公开(公告)号：US20160227409A1

公开(公告)日：2016-08-04

申请号：US15099444

申请日：2016-04-14

Applicant: Apple Inc.

Inventor： Stephan V. SCHELL ,  Arun G. MATHIAS ,  Jerrold Von HAUCK ,  David T. HAGGERTY ,  Kevin McLAUGHLIN ,  Ben-Heng JUANG ,  Li LI

IPC: H04W12/06 ,  H04W4/00 ,  H04L29/06 ,  H04W12/04

CPC classification number: H04W12/06 ,  G06F21/45 ,  G06F21/57 ,  H04L63/08 ,  H04L63/0853 ,  H04L63/123 ,  H04L63/20 ,  H04L67/34 ,  H04W4/50 ,  H04W4/60 ,  H04W8/205 ,  H04W12/04 ,  H04W12/08

Abstract: Methods and apparatus enabling programming of electronic identification information of a wireless apparatus. In one embodiment, a previously purchased or deployed wireless apparatus is activated by a cellular network. The wireless apparatus connects to the cellular network using an access module to download operating system components and/or access control client components. The described methods and apparatus enable updates, additions and replacement of various components including Electronic Subscriber Identity Module (eSIM) data, OS components. One exemplary implementation of the invention utilizes a trusted key exchange between the device and the cellular network to maintain security.

公开(公告)号：US20160057624A1

公开(公告)日：2016-02-25

申请号：US14831819

申请日：2015-08-20

Applicant: APPLE INC.

Inventor： Xiangying YANG ,  Li LI ,  Jerrold Von HAUCK

IPC: H04W12/06 ,  G06F21/32 ,  H04L9/32 ,  H04W12/08 ,  H04W4/22

CPC classification number: H04W12/06 ,  G06F21/32 ,  H04L9/3231 ,  H04L9/3271 ,  H04L2209/80 ,  H04W4/50 ,  H04W4/60 ,  H04W12/08

Abstract: The embodiments set forth techniques for an embedded Universal Integrated Circuit Card (eUICC) to conditionally require, when performing management operations in association with electronic Subscriber Identity Modules (eSIMs), human-based authentication. The eUICC receives a request to perform a management operation in association with an eSIM. In response, the eUICC determines whether a policy being enforced by the eUICC indicates that a human-based authentication is required prior to performing the management operation. Next, the eUICC causes the mobile device to prompt a user of the mobile device to carry out the human-based authentication. The management operation is then performed or ignored in accordance with results of the human-based authentication.

Abstract translation: 实施例阐述了嵌入式通用集成电路卡（eUICC）在与电子订户身份模块（eSIM）相关联的管理操作中有条件地要求基于人的认证的技术。 eUICC接收与eSIM相关联的执行管理操作的请求。 作为响应，eUICC确定由eUICC执行的策略是否指示在执行管理操作之前需要基于人的验证。 接下来，eUICC使得移动设备提示移动设备的用户执行基于人的认证。 然后根据基于人的认证的结果执行或忽略管理操作。

公开(公告)号：US20150347786A1

公开(公告)日：2015-12-03

申请号：US14724789

申请日：2015-05-28

Applicant: Apple Inc.

Inventor： Xiangying YANG ,  Li LI

IPC: G06F21/78 ,  G06F12/14

CPC classification number: G06F21/78 ,  G06F12/1408 ,  G06F2212/402 ,  H04W8/183 ,  H04W8/205 ,  H04W12/04 ,  H04W12/08

Abstract: A method for secure storage of an embedded Subscriber Identity Module (eSIM) on a wireless communication device including an embedded Universal Integrated Circuit Card (eUICC) and a memory external to the eUICC is provided. The method can include the eUICC determining that an eSIM package including an eSIM is to be stored on the memory. The method can also include the eUICC, in response to determining that the eSIM package is to be stored on the memory, maintaining a single-use session parameter associated with the eSIM package to enable installation of the eSIM on the eUICC if the eSIM package is later loaded onto the eUICC from the memory.

