Abstract: A device implementing an express credential transaction system includes at least one processor configured to receive an indication that a payment applet for a service provider has been provisioned on a secure element of the device with a first attribute indicating that the payment applet can be utilized for a transaction without authentication associated with the transaction. The processor is configured to set the first attribute of the payment applet to indicate that authentication is required to utilize the payment applet when another payment applet for the service provider provisioned on the secure element of the device has an attribute that indicates the other payment applet can be utilized for the transaction without user authentication. The at least one processor is configured to control whether the user authentication is requested when utilizing the payment applet or the other payment applet, respectively, in transactions.

Abstract: Techniques are disclosed relating to electronic security, e.g., for authenticating a mobile electronic device to allow access to system functionality (e.g., physical access to the system, starting an engine/motor, etc.). In some embodiments, a system and mobile device exchange public keys of public key pairs during a pairing process. In some embodiments, an asymmetric transaction process includes generating a shared secret using a key derivation function over a key established using a secure key exchange (e.g., elliptic curve Diffie-Hellman), and verifying a signature of the system before transmitting any information identifying the mobile device. In various embodiments, disclosed techniques may increase transaction security and privacy of identifying information.

Abstract: This Application sets forth techniques for binding and dynamic provisioning of international mobile equipment identifier (IMEI) values with cellular wireless service profiles, such as subscriber identity modules (SIMs) on physical SIM (pSIM) cards and electronic SIMs (eSIMs) on an embedded universal integrated circuit card (eUICC) of the mobile wireless device. When pSIMs and/or eSIMs change on the mobile wireless device, e.g., based on installation, activation, deactivation, de-installation, etc., IMEI binding logic accounts for the changes and maps IMEI values to pSIMs and/or eSIMs as required. IMEI values can be assigned based on a history of bindings between IMEI values and ICCID values of one or more eSIMS on an eUICC. A most recently used or a newly assigned IMEI value can be associated with an eSIM. Whether to assign an identical IMEI value to multiple eSIMs depends on requirements of associated cellular wireless service subscriptions.

Abstract: This application sets forth techniques for transfer of a cellular wireless service plan associated with a SIM or an eSIM between non-linked wireless devices. A target wireless device broadcasts an advertisement beacon requesting transfer of a cellular wireless service plan. After successful authentication with a source wireless device, using a manually entered verification code or a QR verification code, the target wireless device selects a cellular wireless service plan to transfer. The source wireless device obtains a transfer token from an MNO entitlement server for transfer of the selected cellular wireless service plan and provides the transfer token to the target wireless device via a secure, short distance Bluetooth connection or, alternatively, embedded in an encrypted QR code. The target wireless device uses the transfer token to obtain a new eSIM associated with transfer of the cellular wireless service plan.

Abstract: This Application sets forth techniques for transfer of a cellular wireless service plan associated with a SIM or an semis between non-linked wireless devices. A target wireless device broadcasts an advertisement beacon requesting transfer of a cellular wireless service plan. After successful authentication with a source wireless device, using a manually entered verification code or a QR verification code, the target wireless device selects a cellular wireless service plan to transfer. The source wireless device obtains a transfer token from an MNO entitlement server for transfer of the selected cellular wireless service plan and provides the transfer token to the target wireless device via a secure, short distance Bluetooth connection or, alternatively, embedded in an encrypted QR code. The target wireless device uses the transfer token to obtain a new eSIM associated with transfer of the cellular wireless service plan.

Abstract: This Application sets forth techniques for binding and dynamic provisioning of international mobile equipment identifier (IMEI) values with cellular wireless service profiles, such as subscriber identity modules (SIMS) on physical SIM (pSIM) cards and electronic SIMs (eSIMs) on an embedded universal integrated circuit card (eUICC) of the mobile wireless device. When pSIMs and/or eSIMs change on the mobile wireless device, e.g., based on installation, activation, deactivation, de-installation, etc., IMEI binding logic accounts for the changes and maps IMEI values to pSIMs and/or eSIMs as required. IMEI values can be assigned based on a history of bindings between IMEI values and ICCID values of one or more eSIMS on an eUICC. A most recently used or a newly assigned IMEI value can be associated with an eSIM. Whether to assign an identical IMEI value to multiple eSIMs depends on requirements of associated cellular wireless service subscriptions.

Abstract: An electronic device that at least semi-automatically performs car-key pairing is described. During operation, the electronic device may perform wireless pairing with a second electronic device (e.g., a vehicle), where the wireless pairing establishes a connection between the electronic device and the second electronic device. Moreover, during the wireless pairing, the electronic device may receive information associated with the car-key pairing of the electronic device and the second electronic device. Then, after the wireless pairing is completed, the electronic device may determine that the car-key pairing is supported or available based at least in part on the information.

