公开(公告)号：US20220303120A1

公开(公告)日：2022-09-22

申请号：US17835421

申请日：2022-06-08

Applicant: Apple Inc.

Inventor： Vishnu Pillai Janardhanan Pillai ,  Rantao Chen ,  Gianpaolo Fasoli ,  Frederic Jacobs ,  Rupamay Saha ,  Yannick L. Sierra ,  Dian Wen ,  Ka Yang

IPC: H04L9/08 ,  H04L9/40 ,  G06Q20/38 ,  H04L9/32

Abstract: Embodiments described herein provide cryptographic techniques to enable a recipient of a signed message containing encrypted data to verify that the signer of the message and the encryptor of the encrypted data are the same party, or at the least, have joint possession of a common set of secret cryptographic material. These techniques can be used to harden an online payment system against interception and resigning of encrypted payment information.

公开(公告)号：US20220382838A1

公开(公告)日：2022-12-01

申请号：US17804814

申请日：2022-05-31

Applicant: Apple Inc.

Inventor： Fabio Sozzani ,  Isabella M. Funke ,  Frederic Jacobs ,  Brandon J. Van Ryswyk

IPC: G06F21/31

Abstract: Techniques are disclosed relating to computing security and privacy. In some embodiments, a computing device provides, to a service computing system, a service request that identifies an action and includes an anonymous identifier for a user of the computing device. The computing device receives, from the service computing system, a score request for a trustworthiness score indicative of the user's trustworthiness. In response to receiving the score request from the service computing system, the computing device provides information indicative of the user's identity to a scoring computing system and receives the trustworthiness score and a corresponding score signature from the scoring computing system. In response to receiving the score and the score signature from the scoring computing system, the computing device provides the score to the service computing system.

公开(公告)号：US20250071581A1

公开(公告)日：2025-02-27

申请号：US18455880

申请日：2023-08-25

Applicant: Apple Inc.

Inventor： Scott Lopatin ,  Sugam Jain ,  Frederic Jacobs

IPC: H04W24/08 ,  H04W4/12

Abstract: A communications system may include user equipment (UE) that transmits data to a recipient via a network. The UE may receive user input and may generate the data based on the input. When a terrestrial network is unavailable to the UE, the UE may transmit segments of the data over a satellite constellation as the UE continues to receive input and while connectivity to the constellation exceeds a threshold. If a portion of the input includes an edit to a previous segment, the UE may include an edit flag in the corresponding segment. Once input has finished, the UE may sign the segments and may transmit a signature over the constellation. The network may store the segments as received from the constellation, may replace edited segments with more recent segments containing edit flags, and may compile and transmit all of the segments to the recipient upon receipt of the signature.

公开(公告)号：US20220092208A1

公开(公告)日：2022-03-24

申请号：US17242105

申请日：2021-04-27

Applicant: Apple Inc.

Inventor： Frederic Jacobs ,  Eric Bainville ,  Yannick L. Sierra

IPC: G06F21/62 ,  H04L9/08 ,  H04L9/32

Abstract: Embodiments described herein provide a compressed container format that enables the container to be decrypted and decompressed in a streaming manner. One embodiment provides a container format for encrypted archives in which data is compressed and encrypted in a segmented manner. A segment of the archive can be decompressed, decrypted, and checked for integrity before the entire archive is received. Metadata for the encrypted archive is also encrypted to secure details of data stored within the archive.

公开(公告)号：US11973859B2

公开(公告)日：2024-04-30

申请号：US17123856

申请日：2020-12-16

Applicant: Apple Inc.

Inventor： Frederic Jacobs ,  Yannick L. Sierra

IPC: H04L9/08 ,  H04L9/32 ,  H04W4/029 ,  H04W4/90

CPC classification number: H04L9/0825 ,  H04L9/3236 ,  H04W4/029 ,  H04W4/90 ,  H04L2209/04 ,  H04L2209/80

Abstract: Embodiments described herein provide a method on a mobile electronic device to facilitate the transmission of encrypted user data to a service provider, such as an emergency service provider. An encrypted data repository stores user data to be transmitted to the service provider. A key to decrypt the encrypted data repository is wrapped using a key associated with a publicly trusted certificate for the service provider. In response a request received at the mobile device to initiate an emergency services request, the mobile device can transmit the encrypted data repository and wrapped cryptographic material to a server that is accessible by the service provider.

公开(公告)号：US11914737B2

公开(公告)日：2024-02-27

申请号：US17242105

申请日：2021-04-27

Applicant: Apple Inc.

