Abstract: Herein provided is a solution to recover a subscription profile of a user that has lost or broken their mobile phone, smartphone, PDA, or other type of terminal. The solution reduces the risk of a subscription clone after having broken or lost their device. In one embodiment, a method herein provides for the recovering of a subscription profile loaded in a secure element that would not otherwise be retrievable from a telecommunication terminals, like eUICCs. The method includes the steps of retrieving the profile downloaded in the first secure element, and then installing it in a second secure element. Other embodiments are disclosed.

Abstract: The invention is a secure element comprising a virtual machine able to work in admin mode and in runtime mode. The secure element comprises two enhanced containers. Each of said enhanced containers can be either in an activated state or in a disabled state. Only one of the enhanced containers can be in activated state at any given time. The virtual machine is adapted to access each of the enhanced containers when working in admin mode. The virtual machine cannot access an enhanced container which is in disabled state when working in runtime mode.

Abstract: Mutual authentication between: (i) a user terminal cooperating with a security element and an application for registering with a service, and (ii) a remote server that provides the service, by means of a third-party portal, includes: i) transmitting, to the remote server by means of the portal, signed information R enabling the security element to be authenticated in the remote server; ii) authenticating the security element in the remote server; iii) transmitting a value R? signed by the remote server to the application by means of the portal; iv) transmitting a request for verification of the signed value R? from the application to the security element; v) verifying, in the security element, the signature of the remote server and whether the requested service has been granted by the remote server; vi) establishing a secure connection with the remote server using the security element, and requesting that the service be executed.

Abstract: The invention relates, in particular, to a method for updating secure elements included in terminals of a telecommunication network. The terminals connect, for recurring updates and according to a first order, to a server of the network such that said server can transmit data thereto. In the context of a process for updating the secure elements, the method comprises transmitting messages requesting connection to the secure elements such that the latter connect to the server. According to the invention, the method comprises the prioritized transmission of the messages requesting connection to the secure elements in an order that is the reverse of the first order, in order to update, on a prioritized basis, the last secure elements that were updated by the recurrent updates from the start of the update process.

Abstract: Mutual authentication between: (i) a user terminal cooperating with a security element and an application for registering with a service, and (ii) a remote server that provides the service, by means of a third-party portal, includes: i) transmitting, to the remote server by means of the portal, signed information R enabling the security element to be authenticated in the remote server; ii) authenticating the security element in the remote server; iii) transmitting a value R? signed by the remote server to the application by means of the portal; iv) transmitting a request for verification of the signed value R? from the application to the security element; v) verifying, in the security element, the signature of the remote server and whether the requested service has been granted by the remote server; vi) establishing a secure connection with the remote server using the security element, and requesting that the service be executed.

Abstract: The invention is a secure element comprising a virtual machine able to work in admin mode and in runtime mode. The secure element comprises two enhanced containers. Each of said enhanced containers can be either in an activated state or in a disabled state. Only one of the enhanced containers can be in activated state at any given time. The virtual machine is adapted to access each of the enhanced containers when working in admin mode. The virtual machine cannot access an enhanced container which is in disabled state when working in runtime mode.

Abstract: The invention relates, in particular, to a method for updating secure elements included in terminals of a telecommunication network. The terminals connect, for recurring updates and according to a first order, to a server of the network such that said server can transmit data thereto. In the context of a process for updating the secure elements, the method comprises transmitting messages requesting connection to the secure elements such that the latter connect to the server. According to the invention, the method comprises the prioritized transmission of the messages requesting connection to the secure elements in an order that is the reverse of the first order, in order to update, on a prioritized basis, the last secure elements that were updated by the recurrent updates from the start of the update process.