SECURING IN-APP PURCHASES

Organization Name

apple inc.

Inventor(s)

Thomas Matthieu Alsina of Paris (FR)

Scott T. Boyd of Montara CA (US)

Michael Kuohao Chu of Cupertino CA (US)

Augustin J. Farrugia of Los Altos Hills CA (US)

Gianpaolo Fasoli of Redwood City CA (US)

Patrice O. Gautier of San Francisco CA (US)

Sean B. Kelly of Cupertino CA (US)

Payam Mirrashidi of Los Altos CA (US)

Pedraum Pardehpoosh of Palo Alto CA (US)

Conrad Sauerwald of Mountain View CA (US)

Kenneth W. Scott of San Jose CA (US)

Rajit Shinh of San Francisco CA (US)

Braden Jacob Thomas of San Jose CA (US)

Andrew R. Whalley of San Francisco CA (US)

SECURING IN-APP PURCHASES - A simplified explanation of the abstract

This abstract first appeared for US patent application 20240320721 titled 'SECURING IN-APP PURCHASES

The abstract of this patent application describes a method where a unique identifier is received by an online store, which then creates a signed receipt containing desired data from the identifier. This receipt is sent to a device running the application obtained from the store, where the device can verify the receipt by comparing the derived identifier with the device identifier stored on the device.

• Simplified Explanation:

- Online store receives a unique identifier and creates a signed receipt with desired data. - The receipt is sent to a device running the application, which verifies it by comparing identifiers.

• Key Features and Innovation:

- Utilization of unique identifiers for secure transactions. - Verification process for receipts to prevent fraud. - Integration of device identifiers for validation.

• Potential Applications:

- Secure online transactions. - Digital content distribution. - Anti-counterfeiting measures.

• Problems Solved:

- Preventing unauthorized access to digital content. - Ensuring the authenticity of transactions. - Enhancing security in online purchases.

• Benefits:

- Increased security for online transactions. - Protection against fraud and counterfeiting. - Improved trust between consumers and vendors.

• Commercial Applications:

- Secure online marketplaces. - Digital content platforms. - E-commerce websites.

• Questions about the Technology:

1. How does the verification process work to prevent fraud? - The verification process involves comparing the derived identifier from the signed receipt with the device identifier stored on the device.

2. What are the potential implications of integrating device identifiers for validation? - Integrating device identifiers adds an extra layer of security to transactions, ensuring authenticity and preventing unauthorized access.

By utilizing unique identifiers and a verification process, this technology enhances security in online transactions and digital content distribution, providing benefits such as fraud prevention and increased trust between consumers and vendors.

Original Abstract Submitted

in one embodiment, a unique (or quasi unique) identifier can be received by an application store, or other on-line store, and the store can create a signed receipt that includes data desired from the unique identifier. this signed receipt is then transmitted to a device that is running the application obtained from the on-line store and the device can verify the receipt by deriving the unique (or quasi-unique) identifier from the signed receipt and comparing the derived identifier with the device identifier stored on the device, or the vendor identifier assigned to the application vendor.