公开(公告)号：US09572016B2

公开(公告)日：2017-02-14

申请号：US14921299

申请日：2015-10-23

Applicant: BlackBerry Limited ,  Certicom Corp.

Inventor： Jean-Philippe Paul Cormier ,  David Philip Hole ,  Nicholas James Russell ,  Daniel Francis O'Loughlin

IPC: H04B1/38 ,  H04W8/20 ,  H04W8/18 ,  H04L9/32 ,  H04L29/06 ,  H04W88/02 ,  H04W12/06

CPC classification number: H04W8/205 ,  H04L9/3268 ,  H04L63/0823 ,  H04L2209/80 ,  H04W8/183 ,  H04W12/06 ,  H04W88/02

Abstract: Techniques for use in transferring an assignment of a secure chip of a wireless device from a current subscription manager (SM) of a current mobile network operator (MNO) to a new SM of a new MNO are described. In one illustrative example, the current SM receives a request for transferring the assignment and produces transfer permission data in response. The transfer permission data includes an identifier of the secure chip, an identifier of the current SM, and a digital signature of the current SM. The current SM then sends to the secure chip a transfer permission message which includes the transfer permission data. The transfer permission data indicates a permission for the secure chip to transfer the assignment from the current SM to the new SM. Additional techniques are performed by the secure chip, and the new SM, as described.

Abstract translation: 描述了用于将无线设备的安全芯片的分配从当前移动网络运营商（MNO）的当前订阅管理器（SM）传送到新的MNO的新SM的技术。 在一个说明性示例中，当前SM接收到传送分配的请求，并作为响应产生传送许可数据。 传输许可数据包括安全芯片的标识符，当前SM的标识符和当前SM的数字签名。 当前的SM然后向安全芯片发送包括传输许可数据的传输许可消息。 传输许可数据指示安全芯片允许从当前SM传送分配到新的SM。 附加技术由安全芯片和新SM执行，如所述。

公开(公告)号：US20160048462A1

公开(公告)日：2016-02-18

申请号：US14922962

申请日：2015-10-26

Applicant: CERTICOM CORP.

Inventor： Daniel Francis O'Loughlin ,  Keelan Smith ,  Jay Scott Fuller ,  William Lundy Lattin ,  Marinus Struik ,  Yuri Poeluev ,  Matthew John Campagna ,  Thomas Rudolf Stiemerling ,  Wei Cheng Joseph Ku

IPC: G06F12/14 ,  G06F21/60 ,  H04L9/30 ,  G06F21/72 ,  G06F21/80

CPC classification number: G06F12/1408 ,  G06F21/123 ,  G06F21/57 ,  G06F21/606 ,  G06F21/72 ,  G06F21/73 ,  G06F21/76 ,  G06F21/80 ,  G06F2212/1052 ,  G06F2221/2101 ,  H04L9/0877 ,  H04L9/3066 ,  H04L9/3252 ,  H04L9/3263 ,  H04L9/3273 ,  H04L2209/24

Abstract: An asset management system is provided, which includes a hardware module operating as an asset control core. The asset control core generally includes a small hardware core embedded in a target system on chip that establishes a hardware-based point of trust on the silicon die. The asset control core can be used as a root of trust on a consumer device by having features that make it difficult to tamper with. The asset control core is able to generate a unique identifier for one device and participate in the tracking and provisioning of the device through a secure communication channel with an appliance. The appliance generally includes a secure module that caches and distributes provisioning data to one of many agents that connect to the asset control core, e.g. on a manufacturing line or in an after-market programming session.

Abstract translation: 提供资产管理系统，其中包括作为资产控制核心运行的硬件模块。 资产控制核心通常包括嵌入在目标片上系统中的小型硬件核心，其在硅芯片上建立基于硬件的信任点。 资产控制核心可以作为消费者设备的信任根源，具有使其难以篡改的特征。 资产控制核心能够为一个设备生成唯一的标识符，并通过与设备的安全通信通道参与设备的跟踪和配置。 该设备通常包括一个安全模块，它将配置数据高速缓存并分配给连接到资产控制核心的许多代理之一，例如， 在生产线上或在售后市场的程序设计会议。

公开(公告)号：US09678896B2

公开(公告)日：2017-06-13

申请号：US14922962

申请日：2015-10-26

Applicant: Certicom Corp.

