公开(公告)号：US20230018945A1

公开(公告)日：2023-01-19

申请号：US17935049

申请日：2022-09-23

Applicant: Apple Inc.

Inventor： Raj S. CHAUGULE ,  Anish Kumar GOYAL ,  Elliot S. BRIGGS ,  Li LI ,  Zexing SHI

IPC: H04W8/20

Abstract: This Application describes mechanisms to transfer cellular service plans and associated credentials efficiently between wireless devices. Information regarding transferability of cellular services for SIMs/eSIMs to a wireless device are obtained from locally stored or remotely accessible cellular service information and/or associated mobile network operator (MNO) information. Access to network-based servers to determine transferability and/or to effect transfer can use non-cellular connections when available. Transferability information can be presented to a user to narrow selection of cellular service plans to transfer.

公开(公告)号：US20220104005A1

公开(公告)日：2022-03-31

申请号：US17449440

申请日：2021-09-29

Applicant: Apple Inc.

Inventor： Can XIONG ,  Sherman X. JIN ,  Eric ZELENKA ,  Graham S. McLUHAN ,  Li LI ,  Rafael L. RIVERA-BARRETO ,  Raj S. CHAUGULE ,  Rohan C. MALTHANKAR

IPC: H04W8/20 ,  H04W8/18 ,  H04W12/30 ,  H04W4/50

Abstract: This Application describes mechanisms for enterprise remote management of cellular services provided via access credentials, e.g., subscriber identity modules (SIMs) and/or electronic SIMS (eSIMs), for wireless devices. To minimize requirements for user interaction, installation and management of business-supplied cellular service profiles on the wireless device can intercept alert notifications to reduce interruptions and allow for background management of the business-supplied cellular service profiles. Additionally, a business enterprise can use multiple, distinct services to initiate installation of an eSIM to a wireless device. When two different services attempt to install eSIMs on the wireless device in parallel, management software on the wireless device can control an order of installation and disallow duplicate installations of an identical eSIM to the wireless device. The management software can also monitor eSIM installations and manage alert notifications that occur during the eSIM installation process.

公开(公告)号：US20220022014A1

公开(公告)日：2022-01-20

申请号：US17305859

申请日：2021-07-15

Applicant: Apple Inc.

Inventor： Li LI ,  Vikram Bhaskara YERRABOMMANAHALLI ,  Rafael L. RIVERA-BARRETO ,  Sherman X. JIN ,  Clive E. RODGERS ,  Najeeb M. ABDULRAHIMAN

IPC: H04W4/50 ,  H04W8/18

Abstract: This Application sets forth techniques for binding and dynamic provisioning of international mobile equipment identifier (IMEI) values with cellular wireless service profiles, such as subscriber identity modules (SIMS) on physical SIM (pSIM) cards and electronic SIMs (eSIMs) on an embedded universal integrated circuit card (eUICC) of the mobile wireless device. When pSIMs and/or eSIMs change on the mobile wireless device, e.g., based on installation, activation, deactivation, de-installation, etc., IMEI binding logic accounts for the changes and maps IMEI values to pSIMs and/or eSIMs as required. IMEI values can be assigned based on a history of bindings between IMEI values and ICCID values of one or more eSIMS on an eUICC. A most recently used or a newly assigned IMEI value can be associated with an eSIM. Whether to assign an identical IMEI value to multiple eSIMs depends on requirements of associated cellular wireless service subscriptions.

公开(公告)号：US20200304327A1

公开(公告)日：2020-09-24

申请号：US16841273

申请日：2020-04-06

Applicant: Apple Inc.

Inventor： Xiangying YANG ,  Li LI ,  Avinash NARASIMHAN ,  Jean-Marc PADOVA

IPC: H04L9/32 ,  H04W4/70 ,  H04W12/00

Abstract: Duplicate processing of events registered at a root server is avoided. An electronic subscriber identity module (eSIM) server pushes, to a root server, data in the form of notification data portions indicating that commands or events need to be processed by a device. The device includes an embedded universal integrated circuit card (eUICC). The device pulls a notification list from the root server. The notification list includes one or more notification data portions. The device checks a given notification data portion to see if it represents a duplicate before communicating with the eSIM server to perform further processing related to the event. The device bases the check for duplication on an event history and/or on a hash value where the hash value is based on one or more eSIMs installed in the eUICC. The device is able to prioritize notification data portions before processing them.

