DE202015101972U1 - Device for providing profiles - Google Patents

Abstract

A terminal (2000) comprising: a communication unit (2030) configured to send and receive a signal; a controller (2020) electrically connected to the communication unit (2030) and configured to generate information for initiating receipt of a profile; a universal integrated circuit card (2010) electrically connected to the control unit (2020) and configured to: access a profile management server (2100) and receive the profile from the information using the communication unit (2030) and set up the received profile ,

Description

TECHNICAL AREA

The present invention generally relates to a device for providing profiles in a mobile communication terminal in conjunction with a Universal Integrated Circuit Card (UICC), which is a smart card security module used in the terminal. In particular, the present invention relates to an apparatus adapted for remotely creating or erasing information of a mobile communication user in or from an embedded UICC (eUICC) which replaces the UICC and is not removably embedded in the terminal.

BACKGROUND

In the UICC used in a mobile communication terminal and used as a smart card, personal information about a mobile communication subscriber such as network access admission information, a telephone book and SMS are stored. When connected to a mobile communication network such as GSM, WCDMA or LTE, the UICC performs subscriber identification and traffic security key generation and thus enables secure use of the mobile communication. In the UICC, a communication application, e.g. a Subscriber Identification Module (SIM), Universal SIM (USIM), CDMA SIM (CSIM), a Removable User Identity Card (R-UIM) or IP Multimedia SIM (ISIM), depending on the type of mobile communication network mounted, and also provides a high-quality security function Application of various applications such as electronic wallet, booking and electronic passports.

A typical UICC is manufactured and issued as a dedicated card for a particular mobile operator at the operator's request and contains authentication information (e.g., USIM application and IMSI, K value) for access to the operator's network. Therefore, the particular mobile network operator offers subscribers such UICCs and then, if necessary, performs management such as setup, modification and deletion of applications within the UICC using OTA (Over The Air) technology. Subscribers can leverage the operator's network and application services by deploying the UICC in their own mobile devices. Further, by changing the UICC from an old terminal to a new terminal upon exchange of terminals, it is possible to continue to use in the new terminal authentication information, mobile phone numbers, personal telephone number, etc. stored in the UICC.

The European Telecommunications Standards Institute (ETSI) defines a physical form and logical function of the UICC to maintain international compatibility. In view of a form factor defining a physical form, the size of the UICC has gradually decreased from a commonly used mini SIM via a micro SIM, which has been used for some years, to a recently used nano SIM. A UICC that is smaller than a Nano SIM, however, can hardly be standardized due to an increasing risk of loss. Further, since the UICC of the removable types requires space to form an insertion slot in the terminal, additional reduction is expected to cause problems.

Likewise, such a removable type of UICC is not suitable for machine-to-machine (M2M) devices that require access to a mobile communications data network without direct manipulation by humans under various installation circumstances, such as smart home appliances, power / water meters, CCTV cameras, and the like ,

To avoid such problems, a security module, similar in function to the UICC, must be embedded in a mobile communication terminal in the manufacture of the terminal to replace a typical removable UICC. However, since this security module is mounted in a non-removable form during manufacture in the terminal, it is impossible to establish in advance network access authentication information, such as IMSI or K of the USIM, of a particular mobile network operator in the manufacture of the terminal. Therefore, a user who buys this terminal can not set up such authentication information after deciding on a particular operator.

In addition, unlike a typical UICC manufactured and issued only for a particular mobile network operator, a newly introduced eUICC embedded in the terminal should securely and flexibly set up and manage authentication information across various mobile network operators, depending on whether a user is connect to or leave a special mobile operator or change to another operator.

Incidentally, the eUICC profiling method proposed in the GSM eUICC Technical Specification V1.0 published in December 2013 may have some problems as follows.

First, when a user subscribes to a mobile communication service, the Operational Profile issued by the mobile network operator should be downloaded and set up in the eUICC by OTA (Over The Air). Furthermore, such OTA download of the usage profile requires triggering by SMS sent from the network to the terminal. That is, to download the usage profile to the eUICC with OTA, the terminal should connect to the mobile network and thereby be in a state that allows it to receive an SMS and download the usage profiles through the mobile network.

Incidentally, in order to receive such OTA-triggering SMS and download the usage profile, a profile required to connect to any mobile network in any country should already be installed in the eUICC before a customer joins a particular mobile network operator (by default as a provisioning profile (Provisioning Profile)).

The deployment profile must be attached during the production of the eUICC. However, it is uncertain in which country the terminal device manufactured with such an eUICC chip will be used. Therefore, a mobile network operator and a country of the deployment profile to be installed in the eUICC must be defined.

SUMMARY

The present invention seeks to provide a technique for downloading and establishing a profile for a general purpose integrated circuit without receiving SMS from a network to initiate receipt of the profile.

According to one aspect of the present invention, a terminal comprises a communication unit configured to send and receive a signal, a control unit electrically connected to the communication unit and configured to generate information for triggering reception of a profile; a universal integrated circuit card electrically connected to the control unit and configured to: access a profile management server and receive the profile from the information using the communication unit and set up the received profile.

Preferably, the information includes at least one of a Short Message Service (SMS) or a command.

Preferably, the universal integrated circuit card is configured to: download a profile that triggers a signal containing the information from the control unit, and send a request to download a profile to the profile management server based on the received information using the communication unit.

Preferably, the control unit is further for generating the information from at least one of autonomous determination of the new profile download control unit or receipt of a new profile download command from at least one of a user interface of the terminal or external device is located on the outside of the terminal.

Preferably, the control unit is further configured to: identify an universal integrated circuit card identifier, transmit using the communication unit, prepare a request to download a profile containing the universal integrated circuit card identifier to the profile management server, and receive using the communication unit , a response to the pre-requisition for downloading a profile containing an identifier of the profile from the profile management server.

Preferably, the control unit and the universal integrated circuit card store an authentication key and the control unit is further configured to encrypt the information using the authentication key; and the universal integrated circuit card is further configured to certify and decrypt the information using the authentication key.

Preferably, the universal integrated circuit card for accessing, using the communication unit, to the profile management server is configured based on an IP-based communication network.

Preferably, an IP address of the profile management server is included in the information, and the universal integrated circuit card is configured to access, using the communication unit, the profile management server based on the IP address. Alternatively, it is preferable that an IP address of the profile management server is stored in the universal integrated circuit board, and the universal integrated circuit board is configured to access the profile management server on the basis of the IP address using the communication unit.

Preferably, the universal integrated circuit card is physically embedded in the terminal.

According to one aspect of the present invention, a server comprises: a communication unit configured to send and receive a signal; and a control unit electrically connected to the communication unit and configured to: receive, using the communication unit, a profile preparation request from a profile providing server that is profiling a request for downloading a profile from a universal integrated circuit card of a terminal is received using the communication unit, and transmitting, using the communication unit, the profile to the universal integrated circuit card of the terminal when the request to download a profile is received.

