Apple invention changes iPhone user authentication settings based on location

Posted:
in General Discussion edited July 2014
A patent application published on Thursday reveals an Apple solution that dynamically changes a mobile device's user interface, security levels and other behaviors based on its location, whether it be at the office or in a user's home.


Source: USPTO


In a filing with the U.S. Patent and Trademark Office titled "Location-sensitive security levels and setting profiles based on detected location," Apple describes a system in which the hardware and software of a mobile device work together to automatically adjust various UI and device behavior settings.

More importantly, the invention delivers a mechanism to adjust iPhone access levels based on its location, meaning different tolerances can be applied based on the relative security of a location. For example, a user may only need a simple four-digit passcode to unlock a device while at home, but authentication via Apple's Touch ID when in public areas like a shopping mall.

Apple notes that any suitable means can be used to determine location -- called a "location aspect" -- including cellular tower data, recognition of a home Wi-Fi network, GPS data or even proximity to other cellphones, among others. At least two location aspects are required for the system to function with any precision.




A secondary data processing logic, dubbed a "location context" module, determines which settings to apply based on the system's relative confidence in correctly placing device location. Using a predefined scale to measure against, the module defaults to certain settings based on thresholds of confidence.

Once homed in on a specific location, or preset threshold, the system determines whether to apply or modify a specialized user profile or device behavior.

Recognized locations can set low-level security factors, while unrecognized locations may trigger more stringent authentication requirements. Likewise, locations recognized as "unsecure" or public, like mobile Wi-Fi hotspots or geofenced areas not on the trusted list, can also invoke higher strength security factors. Further, public areas may also trigger higher authentication requirements for apps holding sensitive information like Address Book and Calendar.

For example, a user may be required to authenticate via Touch ID when outside of a trusted environment, while a passcode or password will do while at home. Once unlocked, the device may lower security requirements for a preset period of time. If the iPhone leaves the area, or the countdown timer reaches zero, the system resets to an appropriate protection level.




While the most stringent security measures should be used to ensure complete protection, the document points out that location-based methods can enhance user experience without introducing significant vulnerabilities. As mentioned in the filing, users may actually be less apt to employ restrictive -- and effective --authentication methods if they find it causes undue burden, which leads to weaker passwords or complete system disablement.

As for customized user profiles, the same location awareness mechanisms described above apply. Instead of modifying security settings, however, the system can change UI behavior and access to device functions based on predefined user preferences. Examples include prominently displaying productivity apps like FaceTime on the home screen when at work, or entertainments apps while at home.

Other examples of device behaviors include a "My Car" setting that allow certain features like dialing 911 and playing music, while disabling others. These settings can be invoked by a variety of triggers including connection to a car's infotainment system.

The remainder of the application focuses on technical minutiae regarding table lookups, alternate embodiments and example system controls including an alert mechanism that notifies the user of current location and operating mode.




Apple's Touch ID has in many ways addressed the perceived issue of employing strong authentication mechanisms without fuss, though some users may still find the feature unnecessary while at home or in a safe location. Adding location awareness to the equation not only streamlines the security process, but also offers a more personalized user experience.

Apple's location-sensitive security patent application was first filed for in 2012 and credits Alexander Reitter, David Amm, Julian Missig and Raymond Walsh as its inventors.
«1

Comments

  • Reply 1 of 27
    wonkothesanewonkothesane Posts: 1,717member
    It seems over the next years smartphones actually start to become smart. :)
  • Reply 2 of 27
    Tom Tom had something similar on their GPS units a long time ago.
  • Reply 3 of 27
    danielswdanielsw Posts: 906member
    Quote:

    Originally Posted by WonkoTheSane View Post



    It seems over the next years smartphones actually start to become smart. image

    No. Machines will never be smart, unless you keep lowering the bar for what qualifies as smart (for humans as well).

     

    The price of freedom is: constant vigilance and the willingness to fight back. So if enough of us keep applying this, machines will remain our servants.

  • Reply 4 of 27
    mac_dogmac_dog Posts: 1,069member
    Quote:

    Originally Posted by WonkoTheSane View Post



    It seems over the next years smartphones actually start to become smart. image

    they're only as smart as the user. ;) 

  • Reply 5 of 27
    hpodhpod Posts: 19member
    Quote:
    Originally Posted by iloveapplegear View Post



    Tom Tom had something similar on their GPS units a long time ago.

     

    Do explain how what you claim Tom Tom had years ago is anything like this?  I've never heard of a GPS with no other functionality having anything like this, or even needing anything like this.

