Copyright © 2022, Quiller Media, Inc.
AppleInsider is supported by its audience and may earn commission as an Amazon Associate and affiliate partner on qualifying purchases. These affiliate partnerships do not influence our editorial content.
Apple is researching a development of its Secure Enclave technology to securely allow multiple users to share one iPhone or iPad without revealing private info to the other users.
"Provision of domains in secure enclave to support multiple users," is a patent, newly granted to Apple, which is very specifically about securely allowing more than one user to use a device. That could mean Macs as much as it could iOS. Apple even refers to "both single user mobile computing devices and multi-user laptop and desktop computing devices."
Given that the Mac already has multi-user support, though, this patent's more likely aim is to bring that functionality to iOS devices. And above all else, to do so securely.
"A computing device can employ several passcodes and associated encryption keys, where multiple passcodes or encryptions keys may be associated with each different user account on the system," says the patent.
"Before a user can obtain access to data stored on the computing device, the user may be required successfully authenticate via the login screen," it continues. "However, it may still be possible to gain access to data stored on the computing system without knowledge of a username/password or passcode if the data is stored in an unencrypted manner."
"A malicious attacker may be able to extract data directly from the memory," continues the patent. "If the attacker has physical access to the computing system, the attacker can remove one or more storage devices from the system and access those devices via a different system."
So as well as being concerned with recognizing more than one user through "several passcodes and associated encryption keys," Apple wants those keys to "secure data within the computing system."
If Apple does apply this to iOS devices, then naturally every user needs to have their personal information, from logins to Apple Pay details, secured. Yet every user will also need access to certain shared features of the device, such as its web browser, or there's no point them having use of the iPhone at all.
"[Consequently, to] enable multi-user access to the data processing system, group keys can be created, such that via membership within a group on the system (e.g., administrators, users, etc.) can enable different levels of access to the system," says the patent.
Much of the patent's detail centers on "the use of a peripheral processor or processing system that is separate from the system processors." This peripheral processor "is a system on a chip (SoC) integrated circuit that enables various secure peripheral and input/output (I/O) operations."
Apple doesn't want to tie itself down to saying specifically the T2 chip, but it does say this system "can include a secure enclave processor (SEP)."
What it possibly belabors is how that SEP, or similar, limits access to only what the specific user is authorized to use. The SEP can be "the primary arbiter of all data access on the system," meaning that everything must route through this future version of the T2 chip.
As part of this, the patent details methods of how one authorized user can set what another user may see. It discusses how the regular system, or a rogue user, "cannot gain access to resources within the SEP."
Aside from the potential for multiple users to share a device, most of this security is hidden behind the familiar passcode or, possibly, Face ID. What a user might see, though, includes what happens when they enter the wrong passcode.
We're already familiar with the idea that after so many failed login attempts, you get locked out. Apple's patent suggests that before you get to that stage, the system could be deliberately slowed down.
"Passcode throttling can be enabled some single-user mobile computing devices, such as smartphone or tablet computing devices," it says, "to limit the rate in which an unauthorized user can attempt to enter incorrect passcodes."
"As an additional technique, the rate of passcode entry can be throttled after a pre-determined number of incorrect authentication attempts," it continues. "Throttling the rate of incorrect attempts provides various benefits, including limiting the likelihood in which an accidental lockout occurs and frustrating the ability to of a malicious attacker to perform a brute-force passcode attack."
This patent is credited to three inventors, Pierre Olivier Martel, Arthur Mesh, and Wade Benson. Among their many related previous patents is one concerning access of multiple users to data containers on a single device.
The new patent is far from Apple's first research into multiple users on an iOS device. As long ago as 2013, it was applying for a comprehensive patent regarding several users of the same Touch ID-enabled device.
One of the primary guiding principles in mainframe computing was always the separation of software and data. The two were never, ever mixed.Had PC (and now mobile) computing followed that guideline much trouble would have been avoided. But, it is too late for that now -- the idea of one big pot for software and data is not only enshrined in technology but in the culture of technology. In any case, as iPads (and eventually) iPhones include more PC type functionality, it makes sense that multiple users would make sense (but mostly for the iPad).
It’s the right thing to patent. Yet I doubt that we will see it deployed on the iPad. Apple would rather sell everyone their own device. What does make sense, with the convergence of MacOS and iOS, is for you to login to your own “account” on any device, anywhere, to use your apps and work with your data. Similarly, all versions of the Apple Watch should work independently of an iPhone. The device should be secondary.
GeorgeBMac said: One of the primary guiding principles in mainframe computing was always the separation of software and data. The two were never, ever mixed.Had PC (and now mobile) computing followed that guideline much trouble would have been avoided. But, it is too late for that now -- the idea of one big pot for software and data is not only enshrined in technology but in the culture of technology. In any case, as iPads (and eventually) iPhones include more PC type functionality, it makes sense that multiple users would make sense (but mostly for the iPad). It’s only too late because tech geeks don’t like change.
