公开(公告)号：US11861350B2

公开(公告)日：2024-01-02

申请号：US17495699

申请日：2021-10-06

Applicant: Apple Inc.

Inventor： Dallas B. De Atley ,  Bailey E. Basile ,  Venkat V. Memula ,  Thomas P. Mensch ,  Robert M. Marini ,  David P. Remahl ,  Kelsey J. Skillman ,  Edward E. Thomas

IPC: G06F8/65 ,  H04L9/40 ,  G06F21/60

CPC classification number: G06F8/65 ,  G06F21/602 ,  H04L63/08

Abstract: Embodiments described herein provide a system and method for secure delivery of assets to a trusted device. Multiple levels of verification are implemented to enable components of a software update and asset delivery system to verify other components within the system. Furthermore, updates are provided only to client devices that are authorized to receive such updates. In one embodiment, the specific assets provided to a client device during a software update can be tailored to the client device, such that individual client devices can receive updated versions of software asset at a faster or slower rate than mass market devices. For example, developer or beta tester devices can receive pre-release assets, while enterprise devices can receive updates at a slower rate relative to mass market devices.

公开(公告)号：US20220303137A1

公开(公告)日：2022-09-22

申请号：US17655147

申请日：2022-03-16

Applicant: APPLE INC.

Inventor： Kyle C. Brogle ,  Wade Benson ,  Sean P. Devlin ,  Lucie Kucerova ,  Thomas P. Mensch ,  Yannick L. Sierra ,  Tomislav Suchan

IPC: H04L9/32 ,  H04W12/03 ,  G06F21/44

Abstract: Embodiments described herein provided techniques to enable peripherals configured to provide secure functionality. A secure circuit on a peripheral device can be paired with a secure circuit on a host device outside of a factory environment without compromising security by verifying silicon keys that are embedded within the secure circuit during manufacturing.

公开(公告)号：US20210397716A1

公开(公告)日：2021-12-23

申请号：US17092030

申请日：2020-11-06

Applicant: Apple Inc.

Inventor： Xeno S. Kovah ,  Nikolaj Schlej ,  Thomas P. Mensch ,  Wade Benson ,  Jerrold V. Hauck ,  Josh P. de Cesare ,  Austin G. Jennings ,  John J. Dong ,  Robert C. Graham ,  Jacques Fortier

IPC: G06F21/57 ,  G06F21/72 ,  H04L9/32 ,  G06F9/4401 ,  H04L9/08 ,  H04L29/06 ,  G06F21/73

Abstract: Techniques are disclosed relating to securing computing devices during boot. In various embodiments, a secure circuit of a computing device generates for a public key pair and signs, using a private key of the public key pair, configuration settings for an operating system of the computing device. A bootloader of the computing device receives a certificate for the public key pair from a certificate authority and initiates a boot sequence to load the operating system. The boot sequence includes the bootloader verifying the signed configuration settings using a public key included in the certificate and the public key pair. In some embodiments, the secure circuit cryptographically protects the private key based on a passcode of a user, the passcode being usable by the user to authenticate to the computing device.

公开(公告)号：US10944571B2

公开(公告)日：2021-03-09

申请号：US15721538

申请日：2017-09-29

Applicant: Apple Inc.

Inventor： Raghunandan K. Pai ,  Thomas P. Mensch ,  Navin Bindiganavile Suparna

IPC: H04L9/32 ,  H04L9/08 ,  H04L9/14 ,  G06F11/14 ,  H04L9/30

Abstract: Some embodiments provide a method for recovering user data for a device. To initiate recovery, the method sends to a first server a first request including at least (i) a device identifier and (ii) a first set of cryptographic data for a second set of servers with which the first server communicates. If the first server verifies the device identifier with an attestation authority, the method receives from the second set of servers a second set of cryptographic data generated by the second set of servers. After receiving input of a device passcode for the device, the method sends to the first server a second request comprising at least a third set of cryptographic data for the second set of servers generated based on the device passcode. If the first server verifies the device passcode with the second set of servers, the method receives access to the user data.

