Profile download method and apparatus for use in wireless communication system
First Claim
1. A communication method of a terminal, the method comprising:
- transmitting, to a profile provision server, an initial authentication message including a first challenge value for authentication of the profile provision server;
receiving, from the profile provision server, an initial authentication response message including a first data and a first signature value, wherein the first data includes the first challenge value and a second challenge value for authentication of the terminal, and the first signature value is computed over the first data;
verifying the first signature value;
generating a second data including the second challenge value and profile mapping information, and computing a second signature value over the second data;
transmitting, to the profile provision server, an authentication client a first message including the second data and the second signature value;
receiving, from the profile provision server, an authentication client response message including unencrypted information related to a profile and information indicating whether a confirmation code is required for the profile;
receiving, via a user interface, a confirmation code based on the unencrypted information related to the profile in case that the information indicates the confirmation code is required;
transmitting, to the profile provision server, a profile download request message including the confirmation code; and
receiving, from the profile provision server, a profile download response message including an encrypted profile data in response to the profile download request message.
1 Assignment
0 Petitions
Accused Products
Abstract
A profile downloading method and apparatus is provided for a terminal to download and install a profile in a communication system. The communication method of the terminal includes transmitting a first message including information on a profile to be received from a profile provision server; receiving a second message including information indicating whether an encryption code input is required and a first modified encryption code; generating, when the first modified encryption code is successfully authenticated, a second modified encryption code; transmitting to the profile provision server a third message including information requesting to the profile provision server for the second modified encryption code and profile download, and receiving a fourth message including information on the profile from the profile provision server.
11 Citations
20 Claims
-
1. A communication method of a terminal, the method comprising:
-
transmitting, to a profile provision server, an initial authentication message including a first challenge value for authentication of the profile provision server; receiving, from the profile provision server, an initial authentication response message including a first data and a first signature value, wherein the first data includes the first challenge value and a second challenge value for authentication of the terminal, and the first signature value is computed over the first data; verifying the first signature value; generating a second data including the second challenge value and profile mapping information, and computing a second signature value over the second data; transmitting, to the profile provision server, an authentication client a first message including the second data and the second signature value; receiving, from the profile provision server, an authentication client response message including unencrypted information related to a profile and information indicating whether a confirmation code is required for the profile; receiving, via a user interface, a confirmation code based on the unencrypted information related to the profile in case that the information indicates the confirmation code is required; transmitting, to the profile provision server, a profile download request message including the confirmation code; and receiving, from the profile provision server, a profile download response message including an encrypted profile data in response to the profile download request message. - View Dependent Claims (2, 3, 4, 5)
-
-
6. A communication method of a profile provision server, the method comprising:
-
receiving, from a terminal, an initial authentication message including a first challenge value for authentication of the profile provision server; generating a first data including the first challenge value and a second challenge value for authentication of the terminal, and computing a first signature value over the first data; transmitting, to the terminal, an initial authentication response message including the first data and the first signature value; receiving, from the terminal, an authentication client message including a second data and a second signature value, wherein the second data includes the second challenge value and profile mapping information, and the second signature value is computed over the second data; verifying the second signature value; determining whether a confirmation code is required for a profile verified by the profile mapping information; transmitting, to the terminal, an authentication client response message including unencrypted information related to the profile and information indicating whether the confirmation code is required for the profile; receiving, from the terminal, a profile download request message including the confirmation code in case that the information indicates the confirmation code is required; and transmitting, to the terminal, a profile download response message including an encrypted profile data in response to the profile download request message. - View Dependent Claims (7, 8, 9, 10)
-
-
11. A terminal comprising:
-
a transceiver; and a controller configured to; control the transceiver to transmit, to a profile provision server, an initial authentication message including a first challenge value for authentication of the profile provision server, control the transceiver to receive, from the profile provision server, an initial authentication response message including a first data and a first signature value, wherein the first data includes the first challenge value and a second challenge value for authentication of the terminal, and the first signature value is computed over the first data, verify the first signature value, generate a second data including the second challenge value and profile mapping information, and compute a second signature value over the second data, control the transceiver to transmit, to the profile provision server, an authentication client message including the second data and the second signature value, control the transceiver to receive, from the profile provision server, an authentication client response message including unencrypted information related to a profile and information indicating whether a confirmation code is required for the profile, receive, via a user interface, a confirmation code based on the unencrypted information related to the profile in case that the information indicates the confirmation code is required, control the transceiver to transmit, to the profile provision server, a profile download request message including the confirmation code, and control the transceiver to receive, from the profile provision server, a profile download response message including an encrypted profile data in response to the profile download request message. - View Dependent Claims (12, 13, 14, 15)
-
-
16. A profile provision server comprising:
-
a transceiver; and a controller configured to; control the transceiver to receive, from a terminal, an initial authentication message including a first challenge value for authentication of the profile provision server, generate a first data including the first challenge value and a second challenge value for authentication of the terminal, and computing a first signature value over the first data, control the transceiver to transmit, to the terminal, an initial authentication response message including the first data and the first signature value, control the transceiver to receive, from the terminal, an authentication client message including a second data and a second signature value, wherein the second data includes the second challenge value and profile mapping information, and the second signature value is computed over the second data, verify the second signature value, determine whether a confirmation code is required for a profile verified by the profile mapping information, control the transceiver to transmit, to the terminal, an authentication client response message including unencrypted information related to the profile and information indicating whether the confirmation code is required for the profile, control the transceiver to receive, from the terminal, a profile download request message including the confirmation code in case that the information indicates the confirmation code is required, and control the transceiver to transmit, to the terminal a profile download response message including an encrypted profile data in response to the profile download request message. - View Dependent Claims (17, 18, 19, 20)
-
Specification