公开(公告)号：US09419970B2

公开(公告)日：2016-08-16

申请号：US14512137

申请日：2014-10-10

Applicant: Apple Inc.

Inventor： David T. Haggerty ,  Kevin P. McLaughlin ,  Jerrold Von Hauck ,  Arun Mathias

IPC: H04L29/06 ,  H04W4/00 ,  H04W4/02 ,  H04W12/06 ,  H04W12/12 ,  H04B1/3816 ,  H04W12/04 ,  H04W88/06

CPC classification number: H04L63/0853 ,  H04B1/3816 ,  H04L63/0272 ,  H04L63/08 ,  H04W4/029 ,  H04W4/60 ,  H04W12/04 ,  H04W12/06 ,  H04W12/12 ,  H04W88/06

Abstract: Apparatus and methods for distributing access control clients. In one exemplary embodiment, a network infrastructure is disclosed that enables delivery of electronic subscriber identity modules (eSIMs) to secure elements (e.g., electronic Universal Integrated Circuit Cards (eUICCs), etc.) The network architecture includes one or more of: (i) eSIM appliances, (ii) secure eSIM storages, (iii) eSIM managers, (iv) eUICC appliances, (v) eUICC managers, (vi) service provider consoles, (vii) account managers, (viii) Mobile Network Operator (MNO) systems, (ix) eUICCs that are local to one or more devices, and (x) depots. Moreover, each depot may include: (xi) eSIM inventory managers, (xii) system directory services, (xiii) communications managers, and/or (xiv) pending eSIM storages. Functions of the disclosed infrastructure can be flexibly partitioned and/or adapted such that individual parties can host portions of the infrastructure. Exemplary embodiments of the present invention can provide redundancy, thus ensuring maximal uptime for the overall network (or the portion thereof).

Abstract translation: 用于分发访问控制客户端的设备和方法。 在一个示例性实施例中，公开了能够将电子订户身份模块（eSIM）传送到安全元件（例如，电子通用集成电路卡（eUICC）等）的网络基础设施。网络架构包括以下中的一个或多个：（i ）eSIM设备，（ii）安全eSIM存储，（iii）eSIM管理员，（iv）eUICC设备，（v）eUICC管理人员，（vi）服务提供商控制台，（vii）客户经理，（viii）移动网络运营商 ）系统，（ix）一个或多个设备本地的eUIC，以及（x）仓库。 此外，每个仓库可能包括：（xi）eSIM库存管理器，（xii）系统目录服务，（xiii）通信管理器和/或（xiv）未决的eSIM存储。 所公开的基础设施的功能可以灵活地划分和/或调整，使得各方可以托管基础设施的部分。 本发明的示例性实施例可以提供冗余，从而确保整个网络（或其部分）的最大正常运行时间。

公开(公告)号：US09326322B2

公开(公告)日：2016-04-26

申请号：US14288212

申请日：2014-05-27

Applicant: Apple Inc.

Inventor： David T. Haggerty ,  Jerrold Von Hauck ,  Stephan V. Schell ,  Arun G. Mathias

IPC: G06F15/16 ,  H04W88/06 ,  G06Q30/06 ,  H04W8/18 ,  H04W4/00 ,  H04L29/08

CPC classification number: H04W88/06 ,  G06Q30/06 ,  H04L67/34 ,  H04W4/50 ,  H04W8/183

Abstract: Apparatus and methods for distributing electronic access client modules for use with electronic devices. In one embodiment, the access client modules are virtual subscriber identity modules (VSIMs) that can be downloaded from online services for use with cellular-equipped devices such as smartphones. The online services may include a point of sale (POS) system that sells electronic devices to users. A broker may be used to facilitate the selection of a virtual subscriber identity module. A provisioning service may also be used to provision the selected VSIM.

Abstract translation: 用于分发用于电子设备的电子访问客户端模块的装置和方法。 在一个实施例中，接入客户端模块是虚拟订户身份模块（VSIM），其可以从在线服务下载，以便与配备蜂窝的设备如智能电话一起使用。 在线服务可以包括向用户销售电子设备的销售点（POS）系统。 可以使用代理来促进对虚拟订户身份模块的选择。 还可以使用供应服务来配置所选择的VSIM。

公开(公告)号：US09247424B2

公开(公告)日：2016-01-26

申请号：US13767593

申请日：2013-02-14

Applicant: Apple Inc.

