Patents by Inventor Eric D. Friedman
Eric D. Friedman has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Publication number: 20240078343Abstract: Techniques are disclosed relating to application verification. In various embodiments, a computing device includes a secure circuit configured to maintain a plurality of cryptographic keys of the computing device. In such an embodiment, the computing device receives, from an application, a request for an attestation usable to confirm an integrity of the application, instructs the secure circuit to use one of the plurality of cryptographic keys to supply the attestation for the application, and provides the attestation to a remote computing system in communication with the application. In some embodiments, the secure circuit is configured to verify received metadata pertaining to the identity of the application and use the cryptographic key to generate the attestation indicative of the identity of the application.Type: ApplicationFiled: September 8, 2023Publication date: March 7, 2024Inventors: Hervé Sibert, Eric D. Friedman, Erik C. Neuenschwander, Jerrold V. Hauck, Thomas P. Mensch, Julien F. Freudiger, Alan W. Yu
-
Publication number: 20230344792Abstract: Systems and methods are disclosed for determining whether a message received by a client may be spam, in a computing environment that preserves privacy. The message may be encrypted. A client invokes the methods when a message is received from a sender that is not known to the client. A client can decrypt the message, break the message into chunks, and apply a differentially private algorithm to the set of chunks. The client transmits the differentially private message sketches to an aggregation server. The aggregation server receives a large collection of such message sketches for a large plurality of clients. The aggregation server returns aggregated message chunk (e.g. frequency) information to the client to assist the client in determining whether the message may be spam. The client can process the message based on the determination without disclosing the message content to the server.Type: ApplicationFiled: June 20, 2023Publication date: October 26, 2023Applicant: Apple Inc.Inventors: Eric D. Friedman, Ritwik K. Kumar, Lucas O. Winstrom
-
Patent number: 11790119Abstract: Techniques are disclosed relating to application verification. In various embodiments, a computing device includes a secure circuit configured to maintain a plurality of cryptographic keys of the computing device. In such an embodiment, the computing device receives, from an application, a request for an attestation usable to confirm an integrity of the application, instructs the secure circuit to use one of the plurality of cryptographic keys to supply the attestation for the application, and provides the attestation to a remote computing system in communication with the application. In some embodiments, the secure circuit is configured to verify received metadata pertaining to the identity of the application and use the cryptographic key to generate the attestation indicative of the identity of the application.Type: GrantFiled: November 13, 2019Date of Patent: October 17, 2023Assignee: Apple Inc.Inventors: Hervé Sibert, Eric D. Friedman, Erik C. Neuenschwander, Jerrold V. Hauck, Thomas P. Mensch, Julien F. Freudiger, Alan W. Yu
-
Patent number: 11722450Abstract: Systems and methods are disclosed for determining whether a message received by a client may be spam, in a computing environment that preserves privacy. The message may be encrypted. A client invokes the methods when a message is received from a sender that is not known to the client. A client can decrypt the message, break the message into chunks, and apply a differentially private algorithm to the set of chunks. The client transmits the differentially private message sketches to an aggregation server. The aggregation server receives a large collection of such message sketches for a large plurality of clients. The aggregation server returns aggregated message chunk (e.g. frequency) information to the client to assist the client in determining whether the message may be spam. The client can process the message based on the determination without disclosing the message content to the server.Type: GrantFiled: March 23, 2022Date of Patent: August 8, 2023Assignee: Apple Inc.Inventors: Eric D. Friedman, Ritwik K. Kumar, Lucas O. Winstrom
-
Publication number: 20220217110Abstract: Systems and methods are disclosed for determining whether a message received by a client may be spam, in a computing environment that preserves privacy. The message may be encrypted. A client invokes the methods when a message is received from a sender that is not known to the client. A client can decrypt the message, break the message into chunks, and apply a differentially private algorithm to the set of chunks. The client transmits the differentially private message sketches to an aggregation server. The aggregation server receives a large collection of such message sketches for a large plurality of clients. The aggregation server returns aggregated message chunk (e.g. frequency) information to the client to assist the client in determining whether the message may be spam. The client can process the message based on the determination without disclosing the message content to the server.Type: ApplicationFiled: March 23, 2022Publication date: July 7, 2022Applicant: Apple Inc.Inventors: Eric D. Friedman, Ritwik K. Kumar, Lucas O. Winstrom
-
Patent number: 11290411Abstract: Systems and methods are disclosed for determining whether a message received by a client may be spam, in a computing environment that preserves privacy. The message may be encrypted. A client invokes the methods when a message is received from a sender that is not known to the client. A client can decrypt the message, break the message into chunks, and apply a differentially private algorithm to the set of chunks. The client transmits the differentially private message sketches to an aggregation server. The aggregation server receives a large collection of such message sketches for a large plurality of clients. The aggregation server returns aggregated message chunk (e.g. frequency) information to the client to assist the client in determining whether the message may be spam. The client can process the message based on the determination without disclosing the message content to the server.Type: GrantFiled: September 11, 2020Date of Patent: March 29, 2022Assignee: Apple Inc.Inventors: Eric D. Friedman, Ritwik K. Kumar, Lucas Winstrom
