公开(公告)号：US20230171585A1

公开(公告)日：2023-06-01

申请号：US18072536

申请日：2022-11-30

Applicant: Apple Inc.

Inventor： Jean-Marc Padova ,  Hyewon Lee ,  Li Li ,  Raj S. Chaugule ,  Xiangying Yang

IPC: H04W8/18 ,  H04W8/20

CPC classification number: H04W8/183 ,  H04W8/205

Abstract: Systems and methods for facilitating transfer of an eSIM subscription from a source device to a target device. In one embodiment, a source device includes a transceiver and a processor system. The processor system includes an eUICC configured to store an eSIM associated with an eSIM subscription. The processor system is configured to transmit, via the transceiver and to an eSIM subscription manager server, a request for an eSIM subscription transfer activation code; receive, via the transceiver and at least partly in response to the request, a server nonce; generate a signed payload using the server nonce and source device information; transmit, via the transceiver and to the eSIM subscription manager server, the signed payload; receive, via the transceiver and in response to transmitting the signed payload, the eSIM subscription transfer activation code; and provide the eSIM subscription transfer activation code to the target device or a user thereof.

公开(公告)号：US09621356B2

公开(公告)日：2017-04-11

申请号：US14279109

申请日：2014-05-15

Applicant: Apple Inc.

Inventor： Yousuf H. Vaid ,  Christopher B. Sharp ,  Medhi Ziat ,  Li Li ,  Jerrold Von Hauck ,  Ramiro Sarmiento ,  Jean-Marc Padova

IPC: H04L9/32

CPC classification number: H04L9/3268

Abstract: Disclosed herein is a technique for revoking a root certificate from at least one client device. In particular, the technique involves causing a secure element—which is included in the at least one client device and is configured to store the root certificate as well as at least one backup root certificate—to permanently disregard the root certificate and prevent the at least one client device from utilizing the specific root certificate. According to one embodiment, this revocation occurs in response to a receiving a revocation message that directly targets the root certificate, where the message includes at least two levels of authentication that are verified by the secure element prior to carrying out the revocation. Once the root certificate is revoked, the secure element can continue to utilize the at least one backup root certificate, while permanently disregarding the revoked root certificate.

公开(公告)号：US20170048645A1

公开(公告)日：2017-02-16

申请号：US15178727

申请日：2016-06-10

Applicant: Apple Inc.

Inventor： Vikram B. Yerrabommanahalli ,  Li Li ,  Arun G. Mathias ,  Najeeb M. Abdulrahiman ,  Chandiramohan Vasudevan ,  Rohan C. Malthankar ,  Francisco J. Gonzalez ,  Rafael L. Rivera-Barreto ,  Jean-Marc Padova

IPC: H04W4/00 ,  H04W68/00 ,  H04L29/12

CPC classification number: H04W4/60 ,  H04L61/106 ,  H04W8/18 ,  H04W8/205 ,  H04W68/005

Abstract: Some embodiments relate to methods for provisioning a secondary wireless device with an eSIM for wireless communication and activating multi-SIM functionality between the secondary wireless device and a primary wireless device having a subscribed SIM. The primary wireless device may act as a proxy in obtaining the eSIM for the secondary wireless device. The primary wireless device may then provide, to the cellular network, identifiers of the SIMs of the primary and secondary wireless devices. The primary wireless device may then request initiation of multi-SIM functionality for the two SIMs, and receive an indication that the multi-SIM functionality has been initiated. As an example, the multi-SIM functionality may be implemented by mapping the SIM of the primary wireless device and the SIM of the secondary wireless device (e.g., the provisioned eSIM) to the same Mobile Directory Number (MDN).

Abstract translation: 一些实施例涉及用于为辅助无线设备提供用于无线通信的eSIM以及在辅助无线设备与具有订阅的SIM的主要无线设备之间激活多SIM功能的方法。 主要无线设备可以作为获得辅助无线设备的eSIM的代理。 然后，主要无线设备可以向蜂窝网络提供主要和次要无线设备的SIM的标识符。 然后，主要无线设备可以请求启动用于两个SIM的多SIM功能，并且接收多SIM功能已被启动的指示。 作为示例，可以通过将主无线设备的SIM和辅助无线设备的SIM（例如，所提供的eSIM）映射到相同的移动目录号码（MDN）来实现多SIM功能。

公开(公告)号：US11943624B2

公开(公告)日：2024-03-26

申请号：US17934885

申请日：2022-09-23

Applicant: Apple Inc.

