公开(公告)号：WO2016195797A1

公开(公告)日：2016-12-08

申请号：PCT/US2016/025427

申请日：2016-03-31

Applicant: APPLE INC.

Inventor： FORD, Michael, D. ,  HAUCK, Jerrold, V. ,  WATSON, Matthew, G. ,  ADLER, Mitchell, D. ,  DE ATLEY, Dallas, B. ,  WILSON, James

IPC: H04L9/00 ,  H04L9/08

CPC classification number: G06F12/1408 ,  G06F11/1448 ,  G06F21/6218 ,  G06F2201/80 ,  G06F2212/1052 ,  H04L9/006 ,  H04L9/0822 ,  H04L9/0825 ,  H04L9/088 ,  H04L9/0894 ,  H04L9/0897

Abstract: Some electronic devices store various types of confidential information such as passwords, account numbers, credit card numbers, etc. This information may be shared with other electronic devices owned by the same user. However, electronic devices are often lost, stolen, or replaced with a newer model. Ideally, a user should be able to install this confidential data on a new device easily. At the same time, however, the confidential data should be stored in such a way that the data is protected from attackers.

Abstract translation: 一些电子设备存储各种类型的机密信息，例如密码，帐号，信用卡号等。该信息可以与由同一用户拥有的其他电子设备共享。 然而，电子设备往往丢失，被盗或更换为较新型号。 理想情况下，用户应该能够轻松地在新设备上安装这些机密数据。 然而，同时，机密数据应以保护数据免受攻击者的方式存储。

公开(公告)号：WO2017218208A1

公开(公告)日：2017-12-21

申请号：PCT/US2017/035601

申请日：2017-06-02

Applicant: APPLE INC.

Inventor： BENSON, Wade ,  KROCHMAL, Marc, J. ,  LEDWITH, Alexander, R. ,  IAROCCI, John ,  HAUCK, Jerrold, V. ,  BROUWER, Michael ,  ADLER, Mitchell, D. ,  SIERRA, Yannick, L.

IPC: H04L29/06

Abstract: Some embodiments of the invention provide a method for a trusted (or originator) device to modify the security state of a target device (e.g., unlocking the device) based on a securing ranging operation (e.g., determining a distance, proximity, etc.). The method of some embodiments exchanges messages as a part of a ranging operation in order to to determine whether the trusted and target devices are within a specified range of each other before allowing the trusted device to modify the security state of the target device. In some embodiments, the messages are derived by both devices based on a shared secret and are used to verify the source of ranging signals used for the ranging operation. In some embodiments, the method is performed using multiple different frequency bands.

Abstract translation: 本发明的一些实施例提供一种用于可信任（或发起者）设备基于安全测距操作来修改目标设备的安全状态（例如，解锁设备）的方法（例如，确定 距离，接近度等）。 一些实施例的方法交换消息作为测距操作的一部分，以便在允许可信设备修改目标设备的安全状态之前确定可信设备和目标设备是否在彼此的指定范围内。 在一些实施例中，消息是由两个设备基于共享秘密导出的并且被用于验证用于测距操作的测距信号源。 在一些实施例中，该方法使用多个不同的频带来执行。

公开(公告)号：WO2016195798A1

公开(公告)日：2016-12-08

申请号：PCT/US2016/025431

申请日：2016-03-31

Applicant: APPLE INC.

Inventor： ADLER, Mitchell, D. ,  BROUWER, Michael ,  WHALLEY, Andrew, R. ,  HURLEY, John, C. ,  MURPHY, Richard, F. ,  FINKELSTEIN, David, P.

IPC: H04W4/08 ,  H04L29/08

CPC classification number: G06F3/0604 ,  G06F3/065 ,  G06F3/0683 ,  H04L9/3268 ,  H04L67/1044 ,  H04L67/1095 ,  H04W4/08

Abstract: A user that owns multiple devices with overlapping functionality is becoming increasingly common. Smartphones, tablets, and computers all access the web, allow a user to process photos, etc., and users tend to have several such devices. Thus, a user wanting to share data between their devices and have access to data on multiple devices is increasingly common as well. Users may commonly use all sorts of different techniques to transfer data between devices, such as flash memory sticks, e-mail, etc. More efficient techniques for automatically sharing data between a user's devices are desired.

