公开(公告)号：US09344832B2

公开(公告)日：2016-05-17

申请号：US14629386

申请日：2015-02-23

Applicant: Apple Inc.

Inventor： Stephan V. Schell ,  Arun G. Mathias ,  Jerrold Von Hauck ,  David T. Haggerty ,  Kevin McLaughlin ,  Ben-Heng Juang ,  Li Li

IPC: H04L29/06 ,  H04W4/00 ,  H04W12/04 ,  H04W12/06

CPC classification number: H04W12/06 ,  G06F21/45 ,  G06F21/57 ,  H04L63/08 ,  H04L63/0853 ,  H04L63/123 ,  H04L63/20 ,  H04L67/34 ,  H04W4/50 ,  H04W4/60 ,  H04W8/205 ,  H04W12/04 ,  H04W12/08

Abstract: Methods and apparatus enabling programming of electronic identification information of a wireless apparatus. In one embodiment, a previously purchased or deployed wireless apparatus is activated by a cellular network. The wireless apparatus connects to the cellular network using an access module to download operating system components and/or access control client components. The described methods and apparatus enable updates, additions and replacement of various components including Electronic Subscriber Identity Module (eSIM) data, OS components. One exemplary implementation of the invention utilizes a trusted key exchange between the device and the cellular network to maintain security.

公开(公告)号：US20140241175A1

公开(公告)日：2014-08-28

申请号：US13774266

申请日：2013-02-22

Applicant: APPLE INC.

Inventor： Stephan V. Schell

IPC: H04W4/02

CPC classification number: H04W4/023 ,  H04W4/06

Abstract: A wireless communications network may include multiple nodes, one of which is selected as a master node. The nodes may take turns broadcasting respective packets according to a predetermined broadcast schedule. During any given broadcast iteration, each node may broadcast a packet while the other remaining nodes receive the broadcast packet in parallel. In response to receiving the broadcast packet, each node may be configured to obtain desired estimated timing values. The estimated timing values may be transmitted back to the master node for use in computing time-of-flight information. Frequency-synchronization operations may be periodically performed to help reduce timing errors. The time-of-flight information, along with other location-based metrics, may be used in determining the relative positions of the multiple nodes in the network.

Abstract translation: 无线通信网络可以包括多个节点，其中一个节点被选择为主节点。 节点可以根据预定的广播时间表轮流广播相应的分组。 在任何给定的广播迭代期间，每个节点可以广播分组，而其他剩余节点并行地接收广播分组。 响应于接收到广播分组，每个节点可以被配置为获得期望的估计定时值。 估计的定时值可以被发送回到主节点以用于计算飞行时间信息。 可以周期性地执行频率同步操作以帮助减少定时误差。 飞行时间信息以及其他基于位置的度量可以用于确定网络中的多个节点的相对位置。

公开(公告)号：US10275585B2

公开(公告)日：2019-04-30

申请号：US15470752

申请日：2017-03-27

Applicant: Apple Inc.

Inventor： Anthony M. Fadell ,  Andrew Bert Hodge ,  Stephan V. Schell ,  Ruben Caballero ,  Jesse Lee Dorogusker ,  Stephen Paul Zadesky ,  Emery Sanford

IPC: G06K9/00 ,  G06K9/32 ,  H04L9/32 ,  G06F21/31 ,  G06F21/32 ,  G06F21/36 ,  G06F3/041 ,  H04L29/06 ,  H04W12/06 ,  H04W88/02 ,  G06F3/0481 ,  G06F3/0488

Abstract: This invention is directed to an electronic device with an embedded authentication system for restricting access to device resources. The authentication system may include one or more sensors operative to detect biometric information of a user. The sensors may be positioned in the device such that the sensors may detect appropriate biometric information as the user operates the device, without requiring the user to perform a step for providing the biometric information (e.g., embedding a fingerprint sensor in an input mechanism instead of providing a fingerprint sensor in a separate part of the device housing). In some embodiments, the authentication system may be operative to detect a visual or temporal pattern of inputs to authenticate a user. In response to authenticating, a user may access restricted files, applications (e.g., applications purchased by the user), or settings (e.g., application settings such as contacts or saved game profile).

