公开(公告)号：US20160063260A1

公开(公告)日：2016-03-03

申请号：US14815391

申请日：2015-07-31

Applicant: Apple Inc.

Inventor： Christopher B. SHARP ,  Yousuf H. VAID ,  Li LI ,  Jerrold Von HAUCK ,  Arun G. MATHIAS ,  Xiangying YANG ,  Kevin P. McLAUGHLIN

IPC: G06F21/60 ,  H04W12/08 ,  H04L29/06

CPC classification number: G06F21/604 ,  H04L63/102 ,  H04L63/105 ,  H04L63/20 ,  H04W12/08

Abstract: A policy-based framework is described. This policy-based framework may be used to specify the privileges for logical entities to perform operations associated with an access-control element (such as an electronic Subscriber Identity Module) located within a secure element in an electronic device. Note that different logical entities may have different privileges for different operations associated with the same or different access-control elements. Moreover, the policy-based framework may specify types of credentials that are used by the logical entities during authentication, so that different types of credentials may be used for different operations and/or by different logical entities. Furthermore, the policy-based framework may specify the security protocols and security levels that are used by the logical entities during authentication, so that different security protocols and security levels may be used for different operations and/or by different logical entities.

Abstract translation: 描述了基于策略的框架。 该基于策略的框架可以用于指定逻辑实体执行与位于电子设备中的安全元件内的访问控制元素（例如电子订户身份模块）相关联的操作的权限。 注意，对于与相同或不同的访问控制元素相关联的不同操作，不同的逻辑实体可以具有不同的权限。 此外，基于策略的框架可以指定在认证期间由逻辑实体使用的凭证的类型，使得不同类型的凭证可以用于不同的操作和/或由不同的逻辑实体使用。 此外，基于策略的框架可以指定在认证期间由逻辑实体使用的安全协议和安全级别，使得不同的安全协议和安全级别可以用于不同的操作和/或不同的逻辑实体。

公开(公告)号：US20150350877A1

公开(公告)日：2015-12-03

申请号：US14499002

申请日：2014-09-26

Applicant: Apple Inc.

Inventor： Li LI ,  Arun G. MATHIAS

IPC: H04W8/18 ,  H04W68/02

CPC classification number: H04W8/183 ,  H04W8/205 ,  H04W68/005

Abstract: Disclosed herein is a technique for mitigating paging collisions in mobile devices. When a new electronic Subscriber Identity Module (eSIM) is to be provisioned on a mobile device, International Mobile Subscriber Identity (IMSI) information associated with each of the SIMs/eSIMs currently installed on the mobile device is obtained and provided to a provisioning server. In turn, the provisioning server utilizes the IMSI information to select a new eSIM associated with an IMSI that is unlikely to result in a paging collision when operated alongside the SIMs/eSIMs installed on the mobile device. The provisioning server provides the new eSIM to the mobile device, whereupon the mobile device installs the eSIM into the embedded Universal Integrated Circuit Card (eUICC) for operation.

Abstract translation: 这里公开了一种用于减轻移动设备中的寻呼冲突的技术。 当要在移动设备上配置新的电子订户身份模块（eSIM）时，获得与当前安装在移动设备上的每个SIM / eSIM相关联的国际移动用户身份（IMSI）信息并提供给配置服务器。 反过来，供应服务器利用IMSI信息来选择与IMSI相关联的新的eSIM，当与安装在移动设备上的SIM / eSIM一起操作时不太可能导致寻呼冲突。 配置服务器为移动设备提供新的eSIM，移动设备将eSIM安装到嵌入式通用集成电路卡（eUICC）中进行操作。

公开(公告)号：US20150212745A1

公开(公告)日：2015-07-30

申请号：US14682037

申请日：2015-04-08

Applicant: Apple Inc.

Inventor： Li LI ,  Ben-Heng JUANG ,  Arun G. MATHIAS

IPC: G06F3/06 ,  H04W8/24

CPC classification number: G06F3/0617 ,  G06F3/0622 ,  G06F3/0637 ,  G06F3/0653 ,  G06F3/0679 ,  G06F11/3466 ,  G06F12/0246 ,  H04W8/245

Abstract: The invention provides a technique for managing write operations issued to a non-volatile memory included in a wireless device. A monitor software application executes on the wireless device and is configured to determine that a number of write operations issued to the non-volatile memory is greater than or equal to a write operation threshold associated with the non-volatile memory. In response, at least one application is isolated as the application responsible for issuing excessive write operations. The isolation can be carried out locally on the wireless device, or the isolation can be carried out remotely at a server by sending information about the write operations to the server. The monitor then limits additional write operations from being issued to the non-volatile memory so as to protect the non-volatile memory from becoming corrupted or inoperable.

