公开(公告)号：WO2021262545A1

公开(公告)日：2021-12-30

申请号：PCT/US2021/038039

申请日：2021-06-18

Applicant: APPLE INC.

Inventor： KOVAH, Xeno S. ,  SCHLEJ, Nikolaj ,  MENSCH, Thomas P. ,  BENSON, Wade ,  HAUCK, Jerrold V. ,  DE CESARE, Josh P. ,  JENNINGS, Austin G. ,  DONG, John J. ,  GRAHAM, Robert C. ,  FORTIER, Jacques

IPC: G06F21/57 ,  H04L29/06 ,  H04L9/32 ,  G06F21/575 ,  G06F21/72 ,  G06F21/73 ,  G06F2221/034 ,  G06F9/4406 ,  H04L63/0823 ,  H04L63/123 ,  H04L63/126 ,  H04L9/0897 ,  H04L9/3226 ,  H04L9/3236 ,  H04L9/3247 ,  H04L9/3263 ,  H04L9/3268

Abstract: Techniques are disclosed relating to securing computing devices during boot. In various embodiments, a secure circuit of a computing device generates for a public key pair and signs, using a private key of the public key pair, configuration settings for an operating system of the computing device. A bootloader of the computing device receives a certificate for the public key pair from a certificate authority and initiates a boot sequence to load the operating system. The boot sequence includes the bootloader verifying the signed configuration settings using a public key included in the certificate and the public key pair. In some embodiments, the secure circuit cryptographically protects the private key based on a passcode of a user, the passcode being usable by the user to authenticate to the computing device.

公开(公告)号：WO2020055593A1

公开(公告)日：2020-03-19

申请号：PCT/US2019/048605

申请日：2019-08-28

Applicant: APPLE INC.

Inventor： SEMERIA, Bernard J. ,  ANDRADE, Devon S. ,  ANDRUS, Jeremy C. ,  BOUGACHA, Ahmed ,  COOPER, Peter ,  FORTIER, Jacques ,  GERBARG, Louis G. ,  GROSBACH, James H. ,  MCCALL, Robert J. ,  STEFFEN, Daniel A. ,  UNGER, Justin R.

IPC: G06F21/52 ,  G06F9/455 ,  G06F12/02 ,  H04L9/32 ,  G06F21/54 ,  G06F21/12 ,  H04L9/08 ,  G06F9/38 ,  G06F21/56 ,  H04L29/06 ,  G06F21/78

Abstract: Embodiments described herein enable the interoperability between processes configured for pointer authentication and processes that are not configured for pointer authentication. Enabling the interoperability between such processes enables essential libraries, such as system libraries, to be compiled with pointer authentication, while enabling those libraries to still be used by processes that have not yet been compiled or configured to use pointer authentication.

公开(公告)号：EP4168913A1

公开(公告)日：2023-04-26

申请号：EP21740398.9

申请日：2021-06-18

Applicant: Apple Inc.

Inventor： KOVAH, Xeno S. ,  SCHLEJ, Nikolaj ,  MENSCH, Thomas P. ,  BENSON, Wade ,  HAUCK, Jerrold V. ,  DE CESARE, Josh P. ,  JENNINGS, Austin G. ,  DONG, John J. ,  GRAHAM, Robert C. ,  FORTIER, Jacques

IPC: G06F21/57 ,  H04L29/06 ,  H04L9/32

公开(公告)号：EP3807797A1

公开(公告)日：2021-04-21

申请号：EP19766411.3

申请日：2019-08-28

Applicant: Apple Inc.

Inventor： SEMERIA, Bernard J. ,  ANDRADE, Devon S. ,  ANDRUS, Jeremy C. ,  BOUGACHA, Ahmed ,  COOPER, Peter ,  FORTIER, Jacques ,  GERBARG, Louis G. ,  GROSBACH, James H. ,  MCCALL, Robert J. ,  STEFFEN, Daniel A. ,  UNGER, Justin R.

IPC: G06F21/52 ,  G06F9/455 ,  G06F12/02 ,  H04L9/32 ,  G06F21/54 ,  G06F21/12 ,  H04L9/08 ,  G06F9/38 ,  G06F21/56 ,  H04L29/06 ,  G06F21/78