公开(公告)号：US11921839B2

公开(公告)日：2024-03-05

申请号：US17221298

申请日：2021-04-02

Applicant: Apple Inc.

Inventor： Richard J. Mondello ,  Chelsea E. Pugh ,  Maureen G. Daum ,  Morgan H. Winer ,  Shuchen Li

IPC: G06F21/45 ,  G06F21/31 ,  G06F21/44 ,  H04L9/40 ,  H04L9/08

CPC classification number: G06F21/45 ,  G06F21/31 ,  G06F21/44 ,  H04L63/04 ,  H04L63/061 ,  H04L63/083 ,  H04L63/18 ,  H04L9/085 ,  H04L63/0428

Abstract: Techniques are disclosed relating to sharing a user credential between computing devices. In some embodiments, a first computing device stores a set of user credentials usable to authenticate a user and receives, from a second computing device, a request for a user credential to be provided responsive to an authentication prompt associated with the second computing device. In such an embodiment, the request includes an indication of a service for which the authentication prompt is being presented. Based on the indication, the first computing device determines whether the stored set of user credentials includes a user credential relevant to the authentication prompt and presents a selection prompt asking a user of the first computing device to select a one of the stored set of user credentials to provide to the second computing device for authentication to the service, the relevant user credential being identified in the selection prompt.

公开(公告)号：US11895111B2

公开(公告)日：2024-02-06

申请号：US18153118

申请日：2023-01-11

Applicant: Apple Inc.

Inventor： Dmitry V. Belov ,  Brent A. Fulgham ,  Sudhakar N. Mambakkam ,  Richard J. Mondello ,  Kalyan C. Gopavarapu ,  Edgar Tonatiuh Barragan Corte ,  Libor Sykora

IPC: H04L9/40 ,  H04L41/22 ,  H04L67/02

CPC classification number: H04L63/0861 ,  H04L41/22 ,  H04L63/083 ,  H04L63/20 ,  H04L67/02

Abstract: A method and apparatus of a device that authorizes a device for a service is described. In an exemplary embodiment, the device intercepts a request for a web page from a web browser executing on the device, wherein the request includes an indication associated with an authorization request for the service and the web page provides the service. In addition, the device presents an authorization user interface on the device. The device further performs a local authorization using a set of user credentials entered via the authorization user interface. The device additionally performs a server authorization with a server. Furthermore, the device redirects the web browser to the requested web page, wherein the web browser is authorized for the service provided by the web page.

公开(公告)号：US11876806B2

公开(公告)日：2024-01-16

申请号：US17808799

申请日：2022-06-24

Applicant: Apple Inc.

Inventor： Conrad A. Shultz ,  Alexander D. Sanciangco ,  Brent M. Ledvina ,  Chelsea E. Pugh ,  Kyle C. Brogle ,  Marc J. Krochmal ,  Maureen G. Daum ,  Reza Abbasian ,  Richard J. Mondello ,  Jacob S. Klapper

IPC: G06F21/44 ,  H04L29/06 ,  H04L9/40 ,  H04W4/80 ,  G06F21/45 ,  G06F21/43

CPC classification number: H04L63/107 ,  G06F21/43 ,  G06F21/45 ,  H04W4/80

Abstract: Techniques are disclosed relating to user authentication. In some embodiments, a first computing device receives, from a second computing device, a request for a user credential to be input into an authentication prompt associated with the second device. The first computing device determines a proximity associated with the second computing device based on a received wireless location beacon and, based on the request and the determined proximity, presents a selection prompt asking a user of the first computing device to select a user credential stored in the first computing device. The first computing device then provides the selected user credential to the second computing device to input into the authentication prompt. In some embodiments, the first computing device receives the wireless location beacon from a remote controller of the second computing device and determines a proximity based on a signal strength associated with the received location beacon.

公开(公告)号：US11568039B2

公开(公告)日：2023-01-31

申请号：US16146567

申请日：2018-09-28

Applicant: Apple Inc.

Inventor： Reza Abbasian ,  Richard J. Mondello ,  David P. Quesada ,  Kyle C. Brogle ,  Patrick L. Coffman

IPC: G06F21/45 ,  G06F21/60 ,  G06F21/62 ,  G06F21/36 ,  H04L9/40 ,  G06F21/78

Abstract: Techniques are disclosed relating to credential managers. In some embodiments, a computing device maintains a credential manager that stores, in a protected manner, a set of credentials for authenticating a user and metadata about the credentials. The computing device stores an instance of the metadata externally to the credential manager. The computing device uses the externally stored metadata to determine whether the set of credentials includes a particular credential associated with a service and, in response to determining that the set of credentials includes the particular credential, displays an indication of the particular credential. In some embodiments, the computing device receives a selection of the displayed indication by the user and, in response to the selection, sends a request for the particular credential to the credential manager.

公开(公告)号：US11556631B2

公开(公告)日：2023-01-17

申请号：US16888507

申请日：2020-05-29

Applicant: Apple Inc.