公开(公告)号：US10929515B2

公开(公告)日：2021-02-23

申请号：US16049933

申请日：2018-07-31

Applicant: Apple Inc.

Inventor： Deepti S. Prakash ,  Lucia E. Ballard ,  Jerrold V. Hauck ,  Feng Tang ,  Etai Littwin ,  Pavan Kumar Ansosalu Vasu ,  Gideon Littwin ,  Thorsten Gernoth ,  Lucie Kucerova ,  Petr Kostka ,  Steven P. Hotelling ,  Eitan Hirsh ,  Tal Kaitz ,  Jonathan Pokrass ,  Andrei Kolin ,  Moshe Laifenfeld ,  Matthew C. Waldon ,  Thomas P. Mensch ,  Lynn R. Youngs ,  Christopher G. Zeleznik ,  Michael R. Malone ,  Ziv Hendel ,  Ivan Krstic ,  Anup K. Sharma

IPC: G06F21/00 ,  G06F21/32 ,  G06K9/00 ,  H04L9/32 ,  H04W12/06 ,  H04L29/06 ,  G06F21/83 ,  H04L9/08

Abstract: Techniques are disclosed relating to biometric authentication, e.g., facial recognition. In some embodiments, a device is configured to verify that image data from a camera unit exhibits a pseudo-random sequence of image capture modes and/or a probing pattern of illumination points (e.g., from lasers in a depth capture mode) before authenticating a user based on recognizing a face in the image data. In some embodiments, a secure circuit may control verification of the sequence and/or the probing pattern. In some embodiments, the secure circuit may verify frame numbers, signatures, and/or nonce values for captured image information. In some embodiments, a device may implement one or more lockout procedures in response to biometric authentication failures. The disclosed techniques may reduce or eliminate the effectiveness of spoofing and/or replay attacks, in some embodiments.

公开(公告)号：US20200084050A1

公开(公告)日：2020-03-12

申请号：US16532197

申请日：2019-08-05

Applicant: Apple Inc.

Inventor： Thomas P. Mensch ,  Chiye K. Kojima ,  Han Jong Yu ,  Jerrold V. Hauck ,  Muralidhar S. Vempaty ,  Peter Chang ,  Tiffany Shih-Yu Fang ,  Yiqun Zhu

IPC: H04L9/32 ,  G06F16/901 ,  G06T7/80

Abstract: Systems and methods for storing and recovering data for a device are described. In one embodiment, factory generated calibration data can be generated, sealed and restored securely even if two sensors in two different devices, such as a first ambient light sensor and a second ambient light sensor have the same sensor identifier. In one embodiment, a device transmits a database key to cause storage or recovery of the calibration data, and the database key includes a sensor identifier and a public cryptographic key of the device.

公开(公告)号：US20190044723A1

公开(公告)日：2019-02-07

申请号：US16049933

申请日：2018-07-31

Applicant: Apple Inc.

Inventor： Deepti S. Prakash ,  Lucia E. Ballard ,  Jerrold V. Hauck ,  Feng Tang ,  Etai Littwin ,  Pavan Kumar Ansosalu Vasu ,  Gideon Littwin ,  Thorsten Gernoth ,  Lucie Kucerova ,  Petr Kostka ,  Steven P. Hotelling ,  Eitan Hirsh ,  Tal Kaitz ,  Jonathan Pokrass ,  Andrei Kolin ,  Moshe Laifenfeld ,  Matthew C. Waldon ,  Thomas P. Mensch ,  Lynn R. Youngs ,  Christopher G. Zeleznik ,  Michael R. Malone ,  Ziv Hendel ,  Ivan Krstic ,  Anup K. Sharma

IPC: H04L9/32 ,  G06F21/32 ,  H04L9/08 ,  G06K9/00

Abstract: Techniques are disclosed relating to biometric authentication, e.g., facial recognition. In some embodiments, a device is configured to verify that image data from a camera unit exhibits a pseudo-random sequence of image capture modes and/or a probing pattern of illumination points (e.g., from lasers in a depth capture mode) before authenticating a user based on recognizing a face in the image data. In some embodiments, a secure circuit may control verification of the sequence and/or the probing pattern. In some embodiments, the secure circuit may verify frame numbers, signatures, and/or nonce values for captured image information. In some embodiments, a device may implement one or more lockout procedures in response to biometric authentication failures. The disclosed techniques may reduce or eliminate the effectiveness of spoofing and/or replay attacks, in some embodiments.

