公开(公告)号：US20160359837A1

公开(公告)日：2016-12-08

申请号：US14872034

申请日：2015-09-30

Applicant: Apple Inc.

Inventor： Ivan Krstic ,  James Wilson ,  Eric Daniel Friedman ,  Selvarajan Subramaniam ,  Patrice O. Gautier ,  John Patrick Gates ,  Ramarathnam Santhanagopal ,  Prabhakaran Vaidyanathaswami ,  Sudhakar Mambakkam ,  Raghunandan Pai ,  Karthik Narayanan

IPC: H04L29/06 ,  G06F12/14

CPC classification number: H04L63/102 ,  G06F12/1408 ,  G06F21/42 ,  G06F21/45 ,  G06F2212/1052 ,  G06F2221/2131 ,  H04L63/0807 ,  H04L63/083 ,  H04L63/0861

Abstract: Some embodiments of the invention provide a program for recovering access to an account. The program receives an access recovery parameter (ARP) after providing a first credential to log into an account and providing a notification of a second credential necessary for accessing another resource. The program then receives a request to modify the first credential and receives the second credential. Next, after authenticating the second credential, the program uses the ARP to modify the first credential without providing the first credential.

Abstract translation: 本发明的一些实施例提供了一种用于恢复对帐户的访问的程序。 该程序在提供第一个证书以登录帐户并提供访问另一个资源所必需的第二个凭证的通知之后接收访问恢复参数（ARP）。 该程序然后接收修改第一个证书并接收第二个凭证的请求。 接下来，在验证第二凭证之后，程序使用ARP来修改第一凭证而不提供第一凭证。

公开(公告)号：US20140230051A1

公开(公告)日：2014-08-14

申请号：US13763553

申请日：2013-02-08

Applicant: APPLE INC.

Inventor： Saravanan Vallinayagam ,  Gunaranjan Chandraraju ,  Selvarajan Subramaniam ,  Lon S. Hardeman ,  Vinamra Agarwal ,  Hai-Tao Li ,  Umesh Batra ,  Prabhakaran Vaidyanathaswami

IPC: H04L29/06

CPC classification number: H04L63/1416

Abstract: Systems, methods and computer program products for identifying and remediating in real-time (or near real-time) fraudulent activities associated with identity management systems are disclosed. An event (e.g., client request to logon to an account) is received during a time interval. An abnormal pattern in one or more characteristics of the event is determined. The event is associated with a client identity. One or more reputation scores for the client identity are determined based on event history data associated with the client identity. One or more state objects for one or more client identifier attributes are updated with the reputation scores. One or more remedial actions are implemented against the client request using the one or more updated state objects.

Abstract translation: 公开了用于识别和修复与身份管理系统相关的实时（或近实时）欺诈活动的系统，方法和计算机程序产品。 在一段时间间隔内收到事件（例如，登录到帐户的客户端请求）。 确定事件的一个或多个特征中的异常模式。 该事件与客户端身份相关联。 基于与客户端身份相关联的事件历史数据来确定客户端身份的一个或多个信誉分数。 一个或多个客户端标识符属性的一个或多个状态对象用信誉分数更新。 使用一个或多个更新的状态对象针对客户端请求实现一个或多个补救动作。

公开(公告)号：US10110583B1

公开(公告)日：2018-10-23

申请号：US15230446

申请日：2016-08-07

Applicant: Apple Inc.

Inventor： Ivan Krstic ,  James Wilson ,  Eric Daniel Friedman ,  Selvarajan Subramaniam ,  Patrice O. Gautier ,  John Patrick Gates ,  Ramarathnam Santhanagopal ,  Prabhakaran Vaidyanathaswami ,  Sudhakar Mambakkam ,  Raghunandan Pai ,  Karthik Narayanan

IPC: G06F21/00 ,  H04L29/06 ,  G06F17/00 ,  G06F7/04 ,  G06F15/16 ,  G06F17/30

Abstract: Some embodiments provide an account-access recovery method that receives a request to recover access to an account. The method also assesses recent usage of a device that is associated with the account. The method also, based on the assessment, selects a recovery process from a group of different recovery processes for regaining access to the account. The method also provides the selected recovery process to a party that is requesting the access recovery.

