Methods and apparatus for delivering electronic identification components over a wireless network

US 9,344,832 B2
Filed: 02/23/2015
Issued: 05/17/2016
Est. Priority Date: 10/28/2010
Status: Active Grant

First Claim

Patent Images

1. A mobile device, comprising:

a hardware processor configured to cause the mobile device to carry out steps that include;

accessing first identification data associated with a secure element included in the mobile device;

transmitting, to an update portal, the first identification data to establish a set of access rights that enables the mobile device to access an operating system update for an operating system installed within the mobile device;

receiving, from the update portal, second identification data associated with a wireless carrier; and

in response to authenticating the second identification data;

downloading, into the secure element of the mobile device, an operating system update, andupdating the operating system in accordance with the operating system update to enable the mobile device to access additional wireless services.

View all claims

0 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Methods and apparatus enabling programming of electronic identification information of a wireless apparatus. In one embodiment, a previously purchased or deployed wireless apparatus is activated by a cellular network. The wireless apparatus connects to the cellular network using an access module to download operating system components and/or access control client components. The described methods and apparatus enable updates, additions and replacement of various components including Electronic Subscriber Identity Module (eSIM) data, OS components. One exemplary implementation of the invention utilizes a trusted key exchange between the device and the cellular network to maintain security.

Citations

20 Claims

1. A mobile device, comprising:
- a hardware processor configured to cause the mobile device to carry out steps that include;
  
  accessing first identification data associated with a secure element included in the mobile device;
  
  transmitting, to an update portal, the first identification data to establish a set of access rights that enables the mobile device to access an operating system update for an operating system installed within the mobile device;
  
  receiving, from the update portal, second identification data associated with a wireless carrier; and
  
  in response to authenticating the second identification data;
  
  downloading, into the secure element of the mobile device, an operating system update, andupdating the operating system in accordance with the operating system update to enable the mobile device to access additional wireless services.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
- - 2. The mobile device of claim 1, wherein downloading the operating system update comprises:
    - downloading one or more packages of which the operating system update is comprised, andassembling the operating system update using the one or more packages.
  - 3. The mobile device of claim 1, wherein the operating system update is selected by a user of the mobile device.
  - 4. The mobile device of claim 1, wherein the first identification data and the second identification data are based on a cryptographic key protocol.
  - 5. The mobile device of claim 1, wherein, subsequent to updating the operating system, the mobile device is permitted to access one or more wireless services not previously available to the mobile device.
  - 6. The mobile device of claim 5, wherein accessing the one or more wireless services comprises placing or receiving a voice call.
  - 7. The mobile device of claim 5, wherein accessing the one or more wireless services comprises accessing a wireless network provided by the wireless carrier.
  - 8. The mobile device of claim 5, wherein accessing the one or more wireless services comprises accessing a media file not stored by the mobile device.
  - 9. The mobile device of claim 5, wherein the set of access rights does not include access to the one or more wireless services.

10. A mobile device, comprising:
- a hardware processor configured to cause the mobile device to carry out steps that include;
  
  establishing an authorized data session with an update portal, wherein the authorized data session is associated with a first set of access rights that enables the mobile device to access one or more packages for updating an access control client managed by a secure element included in the mobile device;
  
  downloading, from the update portal, the one or more packages into the secure element of a mobile device;
  
  updating the access control client in accordance with the one or more packages to establish a second set of access rights that enable the mobile device to authenticate to a wireless network associated with the access control client; and
  
  establishing subscriber session with the wireless network establishing a subscriber session with the wireless network for accessing a data connection in accordance with the second set of access rights.
- View Dependent Claims (11, 12, 13, 14, 15, 16)
- - 11. The mobile device of claim 10, wherein the authorized data session comprises a mutual verification between the mobile device and the update portal.
  - 12. The mobile device of claim 11, wherein the mutual verification comprises a cryptographic key protocol.
  - 13. The mobile device of claim 10, wherein the subscriber session enables the mobile device to access one or more customer services.
  - 14. The mobile device of claim 13, wherein the one or more customer services comprises placing or receiving a voice call.
  - 15. The mobile device of claim 13, wherein the one or more customer services comprises accessing a data connection provided by the wireless network.
  - 16. The mobile device of claim 13, wherein the first set of access rights do not enable the mobile device to authenticate to the wireless network associated with the access control client.

17. A wireless apparatus, comprising:
- at least one wireless interface adapted to connect to at least one wireless network provided by a wireless carrier;
  
  a secure element associated with first identification data; and
  
  a hardware processor configured to cause the wireless apparatus to;
  
  carry out a mutual authentication with an update portal;
  
  establish a set of access rights for accessing an operating system update for an operating system installed within the wireless apparatus;
  
  download, from the update portal, the operating system update; and
  
  update the operating system in accordance with the operating system update to enable the wireless apparatus to access additional wireless services not available to the wireless apparatus prior to updating the operating system.
- View Dependent Claims (18, 19, 20)
- - 18. The wireless apparatus of claim 17, wherein the operating system update is selected by a user of the wireless apparatus.
  - 19. The wireless apparatus of claim 17, wherein the carrying out the mutual authentication comprises:
    - providing, to the update portal, first identification data associated with the wireless apparatus, andreceiving, from the update portal, second identification data associated with the update portal.
  - 20. The wireless apparatus of claim 17, wherein the operating system is an operating system of the wireless apparatus, an operating system of a secure element included in the wireless apparatus, or an operating system of an access control client managed by the secure element.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Apple Inc.
Original Assignee
Apple Inc.
Inventors
Schell, Stephan V., Mathias, Arun G., Hauck, Jerrold Von, Haggerty, David T., McLaughlin, Kevin, Juang, Ben-Heng, Li, Li
Primary Examiner(s)
Chai, Longbit

Application Number

US14/629,386
Publication Number

US 20150312698A1
Time in Patent Office

449 Days
Field of Search

713/169
US Class Current

1/1
CPC Class Codes

G06F 21/45   Structures or tools for the...

G06F 21/57   Certifying or maintaining t...

H04L 63/08   for authentication of entit...

H04L 63/0853   using an additional device,...

H04L 63/123   received data contents, e.g...

H04L 63/20   for managing network securi...

H04L 67/34   involving the movement of s...

H04W 12/04   Key management, e.g. using ...

H04W 12/06   Authentication

H04W 12/08   Access security

H04W 12/35   Protecting application or s...

H04W 4/50   Service provisioning or rec...

H04W 4/60   Subscription-based services...

H04W 8/205   Transfer to or from user eq...

Methods and apparatus for delivering electronic identification components over a wireless network

First Claim

0 Assignments

0 Petitions

Accused Products

Abstract

Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Methods and apparatus for delivering electronic identification components over a wireless network

First Claim

0 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links