Certification method using an embedded UICC certificate, provisioning and MNO changing methods using the certification method, embedded UICC therefor, MNO system, and recording medium
First Claim
1. A method of certifying an embedded universal integrated circuit card (eUICC) cooperating with a mobile network operator (MNO) system and a subscription manager (SM), the method comprising:
- storing, by the eUICC, an eUICC certificate used for the MNO system or the SM to verify an identity of the eUICC; and
transmitting, by the eUICC, the eUICC certificate to the MNO system or the SM,wherein the SM comprises a subscription manager-secure routing (SM-SR) and a subscription manager-data preparation (SM-DP), both of which perform an encryption function such that the eUICC certificate is double encrypted upon a condition that both the SM-SR and SM-DP are instructed to perform said encryption.
2 Assignments
0 Petitions
Accused Products
Abstract
The present invention relates to a system constituted by a mobile network operator (MNO), a subscription manager (SM), and an embedded UICC (eUICC), wherein the MNO system or the SM stores an eUICC certificate that can verify the identity of the eUICC, transfers the eUICC certificate to the MNO system or the SM in a provisioning or MNO changing process, verifies the identity of a corresponding eUICC using the received eUICC certificate, and encrypts and transfers a profile to the eUICC only if the verification is successful so that the eUICC may be verified during the provisioning or MNO changing processes.
-
Citations
16 Claims
-
1. A method of certifying an embedded universal integrated circuit card (eUICC) cooperating with a mobile network operator (MNO) system and a subscription manager (SM), the method comprising:
-
storing, by the eUICC, an eUICC certificate used for the MNO system or the SM to verify an identity of the eUICC; and transmitting, by the eUICC, the eUICC certificate to the MNO system or the SM, wherein the SM comprises a subscription manager-secure routing (SM-SR) and a subscription manager-data preparation (SM-DP), both of which perform an encryption function such that the eUICC certificate is double encrypted upon a condition that both the SM-SR and SM-DP are instructed to perform said encryption. - View Dependent Claims (2, 3, 4, 5)
-
-
6. An embedded universal integrated circuit card (eUICC) cooperating with an external entity including a mobile network operator (MNO) system and a subscription manager (SM),
wherein the eUICC stores an eUICC certificate profile including at least one of an eUICC certificate, which is used for the MNO system or the SM to verify an identity of the eUICC, card operating system (OS) information, card platform information, personal identification number (PIN) information, wherein the eUICC certificate profile transmits the eUICC certificate to the MNO system or the SM, and wherein the SM comprises a subscription manager-secure routing (SM-SR) and a subscription manager-data preparation (SM-DP), both of which perform an encryption function such that the eUICC certificate profile is double encrypted upon a condition that both the SM-SR and SM-DP are instructed to perform said encryption.
-
8. A method of provisioning an eUICC certificate which is used for a mobile network operator (MNO) system and a subscription manager (SM) to verify an identity of the eUICC by using the eUICC cooperating with an external entity including the MNO system and the SM, the method comprising:
-
receiving and storing, by the eUICC, the eUICC certificate generated in a manufacturing step of the eUICC; transmitting, by the eUICC, the eUICC certificate to the MNO system; verifying, by the MNO system, the identity of the eUICC by using the eUICC certificate; and encrypting, by the MNO system, its operational profile and transmitting the operational profile to the eUICC, wherein the SM comprises a subscription manager-secure routing (SM-SR) and a subscription manager-data preparation (SM-DP), both of which perform an encryption function such that the eUICC certificate is double encrypted upon a condition that both the SM-SR and SM-DP are instructed to perform said encryption. - View Dependent Claims (9)
-
-
10. A method of changing MNO using an eUICC cooperating with an external entity including a mobile network operator (MNO) system and a subscription manager (SM) and including an eUICC certificate which is used for the MNO system and the SM to verify an identity of the eUICC, the method comprising:
-
receiving and storing, by the eUICC, the eUICC certificate generated in a manufacturing step of the eUICC; transmitting, by the eUICC, the eUICC certificate to a receiving MNO system; verifying, by the receiving MNO system, the identity of the eUICC by using the eUICC certificate; encrypting, by the receiving MNO system, its operational profile and transmitting the operational profile to the eUICC; and notifying, by the eUICC, a fact that an MNO is changed, to the receiving MNO system and a donor MNO system, wherein the SM comprises a subscription manager-secure routing (SM-SR) and a subscription manager-data preparation (SM-DP), both of which perform an encryption function such that the eUICC certificate is double encrypted upon a condition that both the SM-SR and SM-DP are instructed to perform said encryption. - View Dependent Claims (11, 16)
-
-
12. A method of provisioning by using an embedded universal integrated circuit card (eUICC) cooperating with a mobile network operator (MNO) system, a subscription manager-data preparation (SM-DP) and a subscription manager-secure routing (SM-SR) constituting a subscription manager (SM), the method comprising:
-
receiving and storing, by the eUICC, an eUICC certificate which can verify an identity of the eUICC, from an eUICC manufacturer system or a terminal manufacturer system, in the eUICC; transmitting an activation request message or an opening request message to the MNO system according to an opening request of a subscriber; receiving, by the MNO system, the eUICC certificate when the MNO system performs status requests and technical capability control for the eUICC; transmitting, by the MNO system, the eUICC certificate to the SM-SR when the MNO system collects information related to a terminal from the SM-SR; and encrypting, by the MNO system, its operational profile and transmitting the operational profile to the eUICC only when the MNO system or the SM-SR verifies the eUICC using the eUICC certificate, wherein both the SM-SR and the SM-DP perform an encryption function such that the eUICC certificate is double encrypted upon a condition that both the SM-SR and SM-DP are instructed to perform said encryption. - View Dependent Claims (13)
-
-
14. A method of changing MNO by using an embedded universal integrated circuit card (eUICC) cooperating with a mobile network operator (MNO) system, a subscription manager-data preparation (SM-DP) and a subscription manager-secure routing (SM-SR) constituting a subscription manager (SM), the method comprising:
-
receiving and storing, by the eUICC, an eUICC certificate which can verify an identity of the eUICC, from an eUICC manufacturer system or a terminal manufacturer system, in the eUICC; transmitting, by the eUICC, an activation request message or an opening request message to a receiving MNO system according to an MNO change request; receiving, by the receiving MNO system, the eUICC certificate from the eUICC when the receiving MNO system performs status requests and technical capability control for the eUICC; transmitting, by the receiving MNO system, the eUICC certificate to the SM-SR when the receiving MNO system collects information related to a terminal from the SM-SR; performing, by the receiving MNO system, negotiation and transferring right for MNO change with a donor MNO system; and encrypting, by the receiving MNO system, its operational profile and transmitting the operational profile to the eUICC, only when the receiving MNO system or the SM-SR verifies the eUICC using the eUICC certificate, wherein both the SM-SR and the SM-DP perform an encryption function such that the eUICC certificate is double encrypted upon a condition that both the SM-SR and SM-DP are instructed to perform said encryption of the eUICC certificate. - View Dependent Claims (15)
-
Specification