Techniques for anonymous rate limiting for services

Assignee

• Apple Inc. · US

Inventors

• Daniel Chu · Folsom, US
• Fabio Sozzani · Cologno Monzese, IT
• Ying-Chun Chen · New Taipei, TW
• Betim Deva · Mountain View, US
• Mufaddal Y. Khumri · San Jose, US

Key dates

Classification

• Technology area (CPC H)Electricity
• CPC primaryH04L9/3257
• WIPO fieldDigital communication
• WIPO sectorElectrical engineering

Abstract

A service client on a device can generate an access control identifier using a server seeded and client-specific secret. The device can generate a blinded access control identifier (ACI) using a randomness factor as part of a request message for a blinded ACI signature including authentication data. The device can transmit the request message to a verification server and upon verification receive a blinded ACI signature message that can subsequently be unblinded using the randomness factor to obtain the ACI signature. The device may send the ACI and the ACI signature to a verification server and after verifying the signature receive a service token. The device may transmit the service token to a service provider server requesting access to the service. When a rate associated with the service token is below a threshold rate, the device can access the service provided by the service provider service.