公开(公告)号：US09461993B2

公开(公告)日：2016-10-04

申请号：US14688015

申请日：2015-04-16

Applicant: AT&T Intellectual Property I, LP

Inventor： Walter Cooper Chastain ,  Stephen Emille Chin

IPC: H04L29/06 ,  H04W12/04 ,  H04W12/06 ,  H04L9/08

CPC classification number: H04W12/06 ,  G06F21/305 ,  G06F21/445 ,  G06F21/72 ,  G06F21/77 ,  G06F2221/2107 ,  G06F2221/2113 ,  H04L9/0861 ,  H04L9/0877 ,  H04L9/3234 ,  H04L9/3273 ,  H04L63/0428 ,  H04L63/0853 ,  H04L63/0869 ,  H04W4/70 ,  H04W12/04

Abstract: A system that incorporates the subject disclosure may include, for example, instructions which when executed cause a device processor to perform operations comprising sending a service request to a remote management server; receiving from the management server an authentication management function and an encryption key generator for execution by a secure element and an encryption engine for execution by a secure device processor, sending a request to establish a communication session with a remote device; and communicating with the remote device via a channel established using an application server. The secure element and the secure device processor authenticate each other using a mutual authentication keyset. The secure element, the secure device processor and the device processor each have a security level associated therewith; the security level associated with the secure device processor is intermediate between that of the secure element and that of the device processor. Other embodiments are disclosed.

公开(公告)号：US20150071437A1

公开(公告)日：2015-03-12

申请号：US14023932

申请日：2013-09-11

Applicant: AT&T Intellectual Property I, LP

Inventor： Walter Cooper Chastain ,  Stephen Emille Chin

IPC: H04W12/04 ,  H04L29/06

CPC classification number: H04W12/06 ,  G06F21/305 ,  G06F21/445 ,  G06F21/72 ,  G06F21/77 ,  G06F2221/2107 ,  G06F2221/2113 ,  H04L9/0861 ,  H04L9/0877 ,  H04L9/3234 ,  H04L9/3273 ,  H04L63/0428 ,  H04L63/0853 ,  H04L63/0869 ,  H04W4/70 ,  H04W12/04

Abstract: A system that incorporates the subject disclosure may include, for example, instructions which when executed cause a device processor to perform operations comprising sending a service request to a remote management server; receiving from the management server an authentication management function and an encryption key generator for execution by a secure element and an encryption engine for execution by a secure device processor, sending a request to establish a communication session with a remote device; and communicating with the remote device via a channel established using an application server. The secure element and the secure device processor authenticate each other using a mutual authentication keyset. The secure element, the secure device processor and the device processor each have a security level associated therewith; the security level associated with the secure device processor is intermediate between that of the secure element and that of the device processor. Other embodiments are disclosed.

Abstract translation: 包含主题公开的系统可以包括例如当被执行时引起设备处理器执行包括向远程管理服务器发送服务请求的操作的指令; 从管理服务器接收认证管理功能和用于由安全元件执行的加密密钥生成器和用于由安全设备处理器执行的加密引擎，发送建立与远程设备的通信会话的请求; 并通过使用应用服务器建立的信道与远程设备进行通信。 安全元件和安全设备处理器使用相互认证密钥集来彼此认证。 安全元件，安全设备处理器和设备处理器各自具有与其相关联的安全级别; 与安全设备处理器相关联的安全级别处于安全元件与设备处理器的安全级别之间。 公开了其他实施例。

公开(公告)号：US10122534B2

公开(公告)日：2018-11-06

申请号：US15206975

申请日：2016-07-11

Applicant: AT&T INTELLECTUAL PROPERTY I, LP ,  AT&T MOBILITY II LLC

Inventor： Walter Cooper Chastain ,  Stephen Emille Chin ,  Samuel King ,  Michael Suozzo ,  Nicholas Vondrak ,  Ismaila Wane