公开(公告)号：US20180124705A1

公开(公告)日：2018-05-03

申请号：US15839252

申请日：2017-12-12

Applicant: Apple Inc.

Inventor： Li Su ,  Stephan V. Schell ,  Jianxiong Shi ,  Sami M. Almalfouh

IPC: H04W52/02 ,  H04W72/02 ,  H04J3/16

CPC classification number: H04W52/0251 ,  H04J3/1694 ,  H04W52/0261 ,  H04W52/0277 ,  H04W72/02 ,  Y02B70/30 ,  Y02D70/00 ,  Y02D70/1242 ,  Y02D70/1262 ,  Y02D70/1264 ,  Y02D70/142 ,  Y02D70/144 ,  Y02D70/146 ,  Y02D70/164 ,  Y02D70/168 ,  Y02D70/23 ,  Y02D70/25 ,  Y02D70/26

Abstract: In some embodiments, a user equipment device (UE) implements improved communication methods which include radio resource time multiplexing, dynamic sub-frame allocation, and UE transmit duty cycle control. In some embodiments, the UE may communicate with base stations using radio frames that include multiple sub-frames, transmit information regarding allocation of a portion of the sub-frames of a respective radio frame for each of a plurality of the radio frames, and transmit and receive data using allocated sub-frames and not using unallocated sub-frames. In some embodiments, the UE may operate according to a sub-frame allocation based on its current power state. The UE may transmit information to the base station and receive the sub-frame allocation based on at least the information. In some embodiments, the UE may switch transmit duty cycles based on an occurrence of a condition at the UE. The UE may inform the network of the switch.

公开(公告)号：US09854527B2

公开(公告)日：2017-12-26

申请号：US14834533

申请日：2015-08-25

Applicant: Apple Inc.

Inventor： Li Su ,  Stephan V. Schell ,  Jianxiong Shi ,  Sami M. Almalfouh

IPC: H04L12/26 ,  H04W52/02 ,  H04J3/16 ,  H04W72/02

CPC classification number: H04W52/0251 ,  H04J3/1694 ,  H04W52/0261 ,  H04W52/0277 ,  H04W72/02 ,  Y02B70/30 ,  Y02D70/00 ,  Y02D70/1242 ,  Y02D70/1262 ,  Y02D70/1264 ,  Y02D70/142 ,  Y02D70/144 ,  Y02D70/146 ,  Y02D70/164 ,  Y02D70/168 ,  Y02D70/23 ,  Y02D70/25 ,  Y02D70/26

Abstract: In some embodiments, a user equipment device (UE) implements improved communication methods which include radio resource time multiplexing, dynamic sub-frame allocation, and UE transmit duty cycle control. In some embodiments, the UE may communicate with base stations using radio frames that include multiple sub-frames, transmit information regarding allocation of a portion of the sub-frames of a respective radio frame for each of a plurality of the radio frames, and transmit and receive data using allocated sub-frames and not using unallocated sub-frames. In some embodiments, the UE may operate according to a sub-frame allocation based on its current power state. The UE may transmit information to the base station and receive the sub-frame allocation based on at least the information. In some embodiments, the UE may switch transmit duty cycles based on an occurrence of a condition at the UE. The UE may inform the network of the switch.

公开(公告)号：US09763101B2

公开(公告)日：2017-09-12

申请号：US14866969

申请日：2015-09-27

Applicant: Apple Inc.

