Disclosed are various embodiments for extending cloud-based virtual private networks to radio-based networks. In one embodiment, a request from a client device to connect to a radio-based network is received. A virtual private cloud network of a cloud provider network to which the client device is permitted access is determined. The client device is provided with access to the virtual private cloud network through the radio-based network.

Disclosed are various embodiments for extending cloud-based virtual private networks to radio-based networks. In one embodiment, a request from a client device to connect to a radio-based network is received. A virtual private cloud network of a cloud provider network to which the client device is permitted access is determined. The client device is provided with access to the virtual private cloud network through the radio-based network.

A system for providing multiple services over mobile network using multiple IMSIs is disclosed. The system includes a mobile device and an IMSI providing server. By the operation of switching from the first IMSI to the second IMSI which are installed in the mobile device, the mobile network operators can change their role from an ISP to an ASP. Thus, data traffic, speed of the mobile network and billing system of delivering mobile internet services can be manipulated in order to meet the expectation of the OTT partners without violating the guideline of Net Neutrality of being an ISP.

Methods and apparatus that allow a device to migrate wireless service across multiple wireless networks. In one exemplary embodiment, the present invention enables storing and switching between multiple Electronic Subscriber Identity Modules (eSIM), where each eSIM is specific to a different carrier network. By loading the appropriate eSIM, the user device can authenticate itself with the selected carrier, rather than roaming. During roaming operation, the user equipment can load one or more of the previously stored eSIMs. Selection of the eSIM can be done manually by the user or can be driven by the user equipment based on desired context; for example, based on carrier signal strength, cost-effectiveness, etc. Support for multiple radio technologies also allows universal connectivity for wireless devices, even spanning previously incompatible technologies such as GSM (Global Standard for Mobile Communications), CDMA (Code Division Multiple Access), etc.

According to an embodiment, there is provided a method for authorizing use of an application on a device. The method includes: identifying a plurality of device identifiers of the device; determining authorization information based on predetermined one or more of the plurality of device identifiers; and determining authorization for use of the application on the device in response to the authorization information.

The disclosure relates to the notification of an SM-SR subscription management server by an eUICC card or an eSE element. The card includes, in local memory, at least one short number (or “short code”), and more generally an address identifier, unique to a mobile-phone operator, wherein the number is associated with an operator subscriber profile within the secure card. The card is configured to retrieve, from the local memory, a short code associated with a subscriber profile in use to send, using the retrieved short code, a card status notification to the SM-SR server. In the absence of a short code, the card uses a unique international telephone number as the recipient of the notification.

A system that incorporates the subject disclosure may perform, for example, receive secret information and non-secret information from a secure download application function, provide a request for a first verification to a secure element where the first verification is associated with access to content and/or an application that is accessible via the secure download application function, receive the first verification which is generated by the secure element based on the secret information without providing the secret information to the secure device processor, receive the non-secret information from the secure element, and generate a second verification for the access based on the non-secret information, where the content and/or application is accessible from the secure download application function responsive to the first and second verifications. Other embodiments are disclosed.

The invention is a system comprising a host device and a secure element including a plurality of virtual profiles and an execution component configured to run simultaneously several of said virtual profiles. The system comprises a discovery agent configured to provide a subset of the plurality of virtual profiles, configuration data for each virtual profile of said subset and capability data reflecting the maximum of logical channels handled by the host device. The system comprises an allocating agent configured to cooperate with the discovery agent to allocate a range of logical channels to each virtual profile of the subset based on the capability data and to determine in each of the ranges a main logical channel which remains permanently available when the virtual profile to which the range is allocated has been booted.

Methods for operating a communications-enabled application, controlling a secure profile via an operating system, and operating a cellular network are provided. Operating a communications-enable application includes detecting a need for data transmission when the mobile device has a communications status which is incompatible with the need and sending a request to activate a secure profile. Controlling the secure profile includes receiving a request from an application to have data session access via a secure profile and activating a data session utilising a secure profile. Operating the cellular network includes receiving a request to establish a cellular network data communications session from a mobile device including the communications-enabled application and establishing a data session with the mobile device using the secure profile. A mobile device and cellular network for performing the methods are also provided.

An electronic device including a receiver configured to receive a first Subscriber Identity Module (SIM); a receiver configured to receive a second SIM; and circuitry configured to receive data from the first SIM; and send a request, to a first public land mobile network (PLMN), to register the electronic device to the first PLMN, wherein the request indicates that the electronic device is a multi-SIM device and the request includes multi-SIM assistance information, and wherein the multi-SIM assistance information informs the first PLMN of the electronic device's preference for multi-SIM operations.