公开(公告)号：US20140143826A1

公开(公告)日：2014-05-22

申请号：US14085951

申请日：2013-11-21

Applicant: Apple Inc.

Inventor： Christopher B. Sharp ,  Yousuf H. Vaid ,  Li Li ,  Jerrold V. Hauck ,  Arun G. Mathias ,  Xiangying Yang ,  Kevin P. McLaughlin

IPC: G06F21/60

CPC classification number: G06F21/604 ,  H04L63/102 ,  H04L63/105 ,  H04L63/20 ,  H04W12/08

Abstract: A policy-based framework is described. This policy-based framework may be used to specify the privileges for logical entities to perform operations associated with an access-control element (such as an electronic Subscriber Identity Module) located within a secure element in an electronic device. Note that different logical entities may have different privileges for different operations associated with the same or different access-control elements. Moreover, the policy-based framework may specify types of credentials that are used by the logical entities during authentication, so that different types of credentials may be used for different operations and/or by different logical entities. Furthermore, the policy-based framework may specify the security protocols and security levels that are used by the logical entities during authentication, so that different security protocols and security levels may be used for different operations and/or by different logical entities.

Abstract translation: 描述了基于策略的框架。 该基于策略的框架可以用于指定逻辑实体执行与位于电子设备中的安全元件内的访问控制元素（例如电子订户身份模块）相关联的操作的权限。 注意，对于与相同或不同的访问控制元素相关联的不同操作，不同的逻辑实体可以具有不同的权限。 此外，基于策略的框架可以指定在认证期间由逻辑实体使用的凭证的类型，使得不同类型的凭证可以用于不同的操作和/或由不同的逻辑实体使用。 此外，基于策略的框架可以指定在认证期间由逻辑实体使用的安全协议和安全级别，使得不同的安全协议和安全级别可以用于不同的操作和/或不同的逻辑实体。

公开(公告)号：US11818783B2

公开(公告)日：2023-11-14

申请号：US16905568

申请日：2020-06-18

Applicant: Apple Inc.

Inventor： Divyaprakash P. Bhojkumar ,  Ajay Singh ,  Arun G. Mathias ,  Carola Faronius ,  Faraz Faheem ,  Lakshmi N. Kavuri ,  Madhusudan Chaudhary ,  Muthukumaran Dhanapal ,  Raghuveer Mallikarjunan ,  Rajesh Ambati ,  Rohan C. Malthankar ,  Sreevalsan Vallath ,  Thanigaivelu Elangovan ,  Vivek Ramanna

IPC: H04W76/16 ,  H04W48/16 ,  H04W76/27 ,  H04W56/00 ,  H04W36/00 ,  H04W64/00 ,  H04W88/06

CPC classification number: H04W76/16 ,  H04W36/0058 ,  H04W48/16 ,  H04W56/0045 ,  H04W64/003 ,  H04W76/27 ,  H04W88/06

Abstract: The exemplary embodiments relate to a user equipment configured to connect to a network that supports simultaneous connection to a first radio access technology (RAT) and a second RAT. The UE may receive coverage information associated with the first RAT and a cell of the second RAT, receive an indication of the current UE location relative to the cell of the second RAT and determine whether the first RAT is available for camping based on the coverage information and the indication of the current UE location relative to the cell of the second RAT.

公开(公告)号：US20210400754A1

公开(公告)日：2021-12-23

申请号：US16905568

申请日：2020-06-18

Applicant: Apple Inc.

Inventor： Divyaprakash P. Bhojkumar ,  Ajay Singh ,  Arun G. Mathias ,  Carola Faronius ,  Faraz Faheem ,  Lakshmi N. Kavuri ,  Madhusudan Chaudhary ,  Muthukumaran Dhanapal ,  Raghuveer Mallikarjunan ,  Rajesh Ambati ,  Rohan C. Malthankar ,  Sreevalsan Vallath ,  Thanigaivelu Elangovan ,  Vivek Ramanna

IPC: H04W76/16 ,  H04W48/16 ,  H04W64/00 ,  H04W56/00 ,  H04W36/00 ,  H04W76/27

Abstract: The exemplary embodiments relate to a user equipment configured to connect to a network that supports simultaneous connection to a first radio access technology (RAT) and a second RAT. The UE may receive coverage information associated with the first RAT and a cell of the second RAT, receive an indication of the current UE location relative to the cell of the second RAT and determine whether the first RAT is available for camping based on the coverage information and the indication of the current UE location relative to the cell of the second RAT.