Inventor： Daniel Francis O'Loughlin ,  Keelan Smith ,  Jay Scott Fuller ,  William Lundy Lattin ,  Marinus Struik ,  Yuri Poeluev ,  Matthew John Campagna ,  Thomas Rudolf Stiemerling ,  Wei Cheng Joseph Ku

IPC: G06F21/00 ,  G06F12/14 ,  G06F21/57 ,  G06F21/72 ,  G06F21/73 ,  H04L9/08 ,  H04L9/30 ,  H04L9/32 ,  G06F21/12 ,  G06F21/76 ,  G06F21/60 ,  G06F21/80

CPC classification number: G06F12/1408 ,  G06F21/123 ,  G06F21/57 ,  G06F21/606 ,  G06F21/72 ,  G06F21/73 ,  G06F21/76 ,  G06F21/80 ,  G06F2212/1052 ,  G06F2221/2101 ,  H04L9/0877 ,  H04L9/3066 ,  H04L9/3252 ,  H04L9/3263 ,  H04L9/3273 ,  H04L2209/24

Abstract: An asset management system is provided, which includes a hardware module operating as an asset control core. The asset control core generally includes a small hardware core embedded in a target system on chip that establishes a hardware-based point of trust on the silicon die. The asset control core can be used as a root of trust on a consumer device by having features that make it difficult to tamper with. The asset control core is able to generate a unique identifier for one device and participate in the tracking and provisioning of the device through a secure communication channel with an appliance. The appliance generally includes a secure module that caches and distributes provisioning data to one of many agents that connect to the asset control core, e.g. on a manufacturing line or in an after-market programming session.

公开(公告)号：US20160044496A1

公开(公告)日：2016-02-11

申请号：US14921299

申请日：2015-10-23

Applicant: BlackBerry Limited ,  Certicom Corp.

Inventor： Jean-Philippe Paul Cormier ,  David Philip Hole ,  Nicholas James Russell ,  Daniel Francis O'Loughlin

IPC: H04W8/20 ,  H04W8/18

CPC classification number: H04W8/205 ,  H04L9/3268 ,  H04L63/0823 ,  H04L2209/80 ,  H04W8/183 ,  H04W12/06 ,  H04W88/02

Abstract: Techniques for use in transferring an assignment of a secure chip of a wireless device from a current subscription manager (SM) of a current mobile network operator (MNO) to a new SM of a new MNO are described. In one illustrative example, the current SM receives a request for transferring the assignment and produces transfer permission data in response. The transfer permission data includes an identifier of the secure chip, an identifier of the current SM, and a digital signature of the current SM. The current SM then sends to the secure chip a transfer permission message which includes the transfer permission data. The transfer permission data indicates a permission for the secure chip to transfer the assignment from the current SM to the new SM. Additional techniques are performed by the secure chip, and the new SM, as described.

Abstract translation: 描述了用于将无线设备的安全芯片的分配从当前移动网络运营商（MNO）的当前订阅管理器（SM）传送到新的MNO的新SM的技术。 在一个说明性示例中，当前SM接收到传送分配的请求，并作为响应产生传送许可数据。 传输许可数据包括安全芯片的标识符，当前SM的标识符和当前SM的数字签名。 当前的SM然后向安全芯片发送包括传输许可数据的传输许可消息。 传输许可数据指示安全芯片允许从当前SM传送分配到新的SM。 附加技术由安全芯片和新SM执行，如所述。

公开(公告)号：US09183158B2

公开(公告)日：2015-11-10

申请号：US14141230

申请日：2013-12-26

Applicant: Certicom Corp.

