公开(公告)号：US20240146531A1

公开(公告)日：2024-05-02

申请号：US17976649

申请日：2022-10-28

Applicant: Apple Inc.

Inventor： Hicham Lozi ,  Ahmer A. Khan ,  Martijn T. Haring ,  Yannick L. Sierra

IPC: H04L9/32 ,  H04L9/30

CPC classification number: H04L9/32 ,  H04L9/30

Abstract: Techniques are described herein for mobile document provisioning. An example method includes a device receiving, from an inspection system of a first jurisdiction, a request for a mobile identification document of a second jurisdiction. The device can transmit, to the inspection system, the mobile identification document based on the request, the mobile identification document comprising a mobile identification document public key. The device can receive from the inspection system, a mobile supplemental document, the mobile supplemental document comprising a mobile supplemental document public key derived from the mobile identification document public key, the inspection system being configured to derive the mobile supplemental document public key from the mobile identification document public key. The device can derivate a mobile supplemental document private key that corresponds to the mobile supplemental document public key, the derivation of the mobile supplemental document to private key linking the mobile supplemental document to the mobile identification document.

公开(公告)号：US20210105265A1

公开(公告)日：2021-04-08

申请号：US17033415

申请日：2020-09-25

Applicant: Apple Inc.

Inventor： Xiangying Yang ,  Ahmer A. Khan ,  Martijn T. Haring

IPC: H04L29/06 ,  H04L9/32

Abstract: Techniques are disclosed relating to authenticating a user with a mobile device. In some embodiments, a computing device stores a first signed attestation indicating an ability of the computing device to securely perform a user authentication. The computing device receives a request to store credential information of an identification document issued by an issuing authority to a user for establishing an identity of the user. In response to the request, the computing device sends, to the issuing authority, a request to store the credential information, the sent request including the first signed attestation to indicate an ability to perform a user authentication prior to permitting access to the credential information. In response to an approval of the sent request based on the first signed attestation, the computing device stores the credential information in a secure element of the computing device.

公开(公告)号：US20240244683A1

公开(公告)日：2024-07-18

申请号：US18537062

申请日：2023-12-12

Applicant: Apple Inc.

Inventor： Lochan Verma ,  Martijn T. Haring ,  Florian Galdo ,  Su Khiong Yong ,  Siegfried Lehmann ,  Yann Ly-Gagnon

IPC: H04W76/11 ,  H04W76/14

CPC classification number: H04W76/11 ,  H04W76/14

Abstract: This disclosure relates to techniques for access control operation between devices in a wireless communication system. An access device may store reader group identifier information for one or more reader devices. The access device may receive an advertisement indication from a reader device in a wireless manner. The advertisement indication may include a reader group identifier for the reader device. The access device may determine that the reader group identifier information stored by the access device includes the reader group identifier indicated by the reader device. The access device may attempt to perform access control communication exchange with the reader device based at least in part on determining that the reader group identifier information stored by the access device includes the reader group identifier indicated by the reader device.

公开(公告)号：US11658959B2

公开(公告)日：2023-05-23

申请号：US17033415

申请日：2020-09-25

Applicant: Apple Inc.

Inventor： Xiangying Yang ,  Ahmer A. Khan ,  Martijn T. Haring

IPC: H04L29/06 ,  H04L9/40 ,  H04L9/32

CPC classification number: H04L63/0823 ,  H04L9/3247 ,  H04L63/0861

Abstract: Techniques are disclosed relating to authenticating a user with a mobile device. In some embodiments, a computing device stores a first signed attestation indicating an ability of the computing device to securely perform a user authentication. The computing device receives a request to store credential information of an identification document issued by an issuing authority to a user for establishing an identity of the user. In response to the request, the computing device sends, to the issuing authority, a request to store the credential information, the sent request including the first signed attestation to indicate an ability to perform a user authentication prior to permitting access to the credential information. In response to an approval of the sent request based on the first signed attestation, the computing device stores the credential information in a secure element of the computing device.

公开(公告)号：US20210160081A1

公开(公告)日：2021-05-27

申请号：US17033564

申请日：2020-09-25

Applicant: Apple Inc.

Inventor： Martijn T. Haring ,  Ahmer A. Khan ,  Xiangying Yang

IPC: H04L9/32 ,  H04L9/14 ,  H04L9/30

Abstract: Techniques are disclosed relating to authenticating a user with a mobile device. In various embodiments, a mobile device receives a request to provision the mobile device with identification information from an identification document issued by an authority to a user for establishing an identity of the user. In response to the received request, the mobile device issues a request for verification information signed by the authority and usable to verify the identification information. The issued request identifies multiple public keys of the mobile device, each having a respective corresponding private key for generating a signature usable to verify the identification information. The mobile device receives and stores the signed verification information, the signed verification information including the plurality of public keys. In some embodiments, the mobile device receives a request provide, at least, a portion of the identification information and selects one of the private keys to generate a signature.