Abstract translation: 提供了一种用于在包括嵌入式通用集成电路卡（eUICC）和eUICC外部的存储器的无线通信设备上安全地存储嵌入式用户识别模块（eSIM）的方法。 该方法可以包括eUICC确定包括eSIM的eSIM包将被存储在存储器中。 该方法还可以包括eUICC，以响应于确定将eSIM包存储在存储器上，维护与eSIM包相关联的一次性会话参数，以便如果eSIM包是在eSU包上安装eSIM，则可以在eUICC上安装eSIM 后来从内存加载到eUICC上。

公开(公告)号：US20140223074A1

公开(公告)日：2014-08-07

申请号：US13762108

申请日：2013-02-07

Applicant: APPLE INC.

Inventor： Li LI ,  Ben-Heng JUANG ,  Arun G. MATHIAS

IPC: G06F12/02

CPC classification number: G06F3/0617 ,  G06F3/0622 ,  G06F3/0637 ,  G06F3/0653 ,  G06F3/0679 ,  G06F11/3466 ,  G06F12/0246 ,  H04W8/245

Abstract: The invention provides a technique for managing write operations issued to a non-volatile memory included in a wireless device. A monitor software application executes on the wireless device and is configured to determine that a number of write operations issued to the non-volatile memory is greater than or equal to a write operation threshold associated with the non-volatile memory. In response, at least one application is isolated as the application responsible for issuing excessive write operations. The isolation can be carried out locally on the wireless device, or the isolation can be carried out remotely at a server by sending information about the write operations to the server. The monitor then limits additional write operations from being issued to the non-volatile memory so as to protect the non-volatile memory from becoming corrupted or inoperable.

Abstract translation: 本发明提供一种用于管理发给无线设备中包括的非易失性存储器的写操作的技术。 监视器软件应用程序在无线设备上执行，并且被配置为确定发出到非易失性存储器的写入操作的数量大于或等于与非易失性存储器相关联的写入操作阈值。 作为响应，至少一个应用程序被隔离为负责发出过多写入操作的应用程序。 隔离可以在无线设备上本地进行，也可以通过向服务器发送有关写入操作的信息，在服务器上远程执行隔离。 监视器然后限制额外的写入操作被发布到非易失性存储器，以便保护非易失性存储器不被损坏或不可操作。

公开(公告)号：US20250113010A1

公开(公告)日：2025-04-03

申请号：US18899223

申请日：2024-09-27

Applicant: Apple Inc.

Inventor： Vidur GUPTA ,  Abishek Kumar VAIDYANATHAN ,  Gaurav LAMBA ,  Li LI

IPC: H04N7/14

Abstract: An apparatus configured to initiate a voice call to a target device, generate, for transmission to a first server, a request for a video call link upon a determination that a trigger event has occurred, process, based on signaling received from the first server, a video call link, generate, for transmission to a base station, a message comprising the video call link to be forwarded to the target device and establish a video session with the target device using the video call link while still maintaining the voice call with the target device.

公开(公告)号：US20250080969A1

公开(公告)日：2025-03-06

申请号：US18824394

申请日：2024-09-04

Applicant: Apple Inc.

Inventor： Raj S CHAUGULE ,  Hyewon LEE ,  Jean-Marc PADOVA ,  Li LI ,  Rohan C MALTHANKAR ,  Sherman X JIN ,  Suraj GUPTA ,  Xiangying YANG ,  Zexing SHI

IPC: H04W8/20 ,  H04W12/06

Abstract: An apparatus configured to engage in an embedded subscriber identity module (eSIM) profile transfer process to receive at a target device, executing a first operating system (OS) that implements a first protocol stack related to eSIM profile transfers, an eSIM profile from a source device executing a second OS that implements a second protocol stack related to eSIM profile transfers to the target device, wherein the first protocol stack and the second protocol stack are different, process, based on signals received from the source device, a token for transferring the eSIM profile, generate, for transmission to an enablement server, a request for the eSIM profile, wherein the request comprises the token and process, based on signals received from the enablement server, the eSIM profile.

公开(公告)号：US20240414536A1

公开(公告)日：2024-12-12

申请号：US18808879

申请日：2024-08-19

Applicant: Apple Inc.

