利索-全球专利检索

  1. 登录
  2. 注册

搜索结果

40 条记录 (耗时 0.032 秒)

    Generating transaction identifiers
    1.
    发明授权
    Generating transaction identifiers 有权

    公开(公告)号:US12086769B2

    公开(公告)日:2024-09-10

    申请号:US17341711

    申请日:2021-06-08

    申请人: Apple Inc.

    发明人: George R. Dicker Christopher B. Sharp Ahmer A. Khan Yousuf H. Vaid Glen W. Steele Christopher D. Adams David T. Haggerty

    IPC分类号: G06Q20/38 G06Q20/04 G06Q20/32

    CPC分类号: G06Q20/047 G06Q20/322 G06Q20/385

    摘要: To facilitate conducting a financial transaction via wireless communication between an electronic device and another electronic device, the electronic device determines a unique transaction identifier for the financial transaction based on financial-account information communicated to the other electronic device. The financial-account information specifies a financial account that is used to pay for the financial transaction. Moreover, the unique transaction identifier may be capable of being independently computed by one or more other entities associated with the financial transaction (such as a counterparty in the financial transaction or a payment network that processes payment for the financial transaction) based on the financial-account information communicated by the portable electronic device. The electronic device may also associate receipt information, which is subsequently received from a third party (such as the payment network), with the financial transaction by comparing the determined unique transaction identifier to the computed unique transaction identifier.

    Managing secure transactions between electronic devices and service providers
    2.
    发明授权
    Managing secure transactions between electronic devices and service providers 有权

    公开(公告)号:US11443274B2

    公开(公告)日:2022-09-13

    申请号:US15620305

    申请日:2017-06-12

    申请人: Apple Inc.

    发明人: Matthew C. Byington Christopher Sharp Yousuf H. Vaid

    IPC分类号: G06Q10/08 G06Q20/32 G06Q20/38 H04L9/08

    摘要: Systems, methods, and computer-readable media for managing secure transactions between electronic devices and service providers. In one embodiment, an administration entity system may receive device order data from an electronic device, wherein the received device order data is indicative of an order for an item of value of a service provider system to be stored on the electronic device, transmit administration order data to the service provider system based on the received device order data, wherein the administration order data is indicative of the order for the item of value, receive service provider fulfillment data from the service provider system based on the transmitted administration order data, wherein the service provider fulfillment data includes the item of value, and transmit administration fulfillment data to the electronic device based on the received service provider fulfillment data, wherein the administration fulfillment data includes the item of value.

    System and Method for Policy Control Functions Management Mechanism
    3.
    发明申请
    System and Method for Policy Control Functions Management Mechanism 审中-公开

    公开(公告)号:US20170374547A1

    公开(公告)日:2017-12-28

    申请号:US15698950

    申请日:2017-09-08

    申请人: APPLE INC.

    发明人: Mehdi ZIAT Christopher Sharp Kevin P. MCLAUGHLIN Li LI Jerrold V. Hauck Yousuf H. Vaid

    IPC分类号: H04W8/22 G06F9/50 G06F9/445

    CPC分类号: H04W8/22 G06F9/44505 G06F9/5011

    摘要: Systems and methods for validating and applying modifications to a policy control function (PCF) of a station. The methods include generating a PCF package including a modification to a POE, and determining whether the PCF package is to be transmitted to the station by a first or second entity. The methods further include when the PCF package is to be transmitted by the first entity, including a first signature of the first entity in a deliverer field of the PCF package, and when the PCF package is to be transmitted by the second entity, including the first signature in an owner field and a second signature of the second entity in the deliverer field. The methods further include receiving the PCF package from the first or second entity, determining whether the PCF package is valid, and applying the modification to the PCF when it is determined the PCF package is valid.

    Policy-based techniques for managing access control
    5.
    发明授权
    Policy-based techniques for managing access control 有权
    用于管理访问控制的基于策略的技术

    公开(公告)号:US09098714B2

    公开(公告)日:2015-08-04

    申请号:US14085951

    申请日:2013-11-21

    申请人: Apple Inc.