公开(公告)号：US11206701B2

公开(公告)日：2021-12-21

申请号：US16889732

申请日：2020-06-01

Applicant: Apple Inc.

Inventor： Abhishek Walia ,  Najeeb M. Abdulrahiman ,  Oleg M. Moskalenko ,  Sergey Sitnikov ,  Vikram Bhaskara Yerrabommanahalli ,  Ajoy K. Singh ,  Arun G. Mathias

IPC: H04W76/12 ,  H04W88/06 ,  H04W60/00 ,  H04W84/12 ,  H04W88/16

Abstract: Apparatus and methods to support access to services of multiple wireless networks by a single-radio, multiple subscriber identity module (SIM)/electronic SIM (eSIM) wireless device are disclosed. To send or receive voice communications for multiple SIMs/eSIMs, when an active voice connection for a first SIM/eSIM uses wireless circuitry to connect to a first cellular wireless network via a first radio access network, the single-radio, multi-SIM/eSIM wireless device uses alternative data transports, such as via a wireless local area network (WLAN) or by tunneling through the first radio access network of the first cellular wireless network to connect to services of additional cellular wireless networks associated with the multiple SIMs/eSIMs.

公开(公告)号：US20210392557A1

公开(公告)日：2021-12-16

申请号：US16902966

申请日：2020-06-16

Applicant: Apple Inc.

Inventor： Raghuveer Mallikarjunan ,  Patrick L. Coffman ,  Madhusudan Chaudhary ,  Muthukumaran Dhanapal ,  Ajay Singh ,  Faraz Faheem ,  Thanigaivelu Elangovan ,  Lakshmi N. Kavuri ,  Samuel J. Miller ,  Najeeb M. Abdulrahiman ,  Rajesh Ambati ,  Arun G. Mathias ,  Vivek Ramanna ,  Divyaprakash P. Bhojkumar ,  Vikram B. Yerrabommanahalli ,  Rafael L. Rivera-Barreto ,  Sergey Sitnikov ,  Oleg M. Moskalenko ,  Bao Q. Ho ,  Rohan C. Malthankar ,  Samy Touati

IPC: H04W36/14 ,  H04W24/08 ,  H04W76/15 ,  H04W60/00 ,  H04W36/30

Abstract: Apparatuses, systems, and methods for high data mode operation in cellular networks. A UE may determine, for an interface to a high-speed cellular network, a categorization from a plurality of categorizations, determine availability of the high-speed cellular network, and select, based at least in part on the categorization and availability of the high-speed cellular network, the interface for a data connection to the high-speed cellular network. The categorization may be one of expensive or not expensive and/or one of a first level associated with a higher compression codec rate or a second level associated with a lower compression codec rate. The UE may receive, from one of the a low-speed cellular network or the high-speed cellular network, carrier plan information for a cellular data service carrier and analyze the carrier plan information to determine desirability of a switch, e.g., from the low-speed cellular network to the high-speed cellular network.

公开(公告)号：US10856148B2

公开(公告)日：2020-12-01

申请号：US16557770

申请日：2019-08-30

Applicant: Apple Inc.

Inventor： Li Li ,  Xiangying Yang ,  Jerrold Von Hauck ,  Christopher B. Sharp ,  Yousuf H. Vaid ,  Arun G. Mathias ,  David T. Haggerty ,  Najeeb M. Abdulrahiman

IPC: H04L29/06 ,  H04W12/06 ,  H04L12/24 ,  H04W12/00

Abstract: Methods and apparatus for user authentication and human intent verification of administrative operations for eSIMs of an eUICC included in a mobile device are disclosed. Certain administrative operations, such as import, modification, and/or export, of an eSIM and/or for an eUICCs firmware can require user authentication and/or human intent verification before execution of the administrative operations are performed or completed by the mobile device. A user of the mobile device provides information to link an external user account to an eSIM upon (or subsequent to) installation on the eUICC. User credentials, such as a user name and password, and/or information generated therefrom, can be used to authenticate the user with an external server. In response to successful user authentication, the administrative operations are performed. Human intent verification can also be performed in conjunction with user authentication to prevent malware from interfering with eSIM and/or eUICC functions of the mobile device.

