WO2011128715A1 - Method and apparatus for secure element management - Google Patents

Method and apparatus for secure element management Download PDF

Info

Publication number
WO2011128715A1
WO2011128715A1 PCT/IB2010/000859 IB2010000859W WO2011128715A1 WO 2011128715 A1 WO2011128715 A1 WO 2011128715A1 IB 2010000859 W IB2010000859 W IB 2010000859W WO 2011128715 A1 WO2011128715 A1 WO 2011128715A1
Authority
WO
WIPO (PCT)
Prior art keywords
application
secure element
current active
message
status
Prior art date
Application number
PCT/IB2010/000859
Other languages
French (fr)
Inventor
Keld Stougaard
Original Assignee
Nokia Corporation
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Nokia Corporation filed Critical Nokia Corporation
Priority to PCT/IB2010/000859 priority Critical patent/WO2011128715A1/en
Priority to CN201080067262XA priority patent/CN102934123A/en
Priority to EP10849758.7A priority patent/EP2559273B1/en
Priority to US13/640,759 priority patent/US9420466B2/en
Publication of WO2011128715A1 publication Critical patent/WO2011128715A1/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/08Access security
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules
    • G06F21/6209Protecting access to data via a platform, e.g. using keys or access control rules to a single file or object, e.g. in a secure envelope, encrypted and accessed using a key, or with access control rules appended to the object itself
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W4/00Services specially adapted for wireless communication networks; Facilities therefor
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W4/00Services specially adapted for wireless communication networks; Facilities therefor
    • H04W4/50Service provisioning or reconfiguring
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W4/00Services specially adapted for wireless communication networks; Facilities therefor
    • H04W4/60Subscription-based services using application servers or record carriers, e.g. SIM application toolkits
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2147Locking files
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W48/00Access restriction; Network selection; Access point selection
    • H04W48/18Selecting a network or a communication service
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W76/00Connection management
    • H04W76/10Connection setup