公开(公告)号：US10063557B2

公开(公告)日：2018-08-28

申请号：US14872034

申请日：2015-09-30

Applicant: Apple Inc.

Inventor： Ivan Krstic ,  James Wilson ,  Eric Daniel Friedman ,  Selvarajan Subramaniam ,  Patrice O. Gautier ,  John Patrick Gates ,  Ramarathnam Santhanagopal ,  Prabhakaran Vaidyanathaswami ,  Sudhakar Mambakkam ,  Raghunandan Pai ,  Karthik Narayanan

IPC: G06F11/30 ,  H04L29/06 ,  G06F12/14 ,  G06F21/42 ,  G06F21/45

CPC classification number: H04L63/102 ,  G06F12/1408 ,  G06F21/42 ,  G06F21/45 ,  G06F2212/1052 ,  G06F2221/2131 ,  H04L63/0807 ,  H04L63/083 ,  H04L63/0861

Abstract: Some embodiments of the invention provide a program for recovering access to an account. The program receives an access recovery parameter (ARP) after providing a first credential to log into an account and providing a notification of a second credential necessary for accessing another resource. The program then receives a request to modify the first credential and receives the second credential. Next, after authenticating the second credential, the program uses the ARP to modify the first credential without providing the first credential.

公开(公告)号：US11522866B2

公开(公告)日：2022-12-06

申请号：US17308027

申请日：2021-05-04

Applicant: Apple Inc.

Inventor： Ivan Krstic ,  James Wilson ,  Eric Daniel Friedman ,  Selvarajan Subramaniam ,  Patrice O. Gautier ,  John Patrick Gates ,  Ramarathnam Santhanagopal ,  Prabhakaran Vaidyanathaswami ,  Sudhakar Mambakkam ,  Raghunandan Pai ,  Karthik Narayanan

IPC: H04L29/06 ,  H04L9/40 ,  G06F12/14 ,  G06F21/42 ,  G06F21/45

Abstract: Some embodiments of the invention provide a program for recovering access to a service associated with an account. The program provides a login credential to log into the account to receive the associated service. Next, the program receives an access continuation parameter (ACP) after logging into the account. The program then accesses the service and receives a rejection of a subsequent access to the service. The program then provides the ACP in lieu of the login credential to continue to receive the service.

公开(公告)号：US10999287B2

公开(公告)日：2021-05-04

申请号：US16701005

申请日：2019-12-02

Applicant: Apple Inc.

Inventor： Ivan Krstic ,  James Wilson ,  Eric Daniel Friedman ,  Selvarajan Subramaniam ,  Patrice O. Gautier ,  John Patrick Gates ,  Ramarathnam Santhanagopal ,  Prabhakaran Vaidyanathaswami ,  Sudhakar Mambakkam ,  Raghunandan Pai ,  Karthik Narayanan

IPC: H04L29/06 ,  G06F12/14 ,  G06F21/42 ,  G06F21/45

Abstract: Some embodiments of the invention provide a program for recovering access to a service associated with an account. The program provides a login credential to log into the account to receive the associated service. Next, the program receives an access continuation parameter (ACP) after logging into the account. The program then accesses the service and receives a rejection of a subsequent access to the service. The program then provides the ACP in lieu of the login credential to continue to receive the service.

公开(公告)号：US10735396B2

公开(公告)日：2020-08-04

申请号：US16167472

申请日：2018-10-22

Applicant: Apple Inc.

