-
公开(公告)号:US10069822B2
公开(公告)日:2018-09-04
申请号:US15050544
申请日:2016-02-23
IPC分类号: H04L29/06
摘要: A mobile device sends a network attach request to a network node, and receives an authentication challenge from the network node, where the authentication challenge includes an authentication token, a random number, and a time variable associated with a current time at the network node. A microprocessor smart card of the mobile device retrieves the time variable from the authentication challenge, and starts a clock counter based on the retrieved time variable. The microprocessor smart card uses a current time represented by the clock counter to perform time expiration validation tests on certificates during Public Key Infrastructure (PKI) authentication or on authentication tokens during token-based authentication.
-
公开(公告)号:US09867037B2
公开(公告)日:2018-01-09
申请号:US15079547
申请日:2016-03-24
CPC分类号: H04W8/24 , H04L63/1458 , H04W8/18 , H04W12/04 , H04W12/12
摘要: A mobile device, having a smart card within the mobile device, stores a Mobile Network Operator (MNO) profile for the mobile device in the smart card, where the MNO profile includes one or more network access credentials for accessing a wireless mobile network. The mobile device receives a customer request to delete the MNO profile, and sends, from the mobile device to a network node in the wireless mobile network, a request for profile deletion. The mobile device receives, responsive to the request from the network node, a deletion code; extracts, from the received deletion code, a deletion code signature and a public key of the network node. The mobile device validates the deletion code signature and the public key, and deletes, upon successful validation of the deletion code signature and the public key, the MNO profile from the smart card.
-
公开(公告)号:US09826403B2
公开(公告)日:2017-11-21
申请号:US15131197
申请日:2016-04-18
发明人: Manuel Enrique Caceres , Warren Hojilla Uy , Nanjun Qian , Axel Hallo De Wolf , Ruben Cuadrat , John Markey , Taussif Khan
CPC分类号: H04W12/06 , G06F21/34 , G06F2221/2133 , H04M1/67 , H04M1/72563 , H04W4/50 , H04W8/183 , H04W8/205 , H04W12/04
摘要: A device receives a request from a user to manage a Mobile Network Operator (MNO) profile stored in a smart card within the device, wherein the MNO profile includes one or more network access credentials for accessing a wireless network. The device performs a Completely Automated Public Turing Test to tell Computers and Humans Apart (CAPTCHA), wherein the CAPTCHA includes receiving input from the user, and authenticates the user as a human, and not a bot or other automated activity, based on the CAPTCHA and the input from the user. The device receives, from a network node external to the device responsive to the authenticating, a MNO profile management code, and manages the MNO profile based on the received MNO profile management code.
-
公开(公告)号:US20170244697A1
公开(公告)日:2017-08-24
申请号:US15050544
申请日:2016-02-23
IPC分类号: H04L29/06
CPC分类号: H04L63/0853 , H04L9/3268 , H04L9/3271 , H04L9/3297 , H04L63/0435 , H04L63/0807 , H04L63/0823 , H04L63/0876 , H04L2463/121 , H04W12/06
摘要: A mobile device sends a network attach request to a network node, and receives an authentication challenge from the network node, where the authentication challenge includes an authentication token, a random number, and a time variable associated with a current time at the network node. A microprocessor smart card of the mobile device retrieves the time variable from the authentication challenge, and starts a clock counter based on the retrieved time variable. The microprocessor smart card uses a current time represented by the clock counter to perform time expiration validation tests on certificates during Public Key Infrastructure (PKI) authentication or on authentication tokens during token-based authentication.
-
35.发明授权Active subscription profiles on secure element supporting concurrent usage of network services 有权支持并发使用网络服务的安全元件上的活动订阅配置文件公开(公告)号:US09531831B1
公开(公告)日:2016-12-27
申请号:US15091220
申请日:2016-04-05
IPC分类号: H04W4/00 , H04L29/08 , H04B1/3816 , H04L29/06
CPC分类号: H04L67/303 , H04B1/3816 , H04L65/1016 , H04L65/1073 , H04M1/72563 , H04W8/183 , H04W88/06
摘要: A method, a device, and a non-transitory storage medium provide storing multiple subscription profiles on a secure element; detecting a triggering event; using, by a first stack of a wireless end device, one of the subscription profiles to register with a first network service via a first network; indicating that the one of the subscription profiles is enabled; querying, by a second stack of the wireless end device, the secure element for another one of the subscription profiles; obtaining, by the second stack, access information to the other one of the subscription profiles; selecting, by the second stack, the other one of the subscription profiles; using, by the second stack, the other one of the subscription profiles to register with a second network service via a second network; and indicating that the other one of the subscription profiles is enabled.