Preferably, the control unit is further configured to: receive, prior to receiving the request for downloading a profile from the universal integrated circuit card of the terminal, a preparation request to download a profile containing an universal integrated circuit card identifier from the terminal using the communication unit; and sending a response to the preparation request for downloading a profile containing an identifier of the profile to the terminal using the communication unit.

Preferably, the controller is configured to receive, using the communication unit, the request to download a profile from the universal integrated circuit card of the terminal based on an IP-based communication network.

Preferably, the universal integrated circuit card is physically embedded in the terminal.

BRIEF DESCRIPTION OF THE DRAWINGS

1 Figure 3 is a schematic diagram showing OTA technology for a typical removable UICC.

2 Fig. 10 is a schematic diagram showing an OTA technology used in a terminal in which an eUICC is mounted.

3 Fig. 12 is a schematic diagram showing, as a message flow between respective modules, an OTA technology applied to a terminal in which the eUICC is mounted.

4 is a schematic diagram showing an OTA technology for downloading a profile in the eUICC by means of an SMS.

5 FIG. 13 is a schematic diagram showing a key version number shown in FIG ETSI TS 102.225 Standard is defined.

6 FIG. 10 is a schematic block diagram showing elements for performing storage of a profile according to an embodiment of the present invention. FIG.

7 Fig. 10 is a schematic flowchart showing establishment of a profile at a terminal according to an embodiment of the present invention.

8th FIG. 10 is a schematic flowchart showing provisioning of a profile in a profile management server according to an embodiment of the present invention. FIG.

9A and 9B 12 are schematic diagrams showing an overall message flow between respective modules for establishing a profile according to an embodiment of the present invention.

10 FIG. 10 is a schematic flowchart showing determining automatic download of a profile in a controller. FIG.

11 Fig. 12 is a schematic diagram showing a procedure for downloading a profile according to a selection by the user when preparing to download a profile in a profile management server.

12 Fig. 12 is a schematic diagram showing a procedure for performing SMS emulation in a controller according to the present invention.

13 Figure 4 is a schematic diagram showing an SMS emulation with KVN, other than an OTA code, used in SM-SR between a controller and the eUICC.

14 12 is a schematic diagram showing an operation of the eUICC for rejecting a C-APDU (Command APDU) for a security reason when the C-APDU sent to the eUICC of a terminal is not a C-APDU for triggering an OTA session ,

15 is a schematic representation of the triggering of an OTA session with a new defined C-APDU between a controller and an eUICC.

16 is a schematic diagram showing certification and encryption in a communication between a controller and SM-SR.

17A and 17B Fig. 10 are schematic diagrams showing an entire procedure for performing a download of a profile using a UI.

18 Fig. 12 is a schematic diagram showing a procedure for requesting a profile list at the eUICC using a UI.

19 Fig. 12 is a schematic diagram showing a screen displaying to a user a profile list received from the eUICC and offering a menu that allows the user to start downloading a new profile.

20 Fig. 10 is a schematic block diagram showing a simplified structure of a terminal for performing a profile device according to an embodiment of the present invention.

21 Fig. 10 is a schematic block diagram showing a simplified structure of a profile management server for providing a profile according to an embodiment of the present invention.

DETAILED DESCRIPTION

In the following, various embodiments of the present invention will be fully described with reference to the accompanying drawings. However, this invention may be embodied in many different forms and should not be construed as limited to the embodiments set forth herein. Rather, the disclosed embodiments are provided so that this disclosure will be thorough and complete, and the scope of the invention will be fully conveyed to those skilled in the art. The principles and features of this invention may be employed in various and numerous embodiments without departing from the scope of the invention.

Furthermore, commonly used techniques, elements, structures, and processes may not be described or illustrated in detail to avoid obscuring the essence of the present invention. Although the drawings illustrate exemplary embodiments of the invention, the drawings are not necessarily to scale and some features may be exaggerated or lacking in order to better illustrate and explain the present invention.

In this disclosure, a profile may refer to software-like packaging of information contained within a UICC, i. Applications, a file system, an authentication key value, etc. stored in the UICC.

A USIM profile can have the same meaning as a profile or refer to software-like packaging of information contained in a USIM application within a profile.

A usage profile may refer to software-like packaging of subscriber information of a mobile network operator in which a user of a terminal has a subscription.

A provisioning profile may refer to a profile that is established in advance in an eUICC and is required for connection to a country's mobile communications network before a user subscribes to a particular mobile network operator.

In addition, in this disclosure, a profile provisioning server may be referred to as a profile provider or a Subscription Manager (SM-DP), and a profile management server may be referred to as a profile manager or subscription manager (Secure Routing).

Also, as would be understood by one of ordinary skill in the art, a controller and controller as used herein may have the same meaning.

1 Figure 3 is a schematic diagram showing OTA technology for a typical removable UICC.

The removable card inserted in a terminal 100 can be sold and set up in it to provide certification information (IMSI, K, etc.) enabling connection to a network of a particular mobile network operator. Therefore, the removable card can only be used for the particular mobile network operator until it is discarded. In the UICC 101 Not only can a communication application, such as SIM, USIM or ISIM, be set up, depending on the type of mobile communication network, but also various other applications, such as mobile credit cards, mobile wallets or electronic passports, be furnished. In this case, OTA technology can be used for practical management such as setting up, modifying, and deleting applications in the UICC card inserted in the terminal.

In 1 if the terminal 100 to a network of a mobile network operator A (hereinafter referred to as MNO A) (S101), the network can connect the terminal 100 recognize and OTA management by sending an SMS to the terminal 100 at an OTA server 110 of MNO A (S102).

The OTA server 110 can be operated by any MNO and using OTA services to set up, modify or delete applications in the UICC 101 provide.

So the OTA server 110 an OTA administration of the UICC 101 in the terminal 100 the network must connect the terminal 100 detect. To trigger an OTA management over the network, the terminal must 100 Furthermore, be in a state that it can receive an SMS directly.

2 Fig. 10 is a schematic diagram showing an OTA technology used in a terminal in which an eUICC is mounted.

The eUICC 201 can set up a profile by downloading a profile using OTA technology. The eUICC 201 includes at least one of a non-removable (eg, embedded) security module or removable security module. The eUICC 201 includes a chip-like security module.

It will now be a case of applying OTA technology to the terminal 200 in which the eUICC 201 is located, similar to in 1 shown, described in detail.