IPC: H04L9/32 ,  H04L29/06 ,  H04W12/06

Abstract: A system that incorporates the subject disclosure may perform, for example, operations including receiving an encrypted secure token from a secure token application function that is remote from the communication device, storing the encrypted secure token in a secure element memory of the secure element, accessing user input requesting the encrypted secure token where the secure device processor is separate from the secure element and is in communication with the secure element, generating a modified secure token by adding identification information to the encrypted secure token and by performing a second encryption of the encrypted secure token with the identification information, receiving the modified secure token from the secure element, and providing the modified secure token to a receiving device. Other embodiments are disclosed.

公开(公告)号：US09886690B2

公开(公告)日：2018-02-06

申请号：US14876089

申请日：2015-10-06

Applicant: AT&T Intellectual Property I, LP ,  AT&T Mobility II LLC

Inventor： Walter Cooper Chastain ,  Clifton Ashman Campbell ,  Stephen Emille Chin ,  David Harber ,  Brian Keith Rainer ,  David K. Smith ,  Shih-Ming Wang

IPC: G06Q20/36 ,  H04L29/06 ,  H04B1/3816 ,  H04W8/20 ,  H04W12/04 ,  H04W4/00 ,  G06Q20/32 ,  H04W12/02

CPC classification number: G06Q20/363 ,  G06Q20/3227 ,  H04B1/3816 ,  H04L63/0428 ,  H04L63/06 ,  H04L63/061 ,  H04L63/0853 ,  H04L63/123 ,  H04W4/50 ,  H04W4/60 ,  H04W8/205 ,  H04W12/02 ,  H04W12/04

Abstract: A system that incorporates the subject disclosure may include, for example, a system for receiving a request to modify a universal integrated circuit card, generating a package comprising configuration data for modifying the universal integrated circuit card, encrypting the package with a transport key to generate an encrypted package, transmitting the encrypted package to a communication device communicatively coupled to the universal integrated circuit card to provision the universal integrated circuit card, and providing a mobile network operator trusted service manager system information relating to the configuration data to enable the mobile network operator trusted service manager system to manage content and memory allocation of the universal integrated circuit card. Other embodiments are disclosed.

公开(公告)号：US20160087997A1

公开(公告)日：2016-03-24

申请号：US14962481

申请日：2015-12-08

Applicant: AT&T INTELLECTUAL PROPERTY I, LP

Inventor： Walter Cooper Chastain ,  Stephen Emille Chin

IPC: H04L29/06

CPC classification number: H04L63/123 ,  H04L63/083 ,  H04L63/0869 ,  H04L63/108 ,  H04W12/06 ,  H04W12/08

Abstract: A system that incorporates the subject disclosure may perform, for example, receive secret information and non-secret information from a secure download application function, provide a request for a first verification to a secure element where the first verification is associated with access to content and/or an application that is accessible via the secure download application function, receive the first verification which is generated by the secure element based on the secret information without providing the secret information to the secure device processor, receive the non-secret information from the secure element, and generate a second verification for the access based on the non-secret information, where the content and/or application is accessible from the secure download application function responsive to the first and second verifications. Other embodiments are disclosed.

公开(公告)号：US09208300B2

公开(公告)日：2015-12-08

申请号：US14061380

申请日：2013-10-23

Applicant: AT&T Intellectual Property I, LP

Inventor： Walter Cooper Chastain ,  Stephen Emille Chin

IPC: G06F21/31 ,  G06F21/32 ,  G06F21/45 ,  H04L29/06

CPC classification number: H04L63/083 ,  G06F21/31 ,  G06F21/32 ,  G06F21/45 ,  H04L63/0853 ,  H04L63/0861 ,  H04L63/0869

Abstract: A system that incorporates the subject disclosure may perform, for example, receiving a baseline credential and an external credential, mapping the external credential to the baseline credential in a secure element memory, receiving a request for an authentication from a secure device processor of the communication device where the request for the authentication includes a user credential inputted into the communication device, comparing the user credential with the baseline credential to verify the authentication, and providing the authentication and the external credential to the secure device processor without providing the baseline credential to enable the secure device processor to provide the external credential to an external entity device that is remote from the communication device. Other embodiments are disclosed.

