Abstract: Method, system and apparatus for provisioning a subscription of a service to a device comprising: receiving a message from a device, the message protected by first provisioning data installed on the device. Authenticating the message using data corresponding to the first provisioning data. On successful authentication, providing data enabling the device to recover protected second provisioning data from a subscription manager. Providing the device with the protected second provisioning data.

Abstract: Provisioning a subscriber in a network is provided by: receiving an initialisation request for access to a network on behalf of a subscriber, at an admission platform of a network operator associated with the subscriber, and assigning the subscriber limited access rights to the network, the limited access rights being configured for communication between the subscriber and a subscription manager, for reconfiguration of identity information associated with the subscriber.

Abstract: Method, system and apparatus for provisioning a subscription of a service to a device comprising: receiving a message from a device, the message protected by first provisioning data installed on the device. Authenticating the message using data corresponding to the first provisioning data. On successful authentication, providing data enabling the device to recover protected second provisioning data from a subscription manager. Providing the device with the protected second provisioning data.

Abstract: Provisioning a subscriber in a network is provided by: receiving an initialisation request for access to a network on behalf of a subscriber, at an admission platform of a network operator associated with the subscriber, and assigning the subscriber limited access rights to the network, the limited access rights being configured for communication between the subscriber and a subscription manager, for reconfiguration of identity information associated with the subscriber.

Abstract: Security key management is provided between a cellular network and a mobile terminal. The mobile terminal and an authentication management node of the cellular network both store a common security key. A key management message is communicated between the cellular network and the mobile terminal. In response to the communication, an intermediate security key specific to the mobile terminal is generated using the stored common authentication key. A session security key is generated using the intermediate security key, for securing a communications session between the cellular network and the mobile terminal.

Abstract: Where a smartcard is embedded or inaccessible within a cellular telecommunications device (i.e. an eUICC), locking the smartcard (or the subscription associated with the smartcard) to a particular MNO while allowing the MNO to be altered legitimately presents a challenge. A method is described using policy control tables stored in a trusted service manager registry and/or the smartcard's data store. By maintaining the policy control table, any MNO subscription may be downloaded/activated on the smartcard but the device will be prevented from accessing the desired MNO because that access would violate the lock rules.

Abstract: System and method of anonymising data comprising the steps of reading parameters of an anonymisation procedure from a configurable anonymisation procedure resource. Receiving data to be anonymised from a data source, wherein the data source is identified by one or more of the read parameters. Applying one or more transformations to the received data according to the anonymisation procedure, wherein the one or more transformations include transforming at least an original portion of the received data into a transformed portion.

Abstract: To facilitate a change in network authentication key (Ki) for use by a smart card (SIM) during authentication on a cellular telecommunications network, there is provided a smart card management scheme that combines key derivation with over the air (OTA) provisioning. This scheme ensures both that the Ki is never transmitted OTA and that the Ki is stored in two locations only: on the SIM and at an authentication center (AuC).

Abstract: System method of anonymising data comprising the steps of receiving data to be anonymised. Applying one or more transformations to the received data according to a transformation configuration resource, wherein the one or more transformations include transforming at least an original portion of the received data into a transformed portion, wherein the original portion of the received data is recoverable from the transformed portion using stored information.

Abstract: System and method of anonymising data comprising the steps of reading parameters of an anonymisation procedure from a configurable anonymisation procedure resource. Receiving data to be anonymised from a data source, wherein the data source is identified by one or more of the read parameters. Applying one or more transformations to the received data according to the anonymisation procedure, wherein the one or more transformations include transforming at least an original portion of the received data into a transformed portion.

Abstract: Where a smartcard is embedded or inaccessible within a cellular telecommunications device (i.e. an eUICC), locking the smartcard (or the subscription associated with the smartcard) to a particular MNO while allowing the MNO to be altered legitimately presents a challenge. A method is described using policy control tables stored in a trusted service manager registry and/or the smartcard's data store. By maintaining the policy control table, any MNO subscription may be downloaded/activated on the smartcard but the device will be prevented from accessing the desired MNO because that access would violate the lock rules.

Abstract: A framework whereby mobile terminals are configured and managed by a central server. In accordance with one aspect of the present invention, there is provided a mobile telecommunications terminal including a first execution environment and a second execution environment, each execution environment being arranged to execute a respective device management agent and each agent issuing, in accordance with instructions from a device management server, management actions that act upon one or more respective management entities running within one or more of the execution environments; wherein the management entities of the second execution environment are grouped into a management structure, the management structure being one of the management entities within the first execution environment, whereby the he first and second execution environments permit the device management server is permitted to manage applications and/or services running within both.