If the user for MNO B 207 decides, the MNO B can 207 EID information of the user terminal 200 win (S201). EID (eUICC identifier) is an identifier that is uniquely assigned to each eUICC and is an immutable value. The MNO B 207 transmits the EID of the user terminal 200 to a profile deployment server 205 (S202). Then the profile deployment server creates and encrypts 205 a profile that corresponds to the EID and transmits the profile to a profile management server 203 , the EID and the eUICC 201 managed (S203).

The terminal 200 can download a profile and setup from the profile management server 203 request using OTA technology (S205).

The profile management server 203 sends an SMS to download a profile to the terminal 200 in which the eUICC 201 is located (S204). Since the download of a profile with an SMS is triggered, the terminal should 200 be connected in advance, before sending a text message, to the mobile network. As in 2 The user can be pre-connected to MNO A's mobile network even if he or she has just connected to MNO B and wants to download the profile for MNO B. This connection is determined in accordance with the provisioning profile that already belongs to the terminal 200 has been provided and may be the same as or different from a profile of the MNO the user wants to join and use.

A recipient's phone number for the SMS sent to the terminal 200 is at least part of the deployment profile that is in the eUICC 201 is included. The profile management server 203 can previously know a provisioning profile telephone number of the managed eUICC.

The terminal 200 can receive the received SMS to the eUICC contained therein 201 transfer. The eUICC 201 can create a secure channel with the profile management server 203 and / or the profile deployment server 205 by a modem (ie a communication unit) in the terminal 200 and the usage profile from the profile deployment server 205 Download.

3 Fig. 12 is a schematic diagram showing, as message flow between respective modules, an OTA technology applied to a terminal in which the eUICC is mounted.

With reference to 3 transmits the MNO in step S301 300 a profiling request (that is, a profiler request) to the profile delivery server 310 , This profiler request may include EID, ProfileID, PLMNID, etc. of the user terminal. The profileID can contain an ICCID value that is used as the identifier of a typical UICC card.

In step S302, the profile provisioning server creates 310 based on information provided by the MNO 300 be received, a profile that the eUICC 340 provided. The eUICC 340 includes at least one of a non-removable (eg, embedded) security module or removable security module. The eUICC 340 includes a chip-like security module.

In step S303, the profile providing server may 310 the profiler request for the profile management server 320 transfer. This profiler request may include the EID and ICCID of the terminal. In addition, the profile provisioning server 310 in step S303 also a profile provided by the profile provisioning server 310 was created, along with the profiler request, and the profile management server 320 can save the transferred profile in it.

In step S304, the profile management server 320 triggering a download of a profile (that is, profile D / L triggering) by going through the mobile network 330 an SMS to the terminal with the eUICC 340 sends. This SMS broadcast may include MSISDN (ie, a telephone number) of the provisioning profile contained in the eUICC.

In step S305, an SMSC (Short Message Service Center) may be present in the mobile network 330 send an SMS to the terminal with the eUICC. This SMS can trigger a download of a profile (that is, profile D / L triggering).

In step S306, the eUICC 340 receive the SMS, and then request to download a profile (that is, profile D / L request) to the profile management server 320 through the modem (that is, the communication unit) of the terminal. In step S307, the profile management server 320 the received profile D / L request to the profile delivery server 310 transfer. The profile management server 320 can already create the profile created by the profile deployment server 310 in the preceding step S303 or an encrypted profile in this step S307 by sending the profile D / L request to the profile providing server 310 receive.

In step S308, the eUICC 340 a secure channel with the profile management server 320 and the profile created by the profile deployment server 310 Download.

4 is a schematic diagram showing an OTA technology for downloading a profile in the eUICC by means of an SMS.

5 FIG. 13 is a schematic diagram showing a key version number shown in FIG ETSI TS 102.225 Standard is defined.

With reference to 4 and 5 creates the SM-SR 430 receiving a profile setup request from the SM-DP, an SMS to trigger an OTA session at a target eUICC 420 and sends the created SMS through the SMSC 400 to a destination terminal. The eUICC 420 includes at least one of a non-removable (eg, embedded) security module or removable security module. The eUICC 420 includes a chip-like security module. At this time, an SMS recipient telephone number may be an MSISDN value included in the provisioning profile. According to the 3GPP standards, the protocol header of the SMS header is set to "download SIM data" and the data encoding scheme is set to "class 2 message". Furthermore, a communication unit, ie a modem device 410 The terminal receiving the SMS sends SMS information directly to the eUICC 420 send. The data field in SMS is certified and encrypted with the Secure Channel protocol, eg called SCP80, and the key version number (KVN) of a certification and encryption key used at this time can be one to fifteen KVNs, 0x01 ~ 0x 0F, use that in the ETSI TS 102.225 Standard are defined.

4 suggests the use of 0x01, which is commonly used in the industrial sector.

In step S401, the modem 410 Receiving the SMS, the SMS to the eUICC 420 in the form of a C-APDU (Command Application Protocol Data Unit) packet to send in the ISO-7816 Standards is defined. The C-APDU is referred to for this purpose as ENVELOPE (SMS-PP DOWNLOAD) and is defined as an example for triggering the OTA session using an SMS in the 3GPP standards.

In step S402, the eUICC extracts 420 , who receives the ENVELOPE (SMS-PP DOWNLOAD) C-APDU, the SMS by analyzing the received C-APDU and decrypts the data field of the SMS with their own OTA code.

The decrypted data may include the IP address of the SM-SR server and a KVN value of the OTA code value for setting up the OTA session with the SM-SR server. To set up the OTA session with the SM-SR 430 under their use, the eUICC 420 OPEN CHANNEL R-APDU to the modem 410 in step S403.

Therefore, the OTA session is established between the eUICC and the SM-SR server in step S404, and the eUICC downloads a profile through this session in step S405. 4 shows a case where the OTA session uses the same KVN1 that was used to encrypt the SMS.

6 FIG. 10 is a schematic block diagram showing elements for performing storage of a profile according to an embodiment of the present invention. FIG.

In 6 is a process in which the profile deployment server 611 an EID from the MNO 610 (S602) receives a profile and creates the profile for the profile management server 612 (S603), the same as before in 2 and 3 discussed. Therefore, an associated description in the sequence is omitted.

The following description focuses on the difference between 6 and 2 and 3 ,

In the case of a device for downloading a profile according to an embodiment of this invention, a normal IP network may be used instead of an SMS on the mobile network when the profile management server 203 in 2 downloading a profile of the eUICC in the terminal triggers.

That is, the terminal 600 can connect to the IP network through the IP connectivity node 609 connect the network (ie PLMN) of the MNO and, using the IP network, a signal to download a profile to the profile management server 612 transferred (S607). In this case, because the terminal 600 through the IP connectivity node 609 should connect to the IP network, should a node that provides IP connections to the terminal 600 to be available. In this embodiment, the IP connectivity node 609 a Wi-Fi AP (access point), a handset, a personal computer and the like. In addition, the layer 2 interface (A) between the terminal 600 and the IP connectivity node 609 Wi-Fi, Bluetooth, NFC, USB cable and the like.