Inventor： Li Li ,  Stephan V. Schell

IPC: H04M1/66 ,  H04W12/12 ,  H04W48/06 ,  H04W28/02 ,  H04W52/02 ,  H04W8/20 ,  H04L29/14 ,  H04W8/26 ,  H04W28/06 ,  H04W74/00

CPC classification number: H04W12/12 ,  H04L69/40 ,  H04W8/20 ,  H04W8/265 ,  H04W28/0289 ,  H04W28/06 ,  H04W48/06 ,  H04W52/0212 ,  H04W74/004 ,  Y02D70/1224 ,  Y02D70/1242 ,  Y02D70/1262 ,  Y02D70/142 ,  Y02D70/144 ,  Y02D70/146 ,  Y02D70/166

Abstract: Methods and apparatus for correcting error events associated with identity provisioning. In one embodiment, repeated requests for access control clients are responded to with the execution of a provisioning feedback mechanism which is intended to prevent the unintentional (or even intentional) over-consumption or waste of network resources via the delivery of an excessive amount of access control clients. These provisioning feedback mechanisms include rate-limiting algorithms and/or methodologies which place a cost on the user. Apparatus for implementing the aforementioned provisioning feedback mechanisms are also disclosed and include specialized user equipment and/or network side equipment such as a subscriber identity module provisioning server (SPS).

公开(公告)号：US09635487B2

公开(公告)日：2017-04-25

申请号：US14668843

申请日：2015-03-25

Applicant: Apple Inc.

Inventor： Clive Edward Rodgers ,  Stephan V. Schell ,  Achim Pantfoerder ,  Mohit Narang

IPC: H04M3/00 ,  H04W4/00 ,  H04W8/18 ,  H04L29/08 ,  H04W8/08 ,  H04W8/26 ,  H04W88/06

CPC classification number: H04W4/001 ,  H04L67/16 ,  H04W4/50 ,  H04W4/60 ,  H04W8/08 ,  H04W8/183 ,  H04W8/265 ,  H04W88/06

Abstract: Apparatus and methods for provisioning wireless devices for operation in one or more networks. In one embodiment, a provisioning service may provide access client (e.g., Subscriber Identity Module) data to a secure element in the wireless user device. The device may be preloaded with a provisioning SIM profile. The device may use the provisioning profile to roam onto a carrier, and communicate with a provisioning service, which may present the user with a list of available wireless carriers, such as carriers that service the user's current geographic location. In response to a user selection, the provisioning service may load a SIM profile associated with the selected carrier onto the secure element. The loaded SIM profile can be used to obtain wireless service from the selected carrier. The user may add multiple SIM profiles, and/or may delete SIM profiles.

公开(公告)号：US09532219B2

公开(公告)日：2016-12-27

申请号：US14543773

申请日：2014-11-17

Applicant: Apple Inc.

Inventor： Stephan V. Schell ,  Jerrold Von Hauck

IPC: H04W12/06 ,  H04L29/06 ,  H04W4/00 ,  H04W8/20 ,  H04W8/26 ,  H04W8/18

CPC classification number: H04W12/06 ,  H04L63/0823 ,  H04W4/50 ,  H04W4/60 ,  H04W8/18 ,  H04W8/205 ,  H04W8/265

Abstract: Disclosed herein is a technique for securely provisioning access control entities (e.g., electronic Subscriber Identity Module (eSIM) components) to a user equipment (UE) device. In one embodiment, a UE device is assigned a unique key and an endorsement certificate that can be used to provide updates or new eSIMs to the UE device. The UE device can trust eSIM material delivered by an unknown third-party eSIM vendor, based on a secure certificate transmission with the unique key. In another aspect, an operating system (OS) is partitioned into various sandboxes. During operation, the UE device can activate and execute the OS in the sandbox corresponding to a current wireless network. Personalization packages received while connected to the network only apply to that sandbox. Similarly, when loading an eSIM, the OS need only load the list of software necessary for the current run-time environment. Unused software can be subsequently activated.

Abstract translation: 本文公开了一种用于将访问控制实体（例如，电子订户身份模块（eSIM）组件）安全地提供给用户设备（UE）设备的技术。 在一个实施例中，向UE设备分配唯一密钥和可用于向UE设备提供更新或新eSIM的签注证书。 基于使用唯一密钥的安全证书传输，UE设备可以信任由未知的第三方eSIM供应商提供的eSIM资料。 在另一方面，操作系统（OS）被划分成各种沙盒。 在操作期间，UE设备可以在对应于当前无线网络的沙箱中激活并执行OS。 连接到网络时收到的个性化包仅适用于该沙盒。 同样，当加载eSIM时，操作系统只需加载当前运行时环境所需的软件列表。 未使用的软件可以随后激活。

公开(公告)号：US09281855B2

公开(公告)日：2016-03-08

申请号：US14188623

申请日：2014-02-24

Applicant: Apple Inc.

