Enforcing service policies in embedded UICCs
First Claim
1. A method for configuring an embedded Universal Integrated Circuit Card (eUICC) included in a mobile device to conditionally require human-based authentication when performing electronic Subscriber Identity Module (eSIM) management operations, the method comprising, at the eUICC:
- receiving a request to perform an eSIM management operation;
determining that at least one condition of a policy being enforced by the eUICC indicates that a human-based authentication is required prior to performing the eSIM management operation;
identifying, among a plurality of human-based authentications, a particular human-based authentication that is commensurate with the eSIM management operation;
causing the mobile device to provide a prompt in accordance with the particular human-based authentication;
receiving a response to the prompt for the particular human-based authentication; and
in accordance with the response;
performing the eSIM management operation or ignoring the request.
0 Assignments
0 Petitions
Accused Products
Abstract
The embodiments set forth techniques for an embedded Universal Integrated Circuit Card (eUICC) to conditionally require, when performing management operations in association with electronic Subscriber Identity Modules (eSIMs), human-based authentication. The eUICC receives a request to perform a management operation in association with an eSIM. In response, the eUICC determines whether a policy being enforced by the eUICC indicates that a human-based authentication is required prior to performing the management operation. Next, the eUICC causes the mobile device to prompt a user of the mobile device to carry out the human-based authentication. The management operation is then performed or ignored in accordance with results of the human-based authentication.
29 Citations
20 Claims
-
1. A method for configuring an embedded Universal Integrated Circuit Card (eUICC) included in a mobile device to conditionally require human-based authentication when performing electronic Subscriber Identity Module (eSIM) management operations, the method comprising, at the eUICC:
-
receiving a request to perform an eSIM management operation; determining that at least one condition of a policy being enforced by the eUICC indicates that a human-based authentication is required prior to performing the eSIM management operation; identifying, among a plurality of human-based authentications, a particular human-based authentication that is commensurate with the eSIM management operation; causing the mobile device to provide a prompt in accordance with the particular human-based authentication; receiving a response to the prompt for the particular human-based authentication; and in accordance with the response; performing the eSIM management operation or ignoring the request. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A non-transitory computer readable storage medium configured to store instructions that, when executed by an embedded Universal Integrated Circuit Card (eUICC) included in a mobile device, cause the eUICC to conditionally require human-based authentication when performing electronic Subscriber Identity Module (eSIM) management operations, by carrying out steps that include:
-
receiving a request to perform an eSIM management operation; determining that at least one condition of a policy being enforced by the eUICC indicates that a human-based authentication is required prior to performing the eSIM management operation; identifying, among a plurality of human-based authentications, a particular human-based authentication that is commensurate with the eSIM management operation; causing the mobile device to provide a prompt in accordance with the particular human-based authentication; receiving a response to the prompt for the particular human-based authentication; and in accordance with the response; performing the eSIM management operation or ignoring the request. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
-
15. An embedded Universal Integrated Circuit Card (eUICC) included a mobile device, the eUICC configured to conditionally require human-based authentication when performing electronic Subscriber Identity Module (eSIM) management operations, the eUICC comprising:
-
at least one processor; and at least one memory storing instructions that, when executed by the at least one processor, cause the eUICC to; receiving a request to perform an eSIM management operation; determine that at least one condition of a policy being enforced by the eUICC indicates that a human-based authentication is required prior to performing the eSIM management operation; identify, among a plurality of human-based authentications, a particular human-based authentication that is commensurate with the eSIM management operation; cause the mobile device to provide a prompt in accordance with the particular human-based authentication; receive a response to the prompt for the particular human-based authentication; and in accordance with the response; perform the eSIM management operation or ignore the request. - View Dependent Claims (16, 17, 18, 19, 20)
-
Specification