If a command to download a profile from the profile deployment server 611 is received, the profile management server resolves 612 Downloading a profile by sending an SMS through the mobile network to the terminal in 3 out. In 6 however, the profile management server saves 612 Profile information (eg, EID) in the internal memory or in the database, and may be in a standby state waiting for a request to download a profile from the terminal (S604).

In this embodiment, triggering a download of a profile may be automatic in the terminal 600 or in response to the choice made by a user and not at the MNO 610 , Profile deployment server 611 and Profile Management Server 612 be performed.

Although a request to download a profile from the profile deployment server 611 Therefore, the profile management server may exist 612 wait for the terminal 600 retrieves autonomously (retrieval key value: EID).

In this embodiment, a decision to download a profile (S605) may be implemented in various ways.

In particular, the controller 601 autonomously determine a new download of a profile. In this case, if no usage profile in the eUICC 603 is present and if the terminal 600 to the IP connectivity node 609 is connected, a new download of a profile can be initiated (S606). The eUICC 603 includes at least one of a non-removable (eg, embedded) security module or removable security module. The eUICC 603 includes a chip-like security module.

Alternatively, the user can re-download a profile through a UI (user interface) of the terminal 600 determine.

Alternatively, an external UI 607 that are outside the terminal 600 is a command to download a profile to the controller 601 transfer. In this case, the external UI refers 607 on UI software from another device connected to the terminal 600 connected by USB cable, Bluetooth, WiFi or the like.

If now the controller 601 a new download of a profile at the eUICC 603 triggers, be an interface between the controller 601 and the eUICC 603 and an interface between the controller 601 and the profile management server 612 described in detail.

Although the terminal 600 no SMS can receive, the interface between the controller 601 and the eUICC 603 by transmitting a virtual SMS as if an SMS was being received using existing APDU, SMS-PP and AT command standards.

Alternatively, the interface between the controller 601 and the eUICC 603 be implemented using a newly defined APDU command. In this case, parameters to use can be OTA code information and the IP address of the profile management server 612 be.

The interface between the eUICC 603 and the profile management server 612 Can use existing OTA standards (SCP80 or SCP81). This has the advantage of minimizing a change in existing standards and infrastructure.

If the eUICC 603 a profile from the profile management server 612 using OTA downloads (S607), the profile management server can 612 no information about a profile yet received from the profile deployment server 611 created, the profile deployment server 611 can not have created a profile yet or the MNO 610 No information containing the EID is yet available to the profile delivery server 611 have sent.

In such a case, the profile management server 612 maintained the SCP 80 or 81 session with the eUICC 603 and then download a profile as soon as the profile deployment server 611 a created profile or profile information such as EID to the profile management server 612 provides.

According to this scheme, the terminal 600 Periodically, a request to download a profile to the profile management server 612 send, so that an overload or delay when downloading a profile can be prevented.

7 Fig. 10 is a schematic flowchart showing establishment of a profile on the terminal according to an embodiment of the present invention.

With reference to 7 For example, in step S701, the terminal may determine whether a profile is being downloaded. There are several ways to determine if a profile is being downloaded. First, the controller can automatically determine a new download of a profile. In this case, if there is no usage profile in the eUICC and if an IP network connectivity of the terminal is detected, a new download of a profile may be triggered. Alternatively, the user may personally determine a new download of a profile by a UI of the terminal.

Alternatively, the external UI located on the outside of the terminal may transmit a profile download command to the controller. In this case, the external UI refers to a UI software of another terminal connected to the terminal through USB cable, Bluetooth, WiFi or the like.

When a download of a profile is determined, the controller of the terminal may create a virtual SMS to initiate a reception of a profile in step S702. This creation of the virtual SMS can be called an SMS emulation. In particular, the SMS emulation is used to create an SMS in the controller instead of SM-SR and SMSC to convert it into the form of an ENVELOPE (SMS-PP DOWNLOAD) C-APDU to update the ENVELOPE (SMS-PP DOWNLOAD) C- To transmit APDU to the modem (ie the communication unit) through the AT command and allow the modem to transmit it to the eUICC. After completing the SMS emulation, the terminal's eUICC can certify and decrypt the SMS. In step S703, if the data field of the certified SMS contains the IP address of the profile management server, the eUICC can access the profile management server based on the contained information such as the IP address of the profile management server. Otherwise, the eUICC can access the profile management server using the IP address stored in the eUICC. In step S704, the eUICC may start a session for OTA with the profile management server and send a request message for downloading a profile to the profile management server.

8th FIG. 10 is a schematic flowchart showing provisioning of a profile in a profile management server according to an embodiment of the present invention. FIG.

With reference to 8th At step S801, the profile management server may determine whether a profiling request message (that is, profiler request) is present from the profile provisioning server.

If there is a profiler request in step S801, the profile management server may store in step S802 terminal EID information received from the profile provisioning server and be on standby. In addition, the profile management server can save a profile created by the profile deployment server. However, the profile management server can receive the created profile from the profile provisioning server when the first-time profile request is received, or later receive the profile when a profile profile download request is transmitted to the profile delivery server if the request to download a profile from the eUICC exists is.

In step S803, the profile management server may determine whether there is a request to download a profile (that is, profile D / L request) from the eUICC of the terminal. If there is no profile D / L request from the eUICC, the profile management server is in standby since the profile D / L request has not yet been triggered on the terminal.

If the profile D / L request from the eUICC of the terminal exists, the profile management server may set up the secure channel with the eUICC in step S804, and in step S805, a profile received from the profile provisioning server and stored by the profile provisioning server or alternatively in real time is sent to the eUICC.

Incidentally, the profile D / L request may first arrive from the terminal's eUICC in step S806, although there is no profiling request from the profile providing server in step S801. According to an embodiment of this invention, since the terminal autonomously determines triggering for downloading a profile without being dependent on SMS, the profile management server may not yet contain information about the profile, even though the profile D / L request for download a profile arrives.

If there is no profile D / L request from the terminal's eUICC, the profile management server may set up the secure channel with the terminal's eUICC in step S807, even before the created profile or profiler request arrives from the profile provisioning server. If such a channel is not established first, a periodic profile D / L request may come from the terminal and, accordingly, a delay may occur. It is therefore desirable for the profile management server to establish the secure channel with the terminal's eUICC, even before the created profile or profiler request arrives from the profile provisioning server.

After establishing the channel, the profile management server may determine in step S808 whether there is a created profile or the profiler request from the profile provisioning server. If there is no created profile or profiler request, the profile management server may be on standby.

