公开(公告)号：US11468162B2

公开(公告)日：2022-10-11

申请号：US16677500

申请日：2019-11-07

Applicant: Apple Inc.

Inventor： Conrad A. Shultz ,  Richard J. Mondello ,  Reza Abbasian ,  Ivan Krstic ,  Darin Adler ,  Charilaos Papadopoulos ,  Maureen Grace Daum ,  Guillaume Borios ,  Patrick Robert Burns ,  Alexander David Sanciangco ,  Brent Michael Ledvina ,  Chelsea Elizabeth Pugh ,  Kyle Brogle ,  Marc J. Krochmal ,  Jacob Klapper ,  Paul Russell Knight ,  Connor David Graham ,  Shengkai Wu ,  I-Ting Liu ,  Steven Jon Falkenburg

IPC: G06F21/46 ,  G06F3/0482 ,  G06F3/04886 ,  G06F21/31

Abstract: In accordance with some embodiments, the method includes: detecting, via the one or more input devices, a request to display information for password protected accounts; and, in response to detecting the request, concurrently displaying, on the display device: a representation of a first password protected account that is associated with a credential having one or more security issues, wherein the representation of the first password protected account is visually associated with an alert indicator indicating the one or more security issues associated with the credential of the first password protected account; and a representation of a second password protected account that is associated with a credential having one or more security issues, wherein the representation of the second password protected account is visually associated with an alert indicator indicating the one or more security issues associated with the credential of the second password protected account.

公开(公告)号：US10394924B2

公开(公告)日：2019-08-27

申请号：US14500174

申请日：2014-09-29

Applicant: Apple Inc.

Inventor： Paul R. Knight ,  Mark A. Rowe ,  Richard J. Mondello ,  Jessie L. Berlin ,  Gavin Barraclough

IPC: G06F16/957 ,  G06F16/23

Abstract: Deletion of synchronized web browsing history is enabled. A deletion filter record that specifies synchronized web browsing history to be deleted is received from a first client. The deletion filter record is stored in association with an identifier of the first client. A check-in message is received from a second client. Responsive to the check-in message, a determination is made that the stored deletion filter record is relevant to the second client. The stored deletion filter record is sent to the second client. Separately, a client's communications to a server are limited. A request is received to communicate with the server. A throttling policy is accessed. The throttling policy includes multiple ordered policy sections. A policy section indicates that all messages sent from the client to the server, up to the number of messages, must be separated by at least the time period.

公开(公告)号：US20240028689A1

公开(公告)日：2024-01-25

申请号：US18461322

申请日：2023-09-05

Applicant: Apple Inc.

Inventor： Richard J. Mondello ,  Jay S. Mulani ,  Jonathan Birdsall ,  Dmitry V. Belov ,  Reza Abbasian ,  David P. Quesada ,  Patrick L. Coffman

IPC: G06F21/41 ,  G06F21/46

CPC classification number: G06F21/41 ,  G06F21/46

Abstract: A method and apparatus of a device that converts an account associated with an application to use a single sign-on service is described. In an exemplary embodiment, the device receives an indication of a weak password associated with the account. The device further sends a request to verify an account credential for a user associated with the device. In addition, the device receives the verification of the account credential. The device additionally requests a single sign-on credential for the account and receives the single sign-on credential. Furthermore, the device sends a message to a server associated with a service for the application that the application is registered for the single sign-on service.

公开(公告)号：US11783022B2

公开(公告)日：2023-10-10

申请号：US17303291

申请日：2021-05-26

Applicant: Apple Inc.

Inventor： Richard J. Mondello ,  Jay S. Mulani ,  Jonathan Birdsall ,  Dmitry V. Belov ,  Reza Abbasian ,  David P. Quesada ,  Patrick L. Coffman

IPC: G06F21/41 ,  G06F21/46

CPC classification number: G06F21/41 ,  G06F21/46

Abstract: A method and apparatus of a device that converts an account associated with an application to use a single sign-on service is described. In an exemplary embodiment, the device receives an indication of a weak password associated with the account. The device further sends a request to verify an account credential for a user associated with the device. In addition, the device receives the verification of the account credential. The device additionally requests a single sign-on credential for the account and receives the single sign-on credential. Furthermore, the device sends a message to a server associated with a service for the application that the application is registered for the single sign-on service.

公开(公告)号：US11775632B2

公开(公告)日：2023-10-03

申请号：US18161827

申请日：2023-01-30

Applicant: Apple Inc.

Inventor： Reza Abbasian ,  Richard J. Mondello ,  David P. Quesada ,  Kyle C. Brogle ,  Patrick L. Coffman

IPC: G06F21/45 ,  G06F21/60 ,  G06F21/62 ,  G06F21/36 ,  H04L9/40 ,  G06F21/78

CPC classification number: G06F21/45 ,  G06F21/36 ,  G06F21/604 ,  G06F21/62 ,  G06F21/78 ,  H04L63/083 ,  H04L63/102 ,  G06F2221/2103 ,  G06F2221/2115

Abstract: Techniques are disclosed relating to credential managers. In some embodiments, a computing device maintains a credential manager that stores, in a protected manner, a set of credentials for authenticating a user and metadata about the credentials. The computing device stores an instance of the metadata externally to the credential manager. The computing device uses the externally stored metadata to determine whether the set of credentials includes a particular credential associated with a service and, in response to determining that the set of credentials includes the particular credential, displays an indication of the particular credential. In some embodiments, the computing device receives a selection of the displayed indication by the user and, in response to the selection, sends a request for the particular credential to the credential manager.

公开(公告)号：US20230177141A1

公开(公告)日：2023-06-08

申请号：US18161827

申请日：2023-01-30

Applicant: Apple Inc.