Inventor： Jean-Marc Padova ,  Xiangying Yang

IPC: H04M1/66 ,  H04W8/20 ,  H04W12/069 ,  H04W12/72 ,  H04W88/02

CPC classification number: H04W12/72 ,  H04W8/20 ,  H04W12/069 ,  H04W88/02

Abstract: Embodiments described herein relate to eligibility checking for transfer of one or more electronic subscriber identity modules (eSIMs) between two mobile wireless devices. Eligibility to transfer an eSIM to an eUICC of a target device can depend on whether the eUICC of the target device satisfies certain security requirements for the eSIMs to be transferred. The mobile wireless devices can obtain a transfer eligibility result based on communication with one or more network-based servers that can determine compatibility for eSIM transfer.

公开(公告)号：US11736948B2

公开(公告)日：2023-08-22

申请号：US17147410

申请日：2021-01-12

Applicant: Apple Inc.

Inventor： Jean-Marc Padova ,  Xiangying Yang

IPC: H04M1/66 ,  H04W12/72 ,  H04W12/069 ,  H04W8/20 ,  H04W88/02

CPC classification number: H04W12/72 ,  H04W8/20 ,  H04W12/069 ,  H04W88/02

Abstract: Embodiments described herein relate to eligibility checking for transfer of one or more electronic subscriber identity modules (eSIMs) between two mobile wireless devices. Eligibility to transfer an eSIM to an eUICC of a target device can depend on whether the eUICC of the target device satisfies certain security requirements for the eSIMs to be transferred. The mobile wireless devices can obtain a transfer eligibility result based on communication with one or more network-based servers that can determine compatibility for eSIM transfer.

公开(公告)号：US11516003B2

公开(公告)日：2022-11-29

申请号：US17211749

申请日：2021-03-24

Applicant: Apple Inc.

Inventor： Xiangying Yang ,  Jean-Marc Padova

IPC: H04L29/06 ,  G06F21/00 ,  H04L9/08 ,  H04L9/30 ,  H04W12/72 ,  H04W12/037

Abstract: Embodiments described herein relate to credential wrapping for secure transfer of electronic SIMs (eSIMs) between wireless devices. Transfer of an eSIM from a source device to a target device includes re-encryption of sensitive eSIM data, e.g., eSIM encryption keys, financial transaction credentials, transit authority credentials, and the like, using new encryption keys that include ephemeral elements applicable to a single, particular transfer session between the source device and the target device. The sensitive eSIM data encrypted with a symmetric key (Ks) is re-wrapped with a new header that includes a version of Ks encrypted with a new key encryption key (KEK) and information to derive KEK by the target device. The re-encrypted sensitive SIM data is formatted with additional eSIM data into a new bound profile package (BPP) to transfer the eSIM from the source device to the target device.

公开(公告)号：US10985926B2

公开(公告)日：2021-04-20

申请号：US16117642

申请日：2018-08-30

Applicant: Apple Inc.

Inventor： Xiangying Yang ,  Avinash Narasimhan ,  Li Li ,  David I. Ahn ,  Jean-Marc Padova ,  Clark P. Mueller ,  David T. Haggerty

IPC: H04L29/06 ,  H04L9/32 ,  H04W12/00 ,  H04L9/00 ,  H04L9/30

Abstract: Embodiments provided herein identify a certificate issuer (CI) to be relied on as a trusted third party by an electronic subscriber identity module (eSIM) server in remote SIM provisioning (RSP) transactions with an embedded universal integrated circuit card (eUICC). In an RSP ecosystem, multiple CIs may exist. Parties rely on public key infrastructure (PKI) techniques for establishment of trust. Trust may be established based on a trusted third party such as a CI. Parties need to agree on the CI in order for some PKI techniques to be useful. Embodiments provided herein describe approaches for an eUICC and an eSIM server to arrive at an agreed-on CI. Candidate or negotiated CIs may be indicated on a public key identifier (PKID) list. A PKID list is distributed, in some embodiments, by means of a discovery server, via an activation code (AC) and/or during the establishment of a profile provisioning session.