    发明人: Christopher B. Sharp Yousuf H. Vaid Li Li Jerrold V. Hauck Arun G. Mathias Xiangying Yang Kevin P. McLaughlin

    IPC分类号: H04L29/06 G06F21/60 H04W12/08

    CPC分类号: G06F21/604 H04L63/102 H04L63/105 H04L63/20 H04W12/08

    摘要: A policy-based framework is described. This policy-based framework may be used to specify the privileges for logical entities to perform operations associated with an access-control element (such as an electronic Subscriber Identity Module) located within a secure element in an electronic device. Note that different logical entities may have different privileges for different operations associated with the same or different access-control elements. Moreover, the policy-based framework may specify types of credentials that are used by the logical entities during authentication, so that different types of credentials may be used for different operations and/or by different logical entities. Furthermore, the policy-based framework may specify the security protocols and security levels that are used by the logical entities during authentication, so that different security protocols and security levels may be used for different operations and/or by different logical entities.

    摘要翻译: 描述了基于策略的框架。 该基于策略的框架可以用于指定逻辑实体执行与位于电子设备中的安全元件内的访问控制元素(例如电子订户身份模块)相关联的操作的特权。 注意,对于与相同或不同的访问控制元素相关联的不同操作,不同的逻辑实体可以具有不同的权限。 此外,基于策略的框架可以指定在认证期间由逻辑实体使用的凭证的类型,使得不同类型的凭证可以用于不同的操作和/或由不同的逻辑实体使用。 此外,基于策略的框架可以指定在认证期间由逻辑实体使用的安全协议和安全级别,使得不同的安全协议和安全级别可以用于不同的操作和/或不同的逻辑实体。

    Methods and apparatus for user authentication and human intent verification in mobile devices
    6.
    发明授权
    Methods and apparatus for user authentication and human intent verification in mobile devices 有权

    公开(公告)号:US10856148B2

    公开(公告)日:2020-12-01

    申请号:US16557770

    申请日:2019-08-30

    申请人: Apple Inc.

    发明人: Li Li Xiangying Yang Jerrold Von Hauck Christopher B. Sharp Yousuf H. Vaid Arun G. Mathias David T. Haggerty Najeeb M. Abdulrahiman

    IPC分类号: H04L29/06 H04W12/06 H04L12/24 H04W12/00

    摘要: Methods and apparatus for user authentication and human intent verification of administrative operations for eSIMs of an eUICC included in a mobile device are disclosed. Certain administrative operations, such as import, modification, and/or export, of an eSIM and/or for an eUICCs firmware can require user authentication and/or human intent verification before execution of the administrative operations are performed or completed by the mobile device. A user of the mobile device provides information to link an external user account to an eSIM upon (or subsequent to) installation on the eUICC. User credentials, such as a user name and password, and/or information generated therefrom, can be used to authenticate the user with an external server. In response to successful user authentication, the administrative operations are performed. Human intent verification can also be performed in conjunction with user authentication to prevent malware from interfering with eSIM and/or eUICC functions of the mobile device.

    Revocation of root certificates
    9.
    发明授权
    Revocation of root certificates 有权

    公开(公告)号:US09621356B2

    公开(公告)日:2017-04-11

    申请号:US14279109

    申请日:2014-05-15

    申请人: Apple Inc.

    发明人: Yousuf H. Vaid Christopher B. Sharp Medhi Ziat Li Li Jerrold Von Hauck Ramiro Sarmiento Jean-Marc Padova

    IPC分类号: H04L9/32

    CPC分类号: H04L9/3268

    摘要: Disclosed herein is a technique for revoking a root certificate from at least one client device. In particular, the technique involves causing a secure element—which is included in the at least one client device and is configured to store the root certificate as well as at least one backup root certificate—to permanently disregard the root certificate and prevent the at least one client device from utilizing the specific root certificate. According to one embodiment, this revocation occurs in response to a receiving a revocation message that directly targets the root certificate, where the message includes at least two levels of authentication that are verified by the secure element prior to carrying out the revocation. Once the root certificate is revoked, the secure element can continue to utilize the at least one backup root certificate, while permanently disregarding the revoked root certificate.