公开(公告)号：US10833876B2

公开(公告)日：2020-11-10

申请号：US15793169

申请日：2017-10-25

Applicant: Apple Inc.

Inventor： Rohan C Malthankar ,  Paresh B. Sawant ,  Delziel J. Fernandes ,  Sergey Sitnikov ,  Arun G. Mathias ,  Jason A. Novak ,  Krisztian Kiss ,  Rafael L. Rivera-Barreto ,  Chandiramohan Vasudevan ,  Vladimir M. Appel

IPC: H04L9/32 ,  H04W12/02 ,  H04L29/06 ,  H04W12/00 ,  H04W12/06

Abstract: This disclosure relates to techniques for performing Wi-Fi authentication in a wireless communication system. Public key cryptography may be used to enhance the confidentiality of the user's permanent identity in transit. In some embodiments, a RSA-OAEP (SHA-256) encryption scheme may be used to protect the permanent identity when the EAP client needs to send the user's permanent identity to the server in the absence of pseudonym or fast re-authentication identity. In some embodiments, a server certificate is used to authenticate a iWLAN tunnel to protect an IMSI during setup of a Wi-Fi call. Using the methods described herein on both or either of the EAP client and server side may offer improved privacy protection.

公开(公告)号：US20190243743A1

公开(公告)日：2019-08-08

申请号：US15968684

申请日：2018-05-01

Applicant: Apple Inc.

Inventor： Sumit Saxena ,  Kushal M. Chawda ,  Ben-Heng Juang ,  Arun G. Mathias ,  Sairam T. Gutta

IPC: G06F11/36 ,  G06N3/04 ,  G06F17/30

CPC classification number: G06F11/3612 ,  G06F16/2365 ,  G06N3/0445 ,  G06N3/0472

Abstract: The subject technology extracts features from each log line of a log file. The subject technology determines, based on the features, a sequence of log lines. The subject technology determines probabilities of log lines occurring within a window of time from a respective log line from the sequence of log lines, and determines probabilities of periods of time within the window of time that a next log line will occur after the respective log line. The subject technology segments log lines from the log file into sequences of log lines based on the probabilities of the set of log lines occurring within the window of time and the probabilities of periods of time that the next log line occurs after the respective log line. The subject technology determines a predicted subsequent log line, and detects an anomaly when an actual subsequent log line differs from the predicted subsequent log line.

公开(公告)号：US20190229942A1

公开(公告)日：2019-07-25

申请号：US16287835

申请日：2019-02-27

Applicant: Apple Inc.

Inventor： Anush G. Nadathur ,  Srinivas Rama ,  Matthew C. Lucas ,  Nathan E. Carroll ,  Kevin P. McLaughlin ,  Thomas A. Dilligan ,  Arun G. Mathias

IPC: H04L12/28 ,  H04W88/04 ,  H04W84/18 ,  H04W4/80 ,  H04L12/26 ,  H04W84/20 ,  H04L29/08

Abstract: An automated environment can include multiple controller devices capable of communicating with multiple accessory devices. The controller devices can automatically elect one of their number as a coordinator device for the environment and can automatically perform a new election if an incumbent coordinator becomes unavailable or resigns. The election processes can be transparent to any users. An elected coordinator can perform various operations to facilitate management of the automated environment, including routing of communications between controllers and accessories.

公开(公告)号：US10277587B2

公开(公告)日：2019-04-30

申请号：US15287614

申请日：2016-10-06

Applicant: Apple Inc.

Inventor： Li Li ,  Arun G. Mathias

IPC: H04L29/06 ,  H04W12/04 ,  H04W12/06

Abstract: Methods are provided for instantiating multiple electronic subscriber identity modules (eSIMs) to an electronic universal integrated circuit card (eUICC) using a manufacturer-installed data binary large object (data blob). An eSIM package including the data blob in encrypted form is securely installed in the eUICC in a manufacturing environment. A key encryption key (KEK) associated with the eSIM package is separately provided to an original equipment manufacturer (OEM) wireless device factory. The OEM wireless device factory provides the KEK to the eUICC within a given wireless device. The eUICC uses the KEK to decrypt the eSIM package and provide the data blob. The eUICC can receive a request to instantiate a first eSIM. The eUICC can instantiate the first eSIM using data from the data blob. A user can then access network services using the wireless device. Subsequently, a second eSIM can be instantiated by the eUICC using the data blob.