公开(公告)号：US10080119B2

公开(公告)日：2018-09-18

申请号：US15817081

申请日：2017-11-17

Applicant: Apple Inc.

Inventor： Vikram B. Yerrabommanahalli ,  Li Li ,  Arun G. Mathias ,  Najeeb M. Abdulrahiman ,  Chandiramohan Vasudevan ,  Rohan C. Malthankar ,  Francisco J. Gonzalez ,  Rafael L. Rivera-Barreto ,  Jean-Marc Padova

IPC: H04M1/00 ,  H04W4/60 ,  H04W8/20 ,  H04L29/12 ,  H04W68/00 ,  H04W8/18

CPC classification number: H04W4/60 ,  H04L61/106 ,  H04W8/18 ,  H04W8/205 ,  H04W68/005

Abstract: Some embodiments relate to methods for provisioning a secondary wireless device with an eSIM for wireless communication and activating multi-SIM functionality between the secondary wireless device and a primary wireless device having a subscribed SIM. The primary wireless device may act as a proxy in obtaining the eSIM for the secondary wireless device. The primary wireless device may then provide, to the cellular network, identifiers of the SIMs of the primary and secondary wireless devices. The primary wireless device may then request initiation of multi-SIM functionality for the two SIMs, and receive an indication that the multi-SIM functionality has been initiated. As an example, the multi-SIM functionality may be implemented by mapping the SIM of the primary wireless device and the SIM of the secondary wireless device (e.g., the provisioned eSIM) to the same Mobile Directory Number (MDN).

公开(公告)号：US09940141B2

公开(公告)日：2018-04-10

申请号：US14872067

申请日：2015-09-30

Applicant: Apple Inc.

Inventor： Li Li ,  Arun G. Mathias ,  Jean-Marc Padova ,  Najeeb M. Abdulrahiman

IPC: G06F9/44 ,  H04L29/06 ,  H04W4/00 ,  H04W4/02 ,  H04W12/08 ,  H04W8/18 ,  G06F21/78

CPC classification number: G06F9/4408 ,  G06F21/78 ,  H04L63/0853 ,  H04L63/107 ,  H04W4/025 ,  H04W4/50 ,  H04W8/183 ,  H04W12/08

Abstract: Disclosed herein is a technique for selecting a bootstrap electronic Subscriber Identity Module (eSIM) from among multiple bootstrap eSIMs stored in a secure element of a mobile device. Specifically, the technique involves selecting the bootstrap eSIM based on location information associated with the mobile device. When the mobile device is located at a first location (for example, a first country) a first bootstrap eSIM associated with a Mobile Network Operator (MNO) local to the first country is selected. Similarly, when the mobile device is located at a second location (for example, a second country), a second bootstrap eSIM associated with an MNO local to the second country is selected.

公开(公告)号：US09843885B2

公开(公告)日：2017-12-12

申请号：US15178727

申请日：2016-06-10

Applicant: Apple Inc.

Inventor： Vikram B. Yerrabommanahalli ,  Li Li ,  Arun G. Mathias ,  Najeeb M. Abdulrahiman ,  Chandiramohan Vasudevan ,  Rohan C. Malthankar ,  Francisco J. Gonzalez ,  Rafael L. Rivera-Barreto ,  Jean-Marc Padova

IPC: H04B1/38 ,  H04W4/00 ,  H04W8/20 ,  H04L29/12 ,  H04W68/00 ,  H04W8/18

CPC classification number: H04W4/60 ,  H04L61/106 ,  H04W8/18 ,  H04W8/205 ,  H04W68/005

Abstract: Some embodiments relate to methods for provisioning a secondary wireless device with an eSIM for wireless communication and activating multi-SIM functionality between the secondary wireless device and a primary wireless device having a subscribed SIM. The primary wireless device may act as a proxy in obtaining the eSIM for the secondary wireless device. The primary wireless device may then provide, to the cellular network, identifiers of the SIMs of the primary and secondary wireless devices. The primary wireless device may then request initiation of multi-SIM functionality for the two SIMs, and receive an indication that the multi-SIM functionality has been initiated. As an example, the multi-SIM functionality may be implemented by mapping the SIM of the primary wireless device and the SIM of the secondary wireless device (e.g., the provisioned eSIM) to the same Mobile Directory Number (MDN).