公开(公告)号：KR20180017218A

公开(公告)日：2018-02-20

申请号：KR20187003509

申请日：2014-12-19

Applicant: APPLE INC

Inventor： HAGGERTY DAVID T ,  DICKER GEORGE R ,  KHAN AHMER A ,  SHARP CHRISTOPHER B ,  HURLEY TIMOTHY S ,  CHADHA VINEET

IPC: G06Q20/32 ,  G06Q20/38 ,  G06Q20/40 ,  H04W88/02

CPC classification number: G06Q20/3226 ,  G06Q20/322 ,  G06Q20/40 ,  G06Q20/4014 ,  H04W8/22

Abstract: 사용자가금융거래를이행하는능력을갖는전자디바이스를분실한경우, 사용자는분실-디바이스소프트웨어애플리케이션을이용하여전자디바이스의공급업체와연관된관리전자디바이스에전자디바이스의분실을보고할수 있다. 이정보의수신에응답하여, 비활성화커맨드를사용자의금융계정과연관된결제네트워크에송신하여전자디바이스를사용하여금융거래를이행하는것을임시로비활성화한다. 특히, 전자디바이스는금융계정에대한결제애플릿을저장하는보안요소를포함할수 있고, 비활성화커맨드는금융계정에대한가상식별자에서금융기본계정번호로의맵핑을비활성화할수 있다. 후속적으로, 사용자가전자디바이스를찾은경우, 사용자는인증정보를전자디바이스에제공함으로써능력(및, 그에따른, 맵핑)을재활성화할수 있다.

Abstract translation: 如果用户丢失了具有执行金融交易能力的电子设备，则用户可以使用丢失设备软件应用向与电子设备的提供者相关联的管理电子设备报告电子设备丢失。 响应于接收到该信息，禁用命令被发送到与用户的金融账户相关联的支付网络，以暂时禁止使用电子设备来进行金融交易。 特别地，电子设备可以包括存储用于金融账户的支付小程序的安全元件，并且禁用命令可以禁止从金融账户的虚拟标识符到金融主账号的映射。 随后，如果用户找到电子设备，则用户可以通过向电子设备提供认证信息来重新启用该能力（以及因此映射）。

公开(公告)号：DE102015203742A1

公开(公告)日：2015-09-10

申请号：DE102015203742

申请日：2015-03-03

Applicant: APPLE INC

Inventor： VAID YOUSUF H ,  SHARP CHRISTOPHER B ,  ZIAT MEHDI ,  LI LI ,  HAUCK JERROLD VON ,  PADOVA JEAN-MARC ,  SARMIENTO RAMIRO

IPC: H04L9/30

Abstract: Es ist eine Technik zum Widerrufen eines Stammzertifikats von wenigstens einer Client-Vorrichtung offenbart. Genauer gesagt, bezieht die Technik ein, dass hervorgerufen wird, dass ein Sicherheitselement – welches in der wenigstens einen Client-Vorrichtung umfasst ist und dazu ausgebildet ist, das Stammzertifikat als auch wenigstens ein Backup-Stammzertifikat zu speichern – permanent das Stammzertifikat missachtet und verhindert, dass die wenigstens eine Client-Vorrichtung das spezifische Stammzertifikat verwendet. Gemäß einer Ausführungsform tritt dieser Widerruf in Ansprechen auf einen Empfang von einer Widerrufen-Meldung auf, welche direkt auf das Stammzertifikat gerichtet ist, wobei die Meldung zumindest zwei Authentifikations-Niveaus umfasst, welche durch das Sicherheitselement verifiziert werden, bevor der Widerruf durchgeführt wird. Sobald das Stammzertifikat widerrufen ist, kann das Sicherheitselement damit fortfahren, das zumindest eine Backup-Stammzertifikat zu nutzen, während das widerrufene Stammzertifikat permanent ignoriert wird.

公开(公告)号：PL3284275T3

公开(公告)日：2022-09-05

申请号：PL16796948

申请日：2016-05-10

Applicant: APPLE INC

Inventor： LI LI ,  HAUCK JERROLD VON ,  VAID YOUSUF H ,  SHARP CHRISTOPHER B ,  MATHIAS ARUN G ,  HAGGERTY DAVID T

IPC: H04W8/20 ,  H04B1/3816 ,  H04B1/3827 ,  H04W4/00 ,  H04W8/18 ,  H04W12/06 ,  H04W88/02

公开(公告)号：AU2016235515B2

公开(公告)日：2020-05-21

申请号：AU2016235515

申请日：2016-03-18

Applicant: APPLE INC

Inventor： LI LI ,  YANG XIANGYING ,  HAUCK JERROLD VON ,  SHARP CHRISTOPHER B ,  VAID YOUSUF H ,  MATHIAS ARUN G ,  HAGGERTY DAVID T ,  ABDULRAHIMAN NAJEEB M

