公开(公告)号：US20190166560A1

公开(公告)日：2019-05-30

申请号：US16261828

申请日：2019-01-30

Applicant: Apple Inc.

Inventor： Li Su ,  Stephan V. Schell ,  Jianxiong Shi ,  Sami M. Almalfouh

IPC: H04W52/02 ,  H04J3/16 ,  H04W72/02

CPC classification number: H04W52/0251 ,  H04J3/1694 ,  H04W52/0261 ,  H04W52/0277 ,  H04W72/02 ,  Y02B70/30 ,  Y02D70/00 ,  Y02D70/1242 ,  Y02D70/1262 ,  Y02D70/1264 ,  Y02D70/142 ,  Y02D70/144 ,  Y02D70/146 ,  Y02D70/164 ,  Y02D70/168 ,  Y02D70/23 ,  Y02D70/25 ,  Y02D70/26

Abstract: In some embodiments, a user equipment device (UE) implements improved communication methods which include radio resource time multiplexing, dynamic sub-frame allocation, and UE transmit duty cycle control. In some embodiments, the UE may communicate with base stations using radio frames that include multiple sub-frames, transmit information regarding allocation of a portion of the sub-frames of a respective radio frame for each of a plurality of the radio frames, and transmit and receive data using allocated sub-frames and not using unallocated sub-frames. In some embodiments, the UE may operate according to a sub-frame allocation based on its current power state. The UE may transmit information to the base station and receive the sub-frame allocation based on at least the information. In some embodiments, the UE may switch transmit duty cycles based on an occurrence of a condition at the UE. The UE may inform the network of the switch.

公开(公告)号：US09953152B2

公开(公告)日：2018-04-24

申请号：US15357873

申请日：2016-11-21

Applicant: Apple Inc.

Inventor： Anthony M. Fadell ,  Andrew Bert Hodge ,  Stephan V. Schell ,  Ruben Caballero ,  Jesse Lee Dorogusker ,  Stephen Paul Zadesky ,  Emery Sanford

IPC: G06F7/04 ,  G06F21/32 ,  G06F21/36 ,  G06K9/00 ,  G06F3/0481

CPC classification number: G06F21/32 ,  G06F3/0412 ,  G06F3/0416 ,  G06F3/04817 ,  G06F3/0488 ,  G06F3/04883 ,  G06F21/316 ,  G06F21/36 ,  G06K9/00013 ,  G06K9/0002 ,  G06K9/00033 ,  G06K9/00087 ,  G06K9/00248 ,  G06K9/00255 ,  G06K9/00912 ,  G06K9/3241 ,  H04L9/3231 ,  H04L63/08 ,  H04L63/0861 ,  H04L63/104 ,  H04W12/06 ,  H04W88/02

Abstract: This invention is directed to an electronic device with an embedded authentication system for restricting access to device resources. The authentication system may include one or more sensors operative to detect biometric information of a user. The sensors may be positioned in the device such that the sensors may detect appropriate biometric information as the user operates the device, without requiring the user to perform a step for providing the biometric information (e.g., embedding a fingerprint sensor in an input mechanism instead of providing a fingerprint sensor in a separate part of the device housing). In some embodiments, the authentication system may be operative to detect a visual or temporal pattern of inputs to authenticate a user. In response to authenticating, a user may access restricted files, applications (e.g., applications purchased by the user), or settings (e.g., application settings such as contacts or saved game profile).

公开(公告)号：US09495531B2

公开(公告)日：2016-11-15

申请号：US15017436

申请日：2016-02-05

Applicant: Apple Inc.

Inventor： Anthony M. Fadell ,  Andrew Bert Hodge ,  Stephan V. Schell ,  Ruben Caballero ,  Jesse Lee Dorogusker ,  Stephen Paul Zadesky ,  Emery Sanford

IPC: G06F21/36 ,  G06K9/00 ,  G06F3/0481 ,  G06F3/0488 ,  G06F3/041 ,  G06F21/31 ,  G06F21/32 ,  H04L29/06

CPC classification number: G06F21/32 ,  G06F3/0412 ,  G06F3/0416 ,  G06F3/04817 ,  G06F3/0488 ,  G06F3/04883 ,  G06F21/316 ,  G06F21/36 ,  G06K9/00013 ,  G06K9/0002 ,  G06K9/00033 ,  G06K9/00087 ,  G06K9/00248 ,  G06K9/00255 ,  G06K9/00912 ,  G06K9/3241 ,  H04L9/3231 ,  H04L63/08 ,  H04L63/0861 ,  H04L63/104 ,  H04W12/06 ,  H04W88/02

Abstract: This invention is directed to an electronic device with an embedded authentication system for restricting access to device resources. The authentication system may include one or more sensors operative to detect biometric information of a user. The sensors may be positioned in the device such that the sensors may detect appropriate biometric information as the user operates the device, without requiring the user to perform a step for providing the biometric information (e.g., embedding a fingerprint sensor in an input mechanism instead of providing a fingerprint sensor in a separate part of the device housing). In some embodiments, the authentication system may be operative to detect a visual or temporal pattern of inputs to authenticate a user. In response to authenticating, a user may access restricted files, applications (e.g., applications purchased by the user), or settings (e.g., application settings such as contacts or saved game profile).