Definitions

  • Embodiments of the present invention relate generally to mechanisms that support wireless communications, and, more particularly, relate to a method and apparatus for managing at least one secure element in a wireless communications device.
  • Wireless communications devices typically comprise a terminal and a secure element, such as the Subscriber Identity Module (SIM) card, or the Universal Integrated Circuit Card (UICC).
  • SIM Subscriber Identity Module
  • UICC Universal Integrated Circuit Card
  • an apparatus comprising at least one processor and at least one memory including computer program code, the at least one memory and the computer program code configured to, with the at least one processor, cause the apparatus to perform at least the following: receive at a terminal a refresh message sent by a secure element, wherein said refresh message comprises a request for a session reset in response to at least one value associated with a current active application on said secure element is changed; send by said terminal a status message to said secure element, wherein said status message notifies said current active application on said secure element that an application session reset procedure will be executed; and send by said terminal an application selection message to said secure element, wherein said application selection message instructs said secure element to reactivate said current active application with at least said new value.
  • a method comprising receiving at a terminal a refresh message sent by a secure element, wherein said refresh message comprises a request for a session reset in response to at least one value associated with a current active application on said secure element is changed; sending by said terminal a status message to said secure element, wherein said status message notifies said current active application on said secure element that an application session reset procedure will be executed; and sending by said terminal an application selection message to said secure element, wherein said application selection message instructs said secure element to reactivate said current active application with at least said new value.
  • a method comprising receiving at a terminal a refresh message sent by a secure element, wherein said refresh message comprises a request for a session reset in response to at least one value associated with a current active application on said secure element is changed; sending by said terminal a status message to said secure element, wherein said status message notifies said current active application on said secure element that an application session reset procedure will be executed; and sending by said terminal an application selection message to said secure element, wherein said application selection message instructs said secure element to reactivate said current active application with at least said new value.
  • an apparatus comprising at least one processor and at least one memory including computer program code the at least one memory and the computer program code configured to, with the at least one processor, cause the apparatus to perform at least the following: determine at a secure element that at least one value associated with a current active application on said secure element is changed; send by said secure element a refresh message to a terminal, wherein said refresh message comprises a request for a session reset in response to at least said one value associated with a current active application on said secure element is changed; receive a status message sent by said terminal, wherein said status message notifies to the said current active application on said secure element that an application session reset procedure will be executed; receive an application selection message sent by said terminal, wherein said application selection message instructs said secure element to reactivate said current active application with at least said new value; and reactivate at said secure element said current active application with at least said new value.
  • a method comprising determining at a secure element that at least one value associated with a current active application on said secure element is changed; sending by said secure element a refresh message to a terminal, wherein said refresh message comprises a request for a session reset in response to at least said one value associated with a current active application on said secure element is changed; receiving a status message sent by said terminal, wherein said status message notifies to the said current active application on said secure element that an application session reset procedure will be executed; receiving an application selection message sent by said terminal, wherein said application selection message instructs said secure element to reactivate said current active application with at least said new value; and reactivating at said secure element said current active application with at least said new value.
  • FIG. 1 illustrates a signaling diagram for managing secure element according to various example embodiments of the present invention
  • FIG. 2 illustrates an example method for managing secure element from the perspective of the terminal according to various example embodiments of the present invention
  • FIG. 3 illustrates an example method for managing secure element from the perspective of the secure element according to various example embodiments of the present invention
  • FIG. 4 illustrates a block diagram of an apparatus for managing secure element from the perspective of the terminal according to various example embodiments of the present invention.
  • FIG. 5 illustrates a block diagram of an apparatus for managing secure element from the perspective of the secure element according to various example embodiments of the present invention.
  • FIGURES 1 through 5 of the drawings An example embodiment of the present invention and its potential advantages are understood by referring to FIGURES 1 through 5 of the drawings.
  • FIG. 1 depicts a signaling diagram for managing secure element according to various example embodiments of the present invention.
  • FIG. 1 depicts signaling message exchange between a secure element 100 and a terminal 101.
  • the secure element 100 may be a Subscriber Identity Module (SIM) card, a Universal Integrated Circuit Card (UICC), and/or the like.
  • the terminal 101 may be any type of communication device that supports wireless communications, for example a Universal Mobile Telecommunications System (UMTS) mobile equipment, mobile station, fixed terminal, and/or the like.
  • UMTS Universal Mobile Telecommunications System
  • the secure element 100 is connected to the terminal 101 via an interface.
  • the current active application on the secure element is the Universal Subscriber Identity Module (USEM).
  • the value associated with the current active application on the secure element is the International Mobile Subscriber Identity (IMSl).
  • the IMSl needs to be changed if the network operator doesn't have network coverage in a specific region or country that the user is roaming.
  • the IMSl value may be change on the UICC internally or via over-the-air (OTA).
  • OTA over-the-air
  • the secure element 100 may be configured to generate and transmit a refresh message.
  • the refresh message is a refresh command of type 3G session reset.
  • the terminal 101 may be configured to generate and transmit a status message.
  • the status message is a status command.
  • the status command is of type session reset.
  • the Indication of application status, PI value in the status command is set as a value stating session reset.
  • the status command model is of type Universal Subscriber Identity Module (USIM) application session reset.
  • the terminal 101 may be configured to generate and transmit an application selection message.
  • the application selection message is a select command.
  • the application identifier (AID) in the select command is set as the application identifier value of the current active application on the UICC.
  • the application identifier value of the current active application is 7FFF.
  • the current active application with the new values remains activated on the secure element 100.
  • the Personal Identification Number (PEN) is not reset on the secure element 100. The user does not have to reenter the PIN.
  • FIGs. 2 and 3 illustrate flowcharts of example systems, methods, and/or computer program products according to example embodiments of secure element management. It will be understood that each block or operation of the flowcharts, and/or combinations of blocks or operations in the flowcharts, may be implemented by various means. Means for implementing the blocks or operations of the flowcharts, combinations of the blocks or operations in the flowchart, or other functionality of example embodiments of the present invention described herein may include hardware, and/or a computer program product including a computer-readable storage medium having one or more computer program code instructions, program instructions, executable computer-readable program code instructions stored therein, and/or the like.
  • FIG. 2 illustrates an example method for secure element management from the perspective of the terminal, such as the terminal 101 of FIG. 1.
  • the example method includes receiving at a terminal a refresh message sent by a secure element at 200.
  • the refresh message comprises a request for a session reset in response to at least one value associated with a current active application on said secure element is changed.
  • the refresh message is a refresh command of 3G session reset.
  • the example method further includes sending by said terminal a status message to said secure element at 210.
  • the status message notifies said current active application on said secure element that an application session reset procedure will be executed.
  • the status message is a status command of Universal Subscriber Identity Module application session reset.
  • the status command comprises an indication of application status PI .
  • the indication of application status PI is a value corresponding to Universal Subscriber Identity Module application session reset.
  • the example method further includes sending by said terminal an application selection message to said secure element at 220.
  • the application selection message instructs said secure element to reactivate said current active application with at least said new value.
  • the application selection message is a select command comprising an application identifier.
  • the application identifier is set as the application identifier value of the current active application on the secure element.
  • the current active application on the secure element is a Universal Subscriber Identity Module application.
  • the application identifier value of the current active application on the secure element is 7FFF.
  • FIG. 3 illustrates an example method for secure element management from the perspective of the secure element, such as the secure element 100 of FIG. 1.
  • the example method includes determining at a secure element that at least one value associated with a current active application on said secure element is changed at 300.
  • the current active application on the secure element is the Universal Subscriber Identity Module application.
  • the value associated with the current active application on the secure element is the International Mobile Subscriber Identity (IMSI).
  • IMSI International Mobile Subscriber Identity
  • the example method further includes sending by said secure element a refresh message to a terminal at 310.
  • the refresh message comprises a request for a session reset in response to at least said one value associated with a current active application on said secure element is changed.
  • the refresh message is a refresh command of 3G session reset.
  • the example method further includes receiving a status message sent by said terminal at 320.
  • the status message notifies to the said current active application on said secure element that an application session reset procedure will be executed.
  • the status message is a status command of Universal Subscriber Identity Module application session reset.