公开(公告)号：US20190239075A1

公开(公告)日：2019-08-01

申请号：US16384844

申请日：2019-04-15

Applicant: Apple Inc.

Inventor： Xiangying YANG ,  Li LI ,  Jerrold Von HAUCK

IPC: H04W12/06 ,  H04W4/60 ,  H04L9/32 ,  H04W12/00 ,  G06F21/32 ,  H04W4/50 ,  H04W12/08

CPC classification number: H04W12/06 ,  G06F21/32 ,  H04L9/3231 ,  H04L9/3271 ,  H04L2209/80 ,  H04W4/50 ,  H04W4/60 ,  H04W12/0023 ,  H04W12/08

Abstract: The embodiments set forth techniques for an embedded Universal Integrated Circuit Card (eUICC) to conditionally require, when performing management operations in association with electronic Subscriber Identity Modules (eSIMs), human-based authentication. The eUICC receives a request to perform a management operation in association with an eSIM. In response, the eUICC determines whether a policy being enforced by the eUICC indicates that a human-based authentication is required prior to performing the management operation. Next, the eUICC causes the mobile device to prompt a user of the mobile device to carry out the human-based authentication. The management operation is then performed or ignored in accordance with results of the human-based authentication.

公开(公告)号：US20190074983A1

公开(公告)日：2019-03-07

申请号：US16117642

申请日：2018-08-30

Applicant: Apple Inc.

Inventor： Xiangying YANG ,  Avinash NARASIMHAN ,  Li LI ,  David I. AHN ,  Jean-Marc PADOVA ,  Clark P. MUELLER ,  David T. HAGGERTY

IPC: H04L9/32 ,  H04L9/30

Abstract: Embodiments provided herein identify a certificate issuer (CI) to be relied on as a trusted third party by an electronic subscriber identity module (eSIM) server in remote SIM provisioning (RSP) transactions with an embedded universal integrated circuit card (eUICC). In an RSP ecosystem, multiple CIs may exist. Parties rely on public key infrastructure (PKI) techniques for establishment of trust. Trust may be established based on a trusted third party such as a CI. Parties need to agree on the CI in order for some PKI techniques to be useful. Embodiments provided herein describe approaches for an eUICC and an eSIM server to arrive at an agreed-on CI. Candidate or negotiated CIs may be indicated on a public key identifier (PKID) list. A PKID list is distributed, in some embodiments, by means of a discovery server, via an activation code (AC) and/or during the establishment of a profile provisioning session.

公开(公告)号：US20190007835A1

公开(公告)日：2019-01-03

申请号：US16024025

申请日：2018-06-29

Applicant: Apple Inc.

Inventor： Li LI ,  Dennis D. CONWAY

IPC: H04W12/06 ,  H04L9/14 ,  H04L9/32 ,  H04L9/08 ,  H04W12/04 ,  H04L29/06

Abstract: A secure element (SE) determines a profile type and a privilege level. The privilege level, in some embodiments, is associated with a key used successfully by the SE to verify a cryptographic signature. In some embodiments, the privilege level is indicated by a privilege value read from an extension field of a root certificate. The SE determines, in some instances, whether to accept or reject a profile installation after comparing the profile type with the determined privilege level. Thus, a test server is allowed to provision a test profile to an SE even if the test server does not have commercial certification required of an electronic subscriber identity module (eSIM) server that provisions operational profiles. Because the test profile does not include credentials useful for network access, the lower-security test server does not create a risk of improper access to the network of a mobile network operator (MNO).

公开(公告)号：US20180249333A1

公开(公告)日：2018-08-30

申请号：US15876875

申请日：2018-01-22

Applicant: Apple Inc.

