Profile transfer with secure intent

    公开(公告)号:US12200496B2

    公开(公告)日:2025-01-14

    申请号:US17656218

    申请日:2022-03-23

    Applicant: Apple Inc.

    Abstract: Embodiments are described herein for transferring a subscriber identity module (SIM) or electronic SIM (eSIM) profile securely from a source device to a target device with verifiable signatures generated by secure hardware elements of the source device contingent on receipt of a secure intent gesture. Trustworthiness of the profile transfer is based on a mobile network operator (MNO) entitlement server releasing a transfer token after verification of a message signed by an embedded universal integrated circuit card (eUICC) of the source device. The eUICC signs the message only after verifying a message from a secure enclave processor (SEP) of the source device that signs the message based on receipt of the secure intent gesture via a secure interface. To validate communication between the SEP and the eUICC, an asymmetric cryptographic key pair generated by the SEP is bound to a unique eUICC identifier (EID) value of the eUICC.

    In-field remote profile management for wireless devices

    公开(公告)号:US12294864B2

    公开(公告)日:2025-05-06

    申请号:US17661277

    申请日:2022-04-28

    Applicant: Apple Inc.

    Abstract: The described embodiments set forth techniques for management of electronic subscriber identity module (eSIM) profiles for a wireless device, including in-field replacement of provisioning (bootstrap) eSIM profiles. Public key infrastructure (PKI) information for an original equipment manufacturer (OEM) profile management server is installed in an embedded universal integrated circuit card (eUICC) of a wireless device at a time of manufacture and used subsequently by the wireless device to conduct an eSIM profile management session and verify authorization of the OEM profile management server to manage, e.g., update and/or replace, one or more eSIM profiles on the eUICC of the wireless device.

Patent Agency Ranking