  • the status command comprises an indication of application status PI .
  • the indication of application status PI is a value corresponding to Universal Subscriber Identity Module application session reset.
  • the example method further includes receiving an application selection message sent by said terminal at 330.
  • the application selection message instructs said secure element to reactivate said current active application with at least said new value.
  • the application selection message is a select command comprising an application identifier.
  • the application identifier is set as the application identifier value of the current active application on the secure element.
  • the current active application on the secure element is a Universal Subscriber Identity Module application.
  • the application identifier value of the current active application on the secure element is 7FFF.
  • FIG. 4 illustrates a block diagram of an apparatus 400 for managing secure element from the perspective of the terminal according to various example embodiments of the present invention.
  • the apparatus 400 includes at least one processor 405, at least one memory 410, and at least one communication interface 415.
  • Apparatus 400 may, be embodied as, or included as a component of, a communications device with wired or wireless communications capabilities.
  • the apparatus 400 may be part of a communications device, such as a stationary or a mobile communications terminal.
  • a stationary communications terminal the apparatus 400 may be part of, or embodied as, a server, a computer, an access point (e.g., base station), communications switching device, or the like.
  • the apparatus 400 may be a mobile and/or wireless communications node such as, for example, a mobile and/or wireless server, computer, access point, communications switching device, handheld device (e.g., telephone, portable digital assistant (PDA), mobile television, gaming device, camera, video recorder, audio/video player, radio, and/or a global positioning system (GPS) device), any combination of the aforementioned, or the like.
  • PDA portable digital assistant
  • GPS global positioning system
  • apparatus 400 may also include computing capabilities.
  • the example apparatus 400 includes or is otherwise in communication with a processor 405, a memory 410, and a communications interface 415.
  • the processor 405 may be embodied as various means for implementing the various functionalities of example embodiments of the present invention including, for example, a microprocessor, a coprocessor, a controller, a special- purpose integrated circuit such as, for example, an ASIC (application specific integrated circuit), an FPGA (field programmable gate array), or a hardware accelerator, processing circuitry or the like.
  • processor 405 may be representative of a plurality of processors, or one or more multiple core processors, operating in concert.
  • the processor 405 may be comprised of a plurality of transistors, logic gates, a clock (e.g., oscillator), other circuitry, and the like to facilitate performance of the functionality described herein.
  • the processor 405 may, but need not, include one or more accompanying digital signal processors.
  • the processor 405 is configured to execute instructions stored in the memory 410 or instructions otherwise accessible to the processor 405.
  • the processor 405 may be configured to operate such that the processor causes the apparatus 400 to perform various functionalities described herein.
  • the processor 405 may be an entity capable of performing operations according to embodiments of the present invention while configured accordingly.
  • the processor 405 is specifically configured hardware for conducting the operations described herein.
  • the instructions specifically configure the processor 405 to perform the algorithms and operations described herein.
  • the processor 405 is a processor of a specific device (e.g., a communications server) configured for employing example embodiments of the present invention by further configuration of the processor 405 via executed instructions for performing the algorithms, methods, and operations described herein.
  • a specific device e.g., a communications server
  • the memory 410 may be one or more computer-readable storage media that may include volatile and/or non-volatile memory.
  • the memory 410 includes Random Access Memory (RAM) including dynamic and/or static RAM, on-chip or off-chip cache memory, and/or the like.
  • RAM Random Access Memory
  • memory 410 may include non-volatile memory, which may be embedded and/or removable, and may include, for example, read-only memory, flash memory, magnetic storage devices (e.g., hard disks, floppy disk drives, magnetic tape, etc.), optical disc drives and/or media, non-volatile random access memory (NVRAM), and/or the like.
  • Memory 410 may include a cache area for temporary storage of data. In this regard, some or all of memory 410 may be included within the processor 405.
  • the memory 410 may be configured to store information, data, applications, computer-readable program code instructions, and/or the like for enabling the processor 405 and the example apparatus 400 to carry out various functions in accordance with example
  • the memory 410 could be configured to buffer input data for processing by the processor 405. Additionally, or alternatively, the memory 410 may be configured to store instructions for execution by the processor 405.
  • the communications interface 415 may be any device or means embodied in either hardware, a computer program product, or a combination of hardware and a computer program product that is configured to receive and/or transmit data from/to a secure element 420 and/or any other device or module in communication with the example apparatus 400.
  • the communications interface may be configured to communicate information via any type of wired or wireless connection, and via any type of communications protocol, such as communications protocol that support communications between terminals and secure elements.
  • Processor 405 may also be configured to facilitate communications via the communications interface 415 by, for example, controlling hardware included within the communications interface 415.
  • the communications interface 415 may include, for example, communications driver circuitry (e.g., circuitry that supports wired communications), one or more antennas, a transmitter, a receiver, a transceiver and/or supporting hardware, including, for example, a processor for enabling communications.
  • communications driver circuitry e.g., circuitry that supports wired communications
  • FIG. 5 illustrates a block diagram of an apparatus 500 for managing secure element from the perspective of the secure element according to various example embodiments of the present invention.
  • the apparatus 500 includes at least one processor 505, at least one memory 510, and at least one communication interface 515.
  • Apparatus 500 may, be embodied as, or included as a component of, a secure element device with wired or wireless communications capabilities.
  • the apparatus 500 may be part of a secure element device, such as a smart card. Regardless of the type of secure element device, apparatus 500 may also include computing capabilities.
  • the example apparatus 500 includes or is otherwise in communication with a processor 505, a memory 510, and a communications interface 515.
  • the processor 505 may be embodied as various means for implementing the various functionalities of example embodiments of the present invention including, for example, a microprocessor, a coprocessor, a controller, a special- purpose integrated circuit such as, for example, an ASIC (application specific integrated circuit), an FPGA (field programmable gate array), or a hardware accelerator, processing circuitry or the like.
  • processor 505 may be representative of a plurality of processors, or one or more multiple core processors, operating in concert.
  • the processor 505 may be comprised of a plurality of transistors, logic gates, a clock (e.g., oscillator), other circuitry, and the like to facilitate performance of the functionality described herein.
  • the processor 505 may include one or more accompanying digital signal processors.
  • the processor 505 is configured to execute instructions stored in the memory 510 or instructions otherwise accessible to the processor 505.
  • the processor 505 may be configured to operate such that the processor causes the apparatus 500 to perform various functionalities described herein.
  • the processor 505 may be an entity capable of performing operations according to embodiments of the present invention while configured accordingly.
  • the processor 505 is specifically configured hardware for conducting the operations described herein.
  • the instructions specifically configure the processor 505 to perform the algorithms and operations described herein.
  • the processor 505 is a processor of a specific device (e.g., a smart card) configured for employing example embodiments of the present invention by further configuration of the processor 505 via executed instructions for performing the algorithms, methods, and operations described herein.
  • a specific device e.g., a smart card
  • the memory 510 may be one or more computer-readable storage media that may include volatile and/or non-volatile memory.
  • the memory 510 includes Random Access Memory (RAM) including dynamic and/or static RAM, on-chip or off-chip cache memory, and/or the like.
  • RAM Random Access Memory
  • memory 510 may include non-volatile memory, which may be embedded and/or removable, and may include, for example, read-only memory, flash memory, magnetic storage devices (e.g., hard disks, floppy disk drives, magnetic tape, etc.), optical disc drives and/or media, non-volatile random access memory (NVRAM), and/or the like.
  • Memory 510 may include a cache area for temporary storage of data. In this regard, some or all of memory 510 may be included within the processor 505.
  • the memory 510 may be configured to store information, data, applications, computer-readable program code instructions, and/or the like for enabling the processor 505 and the example apparatus 500 to carry out various functions in accordance with example
  • the memory 510 could be configured to buffer input data for processing by the processor 505. Additionally, or
  • the memory 510 may be configured to store instructions for execution by the processor 505.
  • the communications interface 515 may be any device or means embodied in either hardware, a computer program product, or a combination of hardware and a computer program product that is configured to receive and/or transmit data from/to a terminal 520 and/or any other device or module in communication with the example apparatus 500.
  • the communications interface may be configured to communicate information via any type of wired or wireless connection, and via any type of communications protocol, such as communications protocol that support communications between terminals and secure elements.
  • Processor 505 may also be configured to facilitate communications via the communications interface 515 by, for example, controlling hardware included within the communications interface 515.
  • the communications interface 515 may include, for example, communications driver circuitry (e.g., circuitry that supports wired communications), one or more antennas, a transmitter, a receiver, a transceiver and/or supporting hardware, including, for example, a processor for enabling communications.
  • communications driver circuitry e.g., circuitry that supports wired communications
  • the different functions discussed herein may be performed in a different order and/or concurrently with each other. Furthermore, if desired, one or more of the above- described functions may be optional or may be combined.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Theoretical Computer Science (AREA)
  • General Health & Medical Sciences (AREA)
  • Bioethics (AREA)
  • Computer Hardware Design (AREA)
  • Software Systems (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Health & Medical Sciences (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