Abstract translation: 拥有多个具有重叠功能的设备的用户正变得越来越普遍。 智能手机，平板电脑和计算机都可以访问网络，允许用户处理照片等，并且用户倾向于具有多个这样的设备。 因此，希望在其设备之间共享数据并且能够访问多个设备上的数据的用户也越来越普遍。 用户通常可以使用各种不同的技术来在设备之间传输数据，例如闪存棒，电子邮件等。需要在用户设备之间自动共享数据的更有效的技术。

公开(公告)号：EP3925254A1

公开(公告)日：2021-12-22

申请号：EP20724335.3

申请日：2020-04-16

Applicant: Apple Inc.

Inventor： LEDWITH, Alexander, R. ,  BENSON, Wade ,  KROCHMAL, Marc, J. ,  IAROCCI, John, J. ,  HAUCK, Jerrold, V. ,  BROUWER, Michael ,  ADLER, Mitchell, D. ,  SIERRA, Yannick, L. ,  SYKORA, Libor ,  MARGARITOV, Jiri

IPC: H04W12/00 ,  H04L29/06

公开(公告)号：EP3304947A1

公开(公告)日：2018-04-11

申请号：EP16718754.1

申请日：2016-03-31

Applicant: Apple Inc.

Inventor： ADLER, Mitchell, D. ,  BROUWER, Michael ,  WHALLEY, Andrew, R. ,  HURLEY, John, C. ,  MURPHY, Richard, F. ,  FINKELSTEIN, David, P.

IPC: H04W4/08 ,  H04L29/08

CPC classification number: G06F3/0604 ,  G06F3/065 ,  G06F3/0683 ,  G06Q90/00 ,  H04L9/3268 ,  H04L67/1044 ,  H04L67/1095 ,  H04W4/08

Abstract: Some embodiments provide a method for a first device to synchronize a set of data items with a second device. The method receives a request to synchronize the set of data items stored on the first device with the second device. The method determines a subset of the synchronization data items stored on the first device that belong to at least one synchronization sub-group in which the second device participates. Participation in at least one of the synchronization sub-groups is defined based on membership in at least one verification sub-group. The first and second devices are part of a set of related devices with several different verification sub-groups. The method sends only the subset of the synchronization data items that belong to at least one synchronization sub-group in which the second device participates to the second device using a secure channel.

公开(公告)号：EP2946541B1

公开(公告)日：2020-11-25

申请号：EP13822059.5

申请日：2013-12-24

Applicant: Apple Inc.

Inventor： BROUWER, Michael ,  DE ATLEY, Dallas, B. ,  ADLER, Mitchell, D.

IPC: H04L29/06 ,  H04L29/08

公开(公告)号：EP3449611A1

公开(公告)日：2019-03-06

申请号：EP17731348.3

申请日：2017-06-02

Applicant: Apple Inc.

Inventor： BENSON, Wade ,  KROCHMAL, Marc, J. ,  LEDWITH, Alexander, R. ,  IAROCCI, John ,  HAUCK, Jerrold, V. ,  BROUWER, Michael ,  ADLER, Mitchell, D. ,  SIERRA, Yannick, L.

IPC: H04L29/06

公开(公告)号：WO2016195799A1

公开(公告)日：2016-12-08

申请号：PCT/US2016/025440

申请日：2016-03-31

Applicant: APPLE INC.

Inventor： ADLER, Mitchell, D. ,  BROUWER, Michael ,  WHALLEY, Andrew, R. ,  HURLEY, John, C. ,  MURPHY, Richard, F. ,  FINKELSTEIN, David, P.