Abstract: Techniques are disclosed relating to sharing access to electronically-secured property. In some embodiments, a first computing device having a first secure element receives, from a second computing device associated with an owner of the electronically-secured property, an indication that the second computing device has transmitted a token to server computing system, the token permitting a user of the first computing device access to the electronically-secured property. Based on the received indication, the first computing device sends a request for the transmitted token to the server computing system and, in response to receiving the requested token, securely stores the received token in the first secure element of the first computing device. The first computing device subsequently transmits the stored token from the first secure element of the first device to the electronically-secured property to obtain access to the electronically-secured property based on the token.

Abstract: Techniques for flexible electronic subscriber identity module (eSIM) deployment to a wireless device by a network server, including generation of multiple eSIMs using an identical eSIM identifier value, such as an identical integrated circuit card identifier (ICCID) value, and subsequent selection of an eSIM based on capabilities of the wireless device. Multiple eSIMs that correspond to different sets of wireless device capabilities are generated without knowledge of the wireless communication standards that a wireless device supports. The multiple eSIMs include a first eSIM that includes fifth generation (5G) wireless communication protocol information and a second eSIM that excludes 5G wireless communication protocol information. The network server selects an eSIM from the multiple eSIMs based on whether the wireless device is 5G capable.

Abstract: Apparatuses, systems, and methods for high data mode operation in cellular networks. A UE may determine, for an interface to a high-speed cellular network, a categorization from a plurality of categorizations, determine availability of the high-speed cellular network, and select, based at least in part on the categorization and availability of the high-speed cellular network, the interface for a data connection to the high-speed cellular network. The categorization may be one of expensive or not expensive and/or one of a first level associated with a higher compression codec rate or a second level associated with a lower compression codec rate. The UE may receive, from one of the a low-speed cellular network or the high-speed cellular network, carrier plan information for a cellular data service carrier and analyze the carrier plan information to determine desirability of a switch, e.g., from the low-speed cellular network to the high-speed cellular network.

Abstract: Techniques for flexible electronic subscriber identity module (eSIM) deployment to a wireless device by a network server, including generation of multiple eSIMs using an identical eSIM identifier value, such as an identical integrated circuit card identifier (ICCID) value, and subsequent selection of an eSIM based on capabilities of the wireless device. Multiple eSIMs that correspond to different sets of wireless device capabilities are generated without knowledge of the wireless communication standards that a wireless device supports. The multiple eSIMs include a first eSIM that includes fifth generation (5G) wireless communication protocol information and a second eSIM that excludes 5G wireless communication protocol information. The network server selects an eSIM from the multiple eSIMs based on whether the wireless device is 5G capable.

Abstract: This application describes a phased approach to provision eSIM profiles to a wireless device. Credentials are preloaded to an eUICC during manufacture of the eUICC and used subsequently to load eSIM profiles to the eUICC without requiring an active, real-time connection to an MNO provisioning server. Multiple bound profile packages (BPPs) can be pre-generated and encrypted by MNO provisioning servers for an eUICC and transferred to a BPP aggregator server before assembly of the eUICC in a respective wireless device. A local provisioning server in a manufacturing facility mutually authenticates and connects to the BPP aggregator server to download and store one or more of the encrypted BPPs for later installation on the eUICC. The local provisioning server subsequently mutually authenticates and connects to the eUICC to load at least one of the one or more pre-generated, encrypted BPPs to the eUICC during assembly and/or testing of the wireless device.

Abstract: This application describes a phased approach to provision eSIM profiles to a wireless device. Credentials are preloaded to an eUICC during manufacture of the eUICC and used subsequently to load eSIM profiles to the eUICC without requiring an active, real-time connection to an MNO provisioning server. Multiple bound profile packages (BPPs) can be pre-generated and encrypted by MNO provisioning servers for an eUICC and transferred to a BPP aggregator server before assembly of the eUICC in a respective wireless device. A local provisioning server in a manufacturing facility mutually authenticates and connects to the BPP aggregator server to download and store one or more of the encrypted BPPs for later installation on the eUICC. The local provisioning server subsequently mutually authenticates and connects to the eUICC to load at least one of the one or more pre-generated, encrypted BPPs to the eUICC during assembly and/or testing of the wireless device.