In accordance with an example embodiment of the present invention, a method comprises receiving at a terminal a refresh message sent by a secure element, wherein said refresh message comprises a request for a session reset in response to at least one value associated with a current active application on said secure element is changed. The method further comprises sending by said terminal a status message to said secure element, wherein said status message notifies said current active application on said secure element that an application session reset procedure will be executed. The method further comprises sending by said terminal an application selection message to said secure element, wherein said application selection message instructs said secure element to reactivate said current active application with at least said new value.

Description

METHOD AND APPARATUS FOR SECURE ELEMENT MANAGEMENT
TECHNICAL FIELD
Embodiments of the present invention relate generally to mechanisms that support wireless communications, and, more particularly, relate to a method and apparatus for managing at least one secure element in a wireless communications device.
BACKGROUND
Wireless communications devices typically comprise a terminal and a secure element, such as the Subscriber Identity Module (SIM) card, or the Universal Integrated Circuit Card (UICC). The interface between the UICC and the terminal is described in European
Telecommnications Standards Institute (ETSI) Technical Specification (TS) 102.221 V5.10.0 "Smart cards: UICC-Terminal interface; Physical and logical characteristics (Release 5)".
SUMMARY
Various aspects of examples of the invention are set out in the claims.
According to a first aspect of the present invention, an apparatus comprising at least one processor and at least one memory including computer program code, the at least one memory and the computer program code configured to, with the at least one processor, cause the apparatus to perform at least the following: receive at a terminal a refresh message sent by a secure element, wherein said refresh message comprises a request for a session reset in response to at least one value associated with a current active application on said secure element is changed; send by said terminal a status message to said secure element, wherein said status message notifies said current active application on said secure element that an application session reset procedure will be executed; and send by said terminal an application selection message to said secure element, wherein said application selection message instructs said secure element to reactivate said current active application with at least said new value.
According to a second aspect of the present invention, a method comprising receiving at a terminal a refresh message sent by a secure element, wherein said refresh message comprises a request for a session reset in response to at least one value associated with a current active application on said secure element is changed; sending by said terminal a status message to said secure element, wherein said status message notifies said current active application on said secure element that an application session reset procedure will be executed; and sending by said terminal an application selection message to said secure element, wherein said application selection message instructs said secure element to reactivate said current active application with at least said new value.
According to a second aspect of the present invention, a method comprising receiving at a terminal a refresh message sent by a secure element, wherein said refresh message comprises a request for a session reset in response to at least one value associated with a current active application on said secure element is changed; sending by said terminal a status message to said secure element, wherein said status message notifies said current active application on said secure element that an application session reset procedure will be executed; and sending by said terminal an application selection message to said secure element, wherein said application selection message instructs said secure element to reactivate said current active application with at least said new value.
According to a third aspect of the present invention, an apparatus comprising at least one processor and at least one memory including computer program code the at least one memory and the computer program code configured to, with the at least one processor, cause the apparatus to perform at least the following: determine at a secure element that at least one value associated with a current active application on said secure element is changed; send by said secure element a refresh message to a terminal, wherein said refresh message comprises a request for a session reset in response to at least said one value associated with a current active application on said secure element is changed; receive a status message sent by said terminal, wherein said status message notifies to the said current active application on said secure element that an application session reset procedure will be executed; receive an application selection message sent by said terminal, wherein said application selection message instructs said secure element to reactivate said current active application with at least said new value; and reactivate at said secure element said current active application with at least said new value.
According to a fourth aspect of the present invention, a method comprising determining at a secure element that at least one value associated with a current active application on said secure element is changed; sending by said secure element a refresh message to a terminal, wherein said refresh message comprises a request for a session reset in response to at least said one value associated with a current active application on said secure element is changed; receiving a status message sent by said terminal, wherein said status message notifies to the said current active application on said secure element that an application session reset procedure will be executed; receiving an application selection message sent by said terminal, wherein said application selection message instructs said secure element to reactivate said current active application with at least said new value; and reactivating at said secure element said current active application with at least said new value.
BRIEF DESCRIPTION OF THE DRAWINGS
For a more complete understanding of example embodiments of the present invention, reference is now made to the following descriptions taken in connection with the accompanying drawings in which: FIG. 1 illustrates a signaling diagram for managing secure element according to various example embodiments of the present invention;
FIG. 2 illustrates an example method for managing secure element from the perspective of the terminal according to various example embodiments of the present invention;
FIG. 3 illustrates an example method for managing secure element from the perspective of the secure element according to various example embodiments of the present invention;
FIG. 4 illustrates a block diagram of an apparatus for managing secure element from the perspective of the terminal according to various example embodiments of the present invention; and
FIG. 5 illustrates a block diagram of an apparatus for managing secure element from the perspective of the secure element according to various example embodiments of the present invention.
DETAILED DESCRIPTON OF THE DRAWINGS
An example embodiment of the present invention and its potential advantages are understood by referring to FIGURES 1 through 5 of the drawings.
FIG. 1 depicts a signaling diagram for managing secure element according to various example embodiments of the present invention. In this regard, FIG. 1 depicts signaling message exchange between a secure element 100 and a terminal 101. The secure element 100 may be a Subscriber Identity Module (SIM) card, a Universal Integrated Circuit Card (UICC), and/or the like. The terminal 101 may be any type of communication device that supports wireless communications, for example a Universal Mobile Telecommunications System (UMTS) mobile equipment, mobile station, fixed terminal, and/or the like. The secure element 100 is connected to the terminal 101 via an interface.
At 1 10, at least one value associated with the current active application on the secure element is changed. In an example embodiment, the current active application on the secure element is the Universal Subscriber Identity Module (USEM). In an example embodiment, the value associated with the current active application on the secure element is the International Mobile Subscriber Identity (IMSl). The IMSl needs to be changed if the network operator doesn't have network coverage in a specific region or country that the user is roaming. The IMSl value may be change on the UICC internally or via over-the-air (OTA).
At 120, the secure element 100 may be configured to generate and transmit a refresh message. In an example embodiment, the refresh message is a refresh command of type 3G session reset.
At 130, the terminal 101 may be configured to generate and transmit a status message. In an example embodiment, the status message is a status command. In an example embodiment, the status command is of type session reset. In an example embodiment, the Indication of application status, PI value in the status command is set as a value stating session reset. In an example embodiment, the status command model is of type Universal Subscriber Identity Module (USIM) application session reset.