IPC: H04W12/06 ,  G06F21/31 ,  H04L9/32 ,  H04W4/00

Abstract: Methods and apparatus for user authentication and human intent verification of administrative operations for eSIMs of an eUICC included in a mobile device are disclosed. Certain administrative operations, such as import, modification, and/or export, of an eSEVI and/or for an eUICCs firmware can require user authentication and/or human intent verification before execution of the administrative operations are performed or completed by the mobile device. A user of the mobile device provides information to link an external user account to an eSEVI upon (or subsequent to) installation on the eUICC. User credentials, such as a user name and password, and/or information generated therefrom, can be used to authenticate the user with an external server. In response to successful user authentication, the administrative operations are performed. Human intent verification can also be performed in conjunction with user authentication to prevent malware from interfering with eSIM and/or eUICC functions of the mobile device.

公开(公告)号：AU2016235515A1

公开(公告)日：2017-09-21

申请号：AU2016235515

申请日：2016-03-18

Applicant: APPLE INC

Inventor： LI LI ,  YANG XIANGYING ,  HAUCK JERROLD VON ,  SHARP CHRISTOPHER B ,  VAID YOUSUF H ,  MATHIAS ARUN G ,  HAGGERTY DAVID T ,  ABDULRAHIMAN NAJEEB M

IPC: H04W12/06 ,  G06F21/31 ,  H04L9/32 ,  H04W4/00

Abstract: Methods and apparatus for user authentication and human intent verification of administrative operations for eSIMs of an eUICC included in a mobile device are disclosed. Certain administrative operations, such as import, modification, and/or export, of an eSEVI and/or for an eUICCs firmware can require user authentication and/or human intent verification before execution of the administrative operations are performed or completed by the mobile device. A user of the mobile device provides information to link an external user account to an eSEVI upon (or subsequent to) installation on the eUICC. User credentials, such as a user name and password, and/or information generated therefrom, can be used to authenticate the user with an external server. In response to successful user authentication, the administrative operations are performed. Human intent verification can also be performed in conjunction with user authentication to prevent malware from interfering with eSIM and/or eUICC functions of the mobile device.

公开(公告)号：AU2013347993B2

公开(公告)日：2016-09-15

申请号：AU2013347993

申请日：2013-11-20

Applicant: APPLE INC

Inventor： SHARP CHRISTOPHER B ,  VAID YOUSUF H ,  LI LI ,  HAUCK JERROLD V ,  MATHIAS ARUN G ,  YANG XIANGYING ,  MCLAUGHLIN KEVIN P

IPC: H04L29/06 ,  H04W12/08

Abstract: A policy-based framework is described. This policy-based framework may be used to specify the privileges for logical entities to perform operations associated with an access-control element (such as an electronic Subscriber Identity Module) located within a secure element in an electronic device. Note that different logical entities may have different privileges for different operations associated with the same or different access-control elements. Moreover, the policy-based framework may specify types of credentials that are used by the logical entities during authentication, so that different types of credentials may be used for different operations and/or by different logical entities. Furthermore, the policy-based framework may specify the security protocols and security levels that are used by the logical entities during authentication, so that different security protocols and security levels may be used for different operations and/or by different logical entities.

公开(公告)号：AU2013347993A1

公开(公告)日：2015-06-04

申请号：AU2013347993

申请日：2013-11-20

Applicant: APPLE INC

Inventor： SHARP CHRISTOPHER B ,  VAID YOUSUF H ,  LI LI ,  HAUCK JERROLD V ,  MATHIAS ARUN G ,  YANG XIANGYING ,  MCLAUGHLIN KEVIN P

IPC: H04L29/06 ,  H04W12/08

Abstract: A policy-based framework is described. This policy-based framework may be used to specify the privileges for logical entities to perform operations associated with an access-control element (such as an electronic Subscriber Identity Module) located within a secure element in an electronic device. Note that different logical entities may have different privileges for different operations associated with the same or different access-control elements. Moreover, the policy-based framework may specify types of credentials that are used by the logical entities during authentication, so that different types of credentials may be used for different operations and/or by different logical entities. Furthermore, the policy-based framework may specify the security protocols and security levels that are used by the logical entities during authentication, so that different security protocols and security levels may be used for different operations and/or by different logical entities.