Abstract: A method of providing to a remote entity a Notification referring to a profile download to an eUICC, includes the following steps: downloading a profile to the eUICC from a Personalization Equipment, wherein the Personalization Equipment is constructed to effect or to support: to provision eUICCs by one or several of: downloading profiles, installing downloaded profiles in eUICCs or supporting such installing, and personalizing eUICCs and/or profiles downloaded to eUICCs or supporting such personalizing; after the profile download, generating at least one Notification referring to the profile download; providing the generated at least one Notification for sending it to a remote entity; generating and providing the at least one Notification at the Personalization Equipment.

Abstract: A profile for implementation in a or implemented in a subscriber identity module (eUICC), wherein the profile can adopt at least a first and a second profile state. The profile including profile metadata. The profile metadata has a profile-state-management flag which can adopt a first and a second flag state of the profile-state-management flag. If the flag adopts the first flag state, any management servers are permitted to change the profile state of the profile.

Abstract: A chip set for a terminal comprises at least one secure processor, in which a one-time programmable memory is integrated. At least one terminal serial number of the terminal is stored in the chip set. Information for securing the terminal serial number against tampering is stored in the one-time programmable memory.

Abstract: A method is for a first-time startup of a not fully personalized secure element, which serves for the use of services of a mobile communication network, in a mobile terminal. In the method, the secure element is started and requested to transmit a status message. The secure element transmits a status message in which it is stated whether the secure element: S1) contains only a bootloader but as yet no firmware image for the secure element; S2) contains a firmware image for the secure element but is not yet fully personalized; or S3) is fully personalized. The secure element is accepted in the cases S1), S2) and S3) and rejected in other cases. In the case S1), a download for a firmware image of the secure element is initiated for a first-time startup.

Abstract: A chipset for an end device comprises at least a Secure Processor into which a one-time programmable memory storage is integrated, wherein in the chipset at least an end-device serial number of the end device is stored, wherein in the one-time programmable memory information is stored for securing the end-device serial number against tampering.

Abstract: A chip set for a terminal comprises at least one secure processor, in which a one-time programmable memory is integrated. At least one terminal serial number of the terminal is stored in the chip set. Information for securing the terminal serial number against tampering is stored in the one-time programmable memory.

Abstract: A chip set for a terminal comprises at least one secure processor, in which a one-time programmable memory is integrated. At least one terminal serial number of the terminal is stored in the chip set. Information for securing the terminal serial number against tampering is stored in the one-time programmable memory.

Abstract: A chipset for an end device comprises at least a Secure Processor into which a one-time programmable memory storage is integrated, wherein in the chipset at least an end-device serial number of the end device is stored, wherein in the one-time programmable memory information is stored for securing the end-device serial number against tampering.

Abstract: A method for authorizing a transaction reading out a first code and a second code by means of a first mobile device. The second code contains information items for decrypting the first code. From the read-out codes a first signature confirming the transaction vis-à-vis the system is generated, which is transmitted to the system. Subsequently, an authorization of the transaction is effected.

Abstract: A method for loading a subscription into an embedded security element of a system configured on a chip of a mobile end device, wherein the system comprises an application processor, a non-volatile memory and a secure processor. The application processor and the secure processor can access the non-volatile memory via a bus. In the process, the subscription is loaded by a provisioning service into the non-volatile memory, so that the secure processor can load the subscription from the memory and execute it. The provisioning service is executed by the secure processor and the subscription is loaded by the provisioning service into a region of the non-volatile memory readable and writeable only by the secure processor.

Abstract: A method is for a first-time startup of a not fully personalized secure element, which serves for the use of services of a mobile communication network, in a mobile terminal. In the method, the secure element is started and requested to transmit a status message. The secure element transmits a status message in which it is stated whether the secure element: S1) contains only a bootloader but as yet no firmware image for the secure element; S2) contains a firmware image for the secure element but is not yet fully personalized; or S3) is fully personalized. The secure element is accepted in the cases S1), S2) and S3) and rejected in other cases. In the case S1), a download for a firmware image of the secure element is initiated for a first-time startup.

Abstract: A chip set for a terminal comprises at least one secure processor, in which a one-time programmable memory is integrated. At least one terminal serial number of the terminal is stored in the chip set. Information for securing the terminal serial number against tampering is stored in the one-time programmable memory.

Abstract: A method for loading a subscription into an embedded security element of a system configured on a chip of a mobile end device, wherein the system comprises an application processor, a non-volatile memory and a secure processor. The application processor and the secure processor can access the non-volatile memory via a bus. In the process, the subscription is loaded by a provisioning service into the non-volatile memory, so that the secure processor can load the subscription from the memory and execute it. The provisioning service is executed by the secure processor and the subscription is loaded by the provisioning service into a region of the non-volatile memory readable and writeable only by the secure processor.

Abstract: A method is provided for installing a security-relevant portion of an application made available by an application provider in a security element of a terminal. The terminal requests the application from the application provider and receives the application. Subsequently, the received security-relevant portion of the application is transmitted to a trustworthy instance administrating the security element. The trustworthy instance subsequently installs the security-relevant portion of the application in the security element.

Abstract: The invention provides a mobile station comprising a mobile end device, security resources, and a discovery module implemented in the mobile station, with which the security resources of the mobile station are discoverable, at least one security level of the mobile station that is achievable by means of the security resources is derivable, and derived security levels of the mobile station are outputable. Further, there are stated an application loading system having such a mobile station, and a risk assessment system for mobile stations.

Abstract: The invention creates a mobile station comprising a mobile end device (ME) with a secured runtime environment (TEE) and a removable or firmly implemented security element (SE), with an end device send server (TEE-TSM) arranged in the security element (SE), which is arranged to send to the secured runtime environment (TEE) end device messages which can be received by the secured runtime environment (TEE). The end device messages are sent by a trusted service manager (SE-TSM), which is provided for the security element (SE), to the security element (SE), thereby higher efficiency being guaranteed at maintained security.

Abstract: A method for authorizing a transaction reading out a first code and a second code by means of a first mobile device. The second code contains information items for decrypting the first code. From the read-out codes a first signature confirming the transaction vis-à-vis the system is generated, which is transmitted to the system. Subsequently, an authorization of the transaction is effected.

Abstract: The invention provides a method for programming a chip for a mobile end device, wherein, in a preparatory step, a serial number is programmed into the chip and thereafter, in a programming step, the serial number is verified and a programming of at least one further datum into the chip is only carried out if the serial number has been successfully verified. The serial number is verified here by means of a security module (HSM), while employing a secret information item stored in the security module (HSM) and different from the serial number.

Abstract: The invention provides a mobile station comprising a mobile end device, security resources, and a discovery module implemented in the mobile station, with which the security resources of the mobile station are discoverable, at least one security level of the mobile station that is achievable by means of the security resources is derivable, and derived security levels of the mobile station are outputable. Further, there are stated an application loading system having such a mobile station, and a risk assessment system for mobile stations.

Abstract: The invention provides a method for loading an application unit into a device, with the device comprising a plurality of device components, and the application unit comprising two or more application components, and one application component being intended for one device component in each case. The application unit is loaded into a selected device component of the device components. Starting out from the selected device component, each application component is loaded into that device component for which the application component is intended.