Abstract: Methods and apparatuses for self-generation of a full function electronic subscriber identity module (eSIM) profile for a wireless device by merging dynamically-provisioned credentials into an eSIM template that is specific or agnostic to a mobile network operator (MNO). When an MNO-specific eSIM template is available in the wireless device, the MNO-specific eSIM template is selected and provided to an embedded universal integrated circuit card (eUICC) of the wireless device. Alternatively, when the MNO-specific eSIM template is not available in the wireless device, an MNO-agnostic eSIM template is selected and provided to the eUICC. The dynamically-provisioned credentials are merged with the selected eSIM template to cause the eUICC to create a full function eSIM profile for the wireless device.

Abstract: This application describes techniques for postponed certificate credential installation to wireless devices, including generation and storage of secured scripts to be used for subsequent certificate credential installation on an eUICC of a wireless device after manufacturing. Management of certificate credentials, including installation on, modification to, and removal from, an eUICC can occur post-manufacturing, such as during a device activation procedure or as part of remote electronic subscriber identity module (eSIM) provisioning to the eUICC of the wireless device. Updating certificate credentials on an eUICC can allow for wireless device operation in different geographic regions that use different public key infrastructures (PKIs) with distinct root certificate issuers. The secured scripts can be pre-generated by an eUICC manufacturer (EUM) for the particular eUICC and stored at an OEM networked server and later used to install the certificate credentials on the eUICC of the wireless device.

Abstract: A user equipment (UE), baseband processor, embedded universal integrated circuit card (eUICC), and network device (e.g., a shared profile vendor server) are described. A UE that includes an eUICC can perform transmitting, for receipt by a shared profile vendor server, a first message of a shared profile operational international mobile subscriber identity (IMSI) provisioning procedure. The first message may include a randomized IMSI. In response to the first message, the UE may receive a second message that includes an indication of a time counter value. In response to the second message, the UE may transmit, in response to determining that the time counter value is valid, a third (e.g., penultimate) message to the bootstrap vendor server. The UE may then receive in response a fourth message (e.g., final) of the shared profile operational IMSI provisioning procedure, the fourth message including a shared profile operational IMSI for the eUICC.

Abstract: A user equipment (UE), baseband processor, embedded universal integrated circuit card (eUICC), and network device (e.g., a shared profile vendor server) are described. A UE that includes an eUICC can perform transmitting, for receipt by a shared profile vendor server, a first message of a shared profile operational international mobile subscriber identity (IMSI) provisioning procedure. The first message may include a randomized IMSI. In response to the first message, the UE may receive a second message that includes an indication of a time counter value. In response to the second message, the UE may transmit, in response to determining that the time counter value is valid, a third (e.g., penultimate) message to the bootstrap vendor server. The UE may then receive in response a fourth message (e.g., final) of the shared profile operational IMSI provisioning procedure, the fourth message including a shared profile operational IMSI for the eUICC.

Abstract: The embodiments described herein regard removable accessories for a wireless device. A removable accessory for a wireless device can include hardware and a power charging capability to allow the wireless device to use functions of the removable accessory and to wirelessly charge the removable accessory. The removable accessory can be charged wirelessly directly from the wireless device or from an external wireless charging pad. The removable accessory can be configured to coordinate shared wireless charging from an external wireless charging pad to allow charging for both the wireless device and the removable accessory.

Abstract: This application sets forth techniques for managing both consumer and Internet of Things (IoT) contexts relative to utilizing at least one consumer-related electronic Subscriber Identity Module (eSIM) and at least one IoT-related eSIM, respectively. According to some embodiments, the method can be implemented by a wireless device, and includes providing, to an embedded Universal Integrated Circuit Card (eUICC) included in the wireless device, a terminal capability command that indicates both the consumer and IoT contexts should be managed. In turn, the wireless device can provide function calls to the eUICC, where the function calls are accompanied with context information to indicate the context (i.e., consumer or IoT) under which the function calls should be processed. Additionally, the wireless device can provide context switch (i.e., consumer or IoT) commands to the eUICC, to cause the eUICC to utilize a particular context when processing function calls (until further notice is received).

Abstract: This application sets forth techniques for application identifier (AID) routing and ambiguity resolution via a contactless multiplexer of a wireless device, including determining a target application associated with an AID value, from multiple available applications that share the identical AID value, and routing near-field communication (NFC) communication to the determined target application.

Abstract: This application sets forth techniques for dynamically customizing an electronic subscriber identity module (eSIM) for a wireless device using a preset eSIM template. Mobile network operator (MNO) specific eSIM templates can be loaded during manufacturing or obtained post-manufacturing from an MNO asset server. An MNO specific eSIM template can include MNO files and data, including proprietary applets and algorithms, and can be customized to include device specific data in the field.

Abstract: The described embodiments set forth techniques for managing subscription service files, e.g., Customized Applications for Mobile network Enhanced Logic (CAMEL) Application Part (CAP) files, for export and/or transfer of an electronic SIM (eSIM) from a source wireless device. As part of an eSIM procedure to transfer an eSIM, e.g., a processor of the source wireless device obtains, from one or more applet asset servers, one or more subscription service files usable to generate a version of applets associated with the eSIM. The wireless device generates an eSIM export package that includes the eSIM and at least one of the one or more of the subscription service files. The processor of the source wireless device provides the eSIM export package to the target wireless device to use to install the transferred eSIM and one or more applets based on the subscription service files on the eUICC of the target wireless device.