At 140, the terminal 101 may be configured to generate and transmit an application selection message. In an example embodiment, the application selection message is a select command. In an example embodiment, the application identifier (AID) in the select command is set as the application identifier value of the current active application on the UICC. In an example embodiment, the application identifier value of the current active application is 7FFF.
At 150, the current active application with the new values remains activated on the secure element 100. The Personal Identification Number (PEN) is not reset on the secure element 100. The user does not have to reenter the PIN.
FIGs. 2 and 3 illustrate flowcharts of example systems, methods, and/or computer program products according to example embodiments of secure element management. It will be understood that each block or operation of the flowcharts, and/or combinations of blocks or operations in the flowcharts, may be implemented by various means. Means for implementing the blocks or operations of the flowcharts, combinations of the blocks or operations in the flowchart, or other functionality of example embodiments of the present invention described herein may include hardware, and/or a computer program product including a computer-readable storage medium having one or more computer program code instructions, program instructions, executable computer-readable program code instructions stored therein, and/or the like.
FIG. 2 illustrates an example method for secure element management from the perspective of the terminal, such as the terminal 101 of FIG. 1. The example method includes receiving at a terminal a refresh message sent by a secure element at 200. The refresh message comprises a request for a session reset in response to at least one value associated with a current active application on said secure element is changed. In an example embodiment, the refresh message is a refresh command of 3G session reset.
The example method further includes sending by said terminal a status message to said secure element at 210. The status message notifies said current active application on said secure element that an application session reset procedure will be executed. In an example embodiment, the status message is a status command of Universal Subscriber Identity Module application session reset. In an example embodiment, the status command comprises an indication of application status PI . In an example embodiment, the indication of application status PI is a value corresponding to Universal Subscriber Identity Module application session reset.
The example method further includes sending by said terminal an application selection message to said secure element at 220. The application selection message instructs said secure element to reactivate said current active application with at least said new value. In an example embodiment, the application selection message is a select command comprising an application identifier. In an example embodiment, the application identifier is set as the application identifier value of the current active application on the secure element. In an example embodiment, the current active application on the secure element is a Universal Subscriber Identity Module application. In an example embodiment, the application identifier value of the current active application on the secure element is 7FFF.
FIG. 3 illustrates an example method for secure element management from the perspective of the secure element, such as the secure element 100 of FIG. 1. The example method includes determining at a secure element that at least one value associated with a current active application on said secure element is changed at 300. In an example embodiment, the current active application on the secure element is the Universal Subscriber Identity Module application. In an example embodiment, the value associated with the current active application on the secure element is the International Mobile Subscriber Identity (IMSI).
The example method further includes sending by said secure element a refresh message to a terminal at 310. The refresh message comprises a request for a session reset in response to at least said one value associated with a current active application on said secure element is changed. In an example embodiment, the refresh message is a refresh command of 3G session reset.
The example method further includes receiving a status message sent by said terminal at 320. The status message notifies to the said current active application on said secure element that an application session reset procedure will be executed. In an example embodiment, the status message is a status command of Universal Subscriber Identity Module application session reset. In an example embodiment, the status command comprises an indication of application status PI . In an example embodiment, the indication of application status PI is a value corresponding to Universal Subscriber Identity Module application session reset.
The example method further includes receiving an application selection message sent by said terminal at 330. The application selection message instructs said secure element to reactivate said current active application with at least said new value. In an example embodiment, the application selection message is a select command comprising an application identifier. In an example embodiment, the application identifier is set as the application identifier value of the current active application on the secure element. In an example embodiment, the current active application on the secure element is a Universal Subscriber Identity Module application. In an example embodiment, the application identifier value of the current active application on the secure element is 7FFF.
The example method further includes reactivating at said secure element said current active application with at least said new value. The current active application with the new values remains activated on the secure element. The Personal Identification Number (ΡΠΝ) is not reset on the secure element 100. The user does not have to reenter the PIN. FIG. 4 illustrates a block diagram of an apparatus 400 for managing secure element from the perspective of the terminal according to various example embodiments of the present invention. In an example embodiment, the apparatus 400 includes at least one processor 405, at least one memory 410, and at least one communication interface 415. Apparatus 400 may, be embodied as, or included as a component of, a communications device with wired or wireless communications capabilities. In an example embodiment, the apparatus 400 may be part of a communications device, such as a stationary or a mobile communications terminal. As a stationary communications terminal, the apparatus 400 may be part of, or embodied as, a server, a computer, an access point (e.g., base station), communications switching device, or the like. As a mobile device, the apparatus 400 may be a mobile and/or wireless communications node such as, for example, a mobile and/or wireless server, computer, access point, communications switching device, handheld device (e.g., telephone, portable digital assistant (PDA), mobile television, gaming device, camera, video recorder, audio/video player, radio, and/or a global positioning system (GPS) device), any combination of the aforementioned, or the like.
Regardless of the type of communications device, apparatus 400 may also include computing capabilities.
The example apparatus 400 includes or is otherwise in communication with a processor 405, a memory 410, and a communications interface 415. The processor 405 may be embodied as various means for implementing the various functionalities of example embodiments of the present invention including, for example, a microprocessor, a coprocessor, a controller, a special- purpose integrated circuit such as, for example, an ASIC (application specific integrated circuit), an FPGA (field programmable gate array), or a hardware accelerator, processing circuitry or the like. According to one example embodiment, processor 405 may be representative of a plurality of processors, or one or more multiple core processors, operating in concert. Further, the processor 405 may be comprised of a plurality of transistors, logic gates, a clock (e.g., oscillator), other circuitry, and the like to facilitate performance of the functionality described herein. The processor 405 may, but need not, include one or more accompanying digital signal processors. In an example embodiment, the processor 405 is configured to execute instructions stored in the memory 410 or instructions otherwise accessible to the processor 405. The processor 405 may be configured to operate such that the processor causes the apparatus 400 to perform various functionalities described herein.
Whether configured as hardware or via instructions stored on a computer-readable storage medium, or by a combination thereof, the processor 405 may be an entity capable of performing operations according to embodiments of the present invention while configured accordingly. Thus, in example embodiments where the processor 405 is embodied as, or is part of, an ASIC, FPGA, or the like, the processor 405 is specifically configured hardware for conducting the operations described herein. Alternatively, in example embodiments where the processor 405 is embodied as an executor of instructions stored on a computer-readable storage medium, the instructions specifically configure the processor 405 to perform the algorithms and operations described herein. In an example embodiment, the processor 405 is a processor of a specific device (e.g., a communications server) configured for employing example embodiments of the present invention by further configuration of the processor 405 via executed instructions for performing the algorithms, methods, and operations described herein.