Abstract translation: 结合主题公开的系统可以执行例如接收基准凭证和外部凭证，将外部凭证映射到安全元件存储器中的基准凭证，从通信的安全设备处理器接收对认证的请求 其中认证请求包括输入到通信设备的用户凭证，将用户凭证与基准凭证进行比较以验证认证，以及将认证和外部凭证提供给安全设备处理器，而不提供基准凭证以启用 所述安全设备处理器向远离所述通信设备的外部实体设备提供所述外部凭证。 公开了其他实施例。

公开(公告)号：US09185085B2

公开(公告)日：2015-11-10

申请号：US14556511

申请日：2014-12-01

Applicant: AT&T Intellectual Property I, LP ,  AT&T Mobility II LLC

Inventor： Walter Cooper Chastain ,  Clifton Ashman Campbell ,  Stephen Emille Chin ,  David Harber ,  Brian Keith Rainer ,  David K. Smith ,  Shih-Ming Wang

IPC: H04L29/06 ,  H04W12/04 ,  H04W12/02 ,  G06Q20/32 ,  H04W4/00

CPC classification number: G06Q20/363 ,  G06Q20/3227 ,  H04B1/3816 ,  H04L63/0428 ,  H04L63/06 ,  H04L63/061 ,  H04L63/0853 ,  H04L63/123 ,  H04W4/50 ,  H04W4/60 ,  H04W8/205 ,  H04W12/02 ,  H04W12/04

Abstract: A system that incorporates the subject disclosure may include, for example, a system for receiving a request to modify a universal integrated circuit card, generating a package comprising configuration data for modifying the universal integrated circuit card, encrypting the package with a transport key to generate an encrypted package, transmitting the encrypted package to a communication device communicatively coupled to the universal integrated circuit card to provision the universal integrated circuit card, and providing a mobile network operator trusted service manager system information relating to the configuration data to enable the mobile network operator trusted service manager system to manage content and memory allocation of the universal integrated circuit card. Other embodiments are disclosed.

Abstract translation: 结合本公开的系统可以包括例如用于接收修改通用集成电路卡的请求的系统，生成包括用于修改通用集成电路卡的配置数据的包，用传输密钥加密包以产生 将加密的包发送到通信设备，通信地耦合到通用集成电路卡以提供通用集成电路卡，以及提供与配置数据有关的移动网络运营商信任的服务管理器系统信息，以使移动网络运营商 可信赖的服务管理器系统来管理通用集成电路卡的内容和内存分配。 公开了其他实施例。

公开(公告)号：US09124573B2

公开(公告)日：2015-09-01

申请号：US14046138

申请日：2013-10-04

Applicant: AT&T Intellectual Property I, LP ,  AT&T Mobility II, LLC

Inventor： Walter Cooper Chastain ,  Stephen Emille Chin ,  Samuel King ,  Michael Suozzo ,  Nicholas Vondrak ,  Ismaila Wane

IPC: H04L29/06 ,  H04W12/06

CPC classification number: H04L9/3247 ,  H04L9/3236 ,  H04L63/0428 ,  H04L63/062 ,  H04L63/08 ,  H04L63/0807 ,  H04L63/0853 ,  H04L63/0869 ,  H04L63/0876 ,  H04L2463/121 ,  H04W12/06

Abstract: A system that incorporates the subject disclosure may perform, for example, operations including receiving an encrypted secure token from a secure token application function that is remote from the communication device, storing the encrypted secure token in a secure element memory of the secure element, accessing user input requesting the encrypted secure token where the secure device processor is separate from the secure element and is in communication with the secure element, generating a modified secure token by adding identification information to the encrypted secure token and by performing a second encryption of the encrypted secure token with the identification information, receiving the modified secure token from the secure element, and providing the modified secure token to a receiving device. Other embodiments are disclosed.

