公开(公告)号：US12156108B2

公开(公告)日：2024-11-26

申请号：US17050297

申请日：2019-04-25

Applicant: Huawei Technologies Co., Ltd.

Inventor： Shunan Fan ,  Li Zhu ,  Xiaobo Yu ,  Shuiping Long

IPC: G06F9/54 ,  G06F9/445 ,  G06F9/48 ,  H04L9/40 ,  H04W4/60 ,  H04W8/18 ,  H04W12/45 ,  H04W88/06 ,  H04W88/18

Abstract: A terminal application activation method, apparatus, and system, applied to a terminal that includes a master chip and a security system, where the security system is coupled to the master chip through at least two data channels. The method includes obtaining application information of the security system, where the application information includes information about first applications to-be-activated, activating the first applications, allocating a corresponding data channel for each of the first applications, and performing data communication with the first applications through data channels corresponding to the first applications.

公开(公告)号：US12141335B2

公开(公告)日：2024-11-12

申请号：US17883695

申请日：2022-08-09

Applicant: HUAWEI TECHNOLOGIES CO., LTD.

Inventor： Li Zhu ,  Zhufeng Tan

IPC: G06F21/85 ,  G06F13/40 ,  H04W12/08

Abstract: A terminal includes a security subsystem, a baseband processor, and a first bidirectional bus coupled between the security subsystem and the baseband processor. The security subsystem is configured to manage at least one of data related to a user identity or data related to network security in wireless communication, and exchange the data with the baseband processor by using the first bidirectional bus. The baseband processor is configured to exchange the data with the security subsystem by using the first bidirectional bus, and implement wireless communication by using the data. The security subsystem and the baseband processor are in the same hierarchy. The security subsystem may proactively perform data transmission by using the first bidirectional bus.

公开(公告)号：US11126753B2

公开(公告)日：2021-09-21

申请号：US16394875

申请日：2019-04-25

Applicant: Huawei Technologies Co., Ltd.

Inventor： Li Zhu ,  Zhihua Lu

IPC: G06F21/74 ,  G06F21/60 ,  G06F21/57 ,  G06F21/78 ,  G06Q20/32 ,  G06F9/54 ,  H04W12/40

Abstract: A processor chip including a memory controller, application processor and a communication processor, where the memory controller is configured to define an area of memory as secure memory, and allow only an access request with a security attribute to access the secure memory. The application processor is configured to invoke a secure application in a trusted execution environment, and write an instruction request for a secure element into the secure memory using the secure application. The communication processor is configured to read the instruction request from the secure memory in the trusted execution environment, and send the instruction request to the secure element. The application processor and the communication processor need to be in the trusted execution environment when accessing the secure memory, and access the secure memory only using the secure application.

公开(公告)号：US11487910B2

公开(公告)日：2022-11-01

申请号：US16881793

申请日：2020-05-22

Applicant: HUAWEI TECHNOLOGIES CO., LTD.

Inventor： Li Zhu ,  Zhufeng Tan

IPC: G06F21/85 ,  G06F13/40 ,  H04W12/08

Abstract: A terminal includes a security subsystem, a baseband processor, and a first bidirectional bus coupled between the security subsystem and the baseband processor. The security subsystem is configured to manage at least one of data related to a user identity and data related to network security in wireless communication, and exchange the data with the baseband processor by using the first bidirectional bus. The baseband processor is configured to exchange the data with the security subsystem by using the first bidirectional bus, and implement wireless communication by using the data. The security subsystem and the baseband processor are in the same hierarchy. The security subsystem may proactively perform data transmission by using the first bidirectional bus.

公开(公告)号：US20200285781A1

公开(公告)日：2020-09-10

申请号：US16881793

申请日：2020-05-22

Applicant: HUAWEI TECHNOLOGIES CO., LTD.

Inventor： Li Zhu ,  Zhufeng Tan

IPC: G06F21/85 ,  G06F13/40 ,  H04W12/08

Abstract: A terminal includes a security subsystem, a baseband processor, and a first bidirectional bus coupled between the security subsystem and the baseband processor. The security subsystem is configured to manage at least one of data related to a user identity and data related to network security in wireless communication, and exchange the data with the baseband processor by using the first bidirectional bus. The baseband processor is configured to exchange the data with the security subsystem by using the first bidirectional bus, and implement wireless communication by using the data. The security subsystem and the baseband processor are in the same position. The security subsystem may proactively perform data transmission by using the first bidirectional bus.

公开(公告)号：US20190251298A1

公开(公告)日：2019-08-15

申请号：US16394875

申请日：2019-04-25

Applicant: Huawei Technologies Co., Ltd.