The memory 410 may be one or more computer-readable storage media that may include volatile and/or non-volatile memory. In an example embodiment, the memory 410 includes Random Access Memory (RAM) including dynamic and/or static RAM, on-chip or off-chip cache memory, and/or the like. Further, memory 410 may include non-volatile memory, which may be embedded and/or removable, and may include, for example, read-only memory, flash memory, magnetic storage devices (e.g., hard disks, floppy disk drives, magnetic tape, etc.), optical disc drives and/or media, non-volatile random access memory (NVRAM), and/or the like. Memory 410 may include a cache area for temporary storage of data. In this regard, some or all of memory 410 may be included within the processor 405.
Further, the memory 410 may be configured to store information, data, applications, computer-readable program code instructions, and/or the like for enabling the processor 405 and the example apparatus 400 to carry out various functions in accordance with example
embodiments of the present invention described herein. For example, the memory 410 could be configured to buffer input data for processing by the processor 405. Additionally, or alternatively, the memory 410 may be configured to store instructions for execution by the processor 405.
The communications interface 415 may be any device or means embodied in either hardware, a computer program product, or a combination of hardware and a computer program product that is configured to receive and/or transmit data from/to a secure element 420 and/or any other device or module in communication with the example apparatus 400. The communications interface may be configured to communicate information via any type of wired or wireless connection, and via any type of communications protocol, such as communications protocol that support communications between terminals and secure elements. Processor 405 may also be configured to facilitate communications via the communications interface 415 by, for example, controlling hardware included within the communications interface 415. In this regard, the communications interface 415 may include, for example, communications driver circuitry (e.g., circuitry that supports wired communications), one or more antennas, a transmitter, a receiver, a transceiver and/or supporting hardware, including, for example, a processor for enabling communications.
FIG. 5 illustrates a block diagram of an apparatus 500 for managing secure element from the perspective of the secure element according to various example embodiments of the present invention. In an example embodiment, the apparatus 500 includes at least one processor 505, at least one memory 510, and at least one communication interface 515. Apparatus 500 may, be embodied as, or included as a component of, a secure element device with wired or wireless communications capabilities. In an example embodiment, the apparatus 500 may be part of a secure element device, such as a smart card. Regardless of the type of secure element device, apparatus 500 may also include computing capabilities.
The example apparatus 500 includes or is otherwise in communication with a processor 505, a memory 510, and a communications interface 515. The processor 505 may be embodied as various means for implementing the various functionalities of example embodiments of the present invention including, for example, a microprocessor, a coprocessor, a controller, a special- purpose integrated circuit such as, for example, an ASIC (application specific integrated circuit), an FPGA (field programmable gate array), or a hardware accelerator, processing circuitry or the like. According to one example embodiment, processor 505 may be representative of a plurality of processors, or one or more multiple core processors, operating in concert. Further, the processor 505 may be comprised of a plurality of transistors, logic gates, a clock (e.g., oscillator), other circuitry, and the like to facilitate performance of the functionality described herein. The processor 505 may include one or more accompanying digital signal processors. In an example embodiment, the processor 505 is configured to execute instructions stored in the memory 510 or instructions otherwise accessible to the processor 505. The processor 505 may be configured to operate such that the processor causes the apparatus 500 to perform various functionalities described herein.
Whether configured as hardware or via instructions stored on a computer-readable storage medium, or by a combination thereof, the processor 505 may be an entity capable of performing operations according to embodiments of the present invention while configured accordingly. Thus, in example embodiments where the processor 505 is embodied as, or is part of, an ASIC, FPGA, or the like, the processor 505 is specifically configured hardware for conducting the operations described herein. Alternatively, in example embodiments where the processor 505 is embodied as an executor of instructions stored on a computer-readable storage medium, the instructions specifically configure the processor 505 to perform the algorithms and operations described herein. In an example embodiment, the processor 505 is a processor of a specific device (e.g., a smart card) configured for employing example embodiments of the present invention by further configuration of the processor 505 via executed instructions for performing the algorithms, methods, and operations described herein.
The memory 510 may be one or more computer-readable storage media that may include volatile and/or non-volatile memory. In an example embodiment, the memory 510 includes Random Access Memory (RAM) including dynamic and/or static RAM, on-chip or off-chip cache memory, and/or the like. Further, memory 510 may include non-volatile memory, which may be embedded and/or removable, and may include, for example, read-only memory, flash memory, magnetic storage devices (e.g., hard disks, floppy disk drives, magnetic tape, etc.), optical disc drives and/or media, non-volatile random access memory (NVRAM), and/or the like. Memory 510 may include a cache area for temporary storage of data. In this regard, some or all of memory 510 may be included within the processor 505.
Further, the memory 510 may be configured to store information, data, applications, computer-readable program code instructions, and/or the like for enabling the processor 505 and the example apparatus 500 to carry out various functions in accordance with example
embodiments of the present invention described herein. For example, the memory 510 could be configured to buffer input data for processing by the processor 505. Additionally, or
alternatively, the memory 510 may be configured to store instructions for execution by the processor 505.
The communications interface 515 may be any device or means embodied in either hardware, a computer program product, or a combination of hardware and a computer program product that is configured to receive and/or transmit data from/to a terminal 520 and/or any other device or module in communication with the example apparatus 500. The communications interface may be configured to communicate information via any type of wired or wireless connection, and via any type of communications protocol, such as communications protocol that support communications between terminals and secure elements. Processor 505 may also be configured to facilitate communications via the communications interface 515 by, for example, controlling hardware included within the communications interface 515. In this regard, the communications interface 515 may include, for example, communications driver circuitry (e.g., circuitry that supports wired communications), one or more antennas, a transmitter, a receiver, a transceiver and/or supporting hardware, including, for example, a processor for enabling communications.
Many modifications and other embodiments of the inventions set forth herein will come to mind to one skilled in the art to which these inventions pertain having the benefit of the teachings presented in the foregoing descriptions and the associated drawings. Therefore, it is to be understood that the inventions are not to be limited to the specific embodiments disclosed and that modifications and other embodiments are intended to be included within the scope of the appended claims. Moreover, although the foregoing descriptions and the associated drawings describe example embodiments in the context of certain example combinations of elements and/or functions, it should be appreciated that different combinations of elements and/or functions may be provided by alternative embodiments without departing from the scope of the appended claims. In this regard, for example, different combinations of elements and/or functions other than those explicitly described above are also contemplated as may be set forth in some of the appended claims. Although specific terms are employed herein, they are used in a generic and descriptive sense only and not for purposes of limitation.
If desired, the different functions discussed herein may be performed in a different order and/or concurrently with each other. Furthermore, if desired, one or more of the above- described functions may be optional or may be combined.
Although various aspects of the invention are set out in the independent claims, other aspects of the invention comprise other combinations of features from the described embodiments and/or the dependent claims with the features of the independent claims, and not solely the combinations explicitly set out in the claims.
It is also noted herein that while the above describes example embodiments of the invention, these descriptions should not be viewed in a limiting sense. Rather, there are several variations and modifications which may be made without departing from the scope of the present invention as defined in the appended claims.

