地端点和远端端点提供和使用RLF，对于尚未到达的数据包，预期的延迟可能被用于抢先调整缓冲区，从而最大限度地减少数据包丢失而不引入不必要的延迟。