Inventor： Frederic Jacobs ,  Eric Bainville ,  Yannick L. Sierra

IPC: G06F21/62 ,  H04L9/08 ,  H04L9/32

CPC classification number: G06F21/6227 ,  H04L9/0861 ,  H04L9/0894 ,  H04L9/3247 ,  G06F2221/2107

Abstract: Embodiments described herein provide a compressed container format that enables the container to be decrypted and decompressed in a streaming manner. One embodiment provides a container format for encrypted archives in which data is compressed and encrypted in a segmented manner. A segment of the archive can be decompressed, decrypted, and checked for integrity before the entire archive is received. Metadata for the encrypted archive is also encrypted to secure details of data stored within the archive.

公开(公告)号：US11848767B2

公开(公告)日：2023-12-19

申请号：US17722296

申请日：2022-04-15

Applicant: Apple Inc.

Inventor： Nicholas J. Circosta ,  Elliot T. Garner ,  Aniket A. Zamwar ,  Yevgeni Pekurovsky ,  Jared A. Crawford ,  Frederic Jacobs ,  Justin S Titi ,  Matthew E. Shepherd ,  Jose A. Lozano Hinojosa ,  Sean Geiger ,  Ahmed M. Bashir

IPC: H04L67/55 ,  H04L9/32 ,  H04L9/40 ,  H04L67/63

CPC classification number: H04L67/55 ,  H04L9/3297 ,  H04L63/101 ,  H04L67/63

Abstract: Aspects of the subject technology provide for privacy-preserving electronic publication and subscription. A publisher device may establish a publication channel with a publication server and receive a channel identifier and a channel ownership token for the channel. The publisher device may provide the channel identifier and a key for the publication channel to a subscriber device. The publisher device may publish data encrypted using the key to the publication server, the subscriber device may obtain the encrypted published data from the server using the channel identifier, and may decrypt the published data using the key obtained from the publisher device. The published data may include status information for a user of the publisher device, in some examples.

公开(公告)号：US11522695B2

公开(公告)日：2022-12-06

申请号：US16982513

申请日：2019-03-19

Applicant: Apple Inc.

Inventor： Sriram Hariharan ,  Yannick L. Sierra ,  Frederic Jacobs

IPC: H04L9/32 ,  H04L9/08 ,  H04L9/40

Abstract: Techniques are disclosed relating to using a device to gain access to another system. In some embodiments, a first mobile device performs a pairing operation with a control unit that controls access to a system, the pairing operation including the first mobile device establishing a first cryptographic key with the control unit. The first mobile device receives a request to enable a second mobile device to communicate with the control unit, and in response to receiving the request, the first mobile device generates a second cryptographic key from the first cryptographic key. The first mobile device provides the second cryptographic key to the second mobile device. The second mobile device is configured to send a beacon including a payload encrypted with the second cryptographic key, and the encrypted payload is usable to authenticate the second mobile device to the control unit.

公开(公告)号：US20210359842A1

公开(公告)日：2021-11-18

申请号：US15930838

申请日：2020-05-13

Applicant: Apple Inc.

Inventor： Vishnu Pillai Janardhanan Pillai ,  Rantao Chen ,  Gianpaolo Fasoli ,  Frederic Jacobs ,  Rupamay Saha ,  Yannick L. Sierra ,  Dian Wen ,  Ka Yang

IPC: H04L9/08 ,  H04L29/06 ,  H04L9/32 ,  G06Q20/38

Abstract: Embodiments described herein provide cryptographic techniques to enable a recipient of a signed message containing encrypted data to verify that the signer of the message and the encryptor of the encrypted data are the same party, or at the least, have joint possession of a common set of secret cryptographic material. These techniques can be used to harden an online payment system against interception and resigning of encrypted payment information.

公开(公告)号：US20200235929A1

公开(公告)日：2020-07-23

申请号：US16528532

申请日：2019-07-31

Applicant: Apple Inc.

Inventor： Frederic Jacobs ,  Thomas Icart ,  Yannick L. Sierra

IPC: H04L9/30 ,  H04L9/08 ,  H04L9/32 ,  H04L9/06 ,  H04W4/70

Abstract: One embodiment provides for an electronic device, comprising a network interface, a memory coupled with the network interface, at least one application processor coupled with the memory, the at least one processor to execute instructions stored in the memory, and a secure processor including a cryptographic engine, wherein the cryptographic engine is to generate a sealed encrypted message to be transmitted via the network interface, the sealed encrypted message encrypted on behalf of the at least one application processor and includes a signature to enable integrity verification of the sealed encrypted message, the signature generated based on an identity key of the electronic device and data including ciphertext of the encrypted message and a public key of a recipient of the sealed encrypted message.