公开(公告)号：US09730072B2

公开(公告)日：2017-08-08

申请号：US14715761

申请日：2015-05-19

Applicant: Apple Inc.

Inventor： Xiangying Yang ,  Li Li ,  Jerrold Von Hauck

IPC: H04L29/06 ,  H04W12/08 ,  H04L9/08 ,  H04L9/32 ,  H04W12/06 ,  G06F21/33 ,  G06F21/34 ,  G06F21/60 ,  H04W8/20

CPC classification number: H04W12/08 ,  G06F21/33 ,  G06F21/34 ,  G06F21/602 ,  G06F2221/2107 ,  H04L9/0822 ,  H04L9/0825 ,  H04L9/0877 ,  H04L9/3234 ,  H04L63/0853 ,  H04L2209/80 ,  H04W8/205 ,  H04W12/06

Abstract: A method for preparing an eSIM for provisioning is provided. The method can include a provisioning server encrypting the eSIM with a symmetric key. The method can further include the provisioning server, after determining a target eUICC to which the eSIM is to be provisioned, encrypting the symmetric key with a key encryption key derived based at least in part on a private key associated with the provisioning server and a public key associated with the target eUICC. The method can additionally include the provisioning server formatting an eSIM package including the encrypted eSIM, the encrypted symmetric key, and a public key corresponding to the private key associated with the provisioning server. The method can also include the provisioning server sending the eSIM package to the target eUICC.

公开(公告)号：US09507329B2

公开(公告)日：2016-11-29

申请号：US14033227

申请日：2013-09-20

Applicant: Apple Inc.

Inventor： Jerrold Von Hauck

IPC: H04B1/38 ,  G05B15/02 ,  H04W12/06 ,  H04W12/12

CPC classification number: G05B15/02 ,  H04B1/38 ,  H04W12/06 ,  H04W12/12

Abstract: Methods and apparatus for providing controlled switching of electronic access control clients without requiring network access are set forth herein. In one embodiment, a method for swapping of subscriptions and/or profiles for electronic Subscriber Identity Modules (eSIMs) without network supervision that prevents possibly malicious high frequency switching is disclosed. The disclosed embodiments offer reasonable management capabilities for network operators, without compromising the flexibility of eSIM operation.

Abstract translation: 本文阐述了不需要网络访问来提供电子访问控制客户端受控切换的方法和装置。 在一个实施例中，公开了一种用于交换用于电子订户身份模块（eSIM）的订阅和/或配置文件的方法，而不进行网络监控，防止可能的恶意高频切换。 所公开的实施例为网络运营商提供合理的管理能力，而不损害eSIM操作的灵活性。

公开(公告)号：US09344832B2

公开(公告)日：2016-05-17

申请号：US14629386

申请日：2015-02-23

Applicant: Apple Inc.

Inventor： Stephan V. Schell ,  Arun G. Mathias ,  Jerrold Von Hauck ,  David T. Haggerty ,  Kevin McLaughlin ,  Ben-Heng Juang ,  Li Li

IPC: H04L29/06 ,  H04W4/00 ,  H04W12/04 ,  H04W12/06

CPC classification number: H04W12/06 ,  G06F21/45 ,  G06F21/57 ,  H04L63/08 ,  H04L63/0853 ,  H04L63/123 ,  H04L63/20 ,  H04L67/34 ,  H04W4/50 ,  H04W4/60 ,  H04W8/205 ,  H04W12/04 ,  H04W12/08

Abstract: Methods and apparatus enabling programming of electronic identification information of a wireless apparatus. In one embodiment, a previously purchased or deployed wireless apparatus is activated by a cellular network. The wireless apparatus connects to the cellular network using an access module to download operating system components and/or access control client components. The described methods and apparatus enable updates, additions and replacement of various components including Electronic Subscriber Identity Module (eSIM) data, OS components. One exemplary implementation of the invention utilizes a trusted key exchange between the device and the cellular network to maintain security.

公开(公告)号：US20140222688A1

公开(公告)日：2014-08-07

申请号：US14174791

申请日：2014-02-06

Applicant: APPLE INC.

Inventor： David T. Haggerty ,  Ahmer A. Khan ,  Christopher B. Sharp ,  Jerrold Von Hauck ,  Joakim Linde ,  Kevin P. McLaughlin ,  Mehdi Ziat ,  Yousuf H. Vaid

IPC: G06Q20/36 ,  G06Q20/38

CPC classification number: G06Q20/36 ,  G06Q20/1235 ,  G06Q20/3227 ,  G06Q20/3552 ,  G06Q20/382

Abstract: Methods and apparatus for the deployment of financial instruments and other assets are disclosed. In one embodiment, a security software protocol is disclosed that guarantees that the asset is always securely encrypted, that one and only one copy of an asset exists, and the asset is delivered to an authenticated and/or authorized customer. Additionally, exemplary embodiments of provisioning systems are disclosed that are capable of, among other things, handling large bursts of traffic (such as can occur on a so-called “launch day” of a device).

Abstract translation: 披露部署金融工具和其他资产的方法和手段。 在一个实施例中，公开了一种安全软件协议，其保证资产始终被安全地加密，存在资产的仅一个和仅一个副本，并且该资产被传递给认证的和/或授权的客户。 此外，公开供应系统的示例性实施例，其能够处理大量业务突发（例如可能发生在设备的所谓“启动日”）。