Abstract translation: 本发明提供一种用于管理发给无线设备中包括的非易失性存储器的写操作的技术。 监视器软件应用程序在无线设备上执行，并且被配置为确定发出到非易失性存储器的写入操作的数量大于或等于与非易失性存储器相关联的写入操作阈值。 作为响应，至少一个应用程序被隔离为负责发出过多写入操作的应用程序。 隔离可以在无线设备上本地进行，也可以通过向服务器发送有关写入操作的信息，在服务器上远程执行隔离。 监视器然后限制额外的写入操作被发布到非易失性存储器，以便保护非易失性存储器不被损坏或不可操作。

公开(公告)号：US20140349705A1

公开(公告)日：2014-11-27

申请号：US14288212

申请日：2014-05-27

Applicant: Apple Inc.

Inventor： David T. HAGGERTY ,  Jerrold Von HAUCK ,  Stephan V. SCHELL ,  Arun G. MATHIAS

IPC: H04W88/06

CPC classification number: H04W88/06 ,  G06Q30/06 ,  H04L67/34 ,  H04W4/50 ,  H04W8/183

Abstract: Apparatus and methods for distributing electronic access client modules for use with electronic devices. In one embodiment, the access client modules are virtual subscriber identity modules (VSIMs) that can be downloaded from online services for use with cellular-equipped devices such as smartphones. The online services may include a point of sale (POS) system that sells electronic devices to users. A broker may be used to facilitate the selection of a virtual subscriber identity module. A provisioning service may also be used to provision the selected VSIM.

Abstract translation: 用于分发用于电子设备的电子访问客户端模块的装置和方法。 在一个实施例中，接入客户端模块是虚拟订户身份模块（VSIM），其可以从在线服务下载，以便与配备蜂窝的设备如智能电话一起使用。 在线服务可以包括向用户销售电子设备的销售点（POS）系统。 可以使用代理来促进对虚拟订户身份模块的选择。 还可以使用供应服务来配置所选择的VSIM。

公开(公告)号：US20140349617A1

公开(公告)日：2014-11-27

申请号：US14459212

申请日：2014-08-13

Applicant: Apple Inc.

Inventor： Li LI ,  Arun G. MATHIAS ,  Ben-Heng JUANG

IPC: H04W4/00 ,  H04W12/04

CPC classification number: H04W4/001 ,  H04W4/50 ,  H04W8/20 ,  H04W12/04

Abstract: Provisioning an embedded subscriber identity module (eSIM) in a user equipment (UE) device with personalized subscriber information. A request may be transmitted for personalized subscriber information. The personalized subscriber information may be received. The personalized subscriber information may be installed in an eSIM in the UE device.

Abstract translation: 在具有个性化订户信息的用户设备（UE）设备中提供嵌入式用户识别模块（eSIM）。 可以发送用于个性化订户信息的请求。 可以接收个性化订户信息。 个性化用户信息可以安装在UE设备中的eSIM中。

公开(公告)号：US20140099925A1

公开(公告)日：2014-04-10

申请号：US14049185

申请日：2013-10-08

Applicant: Apple Inc.

Inventor： Stephan V. SCHELL ,  Arun G. MATHIAS ,  Jerrold VON HAUCK ,  David T. HAGGERTY ,  Kevin McLAUGHLIN ,  Ben-Heng JUANG ,  Li LI

IPC: H04W12/06

CPC classification number: H04W12/06 ,  G06F21/45 ,  G06F21/57 ,  H04L63/08 ,  H04L63/0853 ,  H04L63/123 ,  H04L63/20 ,  H04L67/34 ,  H04W4/50 ,  H04W4/60 ,  H04W8/205 ,  H04W12/04 ,  H04W12/08

Abstract: Methods and apparatus enabling programming of electronic identification information of a wireless apparatus. In one embodiment, a previously purchased or deployed wireless apparatus is activated by a cellular network. The wireless apparatus connects to the cellular network using an access module to download operating system components and/or access control client components. The described methods and apparatus enable updates, additions and replacement of various components including Electronic Subscriber Identity Module (eSIM) data, OS components. One exemplary implementation of the invention utilizes a trusted key exchange between the device and the cellular network to maintain security.

Abstract translation: 能够对无线装置的电子识别信息进行编程的方法和装置。 在一个实施例中，先前购买或部署的无线设备由蜂窝网络激活。 无线设备使用访问模块连接到蜂窝网络，以下载操作系统组件和/或访问控制客户端组件。 所描述的方法和装置能够更新，添加和替换各种组件，包括电子订户身份模块（eSIM）数据，OS组件。 本发明的一个示例性实施方式利用设备和蜂窝网络之间的可信密钥交换来维护安全性。

公开(公告)号：US20240134953A1

公开(公告)日：2024-04-25

申请号：US18370371

申请日：2023-09-18

Applicant: Apple Inc.