Inventor： Stephan V. Schell ,  Arun Mathias

IPC: H04M3/42 ,  H04B1/3816 ,  G06F12/02 ,  H04W4/00

CPC classification number: H04B1/3816 ,  G06F3/0604 ,  G06F3/0631 ,  G06F3/0664 ,  G06F3/067 ,  G06F3/0679 ,  G06F12/0246 ,  G06F2212/177 ,  G06F2212/7211 ,  H04W4/60 ,  H04W8/183 ,  H04W12/06 ,  H04W48/18 ,  H04W88/06

Abstract: Apparatus and method for maintaining hardware history profiles for a software-based emulator. In one embodiment, the disclosed software-based emulator monitors the history of the actual hardware device in a secondary device history, the history of the emulated hardware is presented within a primary device history. However, the primary device history is linked to the secondary device history, and receives the device wear history therefrom. In another aspect of the present invention, wear-leveling strategies are disclosed for handling various update sizes. Unlike existing solutions which are optimized for a single SIM that receives small data updates; various embodiments of the present invention are suitable for handling varying data sizes.

Abstract translation: 用于维护基于软件的仿真器的硬件历史配置文件的装置和方法。 在一个实施例中，所公开的基于软件的仿真器监视辅助设备历史中的实际硬件设备的历史，仿真硬件的历史记录在主设备历史中。 然而，主设备历史与辅助设备历史相关联，并从其接收设备磨损历史。 在本发明的另一方面，公开了用于处理各种更新尺寸的磨损均衡策略。 与针对接收小数据更新的单个SIM进行了优化的现有解决方案不同; 本发明的各种实施例适用于处理变化的数据大小。

公开(公告)号：US09148841B2

公开(公告)日：2015-09-29

申请号：US13762897

申请日：2013-02-08

Applicant: Apple Inc.

Inventor： Li Li ,  Stephan V. Schell

IPC: H04M1/66 ,  H04W48/06 ,  H04W28/02 ,  H04W52/02 ,  H04W8/20 ,  H04W12/12 ,  H04L29/14 ,  H04W8/26 ,  H04W28/06 ,  H04W74/00

CPC classification number: H04W12/12 ,  H04L69/40 ,  H04W8/20 ,  H04W8/265 ,  H04W28/0289 ,  H04W28/06 ,  H04W48/06 ,  H04W52/0212 ,  H04W74/004 ,  Y02D70/1224 ,  Y02D70/1242 ,  Y02D70/1262 ,  Y02D70/142 ,  Y02D70/144 ,  Y02D70/146 ,  Y02D70/166

Abstract: Methods and apparatus for correcting error events associated with identity provisioning. In one embodiment, repeated requests for access control clients are responded to with the execution of a provisioning feedback mechanism which is intended to prevent the unintentional (or even intentional) over-consumption or waste of network resources via the delivery of an excessive amount of access control clients. These provisioning feedback mechanisms include rate-limiting algorithms and/or methodologies which place a cost on the user. Apparatus for implementing the aforementioned provisioning feedback mechanisms are also disclosed and include specialized user equipment and/or network side equipment such as a subscriber identity module provisioning server (SPS).

Abstract translation: 用于纠正与身份提供相关的错误事件的方法和装置。 在一个实施例中，对访问控制客户机的重复请求响应于供应反馈机制的执行，其旨在通过传递过多的访问来防止无意（甚至故意的）过度消费或浪费网络资源 控制客户端。 这些供应反馈机制包括对用户造成成本的速率限制算法和/或方法。 还公开了用于实现上述提供反馈机制的装置，并且包括专用用户设备和/或诸如订户身份模块提供服务器（SPS）的网络侧设备。