Inventor： Li Zhu ,  Zhihua Lu

IPC: G06F21/74 ,  G06F21/78 ,  G06F21/57 ,  G06F21/60

CPC classification number: G06F21/74 ,  G06F21/57 ,  G06F21/604 ,  G06F21/78 ,  H04L29/06

Abstract: A processor chip including a memory controller, application processor and a communication processor, where the memory controller is configured to define an area of memory as secure memory, and allow only an access request with a security attribute to access the secure memory. The application processor is configured to invoke a secure application in a trusted execution environment, and write an instruction request for a secure element into the secure memory using the secure application. The communication processor is configured to read the instruction request from the secure memory in the trusted execution environment, and send the instruction request to the secure element. The application processor and the communication processor need to be in the trusted execution environment when accessing the secure memory, and access the secure memory only using the secure application.

公开(公告)号：US10104535B2

公开(公告)日：2018-10-16

申请号：US15562778

申请日：2015-04-09

Applicant: Huawei Technologies Co., Ltd.

Inventor： Chaozhi Huang ,  Li Zhu

IPC: H04M3/00 ,  H04W8/18 ,  H04W8/20 ,  H04W8/22

Abstract: A mobile terminal, a maintenance server, a method and an apparatus for maintaining a virtual subscriber identity module (SIM) card, where the method includes checking that a physical SIM card is inserted into a physical SIM card slot, switching a SIM card in a working state from the virtual SIM card to the physical SIM card using a SIM card switching switch, accessing a carrier network using the physical SIM card, receiving maintenance data sent by a maintenance server to the physical SIM card, and maintaining the virtual SIM card according to the maintenance data. Hence, after data of a virtual SIM card is damaged, the virtual SIM card can still be maintained without returning the virtual SIM card to a manufacturer for repair.

公开(公告)号：US20180220293A1

公开(公告)日：2018-08-02

申请号：US15562778

申请日：2015-04-09

Applicant: Huawei Technologies Co., Ltd.

Inventor： Chaozhi Huang ,  Li Zhu

IPC: H04W8/18 ,  H04W8/22 ,  H04W8/20

CPC classification number: H04W8/183 ,  H04W8/205 ,  H04W8/22

Abstract: A mobile terminal, a maintenance server, a method and an apparatus for maintaining a virtual subscriber identity module (SIM) card, where the method includes checking that a physical SIM card is inserted into a physical SIM card slot, switching a SIM card in a working state from the virtual SIM card to the physical SIM card using a SIM card switching switch, accessing a carrier network using the physical SIM card, receiving maintenance data sent by a maintenance server to the physical SIM card, and maintaining the virtual SIM card according to the maintenance data. Hence, after data of a virtual SIM card is damaged, the virtual SIM card can still be maintained without returning the virtual SIM card to a manufacturer for repair.

公开(公告)号：US20210235245A1

公开(公告)日：2021-07-29

申请号：US17050297

申请日：2019-04-25

Applicant: Huawei Technologies Co., Ltd.

Inventor： Shunan Fan ,  Li Zhu ,  Xiaobo Yu ,  Shuiping Long

IPC: H04W4/60 ,  G06F9/445 ,  G06F9/48 ,  G06F9/54 ,  H04L29/06 ,  H04W12/45 ,  H04W8/18 ,  H04W88/06 ,  H04W88/18

Abstract: A terminal application activation method, apparatus, and system, applied to a terminal that includes a master chip and a security system, where the security system is coupled to the master chip through at least two data channels. The method includes obtaining application information of the security system, where the application information includes information about first applications to-be-activated, activating the first applications, allocating a corresponding data channel for each of the first applications, and performing data communication with the first applications through data channels corresponding to the first applications.

公开(公告)号：US10531289B2

公开(公告)日：2020-01-07

申请号：US16115464

申请日：2018-08-28

Applicant: Huawei Technologies Co., Ltd.

Inventor： Li Zhu ,  Yingliang Yao

IPC: H04W12/02 ,  G06F21/74 ,  H04W12/08 ,  H04W4/80 ,  G06F21/53 ,  G06F21/57 ,  H04L29/06 ,  H04W4/14 ,  H04W84/12

Abstract: A secure data transmission apparatus includes: a dedicated communication signal processor, configured to send a first security interrupt to an application processor; and the application processor, configured to execute rich execution environment (REE) software, execute trusted execution environment (TEE) software under a trigger of the first security interrupt, and obtain first information from a shared memory of the dedicated communication signal processor and the application processor based on the first security interrupt. The dedicated communication signal processor is further configured to receive a second security interrupt sent by the application processor, and obtain second information from the shared memory. The application processor is further configured to send the second security interrupt to the dedicated communication signal processor.