摘要翻译: 方法,设备和非暂时性存储介质提供在安全元件上存储多个订阅简档; 检测触发事件; 通过无线终端设备的第一堆栈使用所述订阅简档中的一个来经由第一网络向第一网络服务注册; 指示其中一个订阅配置文件已启用; 通过无线终端设备的第二堆栈查询用于另一个订阅简档的安全元件; 通过第二堆栈获得对另一个订阅简档的访问信息; 通过第二堆栈选择另一个订阅简档; 通过第二堆栈使用另一个订阅简档来通过第二网络向第二网络服务注册; 并指示另一个订阅配置文件被启用。
-
公开(公告)号:US20160373880A1
公开(公告)日:2016-12-22
申请号:US14742284
申请日:2015-06-17
发明人: Taussif Khan , Zhengfang Chen , Warren Hojilla Uy , Ruben Cuadrat
摘要: A wireless communication device may include a Subscriber Identity Module (SIM) card configured to store a subscriber profile. The wireless communication device may further include logic configured to detect attachment to a wireless access network; detect a non-activated Subscriber Identity Module (SIM) card; receive a Protocol Configuration Options (PCO) message from the wireless access network; retrieve subscription status information for the SIM card from the received PCO message; determine whether the SIM card has a valid subscription based on the retrieved subscription status information; and instruct the SIM card not to initiate an activation process with a SIM Over-the-air (OTA) system, in response to determining that the SIM card does not have a valid subscription.
摘要翻译: 无线通信设备可以包括被配置为存储订户简档的订户身份模块(SIM)卡。 无线通信设备还可以包括被配置为检测对无线接入网络的附件的逻辑; 检测未激活的用户识别模块(SIM)卡; 从无线接入网络接收协议配置选项(PCO)消息; 从所接收的PCO消息中检索SIM卡的订阅状态信息; 基于检索到的订阅状态信息来确定SIM卡是否具有有效的订阅; 并且响应于确定SIM卡没有有效订阅,指示SIM卡不用SIM空中(OTA)系统启动激活过程。
-
公开(公告)号:US12015600B2
公开(公告)日:2024-06-18
申请号:US17590949
申请日:2022-02-02
IPC分类号: H04L9/40
CPC分类号: H04L63/045 , H04L63/062 , H04L63/0853 , H04L63/0876 , H04L63/0272
摘要: A device may receive a request to establish a virtualized environment to support a session for a client device in communication with the computing device over a network. The device may instantiate the virtualized environment in a trusted execution environment of the device, wherein the trusted execution environment may include one or more hardware resources that isolate the virtualized environment from a rich execution environment associated with the device. The device may cause a hardware security module associated with the device to obtain one or more cryptographic keys by communicating with a secure element of the client device, and the device may secure communication between a local operating system executing on the client device and the virtualized environment instantiated in the trusted execution environment using the one or more cryptographic keys.
-
公开(公告)号:US11871225B2
公开(公告)日:2024-01-09
申请号:US17807393
申请日:2022-06-17
IPC分类号: H04W12/06 , H04L9/40 , H04L9/32 , H04W12/08 , H04L9/08 , H04L9/30 , H04W76/10 , H04W12/04 , H04W84/12
CPC分类号: H04W12/06 , H04L9/085 , H04L9/0844 , H04L9/3066 , H04L9/3263 , H04L63/0823 , H04L63/0869 , H04L63/101 , H04W12/04 , H04W12/08 , H04W76/10 , H04L2209/80 , H04W84/12
摘要: A first wireless access device, associated with a wireless service provider, establishes a wireless local area network connection with a second wireless access device and receives a certificate including a unique identifier associated with the second wireless access device. The first wireless access device determines whether the second wireless access device is authorized to connect to the first wireless access device. For example, if the certificate is signed by a certificate authority associated with the wireless service provider and the unique identifier appears in a whitelist stored at the first wireless access device, the first wireless access device and the second wireless access device perform a mutual authentication procedure based on one or more ephemeral keys. The first wireless access device provides the second wireless access device with access to a wide area network based on successful completion of the mutual authentication procedure.
-
公开(公告)号:US11849032B2
公开(公告)日:2023-12-19
申请号:US17321378
申请日:2021-05-14
发明人: John M. Stokes , Manuel Enrique Caceres , Young Rak Choi , Warren Hojilla Uy , Mun Wei Low , Dayong He
CPC分类号: H04L9/0838 , H04L9/0825 , H04L9/14 , H04L9/3073 , H04L9/3239 , H04L9/50
摘要: A system described herein provide for the secure maintaining and providing of information, such as public keys used in Public Key Infrastructure (“PKI”) techniques or other techniques, using a secure distributed ledger (e.g., “blockchain”) system. A blockchain system may be utilized in lieu of a key escrow system in the exchange and/or providing of public keys in a Diffie-Hellman key exchange technique or other type of technique in which public keys are provided from one entity to another. A first entity may generate an asymmetric key pair that includes a public key and a private key, and may provide the public key to a blockchain system for retrieval by one or more other entities. For example, the entities may be engaged in a secure messaging session, in which messages are encrypted and may be decrypted using one or more keys, including the public key.
-
公开(公告)号:US20230354008A1
公开(公告)日:2023-11-02
申请号:US17732917
申请日:2022-04-29
CPC分类号: H04W8/183 , G06Q20/3229 , G06Q20/347
摘要: A method, a device, and a non-transitory storage medium are described in which a third party subscription management of end device profiles service is provided. The service may include obtaining a profile for a card of an end device from a third party device in which the profile includes a temporary element. For example, the temporary element may be a temporary keyset or a temporary USIM. During initial connectivity and activation with a core network, the card logic may obtain and update the profile with a permanent element for registration and activation procedures with the core network. In this way, security exposure with a third party device relating to a profile may be eliminated or minimized.
-
-
-
-
-
-
-
-
-
搜索结果
57 条记录 (耗时 0.021 秒)