公开(公告)号：US09542558B2

公开(公告)日：2017-01-10

申请号：US14207361

申请日：2014-03-12

Applicant: Apple Inc.

Inventor： Thomas P. Mensch ,  Jason D. Gosnell ,  Jerrold V. Hauck ,  Muralidhar S. Vempaty ,  Dallas B. De Atley

IPC: G06F21/57 ,  G06F21/60 ,  H04L29/06

CPC classification number: G06F21/6218 ,  G06F21/57 ,  G06F21/572 ,  G06F21/577 ,  G06F21/602 ,  H04L9/3247 ,  H04L63/0428 ,  H04L63/083 ,  H04L63/0876

Abstract: In various embodiments, methods, devices and systems for securely generating, sealing, and restoring factory-generated calibration and provisioning data for an electronic device are described, in which calibration and provisioning data for an electronic device are generated in a distributed manner and stored on a storage system. The calibration data can be retrieved from the storage system during device assembly and finalized calibration and provisioning data for each electronic device can be stored to the storage system. In one embodiment, a sealing server, to attest to the authenticity of the factory-generated data, seals the finalized calibration data. In one embodiment, an electronic device can access a data store containing the factory-generated data and can update or restore calibration or provisioning data for the device from the data store.

Abstract translation: 在各种实施例中，描述了用于安全地生成，密封和恢复用于电子设备的工厂生成的校准和供应数据的方法，设备和系统，其中电子设备的校准和供应数据以分布式方式生成并存储在 一个存储系统。 可以在设备组装期间从存储系统检索校准数据，并且最终校准和每个电子设备的供应数据可被存储到存储系统中。 在一个实施例中，密封服务器用于证明工厂生成的数据的真实性，以密封最终的校准数据。 在一个实施例中，电子设备可以访问包含工厂生成的数据的数据存储器，并且可以从数据存储器更新或恢复设备的校准或供应数据。

公开(公告)号：US20150261966A1

公开(公告)日：2015-09-17

申请号：US14207361

申请日：2014-03-12

Applicant: Apple Inc.

Inventor： Thomas P. Mensch ,  Jason D. Gosnell ,  Jerrold V. Hauck ,  Muralidhar S. Vempaty ,  Dallas B. De Atley

IPC: G06F21/60 ,  H04L29/06

CPC classification number: G06F21/6218 ,  G06F21/57 ,  G06F21/572 ,  G06F21/577 ,  G06F21/602 ,  H04L9/3247 ,  H04L63/0428 ,  H04L63/083 ,  H04L63/0876

Abstract: In various embodiments, methods, devices and systems for securely generating, sealing, and restoring factory-generated calibration and provisioning data for an electronic device are described, in which calibration and provisioning data for an electronic device are generated in a distributed manner and stored on a storage system. The calibration data can be retrieved from the storage system during device assembly and finalized calibration and provisioning data for each electronic device can be stored to the storage system. In one embodiment, a sealing server, to attest to the authenticity of the factory-generated data, seals the finalized calibration data. In one embodiment, an electronic device can access a data store containing the factory-generated data and can update or restore calibration or provisioning data for the device from the data store.

Abstract translation: 在各种实施例中，描述了用于安全地生成，密封和恢复用于电子设备的工厂生成的校准和供应数据的方法，设备和系统，其中电子设备的校准和供应数据以分布式方式生成并存储在 一个存储系统。 可以在设备组装期间从存储系统检索校准数据，并且最终校准和每个电子设备的供应数据可被存储到存储系统中。 在一个实施例中，密封服务器用于证明工厂生成的数据的真实性，以密封最终的校准数据。 在一个实施例中，电子设备可以访问包含工厂生成的数据的数据存储器，并且可以从数据存储器更新或恢复设备的校准或供应数据。