Inventor： Daniel Francis O'Loughlin ,  Keelan Smith ,  Jay Scott Fuller ,  William Lundy Lattin ,  Marinus Struik ,  Yuri Poeluev ,  Matthew John Campagna ,  Thomas Rudolf Stiemerling ,  Weicheng Joseph Ku

IPC: H04L9/00 ,  G06F21/00 ,  G06F12/14 ,  G06F21/57 ,  G06F21/72 ,  G06F21/73 ,  H04L9/08 ,  H04L9/30 ,  H04L9/32 ,  G06F21/12 ,  G06F21/76

CPC classification number: G06F12/1408 ,  G06F21/123 ,  G06F21/57 ,  G06F21/606 ,  G06F21/72 ,  G06F21/73 ,  G06F21/76 ,  G06F21/80 ,  G06F2212/1052 ,  G06F2221/2101 ,  H04L9/0877 ,  H04L9/3066 ,  H04L9/3252 ,  H04L9/3263 ,  H04L9/3273 ,  H04L2209/24

Abstract: An asset management system is provided, which includes a hardware module operating as an asset control core. The asset control core generally includes a small hardware core embedded in a target system on chip that establishes a hardware-based point of trust on the silicon die. The asset control core can be used as a root of trust on a consumer device by having features that make it difficult to tamper with. The asset control core is able to generate a unique identifier for one device and participate in the tracking and provisioning of the device through a secure communication channel with an appliance. The appliance generally includes a secure module that caches and distributes provisioning data to one of many agents that connect to the asset control core, e.g. on a manufacturing line or in an after-market programming session.

Abstract translation: 提供资产管理系统，其中包括作为资产控制核心运行的硬件模块。 资产控制核心通常包括嵌入在目标片上系统中的小型硬件核心，其在硅芯片上建立基于硬件的信任点。 资产控制核心可以作为消费者设备的信任根源，具有使其难以篡改的特征。 资产控制核心能够为一个设备生成唯一的标识符，并通过与设备的安全通信通道参与设备的跟踪和配置。 该设备通常包括一个安全模块，它将配置数据高速缓存并分配给连接到资产控制核心的许多代理之一，例如， 在生产线上或在售后市场的程序设计会议。

公开(公告)号：US20140108825A1

公开(公告)日：2014-04-17

申请号：US14141230

申请日：2013-12-26

Applicant: Certicom Corp.

Inventor： Daniel Francis O'Loughlin ,  Keelan Smith ,  Jay Scott Fuller ,  William Lundy Lattin ,  Marinus Struik ,  Yuri Poeluev ,  Matthew John Campagna ,  Thomas Rudolf Stiemerling ,  Weicheng Joseph Ku

IPC: G06F12/14

CPC classification number: G06F12/1408 ,  G06F21/123 ,  G06F21/57 ,  G06F21/606 ,  G06F21/72 ,  G06F21/73 ,  G06F21/76 ,  G06F21/80 ,  G06F2212/1052 ,  G06F2221/2101 ,  H04L9/0877 ,  H04L9/3066 ,  H04L9/3252 ,  H04L9/3263 ,  H04L9/3273 ,  H04L2209/24

Abstract: An asset management system is provided, which includes a hardware module operating as an asset control core. The asset control core generally includes a small hardware core embedded in a target system on chip that establishes a hardware-based point of trust on the silicon die. The asset control core can be used as a root of trust on a consumer device by having features that make it difficult to tamper with. The asset control core is able to generate a unique identifier for one device and participate in the tracking and provisioning of the device through a secure communication channel with an appliance. The appliance generally includes a secure module that caches and distributes provisioning data to one of many agents that connect to the asset control core, e.g. on a manufacturing line or in an after-market programming session.

Abstract translation: 提供资产管理系统，其中包括作为资产控制核心运行的硬件模块。 资产控制核心通常包括嵌入在目标片上系统中的小型硬件核心，其在硅芯片上建立基于硬件的信任点。 资产控制核心可以作为消费者设备的信任根源，具有使其难以篡改的特征。 资产控制核心能够为一个设备生成唯一的标识符，并通过与设备的安全通信通道参与设备的跟踪和配置。 该设备通常包括一个安全模块，它将配置数据高速缓存并分配给连接到资产控制核心的许多代理之一，例如， 在生产线上或在售后市场的程序设计会议。