公开(公告)号：US20220393867A1

公开(公告)日：2022-12-08

申请号：US17649924

申请日：2022-02-03

Applicant: Apple Inc.

Inventor： Gokul P. THIRUMALAI ,  Alexandre A. AYBES ,  Dmitry V. BELOV ,  Jean-Luc GIRAUD ,  Kalyan C. GOPAVARAPU ,  Sudhakar N. MAMBAKKAM ,  Rebekah H. MERCER ,  Keaton F. MOWERY ,  Steven A. MYERS ,  Munish K. POONIA ,  Nihar SHARMA ,  Assar E. WESTERLUND ,  Frederic JACOBS

IPC: H04L9/08 ,  G06F21/60

Abstract: This Application sets forth techniques for establishing a custodial relationship between a user device and a custodian device for recovering access to a user account and/or to encrypted user data with assistance provided by the custodian device to effect access recovery. A server of a cloud network service provides an anonymous identifier to associate with the custodian device and an account recovery key to store at the custodian device. Identity of an account of the cloud network service associated with the custodian device can be hidden from the server. The user device generates a data recovery key and provides a first portion of the data recovery key to the custodian device and a second portion of the data recovery key to the server. Integrity of the stored account recovery key and portions of the data recovery key are checked regularly by the custodian device and the user device.

公开(公告)号：US20240256105A1

公开(公告)日：2024-08-01

申请号：US18628537

申请日：2024-04-05

Applicant: Apple Inc.

Inventor： Carmen S. YU ,  Dmitry V. BELOV ,  Roberto GARCIA ,  Munish K. POONIA ,  Hannah S. STORY ,  Gokul P. THIRUMALAI ,  Assar E. WESTERLUND

IPC: G06F3/0484 ,  G06F21/31 ,  G06F21/32 ,  G06F21/34 ,  G06F21/84

CPC classification number: G06F3/0484 ,  G06F21/31 ,  G06F21/316 ,  G06F21/32 ,  G06F21/34 ,  G06F21/84 ,  G06F2221/2131

Abstract: The present disclosure generally relates to account recovery. An example method includes, at a computer system in communication with a display generation component and one or more input devices: performing a recovery contact set up process including providing a notification to a contact; after performing the recovery contact set up process, receiving, via the one or more input devices, a request to initiate an account recovery process; in response to the request to initiate the account recovery process and without providing a request to the contact, displaying, via the display generation component, a recovery code interface for receiving a set of recovery credentials; while displaying of the recovery code interface, receiving the set of recovery credentials; in accordance with a determination that the recovery credentials are valid, performing a recovery function; and in accordance with a determination that the recovery credentials are not valid, forgoing performing the recovery function.