-
Patent number: 11140171Abstract: A user device can verify a user's identity to a server while protecting user privacy by not sharing personal data with any other device. To ensure user privacy, the user device performs an enrollment process in which the user performs an action sequence. The user device collects action data from the action sequence and uses the action data locally to generate a set of public/private key pairs (or other representation) from which information about the action sequence cannot be extracted. The public keys, but not the underlying action data, are sent to a server to store. To verify user identity, a user device can repeat the collection of action data and the generation of the key pairs. If the device can prove to the server its possession of the private keys to a sufficient degree, the user's identity can be verified.Type: GrantFiled: July 3, 2019Date of Patent: October 5, 2021Assignee: Apple Inc.Inventors: Eric D. Friedman, Nathaniel C. Bush, Jefferson Provost, Vignesh Kumar, Gregory J. Kuhlmann, Tal Tversky, Ritwik K. Kumar, Eric M. Gottschalk, Lucas O. Winstrom
-
Publication number: 20200412681Abstract: Systems and methods are disclosed for determining whether a message received by a client may be spam, in a computing environment that preserves privacy. The message may be encrypted. A client invokes the methods when a message is received from a sender that is not known to the client. A client can decrypt the message, break the message into chunks, and apply a differentially private algorithm to the set of chunks. The client transmits the differentially private message sketches to an aggregation server. The aggregation server receives a large collection of such message sketches for a large plurality of clients. The aggregation server returns aggregated message chunk (e.g. frequency) information to the client to assist the client in determining whether the message may be spam. The client can process the message based on the determination without disclosing the message content to the server.Type: ApplicationFiled: September 11, 2020Publication date: December 31, 2020Inventors: Eric D. Friedman, Ritwik K. Kumar, Lucas Winstrom
-
Patent number: 10868672Abstract: A user device can verify a user's identity to a server while protecting user privacy by not sharing any personal data with any other device. To ensure user privacy and to allow multiple independent enrollments, the user device performs an enrollment process in which the user device locally collects and uses biometric data together with a random salt to generate a set of public/private key pairs from which biometric information cannot be extracted. The public keys and the salt, but not the biometric data, are sent to a server to store. To verify user identity, a user device can repeat the collection of biometric data from the user and the generation of public/private key pairs using the salt obtained from the server. If the device can prove to the server its possession of at least a minimum number of correct private keys, the user's identity can be verified.Type: GrantFiled: September 18, 2019Date of Patent: December 15, 2020Assignee: Apple Inc.Inventors: Augustin J. Farrugia, Ritwik K. Kumar, Gianpaolo Fasoli, Mathieu Ciet, Bruno Kindarji, Eric D. Friedman, Gianluca Barbieri, Lucas O. Winstrom
-
Patent number: 10778633Abstract: Systems and methods are disclosed for determining whether a message received by a client may be spam, in a computing environment that preserves privacy. The message may be encrypted. A client invokes the methods when a message is received from a sender that is not known to the client. A client can decrypt the message, break the message into chunks, and apply a differentially private algorithm to the set of chunks. The client transmits the differentially private message sketches to an aggregation server. The aggregation server receives a large collection of such message sketches for a large plurality of clients. The aggregation server returns aggregated message chunk (e.g. frequency) information to the client to assist the client in determining whether the message may be spam. The client can process the message based on the determination without disclosing the message content to the server.Type: GrantFiled: September 20, 2017Date of Patent: September 15, 2020Assignee: Apple Inc.Inventors: Eric D. Friedman, Ritwik K. Kumar, Lucas Winstrom
-
Publication number: 20200159966Abstract: Techniques are disclosed relating to application verification. In various embodiments, a computing device includes a secure circuit configured to maintain a plurality of cryptographic keys of the computing device. In such an embodiment, the computing device receives, from an application, a request for an attestation usable to confirm an integrity of the application, instructs the secure circuit to use one of the plurality of cryptographic keys to supply the attestation for the application, and provides the attestation to a remote computing system in communication with the application. In some embodiments, the secure circuit is configured to verify received metadata pertaining to the identity of the application and use the cryptographic key to generate the attestation indicative of the identity of the application.Type: ApplicationFiled: November 13, 2019Publication date: May 21, 2020Inventors: Hervé Sibert, Eric D. Friedman, Erik C. Neuenschwander, Jerrold V. Hauck, Thomas P. Mensch, Julien F. Freudiger, Alan W. Yu
-
Publication number: 20200104479Abstract: Systems, methods, and computer-readable media for recommending passcodes for an electronic device using information local to the electronic device are provided. Such local information may be unique to a particular device and/or to a particular device user, such as unique data from one or more device applications, including, but not limited to, a calendar application, a media library application, and a contacts application.Type: ApplicationFiled: May 7, 2019Publication date: April 2, 2020Inventors: Ritwik K. Kumar, Eric D. Friedman