Claims

WHAT IS CLAIMED IS
1. A method, comprising:
receiving at a terminal a refresh message sent by a secure element, wherein said refresh message comprises a request for a session reset in response to at least one value associated with a current active application on said secure element is changed;
sending by said terminal a status message to said secure element, wherein said status message notifies said current active application on said secure element that an application session reset procedure will be executed; and
sending by said terminal an application selection message to said secure element, wherein said application selection message instructs said secure element to reactivate said current active application with at least said new value.
2. The method of claim 1 , wherein the refresh message is a refresh command of 3G session reset.
3. The method of claim 1 , wherein the status message is a status command of Universal Subscriber Identity Module application session reset.
4. The method of claim 3, wherein the status command comprises an indication of application status PI .
5. The method of claim 4, wherein the indication of application status PI is a value corresponding to Universal Subscriber Identity Module application session reset.
6. The method of claim 1 , wherein the application selection message is a select command comprising an application identifier.
7. The method of claim 4, wherein the application identifier is set as the application identifier value of the current active application on the secure element.
8. The method of claim 5, wherein the current active application on the secure element is a Universal Subscriber Identity Module application.
9. The method of claim 5, wherein the application identifier value of the current active application on the secure element is 7FFF.
10. A method, comprising:
determining at a secure element that at least one value associated with a current active application on said secure element is changed;
sending by said secure element a refresh message to a terminal, wherein said refresh message comprises a request for a session reset in response to at least said one value associated with a current active application on said secure element is changed;
receiving a status message sent by said terminal, wherein said status message notifies to the said current active application on said secure element that an application session reset procedure will be executed;
receiving an application selection message sent by said terminal, wherein said application selection message instructs said secure element to reactivate said current active application with at least said new value; and
reactivating at said secure element said current active application with at least said new value.
1 1. The method of claim 10, wherein the refresh message is a refresh command of 3G session reset.
12. The method of claim 10, wherein the status message is a status command of Universal Subscriber Identity Module application session reset.
13. The method of claim 12, wherein the status command comprises an indication of application status PI .
14. The method of claim 13, wherein the indication of application status PI is a value corresponding to Universal Subscriber Identity Module application session reset.
15. The method of claim 10, wherein the application selection message is a select command comprising an application identifier.
16. The method of claim 10, wherein the application identifier is set as the application identifier value of the current active application on the secure element.
17. The method of claim 10, wherein the current active application on the secure element is a Universal Subscriber Identity Module application.
18. The method of claim 10, wherein the application identifier value of the current active application on the secure element is 7FFF.
19. An apparatus, comprising:
at least one processor; and
at least one memory including computer program code
the at least one memory and the computer program code configured to, with the at least one processor, cause the apparatus to perform at least the following:
receive at a terminal a refresh message sent by a secure element, wherein said refresh message comprises a request for a session reset in response to at least one value associated with a current active application on said secure element is changed;
send by said terminal a status message to said secure element, wherein said status message notifies said current active application on said secure element that an application session reset procedure will be executed; and
send by said terminal an application selection message to said secure element, wherein said application selection message instructs said secure element to reactivate said current active application with at least said new value.
20. The apparatus of claim 19, wherein the refresh message is a refresh command of 3G session reset.
21. The apparatus of claim 19, wherein the status message is a status command of Universal Subscriber Identity Module application session reset.
22. The apparatus of claim 21 , wherein the status command comprises an indication of application status PI .
23. The apparatus of claim 22, wherein the indication of application status PI is a value corresponding to Universal Subscriber Identity Module application session reset.
24. The apparatus of claim 19, wherein the application selection message is a select command comprising an application identifier.
25. The apparatus of claim 22, wherein the application identifier is set as the application identifier value of the current active application on the secure element.
26. The apparatus of claim 23, wherein the current active application on the secure element is a Universal Subscriber Identity Module application.
27. The apparatus of claim 23, wherein the application identifier value of the current active application on the secure element is 7FFF.
28. An apparatus, comprising:
at least one processor; and
at least one memory including computer program code
the at least one memory and the computer program code configured to, with the at least one processor, cause the apparatus to perform at least the following:
determine at a secure element that at least one value associated with a current active application on said secure element is changed;
send by said secure element a refresh message to a terminal, wherein said refresh message comprises a request for a session reset in response to at least said one value associated with a current active application on said secure element is changed;
receive a status message sent by said terminal, wherein said status message notifies to the said current active application on said secure element that an application session reset procedure will be executed;
receive an application selection message sent by said terminal, wherein said application selection message instructs said secure element to reactivate said current active application with at least said new value; and
reactivate at said secure element said current active application with at least said new value.
29. The apparatus of claim 28, wherein the refresh message is a refresh command of 3G session reset.
30. The apparatus of claim 28, wherein the status message is a status command of Universal Subscriber Identity Module application session reset.
31. The apparatus of claim 30, wherein the status command comprises an indication of application status PI .
32. The apparatus of claim 31 , wherein the indication of application status PI is a value corresponding to Universal Subscriber Identity Module application session reset.
33. The apparatus of claim 28, wherein the application selection message is a select command comprising an application identifier.
34. The apparatus of claim 28, wherein the application identifier is set as the
5 application identifier value of the current active application on the secure element.
35. The apparatus of claim 28, wherein the current active application on the secure element is a Universal Subscriber Identity Module application. 0
36. The apparatus of claim 28, wherein the application identifier value of the current active application on the secure element is 7FFF.
37. A computer program product comprising a computer-readable medium bearing computer program code embodied therein for use with a computer, the computer program code5 comprising:
code for receiving at a terminal a refresh message sent by a secure element, wherein said refresh message comprises a request for a session reset in response to at least one value associated with a current active application on said secure element is changed;
code for sending by said terminal a status message to said secure element, wherein saidΘ status message notifies said current active application on said secure element that an application session reset procedure will be executed; and
code for sending by said terminal an application selection message to said secure element, wherein said application selection message instructs said secure element to reactivate said current active application with at least said new value.
5
38. A computer program product comprising a computer-readable medium bearing computer program code embodied therein for use with a computer, the computer program code comprising:
code for determining at a secure element that at least one value associated with a current active application on said secure element is changed;
code for sending by said secure element a refresh message to a terminal, wherein said refresh message comprises a request for a session reset in response to at least said one value associated with a current active application on said secure element is changed;
code for receiving a status message sent by said terminal, wherein said status message notifies to the said current active application on said secure element that an application session reset procedure will be executed;
code for receiving an application selection message sent by said terminal, wherein said application selection message instructs said secure element to reactivate said current active application with at least said new value; and
code for reactivating at said secure element said current active application with at least said new value.
PCT/IB2010/000859 2010-04-16 2010-04-16 Method and apparatus for secure element management WO2011128715A1 (en)