  • Reply 6 of 27
    squarksquark Posts: 1member

    While very useful, I wonder if the patent will hold up.  The Moto X detects when you're in the car and reads caller id and text messages to you, and you can set it to bypass your screen lock when it's connected to specific Bluetooth devices.  While I think the Apple patent goes further, the precedent is there (unless of course Apple applied for the patent before Motorola used it or filed their own patent).

  • Reply 7 of 27
    d4njvrzfd4njvrzf Posts: 797member

    Seems like everyone is getting interested in location-based unlocking. Google filed a similar looking application around the same time, and people had been scripting location-based behavior for their lockscreens even before that.

     

    References:

    (http://appft.uspto.gov/netacgi/nph-Parser?Sect1=PTO2&Sect2=HITOFF&u=/netahtml/PTO/search-adv.html&r=1&p=1&f=G&l=50&d=PG01&S1=(20130822.PD. AND Google.AS.)&OS=PD/20130822 AND AN/Google&RS=(PD/20130822 AND AN/Google)

     

    (http://android.stackexchange.com/questions/30290/looking-for-location-specific-screen-locking-behaviour).

  • Reply 8 of 27
    alcstarheelalcstarheel Posts: 554member
    Touch ID is faster than entering a passcode anyway so that's pretty unnecessary as far as a location-based security setting change. Other stuff looks interesting though.
  • Reply 9 of 27
    rob53rob53 Posts: 3,241member
    Quote:

    Originally Posted by d4NjvRzf View Post

     

    Seems like everyone is getting interested in location-based unlocking. ...


    I presented an idea to my boss a few/several years ago for something that contained many of these ideas but after figuring out what I would need to do, gave up on it because developers didn't have access to the Apple api's needed to do it. What Apple is patenting can only be done by Apple because of sandboxing and a variety of other things. The drawing shows a house but I was using it at work to automagically configure iPhones depending on what building and room they were in. This is a lot easier now with iBeacons and something I hope my former company investigates. Of course, they took an easier way out and just allowed phones in buildings and areas they were never allowed in before, putting the requirement for configuration on the user (like in airplanes where the user used to have to turn off their phone or at leave put it in airplane mode--the honest people did this, everyone else blew off the flight attendants). At this point I don't care about previous attempts, what Apple has patented and the mobile products and ideas they're coming up with will go a long way in putting more iPhones and iPads in the hands of corporate and government workers, which should help AAPL (I care about this now because I could finally invest, which I did).

  • Reply 10 of 27
    fanboifanboi Posts: 1member

    Google filed it last year. They also announced location based unlocking using android wear/phone/chromebook. Looks like Apple copied the idea from Google this time.

  • Reply 11 of 27
    Quote:

    Originally Posted by hpod View Post

     

     

    Do explain how what you claim Tom Tom had years ago is anything like this?  I've never heard of a GPS with no other functionality having anything like this, or even needing anything like this.


    It was (and is ) a feature of TT security about locking and unlocking device at your home location, it was around at least 5 years ago.

  • Reply 12 of 27
    hpodhpod Posts: 19member
    Quote:
    Originally Posted by iloveapplegear View Post

     

    It was (and is ) a feature of TT security about locking and unlocking device at your home location, it was around at least 5 years ago.


     

    And that's not quite the same as this.  What you are referring too is much simpler, and vastly limited in comparison to what Apple submit an application for above.  Patenting a steering wheel isn't the same as patenting a steering wheel that can control radio, a/c, heat, etc., not to mention unlock different features in homes, cars, while walking, etc, complete with different use cases in each of those locations.

  • Reply 13 of 27
    dick applebaumdick applebaum Posts: 12,527member
    mac_dog wrote: »
    It seems over the next years smartphones actually start to become smart. :)
    they're only as smart as the user. <img alt=";)" src="http://forums-files.appleinsider.com/images/smilies/1wink.gif" style="line-height:1.4em;">
     

    Maybe smarter ... Smart phones don't take selfies :D
  • Reply 14 of 27
    theothergeofftheothergeoff Posts: 2,081member
    Quote:
    Originally Posted by DanielSW View Post

     

    No. Machines will never be smart, unless you keep lowering the bar for what qualifies as smart (for humans as well).

     

    The price of freedom is: constant vigilance and the willingness to fight back. So if enough of us keep applying this, machines will remain our servants.


    Most of Human's 'smartness' is contextual awareness, and learned adaptation.   Machines can do this.

     

    Your 2nd paragraph can be equally applied as a racist screed and states a fear that you don't believe your first paragraph.