Inventor： David T. Haggerty ,  Jerrold Von Hauck ,  Ben-Heng Juang ,  Li Li ,  Arun G. Mathias ,  Kevin McLaughlin ,  Avinash Narasimhan ,  Christopher Sharp ,  Yousuf H. Vaid ,  Xiangying Yang

IPC: G06F7/04 ,  H04W12/06 ,  H04L29/06

CPC classification number: H04L63/10 ,  H04L63/06 ,  H04L63/0823 ,  H04L63/0853 ,  H04L63/205 ,  H04W8/18 ,  H04W8/183 ,  H04W8/20 ,  H04W12/06

Abstract: Methods and apparatus for large scale distribution of electronic access control clients. In one aspect, a tiered security software protocol is disclosed. In one exemplary embodiment, a server electronic Universal Integrated Circuit Card (eUICC) and client eUICC software comprise a so-called “stack” of software layers. Each software layer is responsible for a set of hierarchical functions which are negotiated with its corresponding peer software layer. The tiered security software protocol is configured for large scale distribution of electronic Subscriber Identity Modules (eSIMs).

Abstract translation: 电子门禁客户大规模分销的方法和装置。 一方面，公开了一种分层的安全软件协议。 在一个示例性实施例中，服务器电子通用集成电路卡（eUICC）和客户端eUICC软件包括软件层的所谓“堆叠”。 每个软件层负责与其相应的对等软件层协商的一组分层功能。 分层安全软件协议配置为大规模分发电子订户身份模块（eSIM）。

公开(公告)号：US08966262B2

公开(公告)日：2015-02-24

申请号：US14049185

申请日：2013-10-08

Applicant: Apple Inc.

Inventor： Stephan V. Schell ,  Arun G. Mathias ,  Jerrold Von Hauck ,  David T. Haggerty ,  Kevin McLaughlin ,  Ben-Heng Juang ,  Li Li

IPC: H04L29/06 ,  H04W12/06 ,  H04W4/00 ,  H04W12/08 ,  H04L29/08

CPC classification number: H04W12/06 ,  G06F21/45 ,  G06F21/57 ,  H04L63/08 ,  H04L63/0853 ,  H04L63/123 ,  H04L63/20 ,  H04L67/34 ,  H04W4/50 ,  H04W4/60 ,  H04W8/205 ,  H04W12/04 ,  H04W12/08

Abstract: Methods and apparatus enabling programming of electronic identification information of a wireless apparatus. In one embodiment, a previously purchased or deployed wireless apparatus is activated by a cellular network. The wireless apparatus connects to the cellular network using an access module to download operating system components and/or access control client components. The described methods and apparatus enable updates, additions and replacement of various components including Electronic Subscriber Identity Module (eSIM) data, OS components. One exemplary implementation of the invention utilizes a trusted key exchange between the device and the cellular network to maintain security.

Abstract translation: 能够对无线装置的电子识别信息进行编程的方法和装置。 在一个实施例中，先前购买或部署的无线设备由蜂窝网络激活。 无线设备使用访问模块连接到蜂窝网络，以下载操作系统组件和/或访问控制客户端组件。 所描述的方法和装置能够更新，添加和替换各种组件，包括电子订户身份模块（eSIM）数据，OS组件。 本发明的一个示例性实施方式利用设备和蜂窝网络之间的可信密钥交换来维护安全性。

公开(公告)号：US08607117B2

公开(公告)日：2013-12-10

申请号：US13685586

申请日：2012-11-26

Applicant: Apple Inc.

Inventor： Colin Whitby-Strevens ,  Jerrold Von Hauck

IPC: H03M13/00

CPC classification number: G06F11/10 ,  H03M5/145 ,  H03M13/31

Abstract: The present invention provides a method that protects symbol types by characterizing symbols as one of two types—DATA or NON_DATA, generating a symbol characterization bit, placing the symbol characterization bit at both ends of the symbol, and transmitting the symbol with the symbol characterization bits at both ends. Thus, a single byte error may affect a type bit in two consecutive symbols, and will affect one or the other of the type bits in a single symbol, but cannot affect both type bits in a single symbol.

Abstract translation: 本发明提供了一种通过将符号表征为DATA或NON_DATA中的一种来产生符号表征位，将符号表征位放置在符号的两端并且用符号表征位发送符号来保护符号类型的方法 在两端。 因此，单字节错误可能会影响两个连续符号中的类型位，并将影响单个符号中的一个或另一个类型位，但不能影响单个符号中的两个类型位。

公开(公告)号：US20130205390A1

公开(公告)日：2013-08-08

申请号：US13762074

申请日：2013-02-07

Applicant: Apple Inc.

Inventor： Jerrold Von Hauck ,  Li Li ,  Stephan V. Schell

IPC: H04L29/06

CPC classification number: H04L63/1408 ,  H04W8/205 ,  H04W12/0023 ,  H04W12/1206

Abstract: Methods and apparatus for detecting fraudulent device operation. In one exemplary embodiment of the present disclosure, a device is issued a user access control client that is uniquely associated with a shared secret that is securely stored within the network and the access control client. Subsequent efforts to activate or deactivate the access control client require verification of the shared secret. Each change in state includes a change to the shared secret. Consequently, requests for a change to state which do not have the proper shared secret will be disregarded, and/or flagged as fraudulent.