It’s only too late because tech geeks don’t like change.
This is short-sighted thinking by Apple. What Apple should do is implement a way where I can walk up to someone else's Mac or iOS device, show my biometrics and PIN, and then see my own iCloud data on that device. I'll bet you they are already thinking about it, and maybe even testing it. Those of you with half a brain will probably say, "But then the biometric information would have to be store in the cloud." Not necessarily. For example, if I'm wearing an Apple Watch, there could be a protocol where the Watch and the secondary device near me exchange information (securely) so that the authentication is all done locally. The data on the secondary device would have to be encrypted locally on a per-user basis, so that when I leave the device nobody can access my data. I'm not sure if Macs or iOS devices currently do that, but they certainly could. If Apple doesn't do this, Google should. I hope they are reading this. This is the future.
Apple has extended its repair program for iPhone 12 models that experience earpiece sound issues for an additional year.
Responding to earlier reports, Apple analyst Ming-Chi Kuo has chimed in on why he thinks that the iPhone 14 will launch earlier in the year than the iPhone 13 did, based on clues from Apple's last earnings call.
Apple's iOS 16 will make the iPhone more customizable than ever. This is the ultimate guide on how to make the iPhone a more personal device.
MSI's Creator Z17 notebook is billed as a productivity workhorse with a sleek design. On paper, it's even capable of taking on Apple's creative powerhouse, the 16-inch MacBook Pro. Here's how they compare.
The iPad Pro and the MacBook Air are powerful and reasonably-priced ways to work. Here's what to consider when trying to choose one over the other.
We have both M2 Macs here in our testing studio. We're comparing the M2 MacBook Air against the M2 MacBook Pro to see how they stack up and how much of a difference the thermal limitations make.
Master & Dynamic's MW75 are high-quality headphones offering ANC features, directly competing against Apple's AirPods Max. Here's how the premium personal audio accessories compare.
The new Surface Laptop Go 2 is a thin and light Windows notebook at a low cost, and has been positioned by Microsoft to be a competitor to Apple's latest M2 MacBook Air. Here's how the ultra-portable notebooks compare.
First season of 'See' available for free on Apple TV+ ahead of season 3 premiere
Apple extends repair program for iPhone 12 models affected with 'no sound issue'
Controversial Apple-1 said to be owned by Steve Jobs sells for small fortune
Apple's latest security update is important, but the mass-media response is unhinged
Oeplay MusicStar5 review: Fantastic audio quality with some significant issues in the design
Apple continuing full-court press against retail unionization efforts
Apple AirPower prototype given close look in new video
Daily deals August 19: Apple Magic Keyboard for $75, $150 off M2 MacBook Pro, 88% off Microsoft Office, more
Apple has extended its repair program for iPhone 12 models that experience earpiece sound issues for an additional year.
Responding to earlier reports, Apple analyst Ming-Chi Kuo has chimed in on why he thinks that the iPhone 14 will launch earlier in the year than the iPhone 13 did, based on clues from Apple's last earnings call.
Apple's iOS 16 will make the iPhone more customizable than ever. This is the ultimate guide on how to make the iPhone a more personal device.
Apple's updated MacBook Air is a compact powerhouse of a notebook, and Dell's XPS 13 Plus tailors to the same market segment. Here's how the two notebooks stand in our hands on side-by-side comparison.
Televisions and computer monitors are relatively similar in how they function and what they do, but they're not really interchangeable products. This is why monitors and TVs should be used for different purposes.
Google's introduction of the Pixel 6a pits its latest Android smartphone squarely against Apple's iPhone SE, but is it enough to pull away potential iPhone buyers over to the other side?
The "iPhone 14" lineup is expected to be incredibly similar to the iPhone 13 with minor changes like increased RAM and a new "max" model. Check out the rumored "iPhone 14 Max" in AR and find all the details here.
With Samsung on the cusp of releasing another generation of foldable smartphones, questions are popping up about if it is too late for Apple to be a big mover with a foldable iPhone. Here's how Apple might approach it.
As a recent addition to the Serena Shades by Lutron lineup, the new architectural honeycomb shades are an essential part of any HomeKit smart home.
Casetify's new "Toy Story" collection is full of nostalgia for Pixar fans with cases, watch bands, batteries, and more. We took a look at a few of the new case designs for iPhone 13 Pro.
The Das Keyboard MacTigr is a full-sized mechanical keyboard for Mac with a minimalist design and no flashy features.
The new Hyper 245W GaN Desktop Charger is compact, sleek, and the most powerful multi charger you can have at the ready. You'll have no issue charging your USB-C gear with four outputs, including multiple Apple laptops at full speed.
The new third-generation Eve Aqua has a fresh design, Thread support, and works exclusively with HomeKit. Here's how it works, and how it's different than older models.
AppleInsider is one of the few truly independent online publications left. If you love what we do, please consider a small donation to help us keep the lights on.
If you love AppleInsider and want to support independent publications, please consider a small donation.