Thereafter, when the created profile or the profile request is transmitted from the profile providing server to the profile management server, the profile management server may send the received profile to the eUICC in step S805 since the secure channel has already been established between the eUICC and the profile management server in step S807.

9A and 9B 12 are schematic diagrams showing an overall message flow between respective modules for establishing a profile according to an embodiment of the present invention.

With reference to 9A and 9B When the terminal attempts to download a profile, the profile may already have been created and therefore related information may already be the profile manager 950 (that is, SM-SR) have been transferred, or the profile may not yet be created. In the first case, downloading a profile is immediately possible. In the latter case, it is necessary to wait for the profile to be created.

According to one embodiment of this invention, when downloading a profile, the UI is possible 910 the user terminal to provide information from which MNO a profile for download to the profile manager 950 is created. Therefore, the user can determine if the profile is being downloaded.

According to one embodiment of this invention, if no preparation of a profile in the SM-SR 950 if the terminal makes a request to download a profile, it is possible to terminate the procedure for downloading a profile by terminating a communication session between the terminal and the profile manager. Alternatively, it is possible to maintain the communication session and download a profile as soon as the profile is prepared in the profile manager.

In this case, the user may be able to through the UI 910 the terminal to determine whether the communication session between the terminal and the profile manager is terminated. Alternatively, based on predefined settings, the terminal can autonomously determine whether the session is terminated without asking the user.

In the following, the above-mentioned embodiments will be described in detail with reference to FIG 9A and 9B described.

In step S901, the terminal may determine whether to automatically download a profile. This step will be in 10 described in more detail.

The control 920 may request an EID request in step S902 to the eUICC 930 send and the eUICC 930 can the controller 920 provide an EID in step S903. The eUICC 930 includes at least one of a non-removable (eg, embedded) security module or removable security module. The eUICC 930 includes a chip-like security module.

Incidentally, in step S904, the MNO sends 970 the profiler request, including EID and ICCID information, to the profile provider 960 , Then the profile provider 960 That is, the profile provisioning server to create a profile in step S905. Additionally, in step S906, the profile provider 960 the profiler request sent by the MNO 970 to the profile manager 950 that is, to the profile management server.

In step S907, the profile manager 950 store the EID and ICCID and be on standby until a request to download a profile is received by the terminal.

In step S908, the controller may 920 ask for a preparation to download a profile for an EID by adding an EID value to the profile manager 950 sends. In step S909, the profile manager sends 950 an answer to the control 920 , If a download of a profile is prepared, an ICCID value of the prepared profile can be used for control 920 be sent.

In addition, if the download of a profile is prepared, the controller can 920 in step S911, allow the user through the UI 910 to determine whether the prepared profile is being downloaded, or to execute a direct procedure for downloading a profile in step S914. If downloading a profile is not prepared, the controller can 920 a message request to the profile manager 950 in step S920 and wait in step S922 or immediately terminate a procedure for downloading a profile. Above, the message request is for receiving a message from the profile manager 950 and triggering a request to download a profile when downloading a profile to the profile manager 950 is prepared. If downloading a profile is unprepared, a determination as to whether to wait for a message or to terminate the procedure immediately may follow a predefined logic in the controller 920 or in response to user selection by the UI 910 in step S912.

Referring again to step S914, the controller may 920 a trigger to download a profile to the eUICC 930 send. This embodiment may use a SMS emulation as the triggering process or define a new APDU command.

The eUICC 930 the profile D / L request may be made to the profile manager in step S915 950 send and then the profile manager 950 the same profile D / L request in step S916 to the profile provider 960 transfer.

In step S917, the OTA session for downloading a profile between the eUICC 930 and the profile manager 950 set up. The eUICC 930 can be a profile from the profile manager 950 download, if the profile with the profile manager 950 saved or from the profile provider 960 by the profile manager 950 if the profile is not with the profile manager 950 is stored.

In step S918, the eUICC 930 Determine if downloading a profile is successful. With reference to 9B can the controller 920 in step S920, a profile message request to the profile manager 950 send to the profile manager 950 to report that the terminal has already performed a profile downloading process and is ready to immediately perform a download when a profile is prepared. In step S921, the profile manager 950 an answer (ACK) to the controller 920 send. In step S922, the controller receives 920 the ACK and wait.

Steps S923 to S925 are the same as steps S904 to S906 discussed above, so that their detailed description is omitted.

In step S926, the profile manager 950 a profile preparation message for the waiting control 920 send. Then the controller 920 optionally receive a user approval in step S927 and trigger a download of a profile in step S928. The following steps to download a profile from the eUICC 930 are the same as steps S915 to S917 discussed above, so that their detailed description is omitted.

10 FIG. 10 is a schematic flowchart showing determining automatic download of a profile in a controller. FIG.

With reference to 10 can the controller 1000 in step S1000, determine whether an option to automatically download a profile is executed

If this option is not executed, a manual procedure for downloading a profile may be executed in step S1020, if necessary later.

When auto-downloading a profile is performed in step S1000, the controller sends 1000 a message requesting a saved profile list to the eUICC 1010 , The eUICC 1010 includes at least one of a non-removable (eg, embedded) security module or removable security module. The eUICC 1010 includes a chip-like security module. If the saved profile list is from the eUICC 1010 is received in step S1002, the controller may 1000 In step S1010, determine whether profile types in the profile list include the usage profile indicating a particular profile of a mobile network to which the user has connected.

That is, the controller 1000 can make a request for a list of created profiles to the eUICC 1010 and check the number of profiles with the type of usage profile based on the received profile list. If this number is zero, the controller can 1000 start a profile download procedure by judging that Downloading a new profile is necessary. If a usage profile of an MNO the user has connected to is in the eUICC 1010 is present, the controller can 1000 determine not to perform a download of a profile. If no usage profile exists, the controller can 1000 in step S1030, determine whether the terminal can access the IP network.

If there is IP connectivity, namely if access to the profile management server through the IP network is possible, the controller starts 1000 in step S1031, a procedure for downloading a profile.

If there is no IP connectivity, the controller can 1000 do not start an automatic procedure for downloading a profile in step S1020 and then trigger a manual download of a profile, if needed later.

11 Fig. 10 is a schematic diagram showing a procedure for downloading a profile according to a selection by the user when preparing to download a profile in a profile management server.

With reference to 11 it is necessary to pre-allocate information in a storage unit of the terminal 1101 in which an ICCID prefix is assigned to an MNO name. Further, the controller receiving an ICCID value must change the received ICCID value into an MNO name by referring to the mapping information 1101 convert. In another embodiment, such mapping information may be stored in each external server and the controller may send the ICCID value to the external server and receive the MNO name from the external server. In another embodiment, the SM-SR may convert the ICCID value to the MNO name and transmit the MNO name to the controller. Additionally, in step S1100, the UI may provide MNO name mapping information to the user and inform the user that the MNO A profile is ready for download. Then, a procedure for downloading a profile may be performed depending on a selection by the user.