Abstract translation: 用于检测设备不正当操作的方法和装置。 在本公开的一个示例性实施例中，向设备发布与安全地存储在网络和访问控制客户端内的共享秘密唯一相关联的用户访问控制客户端。 随后努力激活或停用访问控制客户端需要验证共享密钥。 每个状态变化包括对共享秘密的改变。 因此，对不具有适当共享秘密的状态进行更改的请求将被忽略，和/或被标记为欺诈。

公开(公告)号：US20130151910A1

公开(公告)日：2013-06-13

申请号：US13685586

申请日：2012-11-26

Applicant: Apple Inc.

Inventor： Colin Whitby-Strevens ,  Jerrold Von Hauck

IPC: G06F11/10

CPC classification number: G06F11/10 ,  H03M5/145 ,  H03M13/31

Abstract: The present invention provides a method that protects symbol types by characterizing symbols as one of two types—DATA or NON_DATA, generating a symbol characterization bit, placing the symbol characterization bit at both ends of the symbol, and transmitting the symbol with the symbol characterization bits at both ends. Thus, a single byte error may affect a type bit in two consecutive symbols, and will affect one or the other of the type bits in a single symbol, but cannot affect both type bits in a single symbol.

Abstract translation: 本发明提供了一种通过将符号表征为DATA或NON_DATA中的一种来产生符号表征位，将符号表征位放置在符号的两端并且用符号表征位发送符号来保护符号类型的方法 在两端。 因此，单字节错误可能会影响两个连续符号中的类型位，并将影响单个符号中的一个或另一个类型位，但不能影响单个符号中的两个类型位。

公开(公告)号：US10440034B2

公开(公告)日：2019-10-08

申请号：US13762074

申请日：2013-02-07

Applicant: Apple Inc.

Inventor： Jerrold Von Hauck ,  Li Li ,  Stephan V. Schell

IPC: G06F11/00 ,  H04L29/06 ,  H04W8/20 ,  H04W12/12 ,  H04W12/00 ,  G06F12/14

Abstract: Methods and apparatus for detecting fraudulent device operation. In one exemplary embodiment of the present disclosure, a device is issued a user access control client that is uniquely associated with a shared secret that is securely stored within the network and the access control client. Subsequent efforts to activate or deactivate the access control client require verification of the shared secret. Each change in state includes a change to the shared secret. Consequently, requests for a change to state which do not have the proper shared secret will be disregarded, and/or flagged as fraudulent.

公开(公告)号：US10404693B2

公开(公告)日：2019-09-03

申请号：US15936331

申请日：2018-03-26

Applicant: Apple Inc.

Inventor： Xiangying Yang ,  Li Li ,  Jerrold Von Hauck

IPC: H04L29/06 ,  H04W12/04 ,  H04W12/06

Abstract: A method for establishing a secure communication channel between an off-card entity and an embedded Universal Integrated Circuit Card (eUICC) is provided. The method involves establishing symmetric keys that are ephemeral in scope. Specifically, an off-card entity, and each eUICC in a set of eUICCs managed by the off-card entity, possess long-term Public Key Infrastructure (PKI) information. When a secure communication channel is to be established between the off-card entity and an eUICC, the eUICC and the off-card entity can authenticate one another in accordance with the respectively-possessed PKI information (e.g., verifying public keys). After authentication, the off-card entity and the eUICC establish a shared session-based symmetric key for implementing the secure communication channel. Specifically, the shared session-based symmetric key is generated according to whether perfect or half forward security is desired. Once the shared session-based symmetric key is established, the off-card entity and the eUICC can securely communicate information.

公开(公告)号：US10264452B2

公开(公告)日：2019-04-16

申请号：US15944738

申请日：2018-04-03

Applicant: Apple Inc.

Inventor： Xiangying Yang ,  Li Li ,  Jerrold Von Hauck

IPC: H04W4/50 ,  H04W4/60 ,  H04W12/06 ,  H04W12/08 ,  H04L9/32 ,  G06F21/32

Abstract: The embodiments set forth techniques for an embedded Universal Integrated Circuit Card (eUICC) to conditionally require, when performing management operations in association with electronic Subscriber Identity Modules (eSIMs), human-based authentication. The eUICC receives a request to perform a management operation in association with an eSIM. In response, the eUICC determines whether a policy being enforced by the eUICC indicates that a human-based authentication is required prior to performing the management operation. Next, the eUICC causes the mobile device to prompt a user of the mobile device to carry out the human-based authentication. The management operation is then performed or ignored in accordance with results of the human-based authentication.