公开(公告)号：US12041051B2

公开(公告)日：2024-07-16

申请号：US18085430

申请日：2022-12-20

Applicant: APPLE INC.

Inventor： Daniel Chu ,  Fabio Sozzani ,  Ying Chen ,  Betim Deva ,  Mufaddal Y. Khumri

IPC: H04L9/40 ,  H04L9/32

CPC classification number: H04L63/10 ,  H04L9/3213 ,  H04L9/3247

Abstract: A service client on a device can generate an access control identifier using a server seeded and client-specific secret. The device can generate a blinded access control identifier (ACI) using a randomness factor as part of a request message for a blinded ACI signature including authentication data. The device can transmit the request message to a verification server and upon verification receive a blinded ACI signature message that can subsequently be unblinded using the randomness factor to obtain the ACI signature. The device may send the ACI and the ACI signature to a verification server and after verifying the signature receive a service token. The device may transmit the service token to a service provider server requesting access to the service. When a rate associated with the service token is below a threshold rate, the device can access the service provided by the service provider service.

公开(公告)号：US20230396619A1

公开(公告)日：2023-12-07

申请号：US18085430

申请日：2022-12-20

Applicant: APPLE INC.

Inventor： Daniel Chu ,  Fabio Sozzani ,  Ying Chen ,  Betim Deva ,  Mufaddal Y. Khumri

IPC: H04L9/40 ,  H04L9/32

CPC classification number: H04L63/10 ,  H04L9/3213 ,  H04L9/3247

Abstract: A service client on a device can generate an access control identifier using a server seeded and client-specific secret. The device can generate a blinded access control identifier (ACI) using a randomness factor as part of a request message for a blinded ACI signature including authentication data. The device can transmit the request message to a verification server and upon verification receive a blinded ACI signature message that can subsequently be unblinded using the randomness factor to obtain the ACI signature. The device may send the ACI and the ACI signature to a verification server and after verifying the signature receive a service token. The device may transmit the service token to a service provider server requesting access to the service. When a rate associated with the service token is below a threshold rate, the device can access the service provided by the service provider service.

公开(公告)号：US20220382838A1

公开(公告)日：2022-12-01

申请号：US17804814

申请日：2022-05-31

Applicant: Apple Inc.

Inventor： Fabio Sozzani ,  Isabella M. Funke ,  Frederic Jacobs ,  Brandon J. Van Ryswyk

IPC: G06F21/31

Abstract: Techniques are disclosed relating to computing security and privacy. In some embodiments, a computing device provides, to a service computing system, a service request that identifies an action and includes an anonymous identifier for a user of the computing device. The computing device receives, from the service computing system, a score request for a trustworthiness score indicative of the user's trustworthiness. In response to receiving the score request from the service computing system, the computing device provides information indicative of the user's identity to a scoring computing system and receives the trustworthiness score and a corresponding score signature from the scoring computing system. In response to receiving the score and the score signature from the scoring computing system, the computing device provides the score to the service computing system.