12 Fig. 12 is a schematic diagram showing a procedure for performing SMS emulation in a controller according to the present invention.

As before in 4 the mobile network can send an SMS and the modem of the terminal receiving the SMS can convert it into an ENVELOPE (SMS-PP DOWNLOAD) C-APDU and transmit it to the eUICC. Alternatively, the controller 1200 of the terminal in step S1201 create an SMS instead of the SM-SR and SMSC and convert it into the form of an ENVELOPE (SMS-PP DOWNLOAD) C-APDU. Then the controller 1200 the ENVELOPE (SMS-PP DOWNLOAD) C-APDU to the modem 1210 (ie the communication unit) by the AT command in step S1202 and the modem 1210 can she become eUICC 1220 transfer. The eUICC 1220 includes at least one of a non-removable (eg, embedded) security module or removable security module. The eUICC 1220 includes a chip-like security module.

With reference to 12 can the controller 1200 of the terminal generally as a key value for SMS certification and encryption, use a key-value used by the SM-SR for OTA. In this case, it is desirable that SPI b4b5 be set to 00, so that no error is caused due to a failure in the meter verification. In addition, in this embodiment, the OTA code value is stored in 0x01 out of a total of fifteen key version numbers, 0x01~0x0F, which can store the OTA code value in the eUICC.

In step S1203, the modem 1210 Receiving the SMS, the SMS to the eUICC 1220 in the form of a C-APDU packet, which is incorporated into the ISO-7816 Standards is defined. The C-APDU is referred to for this purpose as ENVELOPE (SMS-PP DOWNLOAD) and defined for triggering the OTA session using an SMS in the 3GPP standards.

In step S1204, the eUICC wins 1220 , who receives the ENVELOPE (SMS-PP DOWNLOAD) C-APDU, the SMS by analyzing the C-APDU and decrypts the data field of the SMS with their own OTA code.

The decrypted data may include the IP address of the SM-SR server and a KVN value of the OTA code value for setting up the OTA session with the SM-SR server. To set up the OTS session with the SM-SR 1230 under its use, the eUICC 1220 the OPEN CHANNEL R-APDU to the modem in step S1205 1210 send.

Therefore, the OTA session is established between the eUICC and the SM-SR server in step S1206 and the eUICC loads a profile through that session in step S1207 down. The OTA session can be KVN = 0x01 ( 1250 ), which is the same as that typically used to encrypt the SMS.

13 Fig. 12 is a schematic diagram showing an SMS emulation using the KVN which is not the OTA code used in the SM-SR between a controller and an eUICC.

Even though 13 0x0F is used as an exemplary value of the KVN that exists between the eUICC 1320 and the controller 1300 This is only an example and should not be construed as a limitation. The eUICC 1320 includes at least one of a non-removable (eg, embedded) security module or removable security module. The eUICC 1320 includes a chip-like security module. While in one embodiment, the in 12 In general, the controller of the terminal generally uses an OTA code KVN = 0x01 value, which is used between the SM-SR server and the eUICC, in one embodiment, which is described in U.S. Patent Nos. 5,966,774 13 a new key value corresponding to a new KVN = 0 × 0F ( 1370 ), and stored between the controller 1300 and the eUICC 1310 be shared. This key value can be used for the SMS data encryption controller and for the eUICC to certify and decrypt an SMS. At this time, how can 12 The control set the b4b5 bit of SPI in the SMS encryption header to 00, so that the eUICC 1320 can not run a counter check, or can put b4b5 on 01/10/11, which is an option that controls 1300 and the eUICC 1320 manage each other and check each other.

By the way, shows 13 that the SM-SR 1330 also has a key value corresponding to KVN = 0 × 0F ( 1350 ). According to this embodiment, although the SM-SR need not have a key value KVN = 0 × 0F ( 1350 ), it is believed that the SM-SR 1330 Stores key values that correspond to all KVNs because it is a management server for the eUICC.

Except for the difference discussed above, steps S1301 to S1307 are the same as steps S1201 to S1207 in FIG 12 , Therefore, their detailed description is omitted.

14 12 is a schematic diagram showing an operation of an eUICC for rejecting a C-APDU (command APDU) for a security reason when the C-APDU sent to the eUICC of a terminal does not have a C-APDU for triggering an OTA session is.

If the C-APDU sent to the eUICC 1420 is protected with a key value KVN = 0 × 0F ( 1450 ), namely, when the eUICC knows the C-APDU to initiate an OTA session, since the C-APDU is protected with a KVN = 0x0F key value that it uses in common with the terminal controller and not with a KVN = 0x 01 key value, which it shares with the profile manager, a security mechanism can be added in which the eUICC rejects a received C-APDU that is not a C-APDU for triggering an OTA session. That is, the steps S1401 to S1404 may be the same as the steps S1301 to S1304 in FIG 13 and in step S1405, the eUICC 1420 determine if the received C-APDU is an OTA triggering format. If it is not a suitable C-APDU, the eUICC 1420 reject the creation of an OTA session in step S1406. In the case of a C-APDU for OTA triggering, steps S1407 to S1409 are performed. These steps are the same as steps S1305 to S1307 in FIG 13 so that their detailed description is omitted. The eUICC 1420 includes at least one of a non-removable (eg, embedded) security module or removable security module. The eUICC 1420 includes a chip-like security module.

When a KVN = 0 × 0F key value used in the controller is subjected to hacking, a scheme similar to that used in the embodiment of FIG 14 is proposed to prevent a task, such as read / write file values in the eUICC, from being executed using the exposed key value. Therefore, this embodiment can further increase safety in comparison with previous embodiments.

15 Figure 12 is a schematic diagram showing triggering of an OTA session using a newly defined C-APDU between a controller and an eUICC.

While in the embodiments of 12 to 14 the controller provides an SMS emulation as if the modem received an SMS from the network defined in this embodiment of FIG 15 the eUICC 1520 the C-APDU for an initiation of an OTA session. The eUICC 1520 includes at least one of a non-removable (eg, embedded) security module or removable security module. The eUICC 1520 includes a chip-like security module. Further, the controller creates 1500 in step S1501, such a newly defined C-APDU and sends it to the eUICC to start the OTA session. Parameters of the C-APDU may include an IP address of the OTA server, a KVN for determining what value is used for an encryption key used in a communication with the OTA server, and the like.

That is, the C-APDU for initiating an OTA session will be in 15 redefined and steps S1503 to S1505 after triggering are the same as steps S1305 to S1307 in FIG 13 , Therefore, their detailed description is omitted.