Abstract: Embodiments are described herein for transferring a subscriber identity module (SIM) or electronic SIM (eSIM) profile securely from a source device to a target device with verifiable signatures generated by secure hardware elements of the source device contingent on receipt of a secure intent gesture. Trustworthiness of the profile transfer is based on a mobile network operator (MNO) entitlement server releasing a transfer token after verification of a message signed by an embedded universal integrated circuit card (eUICC) of the source device. The eUICC signs the message only after verifying a message from a secure enclave processor (SEP) of the source device that signs the message based on receipt of the secure intent gesture via a secure interface. To validate communication between the SEP and the eUICC, an asymmetric cryptographic key pair generated by the SEP is bound to a unique eUICC identifier (EID) value of the eUICC.

Abstract: The described embodiments set forth techniques for managing subscription service files, e.g., Customized Applications for Mobile network Enhanced Logic (CAMEL) Application Part (CAP) files, for export and/or transfer of an electronic SIM (eSIM) from a source wireless device. As part of an eSIM procedure to transfer an eSIM, e.g., a processor of the source wireless device obtains, from one or more applet asset servers, one or more subscription service files usable to generate a version of applets associated with the eSIM. The wireless device generates an eSIM export package that includes the eSIM and at least one of the one or more of the subscription service files. The processor of the source wireless device provides the eSIM export package to the target wireless device to use to install the transferred eSIM and one or more applets based on the subscription service files on the eUICC of the target wireless device.

Abstract: The described embodiments set forth techniques for management of electronic subscriber identity module (eSIM) profiles for a wireless device, including in-field replacement of provisioning (bootstrap) eSIM profiles. Public key infrastructure (PKI) information for an original equipment manufacturer (OEM) profile management server is installed in an embedded universal integrated circuit card (eUICC) of a wireless device at a time of manufacture and used subsequently by the wireless device to conduct an eSIM profile management session and verify authorization of the OEM profile management server to manage, e.g., update and/or replace, one or more eSIM profiles on the eUICC of the wireless device.

Abstract: The present application relates to devices and components including apparatus. systems, and methods for pairing UICC/SIM with device components.

Abstract: Embodiments are described herein for transferring a subscriber identity module (SIM) or electronic SIM (eSIM) profile securely from a source device to a target device with verifiable signatures generated by secure hardware elements of the source device contingent on receipt of a secure intent gesture. Trustworthiness of the profile transfer is based on a mobile network operator (MNO) entitlement server releasing a transfer token after verification of a message signed by an embedded universal integrated circuit card (eUICC) of the source device. The eUICC signs the message only after verifying a message from a secure enclave processor (SEP) of the source device that signs the message based on receipt of the secure intent gesture via a secure interface. To validate communication between the SEP and the eUICC, an asymmetric cryptographic key pair generated by the SEP is bound to a unique eUICC identifier (EID) value of the eUICC.

Abstract: This application describes techniques for postponed certificate credential installation to wireless devices, including generation and storage of secured scripts to be used for subsequent certificate credential installation on an eUICC of a wireless device after manufacturing. Management of certificate credentials, including installation on, modification to, and removal from, an eUICC can occur post-manufacturing, such as during a device activation procedure or as part of remote electronic subscriber identity module (eSIM) provisioning to the eUICC of the wireless device. Updating certificate credentials on an eUICC can allow for wireless device operation in different geographic regions that use different public key infrastructures (PKIs) with distinct root certificate issuers. The secured scripts can be pre-generated by an eUICC manufacturer (EUM) for the particular eUICC and stored at an OEM networked server and later used to install the certificate credentials on the eUICC of the wireless device.

Abstract: The described embodiments set forth techniques for management of electronic subscriber identity module (eSIM) profiles for a wireless device, including in-field replacement of provisioning (bootstrap) eSIM profiles. Public key infrastructure (PKI) information for an original equipment manufacturer (OEM) profile management server is installed in an embedded universal integrated circuit card (eUICC) of a wireless device at a time of manufacture and used subsequently by the wireless device to conduct an eSIM profile management session and verify authorization of the OEM profile management server to manage, e.g.

Abstract: Embodiments are described herein for transferring a subscriber identity module (SIM) or electronic SIM (eSIM) profile securely from a source device to a target device with verifiable signatures generated by secure hardware elements of the source device contingent on receipt of a secure intent gesture. Trustworthiness of the profile transfer is based on a mobile network operator (MNO) entitlement server releasing a transfer token after verification of a message signed by an embedded universal integrated circuit card (eUICC) of the source device. The eUICC signs the message only after verifying a message from a secure enclave processor (SEP) of the source device that signs the message based on receipt of the secure intent gesture via a secure interface. To validate communication between the SEP and the eUICC, an asymmetric cryptographic key pair generated by the SEP is bound to a unique eUICC identifier (EID) value of the eUICC.