Secure remote subscription management
    3.
    发明授权
    Secure remote subscription management 有权
    安全远程订阅管理

    公开(公告)号:US08812836B2

    公开(公告)日:2014-08-19

    申请号:US12718853

    申请日:2010-03-05

    IPC分类号: H04L29/06 H04W8/26 H04W12/06

    摘要: A method and apparatus are disclosed for performing secure remote subscription management. Secure remote subscription management may include providing the Wireless Transmit/Receive Unit (WTRU) with a connectivity identifier, such as a Provisional Connectivity Identifier (PCID), which may be used to establish an initial network connection to an Initial Connectivity Operator (ICO) for initial secure remote registration, provisioning, and activation. A connection to the ICO may be used to remotely provision the WTRU with credentials associated with the Selected Home Operator (SHO). A credential, such as a cryptographic keyset, which may be included in the Trusted Physical Unit (TPU), may be allocated to the SHO and may be activated. The WTRU may establish a network connection to the SHO and may receive services using the remotely managed credentials. Secure remote subscription management may be repeated to associate the WTRU with another SHO.

    摘要翻译: 公开了用于执行安全远程订阅管理的方法和装置。 安全远程订阅管理可以包括为无线发射/接收单元(WTRU)提供诸如临时连接标识符(PCID)的连接标识符,其可以用于建立到初始连接性运营商(ICO)的初始网络连接,用于 初始安全远程注册,配置和激活。 可以使用到ICO的连接来远程地提供与选择家庭运营商(SHO)相关联的凭证的WTRU。 可以包括在可信物理单元(TPU)中的诸如加密密钥集的证书可以被分配给SHO并且可以被激活。 WTRU可以建立到SHO的网络连接,并且可以使用远程管理的凭证来接收服务。 可以重复安全的远程订阅管理以将WTRU与另一个SHO相关联。

    SECURE REMOTE SUBSCRIPTION MANAGEMENT
    6.
    发明申请
    SECURE REMOTE SUBSCRIPTION MANAGEMENT 有权
    安全远程订阅管理

    公开(公告)号:US20110035584A1

    公开(公告)日:2011-02-10

    申请号:US12718853

    申请日:2010-03-05

    IPC分类号: H04L9/32

    摘要: A method and apparatus are disclosed for performing secure remote subscription management. Secure remote subscription management may include providing the Wireless Transmit/Receive Unit (WTRU) with a connectivity identifier, such as a Provisional Connectivity Identifier (PCID), which may be used to establish an initial network connection to an Initial Connectivity Operator (ICO) for initial secure remote registration, provisioning, and activation. A connection to the ICO may be used to remotely provision the WTRU with credentials associated with the Selected Home Operator (SHO). A credential, such as a cryptographic keyset, which may be included in the Trusted Physical Unit (TPU), may be allocated to the SHO and may be activated. The WTRU may establish a network connection to the SHO and may receive services using the remotely managed credentials. Secure remote subscription management may be repeated to associate the WTRU with another SHO.

    摘要翻译: 公开了用于执行安全远程订阅管理的方法和装置。 安全远程订阅管理可以包括为无线发射/接收单元(WTRU)提供诸如临时连接标识符(PCID)的连接标识符,其可以用于建立到初始连接性运营商(ICO)的初始网络连接,用于 初始安全远程注册,配置和激活。 可以使用到ICO的连接来远程地提供与选择家庭运营商(SHO)相关联的凭证的WTRU。 可以包括在可信物理单元(TPU)中的诸如加密密钥集的证书可以被分配给SHO并且可以被激活。 WTRU可以建立到SHO的网络连接,并且可以使用远程管理的证书来接收服务。 可以重复安全的远程订阅管理以将WTRU与另一个SHO相关联。

    UNIVERSAL INTEGRATED CIRCUIT CARD HAVING A VIRTUAL SUBSCRIBER IDENTITY MODULE FUNCTIONALITY
    7.
    发明申请
    UNIVERSAL INTEGRATED CIRCUIT CARD HAVING A VIRTUAL SUBSCRIBER IDENTITY MODULE FUNCTIONALITY 审中-公开
    具有虚拟订阅者身份识别模块功能的通用集成电路卡

    公开(公告)号:US20100062808A1

    公开(公告)日:2010-03-11

    申请号:US12546827

    申请日:2009-08-25

    IPC分类号: H04B1/38 G06F21/00

    摘要: Universal integrated circuit card (UICC) having a virtual subscriber identity module functionality is disclosed. A wireless transmit/receive unit (WTRU) comprises a mobile equipment (ME) configured to perform wireless communication and a UICC. The UICC is configured to perform security functionalities. The UICC supports multiple isolated domains including UICC issuer's domain. Each domain is owned by a separate owner so that each owner stores and executes an application on the UICC under a control of an UICC issuer and the UICC issuer's domain controls creation and deletion of other domains and defines and enforces security rules for authorizing third parties to have an access to the domains. The UICC is configured to verify integrity of operating system functions and applications stored on the UICC. The UICC is configured to control an access to information regarding applications according to security policies stored within the UICC.

    摘要翻译: 公开了具有虚拟用户识别模块功能的通用集成电路卡(UICC)。 无线发射/接收单元(WTRU)包括被配置为执行无线通信的移动设备(ME)和UICC。 UICC配置为执行安全功能。 UICC支持多个隔离域,包括UICC发行者域。 每个域由单独的所有者拥有,以便每个所有者在UICC发行者的控制下在UICC上存储和执行应用程序,并且UICC发行人的域控制其他域的创建和删除,并定义和执行授权第三方的安全规则 可以访问域。 UICC配置为验证存储在UICC上的操作系统功能和应用程序的完整性。 UICC被配置为根据存储在UICC内的安全策略来控制对应用信息的访问。

    Smart card with domain-trust evaluation and domain policy management functions
    10.
    发明授权
    Smart card with domain-trust evaluation and domain policy management functions 有权
    具有域信任评估和域策略管理功能的智能卡

    公开(公告)号:US09363676B2

    公开(公告)日:2016-06-07

    申请号:US13991530

    申请日:2011-12-06

    摘要: One or more wireless communications device may include one or more domains that may be owned or controlled by one or more different owners. One of the domains may include a security domain having ultimate control over the enforcement of security policies on the one or more wireless communications devices. Another one of the domains may include a system-wide domain manager that is subsidiary to the security domain and may enforce the policies of one or more subsidiary domains. The system-wide domain manager may enforce its policies based on a privilege level received from the security domain. The privilege level may be based on the level of trust between an external stakeholder, such as an owner of a domain that is subsidiary to the system-wide domain manager, and the security domain.

    摘要翻译: 一个或多个无线通信设备可以包括可由一个或多个不同所有者拥有或控制的一个或多个域。 一个域可以包括对一个或多个无线通信设备上的安全策略的执行的最终控制的安全域。 另一个域可以包括系统范围的域管理器,其是安全域的子公司,并且可以执行一个或多个子域的策略。 系统范围的域管理器可以基于从安全域接收到的特权级别强制执行其策略。 权限级别可以基于外部利益相关者(例如,系统范围域名管理员的子域的所有者)与安全域之间的信任级别。