16 is a schematic diagram showing certification and encryption in a communication between a controller and SM-SR.

With reference to 16 There are three options (ie Option # 1, # 2 and # 3) of certification and encryption between the controller 1610 and the profile management server 1620 ,

Option # 1 is to create a message authentication code for a message created by the controller with a key value equal to KVN = 0x0F and stored in the controller and to verify it at the SM-SR server. If authentication of the SM-SR server and encryption of a message are required, a message can be sent and received between the controller and the SM-SR server as soon as the HTTPS session using a SM Certification (PM Cert) -SR server is set up.

Option # 2 is to perform mutual authentication between the terminal and the server using a KVN = 0x01 key value shared between the eUICC and the SM-SR server and to enforce security for a message by use from CK, IK key-values created at this time.

In option # 3, the eUICC creates a signature value using eUICC certification stored in the eUICC, and the controller inserts the signature value into a message to be sent to the SM-SR server. By verifying the signature value, the M-SR server can confirm that the message is being sent by the correct terminal in which the eUICC resides. If authentication of the SM-SR server and encryption of a message are required, a message can be sent and received between the controller and the SM-SR server as soon as the HTTPS session using a SM Certification (PM Cert) -SR server is built.

17A and 17B Fig. 10 are schematic diagrams showing an entire procedure for performing a download of a profile using a UI.

With reference to 17A For example, the UI may be included in the terminal with the controller or included in any other terminal connected to the terminal through WiFi, Bluetooth, USB cable or the like. In step S1701, the initiation of downloading a profile in response to an input of the user on the UI is performed without depending on an algorithm of the controller. Other steps from 17A and 17B are the same as discussed in previous embodiments.

That is, with the exception of S1701, the other steps are the same as the steps of S902 in FIG 9A and 9B , Therefore, their detailed description is omitted.

18 Fig. 12 is a schematic diagram showing a procedure for requesting a profile list at the eUICC using a UI.

With reference to 18 In step S1800, the UI 1800 Send a profile list request to the controller. Likewise, in step S1801, the controller 1810 the received profile request to the eUICC 1820 transfer.

In step S1802, the eUICC 1820 a previously saved profile list for control 1810 in response to the request received. In step S1803, the controller may 1810 transfer the received profile list to the UI. In step S1804, the UI 1800 Display the received profile list to the user and wait for an input from the user. If an input of the user is a request to download a profile in step S1805, the UI 1800 the request message to download a profile to the controller 1810 in step S1806.

19 Fig. 12 is a schematic diagram showing a screen displaying to a user a profile list received from the eUICC and offering a menu that allows the user to start downloading a new profile.

With reference to 19 If the UI finds an MNO name from an ICCID value and outputs it on the screen, the user can decide whether to download a profile of a new MNO. The mapping information discussed above may be used to determine the MNO name from the ICCID value. This allocation information may be stored in the storage unit of the terminal or any external server located on the outside of the terminal. To determine the MNO name, the UI or the Control win the MNO name from the storage unit or the like.

20 is a schematic block diagram showing a simplified structure of a terminal (eg 600 in 6 ) for performing a profiling device according to an embodiment of the present invention.

With reference to 20 can the terminal 2000 this invention the eUICC 2010 , the control unit 2020 and the communication unit 2030 contain.

The eUICC 2010 that are electrically connected to the control unit 2020 can set up a profile by downloading a profile using OTA technology. The eUICC 2010 includes at least one of a non-removable (eg, embedded) security module or removable security module. The eUICC 2010 includes a chip-like security module.

The control unit 2020 can generate information to trigger the reception of the profile. The generated information includes at least one of a short message service virtual (SMS) or a new command.

In addition, the control unit 2020 a trigger to download the profile containing the information to the EUICC 2010 send.

In addition, the control unit 2020 autonomously determine to download a new profile and / or may issue a command to download the new profile from at least one user interface of the terminal 2000 or an external device located outside the terminal 2000 is received (refer to FIG 605 and 607 in 6 ) and then can create the information

In addition, the control unit 2020 that are electrically connected to the eUICC 2010 and the communication unit 2030 connected, an identifier of the eUICC 2010 identify.

Before downloading the profile, the control unit can 2020 identify if a profile management server (eg 612 in 6 ) has finished preparing to download a profile. For example, the control unit 2020 using the communication unit 2030 a preparation request to download a profile containing the identifier of the eUICC 2010 to send to the profile management server. The control unit 2020 may, using the communication unit, receive a response to the pre-requisition request to download a profile containing an identifier of the profile from the profile management server.

The eUICC 2010 For example, the trigger signal for downloading a profile containing the information may be from the control unit 2010 receive.

Additionally, the eUICC 2010 access a profile management server and profile based on the information using the communication unit 2030 receive and set up the received profile. For example, the eUICC 2010 , using the communication unit 2030 , send a request to download a profile to the Profile Management Server based on the received information. The eUICC 2010 can, using the communication unit 2030 , download the profile from the profile management server and set up the received profile.

The control unit 2020 and the eUICC 2010 can store and use an authentication key. For example, the control unit 2020 Generally, use the authentication key that is between the profile management server and the eUICC 2010 is used, or the control unit 2020 can use the authentication key with the eUICC 2010 regardless of the profile management server.

The control unit 2020 can encrypt the information using the stored authentication key. The eUICC 2010 can be from the control unit 2020 certify and decrypt received information with the stored authentication key. Additionally, the eUICC 2010 determining whether the authentication key of the terminal used to create the information is the same as the authentication key previously used in the eUICC 2010 and also check a counter included in the information.

In this case, if the authentication key of the terminal 2000 that is used to create the information that is the same as the authentication key previously used in the eUICC 2010 saved, the eUICC 2010 certify the information independently of a counter value.

The eUICC 2010 can, using the communication unit 2030 Access to the profile management server based on an IP-based communication network. For example, the eUICC 2010 , using the communication unit 2030 , send a request to download a profile to the profile management server based on the IP-based communication network.

The eUICC 2010 can access the profile management server based on the IP address that is included in the information provided by the control unit 2020 created and / or in the eUICC 2010 and then receive the profile from the profile management server.

21 is a schematic block diagram illustrating a simplified structure of a profile management server (eg 612 in 6 ) for providing a profile according to an embodiment of the present invention.

With reference to 21 can be the profile management server 2100 the communication unit 2101 and the control unit 2102 contain.

The communication unit 2101 can be the profile management server 2100 connect with any kind of external facilities. In this invention, the profile management server 2100 with the profile deployment server (eg 611 in 6 ) and the terminal (eg 600 in 6 ).