Inventor： Elaine Y. Knight ,  Chelsea E. Pugh ,  Reza Abbasian ,  Richard Houle ,  Richard J. Mondello ,  Zhuo Li ,  Patrick L. Coffman

IPC: G06F21/46 ,  G06F21/41

Abstract: In some embodiments, an electronic device presents a weak password warning in a password management user interface that includes information about the user account with which the password is associated. In some embodiments, an electronic device presents a weak password warning in a login user interface.

公开(公告)号：US20230008448A1

公开(公告)日：2023-01-12

申请号：US17808799

申请日：2022-06-24

Applicant: Apple Inc.

Inventor： Conrad A. Shultz ,  Alexander D. Sanciangco ,  Brent M. Ledvina ,  Chelsea E. Pugh ,  Kyle C. Brogle ,  Marc J. Krochmal ,  Maureen G. Daum ,  Reza Abbasian ,  Richard J. Mondello ,  Jacob S. Klapper

IPC: H04L9/40 ,  H04W4/80 ,  G06F21/45 ,  G06F21/43

Abstract: Techniques are disclosed relating to user authentication. In some embodiments, a first computing device receives, from a second computing device, a request for a user credential to be input into an authentication prompt associated with the second device. The first computing device determines a proximity associated with the second computing device based on a received wireless location beacon and, based on the request and the determined proximity, presents a selection prompt asking a user of the first computing device to select a user credential stored in the first computing device. The first computing device then provides the selected user credential to the second computing device to input into the authentication prompt. In some embodiments, the first computing device receives the wireless location beacon from a remote controller of the second computing device and determines a proximity based on a signal strength associated with the received location beacon.

公开(公告)号：US11233779B2

公开(公告)日：2022-01-25

申请号：US16147688

申请日：2018-09-29

Applicant: Apple Inc.

Inventor： Alexander D. Sanciangco ,  Maureen G. Daum ,  Richard J. Mondello ,  Reza Abbasian

IPC: H04L29/06 ,  H04W12/06 ,  H04W12/04 ,  H04W76/10 ,  G06F21/45 ,  H04L9/30

Abstract: Techniques are disclosed relating to credential sharing for user authentication. In some embodiments, a first computing device maintains a credential manager that stores a plurality of user credentials usable to authenticate a user. The first computing device receives a request from the user to send one of the plurality of user credentials to a second computing device. In response to the request, the first computing device sends the user credential to the second computing device. The second computing device is configured to determine whether an application of the second computing device is presenting an authentication prompt to a user and, in response to determining that the authentication prompt is being presented, populate one or more fields of the authentication prompt with the user credential. In some embodiments, the second computing device is configured to store the user credential in a credential manager maintained by the second computing device.

公开(公告)号：US10824709B2

公开(公告)日：2020-11-03

申请号：US15721606

申请日：2017-09-29

Applicant: Apple Inc.

Inventor： Richard J. Mondello ,  Morgan H. Winer ,  Chelsea E. Pugh ,  Shuchen Li

IPC: G06F21/41 ,  H04L29/06

Abstract: Described is a system (and method) for automatically populating login credentials for an application such as a third-party application (or app) installed on a device. These applications are often associated with an entity that may operate or control a website, service, or another application. For example, browsers often store login credentials (e.g. username and password) of previously visited websites. Accordingly, the system may retrieve applicable login credentials for the application in response to verifying the application is authorized to be associated with the website associated with the retrieved password. Accordingly, the system may provide a convenient and safe mechanism to retrieve applicable login credentials even in instances where a developer of the application has not provided an explicit capability of such a feature.

公开(公告)号：US20150347614A1

公开(公告)日：2015-12-03

申请号：US14500174

申请日：2014-09-29

Applicant: Apple Inc.

Inventor： Paul R. Knight ,  Mark A. Rowe ,  Richard J. Mondello ,  Jessie L. Berlin ,  Gavin Barraclough

IPC: G06F17/30

CPC classification number: G06F16/957 ,  G06F16/2365

Abstract: Deletion of synchronized web browsing history is enabled. A deletion filter record that specifies synchronized web browsing history to be deleted is received from a first client. The deletion filter record is stored in association with an identifier of the first client. A check-in message is received from a second client. Responsive to the check-in message, a determination is made that the stored deletion filter record is relevant to the second client. The stored deletion filter record is sent to the second client. Separately, a client's communications to a server are limited. A request is received to communicate with the server. A throttling policy is accessed. The throttling policy includes multiple ordered policy sections. A policy section indicates that all messages sent from the client to the server, up to the number of messages, must be separated by at least the time period.

Abstract translation: 已启用删除同步的网页浏览历史记录。 从第一客户端接收指定要删除的同步网页浏览历史的删除过滤器记录。 删除过滤器记录与第一客户端的标识符相关联地存储。 从第二个客户端收到一个签到信息。 响应于登记消息，确定存储的删除过滤记录与第二客户端相关。 存储的删除过滤器记录被发送到第二个客户端。 另外，客户端与服务器的通信是有限的。 接收到与服务器通信的请求。 访问节流策略。 限制策略包括多个有序的策略部分。 策略部分指出，从客户端发送到服务器的所有消息，直到消息数量必须至少被分隔一段时间。