An example operation includes one or more of receiving, by a transport, over an open wireless network an encrypted software update and receiving, by the transport, over a closed wireless network a one-time key to decrypt the encrypted software update, wherein the one-time key is received while the transport is in motion and about to perform an action related to the software update.

A method for forming bonded mobile device connection with a vehicle includes determining a request count comprising a plurality of Bluetooth advertisement requests received from a mobile device with respect to time, determining an invalid Consumer Access Key (CAK) transmission count associated with the plurality of Bluetooth advertisement requests, generating an active bond record with the request count and the invalid CAK transmission count, determining, based on the active bond record, that a Global Attribute Profile (GATT) service associated with the mobile device is inactive, and disabling a Bluetooth advertisement response setting associated with the GATT service.

A first user device may be used to request provisioning of a secure credential on a second user device. A provisioning system may facilitate the provisioning in a manner that ensures security and privacy of the requesting parties. The provisioning requests may be made using an application on the first user device such as a third-party application or using a web application via a browser. The credential may be added to a digital wallet on the second user device. The credential may be useable by the second user device to perform one or more contactless transactions.

Embodiments described herein relate to eligibility checking for transfer of one or more electronic subscriber identity modules (eSIMs) between two mobile wireless devices. Eligibility to transfer an eSIM to an eUICC of a target device can depend on whether the eUICC of the target device satisfies certain security requirements for the eSIMs to be transferred. The mobile wireless devices can obtain a transfer eligibility result based on communication with one or more network-based servers that can determine compatibility for eSIM transfer.

Embodiments described herein relate to eligibility checking for transfer of one or more electronic subscriber identity modules (eSIMs) between two mobile wireless devices. Eligibility to transfer an eSIM to an eUICC of a target device can depend on whether the eUICC of the target device satisfies certain security requirements for the eSIMs to be transferred. The mobile wireless devices can obtain a transfer eligibility result based on communication with one or more network-based servers that can determine compatibility for eSIM transfer.

An access control method and a communications device are provided. The method includes: sending first information and/or first indication information to a first target end, where the first information includes at least one of the following: index information of a second authentication server, vendor-related information of the first communications device, and address-related information of the second authentication server; and the first indication information is used for requesting to obtain a credential related to a first network, or used to indicate that an access type is a restricted service.

A communication method and apparatus are provided, to implement automatic onboarding when no network-side information is configured on a terminal device. The method includes: The terminal device obtains auxiliary authentication information that includes identification information of one or more networks; determines access information of a first network based on first temporary authentication information and identification information of the first network, where the first network is any one of the one or more networks; triggers mutual temporary authentication with the first network based on the access information of the first network; and receives configuration information of the first network from the first network when the mutual temporary authentication succeeds. The terminal device may trigger the mutual temporary authentication with the first network based on the access information of the first network.

A mobile device comprises a functional arrangement for performing a function of the mobile device, a coupling device for connecting the mobile device to a stationary device, an authentication device for authenticating the stationary device and an activation device. The authentication device authenticates the stationary device based on information on the stationary device. The activation device activates the functional arrangement when the mobile device is connected to the stationary device by the coupling device, and when the stationary device has been authenticated by the authentication device.

An authentication method in a secure channel unused mode on a first terminal in which Fine Ranging (FiRa) applet drives according to an embodiment of the present disclosure includes generating a session basic information including a random value, transmitting the generated session basic information to a second terminal, generating session data including a session key from the generated session basic information using an authentication key pre-shared with the second terminal, and performing ultra-wide band (UWB) ranging with the second terminal using the generated session data.

An authentication method in a secure channel unused mode on a first terminal in which Fine Ranging (FiRa) applet drives according to an embodiment of the present disclosure includes generating a session basic information including a random value, transmitting the generated session basic information to a second terminal, generating session data including a session key from the generated session basic information using an authentication key pre-shared with the second terminal, and performing ultra-wide band (UWB) ranging with the second terminal using the generated session data.