IPC: H04W4/08 ,  H04L29/08

CPC classification number: G06F3/0604 ,  G06F3/065 ,  G06F3/0683 ,  H04L9/3268 ,  H04L67/1044 ,  H04L67/1095 ,  H04W4/08

Abstract: Some embodiments provide a method for a first device that identifies definitions of different groups of devices, each of which is defined by a set of properties required for a device to be a member. The method monitors properties of the first device to determine when the device is eligible for membership in a group. When the first device is eligible for membership in a first group of which the device is not a member, the method sends an application for membership in the first group signed with at least a private key of the device to at least one other device that is a member of the first group. When the first device becomes ineligible for membership in a second group of which the first device is a member, the method removes the device from the second group and notifies other devices that are members of the second group.

Abstract translation: 一些实施例提供了一种用于识别不同组的设备的定义的第一设备的方法，每个设备组由设备成为成员所需的一组属性来定义。 该方法监视第一个设备的属性，以确定设备何时符合组中的成员身份。 当第一设备有资格成为设备不是其成员的第一组的成员资格时，该方法向至少一个其他设备发送用于设备的至少一个私钥签名的第一组中的成员身份的应用， 第一组的成员。 当第一设备变得不符合第一设备成员的第二组的成员资格时，该方法从第二组中移除设备并通知作为第二组的成员的其他设备。

公开(公告)号：WO2015030912A1

公开(公告)日：2015-03-05

申请号：PCT/US2014/043382

申请日：2014-06-20

Applicant: APPLE INC.

Inventor： KHAN, Ahmer, A. ,  HAGGERTY, David, T. ,  DICKER, George, R. ,  HAUCK, Jerrold, V. ,  LINDE, Joakim ,  ADLER, Mitchell, D. ,  ROSEN, Zachary, A. ,  VAID, Yousuf, H. ,  SHARP, Christopher

IPC: G06F21/35 ,  G06Q20/32 ,  G06Q20/40

CPC classification number: G06Q20/42 ,  G06F21/35 ,  G06Q20/32 ,  G06Q20/3226 ,  G06Q20/40 ,  G06Q20/4016

Abstract: Systems, methods, and computer-readable media for provisioning credentials on an electronic device are provided. In one example embodiment, a secure platform system may be in communication with an electronic device and a financial institution subsystem. The secure platform system may be configured to, inter alia , receive user account information from the electronic device, authenticate a user account with a commercial entity using the received user account information, detect a commerce credential associated with the authenticated user account, run a commercial entity fraud check on the detected commerce credential, commission the financial institution subsystem to run a financial entity fraud check on the detected commerce credential based on the results of the commercial entity fraud check, and facilitate provisioning of the detected commerce credential on the electronic device based on the results of the financial entity fraud check. Additional embodiments are also provided.

Abstract translation: 提供了用于在电子设备上提供凭证的系统，方法和计算机可读介质。 在一个示例性实施例中，安全平台系统可以与电子设备和金融机构子系统通信。 安全平台系统可以被配置为特别地从电子设备接收用户帐户信息，使用接收到的用户帐户信息向商业实体验证用户帐户，检测与经认证的用户帐户相关联的商业凭证，运行商业广告 实体欺诈检查检测到的商业凭证，委托金融机构子系统根据商业实体欺诈检查的结果对检测到的商业凭证进行金融实体欺诈检查，并促进在电子设备上提供检测到的商业凭证 关于金融实体欺诈检查的结果。 还提供了另外的实施例。

公开(公告)号：WO2014113196A4

公开(公告)日：2014-07-24

申请号：PCT/US2013/077724

申请日：2013-12-24

Applicant: APPLE INC.

Inventor： BROUWER, Michael ,  DE ATLEY, Dallas, B. ,  ADLER, Mitchell, D.

IPC: H04L29/06 ,  H04L29/08

Abstract: Some embodiments provide non-transitory machine-readable medium that stores a program which when executed by at least one processing unit of a device synchronizes a set of key chains stored on the device with a set of other devices. The device and the set of other devices are communicatively coupled to one another through a peer-to-peer (P2P) network. The program receives a modification to a keychain in the set of keychains stored on the device. The program generates an update request for each device in the set of other devices in order to synchronize the set of keychains stored on device with the set of other devices. The program transmits through the P2P network the set of update requests to the set of other devices over a set of separate, secure communication channels.