Inventor： Xiangying YANG ,  Jean-Marc PADOVA ,  Li LI ,  Shu GUO

IPC: H04W12/069 ,  H04L9/32 ,  H04L9/40 ,  H04W8/20 ,  H04W12/041 ,  H04W12/0431

Abstract: This application sets forth techniques for authenticating a mobile device with a cellular wireless network without electronic Subscriber Identity Module (eSIM) credentials by using an Extensible Authentication Protocol Transport Layer Security (EAP-TLS) procedure. The mobile device authenticates with an Authentication Server Function (AUSF) of the cellular wireless network using an embedded Universal Integrated Circuit Card (eUICC) certificate. Processing circuitry of the mobile wireless device external to the eUICC implements the EAP-TLS procedure and authenticates validity of the AUSF. In some embodiments, the eUICC provides key generation and storage for a session key for communication between the mobile device and the cellular wireless network. In some embodiments, a third-party managed Unified Data Management (UDM) broker authenticates the mobile device based on knowledge of the eUICC certificate and provides a session key to the cellular wireless network for subsequent communication with the mobile device, upon successful authentication of the mobile device.

公开(公告)号：US20240357354A1

公开(公告)日：2024-10-24

申请号：US18517966

申请日：2023-11-22

Applicant: Apple Inc.

Inventor： Li LI ,  Aurelien P. RABOISSON ,  Ngabin S. NG

IPC: H04W12/069 ,  H04W12/06

CPC classification number: H04W12/069 ,  H04W12/068

Abstract: This application describes techniques for postponed certificate credential installation to wireless devices, including generation and storage of secured scripts to be used for subsequent certificate credential installation on an eUICC of a wireless device after manufacturing. Management of certificate credentials, including installation on, modification to, and removal from, an eUICC can occur post-manufacturing, such as during a device activation procedure or as part of remote electronic subscriber identity module (eSIM) provisioning to the eUICC of the wireless device. Updating certificate credentials on an eUICC can allow for wireless device operation in different geographic regions that use different public key infrastructures (PKIs) with distinct root certificate issuers. The secured scripts can be pre-generated by an eUICC manufacturer (EUM) for the particular eUICC and stored at an OEM networked server and later used to install the certificate credentials on the eUICC of the wireless device.

公开(公告)号：US20240080654A1

公开(公告)日：2024-03-07

申请号：US18449667

申请日：2023-08-14

Applicant: Apple Inc.

Inventor： Li LI ,  Abishek Kumar VAIDYANATHAN ,  Kanuganti Rajeswar REDDY ,  Keizo MARUI ,  Mohanasundaram KATTAVOOR SIVAKUMAR ,  Rohan WADAGERI ,  Zexing SHI ,  Raj S. CHAUGULE

IPC: H04W8/16 ,  H04W8/22

CPC classification number: H04W8/16 ,  H04W8/22

Abstract: This application sets forth techniques for dynamically managing a provisioning electronic subscriber identity module (eSIM) for a wireless device. A provisioning eSIM is installed in the wireless device to provide a limited functionality connectivity option for essential services, such as device activation and user eSIM provisioning. To reduce signaling load on a network and to conserve wireless device battery power, the provisioning eSIM is reconfigured between an inactive state and an active state dynamically based on user actions and system requirements.

公开(公告)号：US20240031795A1

公开(公告)日：2024-01-25

申请号：US18476674

申请日：2023-09-28

Applicant: Apple Inc.

Inventor： Can XIONG ,  Sherman X. JIN ,  Eric ZELENKA ,  Graham S. McLUHAN ,  Li LI ,  Rafael L. RIVERA-BARRETO ,  Raj S. CHAUGULE ,  Rohan C. MALTHANKAR

IPC: H04W8/20 ,  H04W4/50 ,  H04W12/30 ,  H04W8/18

CPC classification number: H04W8/205 ,  H04W4/50 ,  H04W12/30 ,  H04W8/183

Abstract: This Application describes mechanisms for enterprise remote management of cellular services provided via access credentials, e.g., subscriber identity modules (SIMs) and/or electronic SIMs (eSIMs), for wireless devices. To minimize requirements for user interaction, installation and management of business-supplied cellular service profiles on the wireless device can intercept alert notifications to reduce interruptions and allow for background management of the business-supplied cellular service profiles. Additionally, a business enterprise can use multiple, distinct services to initiate installation of an eSIM to a wireless device. When two different services attempt to install eSIMs on the wireless device in parallel, management software on the wireless device can control an order of installation and disallow duplicate installations of an identical eSIM to the wireless device. The management software can also monitor eSIM installations and manage alert notifications that occur during the eSIM installation process.