Abstract: Apparatuses, systems, and methods for high data mode operation in cellular networks. A UE may determine, for an interface to a high-speed cellular network, a categorization from a plurality of categorizations, determine availability of the high-speed cellular network, and select, based at least in part on the categorization and availability of the high-speed cellular network, the interface for a data connection to the high-speed cellular network. The categorization may be one of expensive or not expensive and/or one of a first level associated with a higher compression codec rate or a second level associated with a lower compression codec rate. The UE may receive, from one of the a low-speed cellular network or the high-speed cellular network, carrier plan information for a cellular data service carrier and analyze the carrier plan information to determine desirability of a switch, e.g., from the low-speed cellular network to the high-speed cellular network.

Abstract: Techniques are disclosed relating to electronic security, e.g., for authenticating a mobile electronic device to allow access to system functionality (e.g., physical access to the system, starting an engine/motor, etc.). In some embodiments, a system and mobile device exchange public keys of public key pairs during a pairing process. In some embodiments, an asymmetric transaction process includes generating a shared secret using a key derivation function over a key established using a secure key exchange (e.g., elliptic curve Diffie-Hellman), and verifying a signature of the system before transmitting any information identifying the mobile device. In various embodiments, disclosed techniques may increase transaction security and privacy of identifying information.

Abstract: Apparatuses, systems, and methods for high data mode operation in cellular networks. A UE may determine, for an interface to a high-speed cellular network, a categorization from a plurality of categorizations, determine availability of the high-speed cellular network, and select, based at least in part on the categorization and availability of the high-speed cellular network, the interface for a data connection to the high-speed cellular network. The categorization may be one of expensive or not expensive and/or one of a first level associated with a higher compression codec rate or a second level associated with a lower compression codec rate. The UE may receive, from one of the a low-speed cellular network or the high-speed cellular network, carrier plan information for a cellular data service carrier and analyze the carrier plan information to determine desirability of a switch, e.g., from the low-speed cellular network to the high-speed cellular network.

Abstract: This Application sets forth techniques for binding and dynamic provisioning of international mobile equipment identifier (IMEI) values with cellular wireless service profiles, such as subscriber identity modules (SIMS) on physical SIM (pSIM) cards and electronic SIMs (eSIMs) on an embedded universal integrated circuit card (eUICC) of the mobile wireless device. When pSIMs and/or eSIMs change on the mobile wireless device, e.g., based on installation, activation, deactivation, de-installation, etc., IMEI binding logic accounts for the changes and maps IMEI values to pSIMs and/or eSIMs as required. IMEI values can be assigned based on a history of bindings between IMEI values and ICCID values of one or more eSIMS on an eUICC. A most recently used or a newly assigned IMEI value can be associated with an eSIM. Whether to assign an identical IMEI value to multiple eSIMs depends on requirements of associated cellular wireless service subscriptions.

Abstract: Apparatus and methods to support access to services of multiple wireless networks by a single-radio, multiple subscriber identity module (SIM)/electronic SIM (eSIM) wireless device are disclosed. To send or receive voice communications for multiple SIMs/eSIMs, when an active voice connection for a first SIM/eSIM uses wireless circuitry to connect to a first cellular wireless network via a first radio access network, the single-radio, multi-SIM/eSIM wireless device uses alternative data transports, such as via a wireless local area network (WLAN) or by tunneling through the first radio access network of the first cellular wireless network to connect to services of additional cellular wireless networks associated with the multiple SIMs/eSIMs.

Abstract: Apparatuses, systems, and methods for high data mode operation in cellular networks. A UE may determine, for an interface to a high-speed cellular network, a categorization from a plurality of categorizations, determine availability of the high-speed cellular network, and select, based at least in part on the categorization and availability of the high-speed cellular network, the interface for a data connection to the high-speed cellular network. The categorization may be one of expensive or not expensive and/or one of a first level associated with a higher compression codec rate or a second level associated with a lower compression codec rate. The UE may receive, from one of the a low-speed cellular network or the high-speed cellular network, carrier plan information for a cellular data service carrier and analyze the carrier plan information to determine desirability of a switch, e.g., from the low-speed cellular network to the high-speed cellular network.

Abstract: The described embodiments set forth techniques for managing inactive (disabled) electronic subscriber identity modules (eSIMs) on secure elements, e.g., Universal Integrated Circuit Cards (UICCs) and/or embedded UICCs (eUICCs), of a wireless device, including retrieving information from an inactive eSIM, obtaining authentication tokens from an inactive eSIM, authenticating the inactive eSIM with a network-based Mobile Network Operator (MNO) server, retrieving status information for a subscription account associated with the inactive eSIM, and/or performing an account management operation on the inactive eSIM.