The control unit 2102 which are electrically connected to the communication unit 2101 connected, using the communication unit 2101 receive a profile preparation request message from a profile provisioning server that creates the profile.

The control unit 2102 may determine whether a request to download a profile from an eUICC of the terminal using the communication unit 2101 Will be received. When the request to download a profile is received by the eUICC of the terminal, the control unit may 2102 , using the communication unit 2101 to send the profile in response to the request to the eUICC of the terminal.

The control unit 2102 can have different parts in the profile management server as well as in the communication unit 2101 Taxes.

The control unit 2102 can, using the communication unit 2101 , receive a saved profile from the Profile Provisioning Server, save it, and be on standby.

Until the request to download a profile at the communication unit 2101 from the eUICC of the terminal arrives, the control unit 2102 a preparation request for downloading a profile containing an identifier of the eUICC (eg, EID) from the terminal using the communication unit 2101 receive. The control unit 2102 may be a response to the pre-requisite for downloading a profile containing an identifier of the profile (eg, ICCID) to the terminal using the communication unit 2101 send.

In addition, the control unit 2102 certifying the terminal by comparing an authentication key contained in the eUICC with an authentication key contained in the server and also establishing a communication channel for an OTA (Over The Air) session with the certified terminal.

According to various embodiments of this invention, the terminal with the eUICC may download the usage profile remotely without direct access to the mobile network when sending or receiving an IP packet such as Wi-Fi, Bluetooth, wired (or USB) cable or the like can be received.

In addition, according to various embodiments of this invention, the provisioning profile does not necessarily have to be mounted in the manufacture of the terminal with the eUICC. This reduces the prices of eUICC chips and devices.

Further, according to various embodiments of this invention, a manufacturing process and inventory management of the eUICC chip and terminal may also be simplified.

While this disclosure has been particularly shown and described with reference to an exemplary embodiment, it will be apparent to those skilled in the art that various changes in form and detail may be made therein without departing from the scope of this disclosure as defined by the appended claims.

QUOTES INCLUDE IN THE DESCRIPTION

This list of the documents listed by the applicant has been generated automatically and is included solely for the better information of the reader. The list is not part of the German patent or utility model application. The DPMA assumes no liability for any errors or omissions.

Cited non-patent literature

• ETSI TS 102.225 [0030]
• ETSI TS 102.225 [0077]
• ETSI TS 102.225 [0078]
• ISO-7816 [0080]
• ISO-7816 [0146]

Claims (14)

Terminal ( 2000 ), comprising: a communication unit ( 2030 ) configured to send and receive a signal; a control unit ( 2020 ) electrically connected to the communication unit ( 2030 ) and configured to generate information for triggering receipt of a profile; a universal integrated circuit card ( 2010 ) electrically connected to the control unit ( 2020 ) and is configured to: access a profile management server ( 2100 ) and receiving the profile based on the information using the communication unit ( 2030 ), and set up the received profile.  The terminal of claim 1, wherein the information comprises at least one of a virtual short message service (SMS) or a command. Terminal according to one of Claims 1 and 2, in which the universal integrated circuit board ( 2010 ) is configured to: receive a trigger signal for downloading a profile containing the information from the control unit ( 2020 ), and sending a request to download a profile to the Profile Management Server ( 2100 ) based on the received information using the communication unit ( 2030 ). Terminal according to one of claims 1 to 3, wherein the control unit ( 2020 ) for generating the information based on at least one of an autonomous determination of the control unit ( 2020 ) for downloading a new profile or receiving a command for downloading a new profile from at least one of a user interface of the terminal ( 2000 ) or an external device located on the outside of the terminal ( 2000 ) is configured. Terminal according to one of claims 1 to 4, wherein the control unit ( 2020 ) is further configured to: identify an identifier of the universal integrated circuit card ( 2010 ), Sending, using the communication unit ( 2030 ), a pre-requisition to download a profile containing the universal integrated circuit card identifier ( 2010 ) to the profile management server ( 2100 ), and receiving, using the communication unit ( 2030 ), a response to the pre-requisition to download a profile containing an identifier of the profile from the profile management server ( 2100 ). Terminal according to one of claims 1 to 5, wherein the control unit ( 2020 ) and the universal integrated circuit card ( 2010 ) store an authentication key and the control unit ( 2020 ) is further configured to encrypt the information using the authentication key; and the universal integrated circuit card ( 2010 ) is further configured to certify and decrypt the information using the authentication key. A terminal according to any one of claims 1 to 6, wherein the universal integrated circuit card ( 2010 ) for accessing, using the communication unit ( 2030 ), the profile management server ( 2100 ) is configured on the basis of an IP-based communication network. A terminal according to claim 7, wherein an IP address of the profile management server ( 2100 ) is included in the information and the universal integrated circuit card ( 2010 ) for accessing, using the communication unit ( 2030 ), the profile management server ( 2100 ) is configured based on the IP address. A terminal according to claim 7, wherein an IP address of the profile management server ( 2100 ) in the universal integrated circuit board ( 2010 ) and the universal integrated circuit card ( 2010 ) for accessing, using the communication unit ( 2030 ), the profile management server ( 2100 ) is configured based on the IP address. A terminal according to any one of claims 1 to 9, wherein the universal integrated circuit card ( 2010 ) physically in the terminal ( 2100 ) is embedded. Server ( 2100 ), comprising: a communication unit ( 2101 ) configured to send and receive a signal; and a control unit ( 2102 ) electrically connected to the communication unit ( 2101 ) and is configured to: receive, using the communication unit ( 2101 ), a profile preparation request from a profile provisioning server creating a profile, determining whether a request to download a profile from a universal integrated circuit card ( 2010 ) of a terminal ( 2000 ) using the communication unit ( 2101 ), and sending, using the communication unit ( 2101 ), the profile for the universal integrated circuit card ( 2010 ) of the terminal ( 2000 ) when the request to download a profile is received. Server according to claim 11, wherein the control unit ( 2102 ) is further configured to: receive, before receiving the request to download a profile from the universal integrated circuit card ( 2010 ) of the terminal ( 2000 ), a preparation request to download a profile containing an identifier of the universal integrated circuit card ( 2010 ), from the terminal ( 2000 ) using the communication unit ( 2101 ), and sending a response to the preliminary request for downloading a profile containing an identifier of the profile to the terminal ( 2000 ) using the communication unit ( 2101 ). Server according to one of claims 11 and 12, wherein the control unit ( 2102 ) for receiving, using the communication unit ( 2101 ), the request to download a profile from the universal integrated circuit card ( 2010 ) of the terminal ( 2000 ) is configured on the basis of an IP-based communication network. Server according to one of claims 11 to 13, wherein the universal integrated circuit card ( 2010 ) physically in the e terminal ( 2000 ) is embedded.

Images