Abstract translation: 包含主题公开的系统可以执行例如包括从远离通信设备的安全令牌应用功能接收加密的安全令牌的操作，将加密的安全令牌存储在安全元件的安全元件存储器中，访问 用户输入请求加密的安全令牌，其中所述安全设备处理器与所述安全元件分离并且与所述安全元件通信，通过向所述加密的安全令牌添加标识信息并通过执行所述加密的安全令牌的第二加密来生成修改的安全令牌 具有所述识别信息的安全令牌，从所述安全元件接收所述修改的安全令牌，以及将修改的安全令牌提供给接收设备。 公开了其他实施例。

公开(公告)号：US20150127945A1

公开(公告)日：2015-05-07

申请号：US14070458

申请日：2013-11-01

Applicant: AT&T Intellectual Property I, LP

Inventor： Walter Cooper Chastain ,  Stephen Emille Chin

IPC: H04W12/06 ,  H04L29/06

CPC classification number: H04L63/0876 ,  H04L63/061 ,  H04L63/123 ,  H04W4/50 ,  H04W8/20 ,  H04W12/02 ,  H04W12/06

Abstract: A system that incorporates the subject disclosure may perform, for example, receiving an over-the-air programming message that includes programming data for use by the mobile communication device, decrypting the over-the-air programming message utilizing a first keyset to generate a decrypted over-the-air programming message, determining a schedule for providing messages from a secure device processor to a secure element of the mobile communication device where the secure device processor is separate from the secure element and in communication with the secure element, and providing the decrypted over-the-air programming message to the secure element according to the schedule. Other embodiments are disclosed.

Abstract translation: 结合主题公开的系统可以执行例如接收包括由移动通信设备使用的编程数据的空中编程消息，利用第一密钥集来解密空中编程消息以生成 解密的空中编程消息，确定用于从安全设备处理器向移动通信设备的安全元件提供消息的调度，其中安全设备处理器与安​​全元件分离并与安全元件通信，并提供 根据时间表将解密的空中编程消息发送到安全元件。 公开了其他实施例。

公开(公告)号：US20150113617A1

公开(公告)日：2015-04-23

申请号：US14061380

申请日：2013-10-23

Applicant: AT&T Intellectual Property I, LP

Inventor： Walter Cooper Chastain ,  Stephen Emille Chin

IPC: G06F21/31 ,  G06F21/45 ,  H04L29/06 ,  G06F21/32

CPC classification number: H04L63/083 ,  G06F21/31 ,  G06F21/32 ,  G06F21/45 ,  H04L63/0853 ,  H04L63/0861 ,  H04L63/0869

Abstract: A system that incorporates the subject disclosure may perform, for example, receiving a baseline credential and an external credential, mapping the external credential to the baseline credential in a secure element memory, receiving a request for an authentication from a secure device processor of the communication device where the request for the authentication includes a user credential inputted into the communication device, comparing the user credential with the baseline credential to verify the authentication, and providing the authentication and the external credential to the secure device processor without providing the baseline credential to enable the secure device processor to provide the external credential to an external entity device that is remote from the communication device. Other embodiments are disclosed.

Abstract translation: 结合主题公开的系统可以执行例如接收基准凭证和外部凭证，将外部凭证映射到安全元件存储器中的基准凭证，从通信的安全设备处理器接收对认证的请求 其中认证请求包括输入到通信设备的用户凭证，将用户凭证与基准凭证进行比较以验证认证，以及将认证和外部凭证提供给安全设备处理器，而不提供基准凭证以启用 所述安全设备处理器向远离所述通信设备的外部实体设备提供所述外部凭证。 公开了其他实施例。