Inventor： Anshul JAIN ,  Craig M. FEDERIGHI ,  Andreas I. GAL ,  Jared S. GRUBB ,  Arun G. MATHIAS ,  Anush G. NADATHUR ,  Philip W. SCHILLER ,  Justin N. WOOD

IPC: G06F21/33 ,  G06F21/44

CPC classification number: G06F21/33 ,  G06F21/44

Abstract: Some techniques are described herein for a setup component of a controller to add accessories to a new ecosystem (e.g., a grouping of one or more accessories and one or more controllers and/or a grouping of one or more accessories to an application) that are already added to another ecosystem. Such techniques can include the setup component maintaining a list of accessories for which the setup component has added to the other ecosystem. Using the list, the setup component adds the accessories in the list to the new ecosystem through communications with the accessories and an application corresponding to the new ecosystem.

公开(公告)号：US20200383152A1

公开(公告)日：2020-12-03

申请号：US16889732

申请日：2020-06-01

Applicant: Apple Inc.

Inventor： Abhishek WALIA ,  Najeeb M. ABDULRAHIMAN ,  Oleg M. MOSKALENKO ,  Sergey SITNIKOV ,  Vikram Bhaskara YERRABOMMANAHALLI ,  Ajoy K. SINGH ,  Arun G. MATHIAS

IPC: H04W76/12 ,  H04W60/00

Abstract: Apparatus and methods to support access to services of multiple wireless networks by a single-radio, multiple subscriber identity module (SIM)/electronic SIM (eSIM) wireless device are disclosed. To send or receive voice communications for multiple SIMs/eSIMs, when an active voice connection for a first SIM/eSIM uses wireless circuitry to connect to a first cellular wireless network via a first radio access network, the single-radio, multi-SIM/eSIM wireless device uses alternative data transports, such as via a wireless local area network (WLAN) or by tunneling through the first radio access network of the first cellular wireless network to connect to services of additional cellular wireless networks associated with the multiple SIMs/eSIMs.

公开(公告)号：US20200177450A1

公开(公告)日：2020-06-04

申请号：US16780621

申请日：2020-02-03

Applicant: Apple Inc.

Inventor： Li LI ,  Yousuf H. VAID ,  Christopher B. SHARP ,  Arun G. MATHIAS ,  David T. HAGGERTY ,  Jerrold Von HAUCK

IPC: H04L12/24 ,  H04W12/06 ,  H04W8/20 ,  H04L29/06 ,  H04W8/18 ,  H04B1/3827 ,  H04B1/3816

Abstract: Representative embodiments described herein set forth techniques for optimizing large-scale deliveries of electronic Subscriber Identity Modules (eSIMs) to mobile devices. Specifically, instead of generating and assigning eSIMs when mobile devices are being activated—which can require significant processing overhead—eSIMs are pre-generated with a basic set of information, and are later-assigned to the mobile devices when they are activated. This can provide considerable benefits over conventional approaches that involve generating and assigning eSIMs during mobile device activation, especially when new mobile devices (e.g., smartphones, tablets, etc.) are being launched and a large number of eSIM assignment requests are to be fulfilled in an efficient manner.

公开(公告)号：US20170338962A1

公开(公告)日：2017-11-23

申请号：US15598232

申请日：2017-05-17

Applicant: Apple Inc.

Inventor： Li LI ,  Clark P. MUELLER ,  Avinash NARASIMHAN ,  Arun G. MATHIAS ,  David T. HAGGERTY ,  Najeeb M. ABDULRAHIMAN ,  Jean-Marc PADOVA

IPC: H04L9/32 ,  H04W36/00 ,  H04W12/04 ,  H04L9/14 ,  H04L29/08 ,  H04L9/00 ,  H04L29/06 ,  H04L9/30 ,  H04W76/02 ,  H04W8/18

Abstract: Embodiments provided herein determine if an electronic subscriber identity module (eSIM) associated with a requested service can be installed in a secure element (SE) housed in a wireless device. Before requesting deployment of an eSIM suitable for the requested service from an eSIM delivery server, a carrier server asks that an original equipment manufacturer (OEM) server validate that an eSIM corresponding to a customer request should be deployed. The OEM server obtains information about the wireless device and information about the SE. When the carrier server requests validation, the OEM server evaluates the wireless device information and/or the SE information. If the OEM server indicates that deployment of the eSIM should proceed, the OEM server also indicates the eSIM type that is compatible with the wireless device and with the SE housed in the device.