-
Patent number: 10599873Abstract: Systems and methods are described for rate-limiting a message-sending client interacting with a message service based on dynamically calculated risk assessments of the probability that the client is, or is not, a sender of a spam messages. The message service sends a proof of work problem to a sending client device with a difficulty level that is related to a risk assessment that the client is a sender of spam messages. The message system limits the rate at which a known or suspected spammer can send messages by giving the known or suspected spammer client harder proof of work problems to solve, while minimizing the burden on normal users of the message system by given them easier proof of work problems to solve that can typically be solved by the client within the time that it takes to type a message.Type: GrantFiled: September 18, 2017Date of Patent: March 24, 2020Assignee: Apple Inc.Inventors: Lucas O. Winstrom, Eric D. Friedman, Ritwik K. Kumar, Jeremy M. Stober, Amol V. Pattekar, Benoit Chevallier-Mames, Julien Lerouge, Gianpaolo Fasoli, Augustin J. Farrugia, Mathieu Ciet
-
Publication number: 20180089465Abstract: Systems and methods are described for rate-limiting a message-sending client interacting with a message service based on dynamically calculated risk assessments of the probability that the client is, or is not, a sender of a spam messages. The message service sends a proof of work problem to a sending client device with a difficulty level that is related to a risk assessment that the client is a sender of spam messages. The message system limits the rate at which a known or suspected spammer can send messages by giving the known or suspected spammer client harder proof of work problems to solve, while minimizing the burden on normal users of the message system by given them easier proof of work problems to solve that can typically be solved by the client within the time that it takes to type a message.Type: ApplicationFiled: September 18, 2017Publication date: March 29, 2018Inventors: Lucas O. Winstrom, Eric D. Friedman, Ritwik K. Kumar, Jeremy M. Stober, Amol V. Pattekar, Benoit Chevallier-Mames, Julien Lerouge, Gianpaolo Fasoli, Augustin J. Farrugia, Mathieu Ciet
-
Publication number: 20180091466Abstract: Systems and methods are disclosed for determining whether a message received by a client may be spam, in a computing environment that preserves privacy. The message may be encrypted. A client invokes the methods when a message is received from a sender that is not known to the client. A client can decrypt the message, break the message into chunks, and apply a differentially private algorithm to the set of chunks. The client transmits the differentially private message sketches to an aggregation server. The aggregation server receives a large collection of such message sketches for a large plurality of clients. The aggregation server returns aggregated message chunk (e.g. frequency) information to the client to assist the client in determining whether the message may be spam. The client can process the message based on the determination without disclosing the message content to the server.Type: ApplicationFiled: September 20, 2017Publication date: March 29, 2018Inventors: Eric D. Friedman, Ritwik K. Kumar, Lucas Winstrom
-
Patent number: 7685741Abstract: A shoe comprising a foot retaining portion having a heel area and having an interior side, the interior side sized and shaped to hold a foot and including an upper portion, the upper portion optionally lined with a pliable material; a first exterior insole layer having therein a cut-out adjacent the heel area of the foot retaining portion, the first exterior inside layer having an interior surface forming the bottom of the foot retaining portion and that is lined with pliable material; a second exterior insole layer having a heel strike pad sized and shaped to fit within the cut-out of the first exterior insole layer, the heel strike pad comprised of a material that absorbs and disperses heel strike forces; a third exterior insole layer sized to fit the foot retaining portion and having therein a cut-out adjacent the heel area of the foot retaining portion, the third exterior insole layer comprised of a material that provides foot cushioning; a fourth exterior insole layer adjacent the third exterior insole lType: GrantFiled: December 5, 2006Date of Patent: March 30, 2010Assignee: The Grandoe CorporationInventor: Eric D. Friedman
-
Patent number: 6718556Abstract: An improved article of hand-wear comprising a mitten or a glove having an additional finger or digital section of insulating material, corresponding to the finger section of the article of hand-wear. The article comprises: (a) an inner lining that is preferably moisture absorbent, into which the hand is inserted; (b) an insulating lining made of micro-fibers covering the inner lining; (c) a second insulating micro-fiber ““pouch”” or ““cap”” (hereinafter also ““macrocap””) over the integral fingers or digital section into which the first micro-fiber lining and inner lining is inserted; and (d) an outer cover covering all of the above.Type: GrantFiled: October 18, 2001Date of Patent: April 13, 2004Inventors: Richard J. Zuckerwar, Eric D. Friedman
-
Publication number: 20030074713Abstract: An improved article of hand-wear comprising a mitten or a glove having an additional finger or digital section of insulating material, corresponding to the finger section of the article of hand-wear. The article comprises: (a) an inner lining that is preferably moisture absorbent, into which the hand is inserted; (b) an insulating lining made of micro-fibers covering the inner lining; (c) a second insulating micro-fiber ““pouch”” or ““cap”” (hereinafter also ““macrocap””) over the integral fingers or digital section into which the first micro-fiber lining and inner lining is inserted; and (d) an outer cover covering all of the above.Type: ApplicationFiled: October 18, 2001Publication date: April 24, 2003Inventors: Richard J. Zuckerwar, Eric D. Friedman