公开(公告)号：US09338649B2

公开(公告)日：2016-05-10

申请号：US14195728

申请日：2014-03-03

Applicant: Apple Inc.

Inventor： Stephan V. Schell ,  Mohit Narang ,  Ruben Caballero

IPC: H04M1/00 ,  H04W12/06 ,  H04W88/06 ,  H04W48/18 ,  H04B1/403 ,  H04L29/06 ,  H04W12/04 ,  H04W4/00 ,  H04W48/08

CPC classification number: H04W12/06 ,  H04B1/406 ,  H04L63/062 ,  H04L63/0853 ,  H04W4/00 ,  H04W12/04 ,  H04W48/08 ,  H04W48/18 ,  H04W88/06

Abstract: Apparatus and methods for authenticating and granting a client device (e.g., cellular telephone) access to a network. In one embodiment, a network service provider such as a cellular telephone company may distribute user access (e.g., Universal Subscriber Identity Module or “USIM”) credentials to a service manager via a USIM vendor. The services manager may maintain a list of authorized users. A user at a client may authenticate to the services manager. Once authenticated, the services manager may provide the user with a set of USIM credentials. When the user desires to use wireless network services, the user equipment may establish a wireless link between the user equipment and the network service provider. During authentication operations, the user equipment may use the USIM credentials to authenticate to the network service provider. Following successful authentication, the network service provider may provide the user equipment with wireless services.

Abstract translation: 用于认证和授予客户端设备（例如，蜂窝电话）接入网络的设备和方法。 在一个实施例中，诸如蜂窝电话公司的网络服务提供商可以经由USIM供应商将用户访问（例如，通用订户身份模块或“USIM”）凭证分发给服务管理器。 服务经理可以维护授权用户的列表。 客户端的用户可以向服务管理器进行身份验证。 一旦经过身份验证，服务管理器可以向用户提供一组USIM凭证。 当用户期望使用无线网络服务时，用户设备可以在用户设备和网络服务提供商之间建立无线链路。 在认证操作期间，用户设备可以使用USIM凭证来向网络服务提供商进行认证。 在成功认证之后，网络服务提供商可以向用户设备提供无线服务。

公开(公告)号：US20150312699A1

公开(公告)日：2015-10-29

申请号：US14668843

申请日：2015-03-25

Applicant: Apple Inc.

Inventor： Clive Edward Rodgers ,  Stephan V. Schell ,  Achim Pantfoerder ,  Mohit Narang

IPC: H04W4/00 ,  H04W8/08 ,  H04W8/18

CPC classification number: H04W4/001 ,  H04L67/16 ,  H04W4/50 ,  H04W4/60 ,  H04W8/08 ,  H04W8/183 ,  H04W8/265 ,  H04W88/06

Abstract: Apparatus and methods for provisioning wireless devices for operation in one or more networks. In one embodiment, a provisioning service may provide access client (e.g., Subscriber Identity Module) data to a secure element in the wireless user device. The device may be preloaded with a provisioning SIM profile. The device may use the provisioning profile to roam onto a carrier, and communicate with a provisioning service, which may present the user with a list of available wireless carriers, such as carriers that service the user's current geographic location. In response to a user selection, the provisioning service may load a SIM profile associated with the selected carrier onto the secure element. The loaded SIM profile can be used to obtain wireless service from the selected carrier. The user may add multiple SIM profiles, and/or may delete SIM profiles.

Abstract translation: 用于为一个或多个网络中的无线设备提供操作的设备和方法。 在一个实施例中，供应服务可以向无线用户设备中的安全元件提供接入客户端（例如，订户身份模块）。 可以预先装载设备SIM配置文件。 设备可以使用供应简档漫游到载波上，并与供应服务通信，供应服务可向用户呈现可用无线载波的列表，诸如为用户当前地理位置提供服务的运营商。 响应于用户选择，供应服务可以将与所选择的载波相关联的SIM简档加载到安全元件上。 加载的SIM配置文件可用于从所选载波获取无线服务。 用户可以添加多个SIM卡配置文件，和/或可以删除​​SIM卡配置文件。

公开(公告)号：US11051159B2

公开(公告)日：2021-06-29

申请号：US16267160

申请日：2019-02-04

Applicant: Apple Inc.

Inventor： Stephan V. Schell ,  David T. Haggerty

IPC: H04W8/20 ,  H04W12/30 ,  H04W12/43

Abstract: Methods and apparatus for managing multiple user access control entities or clients. For example, in one embodiment, a “wallet” of electronic subscriber identity modules (eSIMs) may be stored and used at a user device and/or distributed to other devices for use thereon. In another embodiment, a networked server may store and distribute eSIM to a plurality of user devices in communication therewith. A database of available eSIM is maintained at the wallet entity and/or at the network which enables request for a particular eSIM to be processed and various rules for the distribution thereof to be implemented. Security precautions are implemented to protect both user and network carrier specific data as the data is transmitted between networked entities. Solutions for eSIM backup and restoration are also described.

