A method of computer authentication of a user request for a Subscriber Identity Module (SIM) card transfer by a biometric signature from a user equipment (UE) comprising assigning a risk score, by a mobile service provider, to a user account based on user activity in the user account, wherein the user activity includes a SIM card transfer authorization. The mobile service provider then sends a message requesting a biometric signature from an authentication application executing in memory on the UE. The authentication application on the UE then proceeds capturing a biometric signature, encrypting the biometric signature, and sending an encrypted biometric signature to the mobile service provider using a wireless communication protocol. The mobile service provider then compares the biometric signature to an authorized signature and modifies the risk score based on the comparison.

A method of computer authentication of a user request for a Subscriber Identity Module (SIM) card transfer by a biometric signature from a user equipment (UE) comprising assigning a risk score, by a mobile service provider, to a user account based on user activity in the user account, wherein the user activity includes a SIM card transfer authorization. The mobile service provider then sends a message requesting a biometric signature from an authentication application executing in memory on the UE. The authentication application on the UE then proceeds capturing a biometric signature, encrypting the biometric signature, and sending an encrypted biometric signature to the mobile service provider using a wireless communication protocol. The mobile service provider then compares the biometric signature to an authorized signature and modifies the risk score based on the comparison.

A wireless communication device for establishing two different user equipment (UE) radio access network (RAN) attachments. The wireless communication device comprises an application processor; a baseband processor; a non-transitory memory; a virtual user equipment (UE) application stored in the non-transitory memory that, when executed by the application processor as a first virtual UE instance accesses a first eSIM profile stored in the non-transitory memory, establishes a first UE attachment to a radio access network based on credentials accessed from the first eSIM profile, and conducts a first wireless communication session via the first UE attachment, and when executed by the application processor as a second virtual UE application instance accesses a second eSIM profile stored in the non-transitory memory, establishes a second UE attachment to a radio access network based on credentials accessed from the second eSIM profile, and conducts a second wireless communication session via the second UE attachment.

A wireless communication device for establishing two different user equipment (UE) radio access network (RAN) attachments. The wireless communication device comprises an application processor; a baseband processor; a non-transitory memory; a virtual user equipment (UE) application stored in the non-transitory memory that, when executed by the application processor as a first virtual UE instance accesses a first eSIM profile stored in the non-transitory memory, establishes a first UE attachment to a radio access network based on credentials accessed from the first eSIM profile, and conducts a first wireless communication session via the first UE attachment, and when executed by the application processor as a second virtual UE application instance accesses a second eSIM profile stored in the non-transitory memory, establishes a second UE attachment to a radio access network based on credentials accessed from the second eSIM profile, and conducts a second wireless communication session via the second UE attachment.

Embodiments described herein relate to eligibility checking for transfer of one or more electronic subscriber identity modules (eSIMs) between two mobile wireless devices. Eligibility to transfer an eSIM to an eUICC of a target device can depend on whether the eUICC of the target device satisfies certain security requirements for the eSIMs to be transferred. The mobile wireless devices can obtain a transfer eligibility result based on communication with one or more network-based servers that can determine compatibility for eSIM transfer.

Embodiments described herein relate to eligibility checking for transfer of one or more electronic subscriber identity modules (eSIMs) between two mobile wireless devices. Eligibility to transfer an eSIM to an eUICC of a target device can depend on whether the eUICC of the target device satisfies certain security requirements for the eSIMs to be transferred. The mobile wireless devices can obtain a transfer eligibility result based on communication with one or more network-based servers that can determine compatibility for eSIM transfer.

According to various embodiments, an electronic device comprises: a communication circuit; a first subscriber identification module (SIM) comprising subscriber identification circuitry and including information for providing a first communication service; a memory; and at least one processor operatively coupled to the communication circuit, the first SIM, and the memory, wherein the memory can store instructions that when executed, cause the at least one processor to: check whether first SIM (SIM) data cached in the memory being valid in association with the information for providing the first communication service of the first SIM at initialization based on the first SIM; perform initialization associated with the first SIM using the first cached SIM data based on the first cached SIM data being valid; and perform initialization based on the first SIM using the first SIM data associated with the information for providing the first communication service from the first SIM based on the first cached SIM data not being valid.

According to various embodiments, an electronic device comprises: a communication circuit; a first subscriber identification module (SIM) comprising subscriber identification circuitry and including information for providing a first communication service; a memory; and at least one processor operatively coupled to the communication circuit, the first SIM, and the memory, wherein the memory can store instructions that when executed, cause the at least one processor to: check whether first SIM (SIM) data cached in the memory being valid in association with the information for providing the first communication service of the first SIM at initialization based on the first SIM; perform initialization associated with the first SIM using the first cached SIM data based on the first cached SIM data being valid; and perform initialization based on the first SIM using the first SIM data associated with the information for providing the first communication service from the first SIM based on the first cached SIM data not being valid.

Methods, computer program products, and apparatuses are provided for enabling a user equipment (UE) to connect to the wireless access network that support non-seamless wireless local area network (WLAN) offload (NSWO), such as using the UE's fifth generation (5G) credentials. An apparatus may include a processor and a memory storing computer program code configured to cause the apparatus to request, by the UE, a wireless connection to a network entity; receive, by the UE, from the network entity, an identity request; and in response to the identity request, cause transmission, by the UE, an identity response including a UE identifier to the network entity such that the UE is configured to establish a security context with the network entity upon successful authentication using the UE identifier.

Methods, computer program products, and apparatuses are provided for enabling a user equipment (UE) to connect to the wireless access network that support non-seamless wireless local area network (WLAN) offload (NSWO), such as using the UE's fifth generation (5G) credentials. An apparatus may include a processor and a memory storing computer program code configured to cause the apparatus to request, by the UE, a wireless connection to a network entity; receive, by the UE, from the network entity, an identity request; and in response to the identity request, cause transmission, by the UE, an identity response including a UE identifier to the network entity such that the UE is configured to establish a security context with the network entity upon successful authentication using the UE identifier.