Priority Applications (4)

Application Number Priority Date Filing Date Title
PCT/IB2010/000859 WO2011128715A1 (en) 2010-04-16 2010-04-16 Method and apparatus for secure element management
CN201080067262XA CN102934123A (en) 2010-04-16 2010-04-16 Method and apparatus for secure element management
EP10849758.7A EP2559273B1 (en) 2010-04-16 2010-04-16 Method and apparatus for secure element management
US13/640,759 US9420466B2 (en) 2010-04-16 2010-04-16 Method and apparatus for secure element management

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
PCT/IB2010/000859 WO2011128715A1 (en) 2010-04-16 2010-04-16 Method and apparatus for secure element management

Publications (1)

Publication Number Publication Date
WO2011128715A1 true WO2011128715A1 (en) 2011-10-20

Family

ID=44798304

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/IB2010/000859 WO2011128715A1 (en) 2010-04-16 2010-04-16 Method and apparatus for secure element management

Country Status (4)

Country Link
US (1) US9420466B2 (en)
EP (1) EP2559273B1 (en)
CN (1) CN102934123A (en)
WO (1) WO2011128715A1 (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
FR2980073A1 (en) * 2011-09-12 2013-03-15 Astrium Sas Method for triggering network selection operation by mobile communication terminal, involves triggering network selection operation in response to receipt of message containing network selection operation trigger command

Families Citing this family (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2015005984A1 (en) * 2013-07-12 2015-01-15 Jvl Ventures, Llc Systems, methods, and computer program products for enabling instrument credentials
US11290425B2 (en) * 2016-02-01 2022-03-29 Airwatch Llc Configuring network security based on device management characteristics
CN107241759A (en) * 2017-06-28 2017-10-10 上海斐讯数据通信技术有限公司 A kind of method and system for monitoring radio reception device position

Family Cites Families (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8934894B2 (en) * 2008-10-28 2015-01-13 Qualcomm Incorporated Real-time network selection and mobile subscriber identity update for inter-standard network roaming

Non-Patent Citations (6)

* Cited by examiner, † Cited by third party
Title
"European Telecommnications Standards Institute (ETSI) Technical Specification (TS) 102.221", SMART CARDS: UICC-TERMINAL INTERFACE; PHYSICAL AND LOGICAL CHARACTERISTICS (RELEASE 5
"Technical Specification; Smart Cards; Card Application Toolkit (CAT) (Release 5)", ETSI TS 102 223 V5.11.0, January 2006 (2006-01-01), XP008161231 *
"Technical Specification; Smart cards; UICC-Terminal interface; Physical and logical characteristics (Release 5)", ETSI TS 102 221 V5.10.0, July 2007 (2007-07-01), XP008161230 *
SCOTT B. GUTHERY ET AL.: "Mobile Application Development with SMS and the SIM Toolkit", 2002, pages 107 - 156, XP008161287, Retrieved from the Internet <URL:http://www.hutech.edu.vn/dientu/Tailieu/Mobile.Application.Development.with.SMS.and.the.SIM.Toolkit.-.McGraw.Hill.pdf> [retrieved on 20101213] *
See also references of EP2559273A4
TECHNICAL SPECIFICATION; SMART CARDS; CARD APPLICATION TOOLKIT (CAT) (RELEASE 5, January 2006 (2006-01-01)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
FR2980073A1 (en) * 2011-09-12 2013-03-15 Astrium Sas Method for triggering network selection operation by mobile communication terminal, involves triggering network selection operation in response to receipt of message containing network selection operation trigger command

Also Published As

Publication number Publication date
EP2559273A1 (en) 2013-02-20
EP2559273A4 (en) 2017-09-06
EP2559273B1 (en) 2018-12-12
US9420466B2 (en) 2016-08-16
CN102934123A (en) 2013-02-13
US20130171963A1 (en) 2013-07-04

Similar Documents

Publication Publication Date Title
US8862113B2 (en) Subscriber identity module activation during active data call
US8954067B2 (en) Method and apparatus for emulating a plurality of subscriptions
US9940141B2 (en) Method and apparatus for selecting bootstrap ESIMs
US10142829B2 (en) Method for providing network service and electronic device
US9661494B2 (en) Control apparatus, control method, communication system and program
US20060035631A1 (en) Wireless device service activation from the wireless device
US10862881B2 (en) Method of managing shared files and device for authenticating subscriber by using same
CN105916144B (en) Techniques for dynamically supporting different authentication algorithms
CN112637785B (en) Method and apparatus for multicast transmission
US20210044961A1 (en) Electronic device for managing embedded subscriber identification module and method for same
US20150040196A1 (en) Network connecting device, system and method for same
US9832714B2 (en) Method and system for network node selection based user equipment agent assisted modification of temporary identity in 3G and 4G networks
US20200236610A1 (en) Method and subscriber identity component for providing network access
US9420466B2 (en) Method and apparatus for secure element management
EP3413600A1 (en) Communication device and method of managing profiles
WO2018107767A1 (en) Method for updating network side notification area, user terminal, network side device and system
WO2012019652A1 (en) Method and apparatus for restricting collection of minimization of drive -tests data in a roaming network
JP6480082B2 (en) Subscriber identification module (SIM) access profile (SAP) improvements
US20220360968A1 (en) Method and apparatus for obtaining and handle proactive command(s) between terminal and card supporting logical interfaces
KR20100079198A (en) Communications method and communications systems

Legal Events

Date Code Title Description
WWE Wipo information: entry into national phase

Ref document number: 201080067262.X

Country of ref document: CN

121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 10849758

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

WWE Wipo information: entry into national phase

Ref document number: 2010849758

Country of ref document: EP

WWE Wipo information: entry into national phase

Ref document number: 13640759

Country of ref document: US