公开(公告)号：US20180089434A1

公开(公告)日：2018-03-29

申请号：US15712097

申请日：2017-09-21

Applicant: Apple Inc.

Inventor： Hervé Sibert ,  Matthias Lerch ,  Oren M. Elrad ,  Peng Liu ,  Rahul Narayan Singh

IPC: G06F21/57 ,  H04L29/06

CPC classification number: G06F21/57 ,  H04L63/0853 ,  H04L63/107 ,  H04W12/08

Abstract: Systems, methods, and computer-readable media for preserving trust data during operating system updates of a secure element of an electronic device are provided.

公开(公告)号：US12063513B2

公开(公告)日：2024-08-13

申请号：US16680273

申请日：2019-11-11

Applicant: Apple Inc.

Inventor： Matthew C. Byington ,  Christopher Sharp ,  Jeff W. Lin ,  Rahul Narayan Singh ,  Sourabh Dugar ,  Yousuf H. Vaid

IPC: G06Q20/00 ,  G06F8/30 ,  G06F8/60 ,  G06Q20/32 ,  H04L9/08 ,  H04L9/40 ,  H04W12/30

CPC classification number: H04W12/35 ,  G06F8/30 ,  G06F8/60 ,  G06Q20/3226 ,  H04L9/0822 ,  H04L9/0825 ,  H04L9/083 ,  H04L63/0428 ,  H04L9/0869 ,  H04L2209/56

Abstract: A secure trusted service manager provider may include at least one processor configured to provide, to an electronic device, a first script to provision an applet instance corresponding to a third party server, the script including a public key corresponding to the third party server. The at least one processor may be configured to receive, from the electronic device, an encrypted symmetric key and provide the encrypted symmetric key to the third party server, the symmetric key being encrypted with the public key. The at least one processor may be configured to receive, from the third party server, an encrypted data element corresponding to a transaction to be performed by the applet instance, the encrypted data element being encrypted with the symmetric key, generate a second script that includes the encrypted data element and provide, to the electronic device, the second script that includes the encrypted data element.

公开(公告)号：US20250112778A1

公开(公告)日：2025-04-03

申请号：US18374414

申请日：2023-09-28

Applicant: Apple Inc.

Inventor： Frank Andries van den Berg ,  Rahul Narayan Singh ,  Neilson Proulx-Marcil ,  Jean-Francois Riendeau ,  Mamta Devi

IPC: H04L9/32 ,  G06F21/72 ,  H04L9/08

Abstract: Techniques for using a virtual terminal on a multipurpose device for PIN entry to authorize a data transfer are described herein. These techniques provide the secure receipt of each PIN digit by the device and encryption of the PIN multipurpose device and while the PIN entry data is transferred, while still providing the information to a server for further processing.

公开(公告)号：US20240403102A1

公开(公告)日：2024-12-05

申请号：US18328698

申请日：2023-06-02

Applicant: Apple Inc.

Inventor： Rahul Narayan Singh ,  Luc F. Dolcino ,  Vincent Pozzuoli ,  Catalin Giurca ,  Robin Burel ,  Sylvain Pilon ,  Mamta Devi

IPC: G06F9/455

Abstract: The present application relates to devices and components including apparatus, systems, and methods to manage kernels within a secure element for performance of a data transfer.

公开(公告)号：US12231583B2

公开(公告)日：2025-02-18

申请号：US17658521

申请日：2022-04-08

Applicant: APPLE INC.

Inventor： Adrien Surwumwe ,  Robin Burel ,  Rahul Narayan Singh

IPC: H04L9/32 ,  H04L9/14

Abstract: Techniques to privacy proof secure element generated certificates anonymous secure element attestations are described herein. An attestation certificate request can be generated that is signed using the static key of the secure element. The attestation certificate request can then be sent to an attestation server, which can verify the attestation certificate request and return an anonymized attestation certificate. The device containing the secure element can transmit the certificate to third parties to verify attestation data signed by the secure element using the certificate and provide assurance to the third parties that the data being attested to has been generated inside a secure element associated with a specific manufacturer.

公开(公告)号：US20220337431A1

公开(公告)日：2022-10-20

申请号：US17658521

申请日：2022-04-08

Applicant: APPLE INC.

Inventor： Adrien Surwumwe ,  Robin Burel ,  Rahul Narayan Singh

IPC: H04L9/32 ,  H04L9/14

Abstract: Techniques to privacy proof secure element generated certificates anonymous secure element attestations are described herein. An attestation certificate request can be generated that is signed using the static key of the secure element. The attestation certificate request can then be sent to an attestation server, which can verify the attestation certificate request and return an anonymized attestation certificate. The device containing the secure element can transmit the certificate to third parties to verify attestation data signed by the secure element using the certificate and provide assurance to the third parties that the data being attested to has been generated inside a secure element associated with a specific manufacturer.

公开(公告)号：US20250111031A1

公开(公告)日：2025-04-03

申请号：US18374482

申请日：2023-09-28

Applicant: Apple Inc.

Inventor： Frank Andries van den Berg ,  Rahul Narayan Singh ,  Robin Burel

IPC: G06F21/44

Abstract: Techniques for using an authorizer in a virtual terminal on a multipurpose device to authorize operations of a cryptographic applet in a secure element associated with the multipurpose device are described herein. These techniques include receiving an authorization token and setting authorization criteria for the operation of the cryptographic applet based on the authorization token.

公开(公告)号：US10936719B2

公开(公告)日：2021-03-02

申请号：US15712097

申请日：2017-09-21

Applicant: Apple Inc.

Inventor： Hervé Sibert ,  Matthias Lerch ,  Oren M. Elrad ,  Peng Liu ,  Rahul Narayan Singh

IPC: G06F9/44 ,  G06F21/57 ,  H04L29/06 ,  H04W12/08

Abstract: Systems, methods, and computer-readable media for preserving trust data during operating system updates of a secure element of an electronic device are provide. An update package is received to update an existing secure element operating system to a new secure element operating system by exporting trust data from the existing secure element operating system, after the exporting, uninstalling the existing secure element operating system, migrating the exported trust data using a migration operating system when a data format version of the existing secure element operating system is different than a data format version of the new secure element operating system, installing the new secure element operating system, and importing the migrated trust data into the installed new secure element operating system.