公开(公告)号：US10956550B2

公开(公告)日：2021-03-23

申请号：US16386707

申请日：2019-04-17

Applicant: Apple Inc.

Inventor： Anthony M. Fadell ,  Andrew Bert Hodge ,  Stephan V. Schell ,  Ruben Caballero ,  Jesse Lee Dorogusker ,  Stephen Paul Zadesky ,  Emery Sanford

IPC: G06F21/32 ,  G06F3/041 ,  G06F21/31 ,  H04W12/06 ,  G06F21/36 ,  G06K9/00 ,  G06F3/0488 ,  H04L29/06 ,  G06F3/0481 ,  G06K9/32 ,  H04L9/32 ,  H04W88/02

Abstract: This invention is directed to an electronic device with an embedded authentication system for restricting access to device resources. The authentication system may include one or more sensors operative to detect biometric information of a user. The sensors may be positioned in the device such that the sensors may detect appropriate biometric information as the user operates the device, without requiring the user to perform a step for providing the biometric information (e.g., embedding a fingerprint sensor in an input mechanism instead of providing a fingerprint sensor in a separate part of the device housing). In some embodiments, the authentication system may be operative to detect a visual or temporal pattern of inputs to authenticate a user. In response to authenticating, a user may access restricted files, applications (e.g., applications purchased by the user), or settings (e.g., application settings such as contacts or saved game profile).

公开(公告)号：US10440034B2

公开(公告)日：2019-10-08

申请号：US13762074

申请日：2013-02-07

Applicant: Apple Inc.

Inventor： Jerrold Von Hauck ,  Li Li ,  Stephan V. Schell

IPC: G06F11/00 ,  H04L29/06 ,  H04W8/20 ,  H04W12/12 ,  H04W12/00 ,  G06F12/14

Abstract: Methods and apparatus for detecting fraudulent device operation. In one exemplary embodiment of the present disclosure, a device is issued a user access control client that is uniquely associated with a shared secret that is securely stored within the network and the access control client. Subsequent efforts to activate or deactivate the access control client require verification of the shared secret. Each change in state includes a change to the shared secret. Consequently, requests for a change to state which do not have the proper shared secret will be disregarded, and/or flagged as fraudulent.

公开(公告)号：US10264545B2

公开(公告)日：2019-04-16

申请号：US15414754

申请日：2017-01-25

Applicant: Apple Inc.

Inventor： Li Su ,  Sami M. Almalfouh ,  Venkateswara Rao Manepalli ,  Srinivas Burugupalli ,  Srinivasan Nimmala ,  Vijay Kumar Ramamurthi ,  Stephan V. Schell

IPC: H04W68/00 ,  H04W64/00 ,  H04W68/02 ,  H04W72/04 ,  H04W76/28

Abstract: Various mechanisms for paging link-budget-limited (LBL) devices are disclosed, including: (1) transmitting paging message with non-conventional paging identifier; (2) transmitting paging message(s) with increased power; (3) repeating transmission of paging message to support combining at receiver. Various mechanisms for UE device to signal LBL status are disclosed, including, transmitting status flag or special value of DRX cycle to network node as part of tracking area update and/or attach request. The network node informs a base station of the device's LBL status as part of a paging message. (The network node may, e.g., assign an S-RNTI to the LBL device from a reserved subset of S-RNTI space.) The base station invokes a paging enhancement mechanism when paging an LBL device. Alternatively, the base station may page UE devices without knowledge of LBL status, e.g., by counting paging attempts for a given UE, and boosting power after the Nth paging attempt.

公开(公告)号：US10149144B2

公开(公告)日：2018-12-04

申请号：US14814484

申请日：2015-07-30

Applicant: Apple Inc.

Inventor： Stephan V. Schell ,  Jerrold Von Hauck

IPC: H04W8/20 ,  H04W8/26 ,  G06F21/34 ,  H04W4/50 ,  H04W8/18 ,  H04L29/08 ,  H04W4/80 ,  H04L29/06 ,  H04W12/06

Abstract: Described herein is a simulacrum security device and methods. In one embodiment, a simulacrum or likeness of a physical security device is provided for use in conjunction with a software emulation of the security device. In one implementation, a “faux SIM card” is provided that does not contain Subscriber Identification Module (SIM) information itself, but instead enables a user to download Electronic SIM (eSIM) information (e.g., from a network or eSIM server) which is loaded into a software emulation of a Universal Integrated Circuit Card (UICC) device. The faux card is printed with an activation code, scan pattern, or other activation or access information. The subscriber purchases the faux card, and enters the activation code into a device; the entered activation code enables the device to log onto a network, and download the appropriate eSIM data. Delivery of eSIM information as enabled by the faux card addresses deficiencies in existing SIM distribution schemes, provides users with an enhanced perception of security, and further addresses various legal requirements.