Inventor： Ivan Krstic ,  James Wilson ,  Eric Daniel Friedman ,  Selvarajan Subramaniam ,  Patrice O. Gautier ,  John Patrick Gates ,  Ramarathnam Santhanagopal ,  Prabhakaran Vaidyanathaswami ,  Sudhakar Mambakkam ,  Raghunandan Pai ,  Karthik Narayanan

IPC: G06F21/00 ,  H04L29/06 ,  G06F21/31

Abstract: Some embodiments provide an account-access recovery method that receives a request to recover access to an account. The method also assesses recent usage of a device that is associated with the account. The method also, based on the assessment, selects a recovery process from a group of different recovery processes for regaining access to the account. The method also provides the selected recovery process to a party that is requesting the access recovery.

公开(公告)号：US20190158478A1

公开(公告)日：2019-05-23

申请号：US16167472

申请日：2018-10-22

Applicant: Apple Inc.

Inventor： Ivan Krstic ,  James Wilson ,  Eric Daniel Friedman ,  Selvarajan Subramaniam ,  Patrice O. Gautier ,  John Patrick Gates ,  Ramarathnam Santhanagopal ,  Prabhakaran Vaidyanathaswami ,  Sudhakar Mambakkam ,  Raghunandan Pai ,  Karthik Narayanan

IPC: H04L29/06

CPC classification number: H04L63/08 ,  G06F21/31 ,  G06F2221/2131 ,  H04L63/105 ,  H04L63/12

Abstract: Some embodiments provide an account-access recovery method that receives a request to recover access to an account. The method also assesses recent usage of a device that is associated with the account. The method also, based on the assessment, selects a recovery process from a group of different recovery processes for regaining access to the account. The method also provides the selected recovery process to a party that is requesting the access recovery.

公开(公告)号：US20170201550A1

公开(公告)日：2017-07-13

申请号：US15274880

申请日：2016-09-23

Applicant: Apple Inc.

Inventor： Wade Benson ,  David M. O'Rourke ,  Michael D. Santos ,  Gopi K. Rangaswamy ,  Selvarajan Subramaniam ,  Timothy P. Hannon ,  Pierre-Olivier Martel ,  Raghu Pai ,  Andrew R. Whalley ,  Michael Brouwer

IPC: H04L29/06

CPC classification number: H04L63/0815 ,  G06F21/41

Abstract: Techniques are disclosed relating to accessing credential information on multiple devices. In one embodiment, a computer system is disclosed that includes one or processors and memory having program instructions stored therein that are executable by the one or more processors to cause the computer system to perform operations. The operations include storing registration information identifying a plurality of devices as being registered to an organization and receiving, over a network from a first device, a request for credential information of a first of a plurality of users associated with the organization. The operations further include authenticating the first request, including verifying that the first device is being used by the first user and determining, based on the registration information, whether the first device is one of the plurality of devices. The operations include granting or denying the first request for the credential information based on the authenticating.

公开(公告)号：US20160359863A1

公开(公告)日：2016-12-08

申请号：US14872027

申请日：2015-09-30

Applicant: Apple Inc.

Inventor： Ivan Krstic ,  James Wilson ,  Eric Daniel Friedman ,  Selvarajan Subramaniam ,  Patrice O. Gautier ,  John Patrick Gates ,  Ramarathnam Santhanagopal ,  Prabhakaran Vaidyanathaswami ,  Sudhakar Mambakkam ,  Raghunandan Pai ,  Karthik Narayanan

IPC: H04L29/06 ,  G06F12/14

Abstract: Some embodiments of the invention provide a program for recovering access to a service associated with an account. The program provides a login credential to log into the account to receive the associated service. Next, the program receives an access continuation parameter (ACP) after logging into the account. The program then accesses the service and receives a rejection of a subsequent access to the service. The program then provides the ACP in lieu of the login credential to continue to receive the service.

Abstract translation: 本发明的一些实施例提供了用于恢复对与帐户相关联的服务的访问的程序。 该程序提供登录凭据以登录帐户以接收相关联的服务。 接下来，程序在登录帐户后接收访问连续参数（ACP）。 该程序然后访问该服务并且接收对该服务的后续访问的拒绝。 该程序然后提供ACP代替登录凭证以继续接收该服务。