Abstract: A method of providing a secure element of a mobile terminal with a subscription profile in which the mobile terminal is configured to communicate with a cellular communications network and the subscription profile comprises a network specific portion related to the cellular communications network or a different cellular communications network as well as a hardware specific portion related to the hardware of the mobile terminal and/or the secure element. The method comprises the steps of: assembling the subscription profile, wherein the network specific portion of the subscription profile is provided by a first server and the hardware specific portion of the subscription profile is provided by a second server; and providing the subscription profile over-the-air to the secure element. A corresponding secure element, mobile terminal and subscription management backend system involves features of the method.

Abstract: A method of providing a secure element of a mobile terminal with a subscription profile in which the mobile terminal is configured to communicate with a cellular communications network and the subscription profile comprises a network specific portion related to the cellular communications network or a different cellular communications network as well as a hardware specific portion related to the hardware of the mobile terminal and/or the secure element. The method comprises the steps of: assembling the subscription profile, wherein the network specific portion of the subscription profile is provided by a first server and the hardware specific portion of the subscription profile is provided by a second server; and providing the subscription profile over-the-air to the secure element. A corresponding secure element, mobile terminal and subscription management backend system involves features of the method.

Abstract: A method for updating a firmware of a security module in equipment comprises a device and the security module arranged such that data can be exchanged between the security module and the device. A first message is received by the security module and indicates the availability of a firmware update provided by a provider and wherein the first message contains a transaction number individual for the security module. A second message is transferred from the equipment to the provider and the firmware update is requested from the provider. The second message contains the individual transaction number to enable the provider to conduct an identification of the security module. The firmware update is transferred from the provider to the equipment based on the individual transaction number, and is stored in a memory of the device. The firmware is unpacked by a boot loader of the equipment or the security module.

Abstract: The invention relates to a method for authenticating a smart card (SIM) in a messaging network, preferably a GSM network, wherein an optionally secret algorithm and a secret key are stored in a smart card (SIM), whereby for authentication the network or a network component first transfers a random number to the smart card, a response signal is generated in the smart card by means of the algorithm, the random number and the secret key, said signal being transmitted to the network or network component in order to check the authenticity of the card there. According to the invention both the secret key and the random number transferred by the network are split into at least two parts to form the authentication message, one part of the transferred random number and one or more parts of the secret key being encrypted by means of a one- or multistep, preferably symmetrical calculation algorithm. To output an authentication response, a selectable part of the encryption result is transferred to the network.

Abstract: The invention relates to a mobile radio system having a plurality of mobile terminals (ME) connected with a mobile switching center (MZ) via an air interface for communication control and optionally for billing. The mobile terminals (ME) are controlled by a subscriber identity module (SIM) in which data for associating at least one user are stored, the subscriber identity module (SIM) having an identity (IMSI) associated therewith. For utilizing a mobile radio device for different purposes, such as private and business, a subscriber identity module is known which contains at least two permanently stored identities and thus has the disadvantage of being inflexible. The invention therefore proposes a subscriber identity module (SIM) containing a calculation rule for calculating from the stored identity (IMSI) at least one further identity (IMSIw), the identities generated by the calculation rule being associated accordingly in the mobile switching center (MZ).

Abstract: A portable data carrier with a break-out mini smart card embedded therein. The mini smart card is separated from the remaining card body by a free punch extending over substantial parts of the mini smart card. According to the invention, another rated breaking line is provided within the mini smart card, preferably consisting of a perforated line and permitting further reduction in size of the mini smart card.

Abstract: A method to generate a random number from certain input wherein at least parts of the input are modified by data that are independent of the generation of the random number and of the data included in the generation of the random number and a circuit configuration having a processing unit containing an encryption algorithm and a memory into which input is filed. Upon demand for a random number, the processing unit generates a random number using an encryption algorithm and input present in the memory, the current input then being changed by added data.