Inventor： Reza Abbasian ,  Richard J. Mondello ,  David P. Quesada ,  Kyle C. Brogle ,  Patrick L. Coffman

IPC: G06F21/45 ,  G06F21/60 ,  G06F21/62 ,  G06F21/36 ,  H04L9/40 ,  G06F21/78

CPC classification number: G06F21/45 ,  G06F21/604 ,  G06F21/62 ,  G06F21/36 ,  H04L63/083 ,  H04L63/102 ,  G06F21/78 ,  G06F2221/2115 ,  G06F2221/2103

Abstract: Techniques are disclosed relating to credential managers. In some embodiments, a computing device maintains a credential manager that stores, in a protected manner, a set of credentials for authenticating a user and metadata about the credentials. The computing device stores an instance of the metadata externally to the credential manager. The computing device uses the externally stored metadata to determine whether the set of credentials includes a particular credential associated with a service and, in response to determining that the set of credentials includes the particular credential, displays an indication of the particular credential. In some embodiments, the computing device receives a selection of the displayed indication by the user and, in response to the selection, sends a request for the particular credential to the credential manager.

公开(公告)号：US10970385B2

公开(公告)日：2021-04-06

申请号：US16146945

申请日：2018-09-28

Applicant: Apple Inc.

Inventor： Richard J. Mondello ,  Chelsea E. Pugh ,  Maureen G. Daum ,  Morgan H. Winer ,  Shuchen Li

IPC: G06F21/45 ,  G06F21/44 ,  H04L29/06 ,  G06F21/31 ,  H04L9/08

Abstract: Techniques are disclosed relating to sharing a user credential between computing devices. In some embodiments, a first computing device stores a set of user credentials usable to authenticate a user and receives, from a second computing device, a request for a user credential to be provided responsive to an authentication prompt associated with the second computing device. In such an embodiment, the request includes an indication of a service for which the authentication prompt is being presented. Based on the indication, the first computing device determines whether the stored set of user credentials includes a user credential relevant to the authentication prompt and presents a selection prompt asking a user of the first computing device to select a one of the stored set of user credentials to provide to the second computing device for authentication to the service, the relevant user credential being identified in the selection prompt.

公开(公告)号：US11374937B2

公开(公告)日：2022-06-28

申请号：US16147686

申请日：2018-09-29

Applicant: Apple Inc.

Inventor： Conrad A. Shultz ,  Alexander D. Sanciangco ,  Brent M. Ledvina ,  Chelsea E. Pugh ,  Kyle C. Brogle ,  Marc J. Krochmal ,  Maureen G. Daum ,  Reza Abbasian ,  Richard J. Mondello ,  Jacob S. Klapper

IPC: G06F21/44 ,  H04L29/06 ,  H04L9/40 ,  H04W4/80 ,  G06F21/45 ,  G06F21/43

Abstract: Techniques are disclosed relating to user authentication. In some embodiments, a first computing device receives, from a second computing device, a request for a user credential to be input into an authentication prompt associated with the second device. The first computing device determines a proximity associated with the second computing device based on a received wireless location beacon and, based on the request and the determined proximity, presents a selection prompt asking a user of the first computing device to select a user credential stored in the first computing device. The first computing device then provides the selected user credential to the second computing device to input into the authentication prompt. In some embodiments, the first computing device receives the wireless location beacon from a remote controller of the second computing device and determines a proximity based on a signal strength associated with the received location beacon.

公开(公告)号：US11120123B2

公开(公告)日：2021-09-14

申请号：US16427152

申请日：2019-05-30

Applicant: Apple Inc.

Inventor： Conrad A. Shultz ,  Richard J. Mondello ,  Reza Abbasian ,  Ivan Krstic ,  Darin Adler ,  Charilaos Papadopoulos ,  Maureen Grace Daum ,  Guillaume Borios ,  Patrick Robert Burns ,  Alexander David Sanciangco ,  Brent Michael Ledvina ,  Chelsea Elizabeth Pugh ,  Kyle Brogle ,  Marc J. Krochmal ,  Jacob Klapper ,  Paul Russell Knight ,  Connor David Graham ,  Shengkai Wu ,  I-Ting Liu ,  Steven Jon Falkenburg

IPC: G06F21/46 ,  G06F3/0482 ,  G06F3/0488 ,  G06F21/31

Abstract: In accordance with some embodiments, a method is performed at an electronic device with a display device and one or more input devices. The method includes displaying, via the display device, a user interface that includes a new-password field. The method includes detecting, via the one or more input devices, a user input that corresponds to selection of the new-password field. In response to detecting the user input that corresponds to selection of the new-password field, the method includes displaying, on the display device, a representation of a new automatically-generated password in the new-password field and displaying, on the display device, an affordance to accept the new automatically-generated password and an affordance to decline to use the new automatically-generated password.

公开(公告)号：US20180349593A1

公开(公告)日：2018-12-06

申请号：US15721606

申请日：2017-09-29

Applicant: Apple Inc.

Inventor： Richard J. Mondello ,  Morgan H. Winer ,  Chelsea E. Pugh ,  Shuchen Li

IPC: G06F21/41 ,  H04L29/06

Abstract: Described is a system (and method) for automatically populating login credentials for an application such as a third-party application (or app) installed on a device. These applications are often associated with an entity that may operate or control a website, service, or another application. For example, browsers often store login credentials (e.g. username and password) of previously visited websites. Accordingly, the system may retrieve applicable login credentials for the application in response to verifying the application is authorized to be associated with the website associated with the retrieved password. Accordingly, the system may provide a convenient and safe mechanism to retrieve applicable login credentials even in instances where a developer of the application has not provided an explicit capability of such a feature.