  • Reply 15 of 27
    theothergeofftheothergeoff Posts: 2,081member
    Quote:
    Originally Posted by AppleInsider View Post

     

    [...]For example, a user may be required to authenticate via Touch ID when outside of a trusted environment, while a passcode or password will do while at home.[...]


    Actually The opposite is more likely the case.

     

    TouchID for 'trusted' scenarios

     

    TouchID AND passcode/word for untrusted.

     

    in a trusted scenario, timers may be relaxed...  instead of 5 minutes in your home, it's 5 hours, or until you leave the premises (and premise can be effectively your WiFi range and/or a GPS/accelerometer distance away (end of your driveway, and not in your CarPlay enabled car that has your iDevice registered).   

     

    That's what I want.  I'm at a truck stop, forget my iPad in the booth, and as soon as my iWatch gets out of range, it locks down immediately, and pass codes are needed to unlock.  I'm at home, I wake up without needing to authenticate to turn on the news, or at worst, just touch my finger to my iPad to unlock it.

  • Reply 16 of 27
    Quote:

    Originally Posted by hpod View Post

     

     

    And that's not quite the same as this.  What you are referring too is much simpler, and vastly limited in comparison to what Apple submit an application for above.  Patenting a steering wheel isn't the same as patenting a steering wheel that can control radio, a/c, heat, etc., not to mention unlock different features in homes, cars, while walking, etc, complete with different use cases in each of those locations.


     

     

    Just saying the concept is not new. 

  • Reply 17 of 27
    hpodhpod Posts: 19member
    Quote:

    Originally Posted by iloveapplegear View Post

     

     

     

    Just saying the concept is not new. 


     

    I don't disagree on that...but this takes that concept to a completely different level.

  • Reply 18 of 27
    dick applebaumdick applebaum Posts: 12,527member
    rob53 wrote: »
    d4njvrzf wrote: »
     
    Seems like everyone is getting interested in location-based unlocking. ...
    I presented an idea to my boss a few/several years ago for something that contained many of these ideas but after figuring out what I would need to do, gave up on it because developers didn't have access to the Apple api's needed to do it. What Apple is patenting can only be done by Apple because of sandboxing and a variety of other things. The drawing shows a house but I was using it at work to automagically configure iPhones depending on what building and room they were in. This is a lot easier now with iBeacons and something I hope my former company investigates. Of course, they took an easier way out and just allowed phones in buildings and areas they were never allowed in before, putting the requirement for configuration on the user (like in airplanes where the user used to have to turn off their phone or at leave put it in airplane mode--the honest people did this, everyone else blew off the flight attendants). At this point I don't care about previous attempts, what Apple has patented and the mobile products and ideas they're coming up with will go a long way in putting more iPhones and iPads in the hands of corporate and government workers, which should help AAPL (I care about this now because I could finally invest, which I did).

    Some of this can be done by 3rd-party developers using iBeacons, TouchID, Extensions. Handoff and HomeKit. *

    A WiFiSLAM API (when implemented) could be used to map buildings and determine inside locations.

    Then, there's this thing called "Apple Connectivity" (not really defined) that will allow an iDevice to control accessories (devices) from a remote location.

    * HomeKit may be a misnomer -- as it's specs are robust enough that it could easily be adapted to enterprise (OfficeKit?):
    • multiple homes ~= multiple buildings or areas
    • multiple zones ~= multiple floors or areas
    • multiple rooms ~= multiple offices, etc
    • multiple accessories including custom
    • multiple services including custom
    • multiple characteristics including custom
    • multiple actionsets/trigger including custom

    Your Boss: "Siri: set the plenum in the HVAC duct to @rob53's office to maintain a 76-degree temperature"

    Siri: "MisterBossMan: I made the change. Do you want me to notify you when the desired temperature is attained"

    Your Boss: "Yes"

    ...

    Siri: "MisterBossMan: @rob53's office is maintaining a 76-degree temperature "
  • Reply 19 of 27
    solipsismxsolipsismx Posts: 19,566member
    I've been wanting this for many years. I also want this authentication to work with a wrist-worn device so that if I get home my Mac will auto-unlock for me when I walk up to it any my iPhone will auto-lock if someone grabs it out of my hand on the subway.
  • Reply 20 of 27
    evilutionevilution Posts: 1,399member
    Quote:

    Originally Posted by hpod View Post

     

     

    Do explain how what you claim Tom Tom had years ago is anything like this?  I've never heard of a GPS with no other functionality having anything like this, or even needing anything like this.


    Yes, some TomTom devices had a passcode you had to put in to use the device or to change any settings unless you were in a set location (usually at home).

Sign In or Register to comment.