ACCESSORY ASSISTED ACCOUNT RECOVERY

Organization Name

Apple Inc.

Inventor(s)

YANNICK L. Sierra of San Francisco CA (US)

LUCIA E. Ballard of San Francisco CA (US)

KYLE C. Brogle of San Francisco CA (US)

DJ Capelis of San Francisco CA (US)

ACCESSORY ASSISTED ACCOUNT RECOVERY - A simplified explanation of the abstract

This abstract first appeared for US patent application 18464002 titled 'ACCESSORY ASSISTED ACCOUNT RECOVERY

Simplified Explanation

The patent application describes a method for accessory assisted account recovery, which allows users to bypass the use of one-time keys or account recovery codes. Here are the key points:

• The method utilizes an accessory device with a secure processor or cryptographic engine to accelerate or perform cryptographic operations.
• An account recovery key is divided into multiple portions, and at least one portion is encrypted.
• The accessory device is uniquely configured to decrypt the encrypted portion of the account recovery key.

Potential Applications

This technology can have various applications, including:

• Account recovery for online services: Users can securely recover their accounts without relying on one-time keys or recovery codes.
• Two-factor authentication: The accessory device can be used as an additional factor for authentication, enhancing security.

Problems Solved

The technology addresses the following problems:

• Inconvenience of one-time keys or recovery codes: Users often struggle with the hassle of using and managing one-time keys or recovery codes for account recovery.
• Security vulnerabilities: One-time keys or recovery codes can be compromised, leading to unauthorized access to user accounts.

Benefits

The technology offers several benefits:

• Enhanced security: By utilizing an accessory device with a secure processor, cryptographic operations can be performed in a secure execution environment, reducing the risk of unauthorized access.
• Simplified account recovery: Users can bypass the need for one-time keys or recovery codes, making the account recovery process more convenient and user-friendly.

Original Abstract Submitted

Embodiments described herein enable a user to bypass the use of one-time keys or account recovery codes by providing techniques for accessory assisted account recovery. In various embodiments, accessory assisted account recovery makes use of an accessory device of a user, where the accessory device can be any device having a secure processor, cryptographic engine, public key accelerator, or is otherwise able to accelerate cryptographic operations or perform cryptographic operations in a secure execution environment. An account recovery key can be split into multiple portions. At least one portion of the recovery key is then encrypted. The accessory device is then configured to be uniquely capable of decrypting the encrypted portion of an account recovery key.