Inventor： Li LI ,  Xiangying YANG ,  Jerrold Von HAUCK ,  Christopher B. SHARP ,  Yousuf H. VAID ,  Arun G. MATHIAS ,  David T. HAGGERTY ,  Najeeb M. ABDULRAHIMAN

IPC: H04W12/06 ,  H04L29/06 ,  H04L12/24

CPC classification number: H04W12/06 ,  H04L41/28 ,  H04L63/083 ,  H04L63/0838 ,  H04L63/0853 ,  H04W12/00514

Abstract: Methods and apparatus for user authentication and human intent verification of administrative operations for eSIMs of an eUICC included in a mobile device are disclosed. Certain administrative operations, such as import, modification, and/or export, of an eSIM and/or for an eUICCs firmware can require user authentication and/or human intent verification before execution of the administrative operations are performed or completed by the mobile device. A user of the mobile device provides information to link an external user account to an eSIM upon (or subsequent to) installation on the eUICC. User credentials, such as a user name and password, and/or information generated therefrom, can be used to authenticate the user with an external server. In response to successful user authentication, the administrative operations are performed. Human intent verification can also be performed in conjunction with user authentication to prevent malware from interfering with eSIM and/or eUICC functions of the mobile device.

公开(公告)号：US20180249332A1

公开(公告)日：2018-08-30

申请号：US15873856

申请日：2018-01-17

Applicant: Apple Inc.

Inventor： Stephan V. SCHELL ,  Arun G. MATHIAS ,  Jerrold Von HAUCK ,  David T. HAGGERTY ,  Kevin McLAUGHLIN ,  Ben-Heng JUANG ,  Li LI

IPC: H04W12/06 ,  H04W12/08 ,  H04W12/04 ,  H04W8/20 ,  H04L29/06 ,  H04W4/50 ,  G06F21/57 ,  G06F21/45 ,  H04W4/60 ,  H04L29/08

CPC classification number: H04W12/06 ,  G06F21/45 ,  G06F21/57 ,  H04L63/08 ,  H04L63/0853 ,  H04L63/123 ,  H04L63/20 ,  H04L67/34 ,  H04W4/50 ,  H04W4/60 ,  H04W8/205 ,  H04W12/04 ,  H04W12/08

Abstract: Methods and apparatus enabling programming of electronic identification information of a wireless apparatus. In one embodiment, a previously purchased or deployed wireless apparatus is activated by a cellular network. The wireless apparatus connects to the cellular network using an access module to download operating system components and/or access control client components. The described methods and apparatus enable updates, additions and replacement of various components including Electronic Subscriber Identity Module (eSIM) data, OS components. One exemplary implementation of the invention utilizes a trusted key exchange between the device and the cellular network to maintain security.

公开(公告)号：US20180063697A1

公开(公告)日：2018-03-01

申请号：US15253783

申请日：2016-08-31

Applicant: Apple Inc.

Inventor： Li LI ,  Clark P. MUELLER ,  Avinash NARASIMHAN ,  Arun G. MATHIAS ,  Najeeb M. ABDULRAHIMAN ,  David T. HAGGERTY

IPC: H04W8/18 ,  H04L29/06 ,  H04W12/10

CPC classification number: H04W8/183 ,  G06F21/575 ,  G06F21/72 ,  H04L63/123 ,  H04W4/50 ,  H04W4/60 ,  H04W8/245 ,  H04W12/10

Abstract: Representative embodiments described herein set forth techniques for provisioning bootstrap electronic Subscriber Identity Modules (eSIMs) to mobile devices. According to some embodiments, a mobile device can be configured to issue, to an eSIM selection server, a bootstrap eSIM request that includes (i) metadata associated with the mobile device, and (ii) metadata associated with an electronic Universal Integrated Circuit Card (eUICC) included in the mobile device. In turn, the eSIM selection server selects and binds a particular bootstrap eSIM to the mobile device, and provides information to the mobile device that enables the mobile device to obtain the particular bootstrap eSIM from one or more eSIM servers. When the mobile device obtains the particular bootstrap eSIM, the mobile device can interface with a mobile network operator (MNO) and obtain a complete eSIM that enables the mobile device to access services provided by the MNO.