In order to check the authorization of passengers, the following steps are performed:

storing of authorization data, for example of tickets, in an electronic storage area of a portable personal identification module (40) of the user, for example in a chip-card,

storing of identification data that are specific to the user's outer appearance in an electronic storage area of the personal identification module (40),

contactless transmission of said identification and authorization data in a portable authorization-checking device (90),

visual reproduction of said identification and authorization data with a VRD (Virtual Retina Display).

A method for securing an off-the-shelf smartphone, a secure communication system, and a security insert is provided. The method comprises removing the battery from the off-the-shelf smartphone and inserting the security insert to the battery compartment. The security insert comprises cryptographic module. The method further comprises modifying off-the-shelf smartphone and providing a power and data connection between the security insert and the smartphone. The secure communication system wirelessly transmits outgoing cellular encrypted black data, which is encrypted by the cryptographic module, from the modified off-the-shelf smartphone to a cellular network, and decrypts, by the cryptographic module, incoming cellular black data receives from the cellular network to the modified off-the-shelf smartphone. The security insert enclosure configured to be deployed in a battery compartment.

A radio communication equipment of this application comprises a controller, and an information card configured to record a profile for using a service provided by a telecommunications company. The controller comprises a switching controller configured to switch the profile recorded on the information card, and an application controller configured to control a profile-compliant application using a service provided by the telecommunications company, in compliant with the profile. The switching controller is configured to read information from a new profile on the information card, when switching to the new profile. The switching controller is configured to notify the application controller of the information read from the new profile.

A telecare-enabled mobile terminal has a controller, a first subscriber identity and a second subscriber identity. At least one mobile network interface provides telecommunication connectivity for the mobile terminal as identified by the first subscriber identity and the second subscriber identity, respectively. The controller is configured to use the first subscriber identity for outbound telecommunication traffic relating to a telecare service provided by a remote telecare provider. The controller is configured to use the second subscriber identity for outbound telecommunication traffic not relating to the telecare service.

A telecare-enabled mobile terminal has a controller, a first subscriber identity and a second subscriber identity. At least one mobile network interface provides telecommunication connectivity for the mobile terminal as identified by the first subscriber identity and the second subscriber identity, respectively. The controller is configured to use the first subscriber identity for outbound telecommunication traffic relating to a telecare service provided by a remote telecare provider. The controller is configured to use the second subscriber identity for outbound telecommunication traffic not relating to the telecare service.

The present invention provides authentication method and authentication device for communication apparatus and a communication apparatus. The communication apparatus comprises at least one of a communication terminal and a communication card, and the authentication method comprises: S10: binding identity information of owner of the communication apparatus to the communication apparatus; S20: requesting to obtain identity information of a user when the communication apparatus is restarted; S30: comparing the identity information of the user obtained through requesting with the identity information of the owner of the communication apparatus bound to the communication apparatus; S40: determining whether the obtained identity information of the user is the same as the identity information of the owner of the communication apparatus bound to the communication apparatus, if yes, proceeding to step S50, otherwise, proceeding to step S60; S50: starting the communication apparatus normally, and S60: locking the communication apparatus.

The present invention provides authentication method and authentication device for communication apparatus and a communication apparatus. The communication apparatus comprises at least one of a communication terminal and a communication card, and the authentication method comprises: S10: binding identity information of owner of the communication apparatus to the communication apparatus; S20: requesting to obtain identity information of a user when the communication apparatus is restarted; S30: comparing the identity information of the user obtained through requesting with the identity information of the owner of the communication apparatus bound to the communication apparatus; S40: determining whether the obtained identity information of the user is the same as the identity information of the owner of the communication apparatus bound to the communication apparatus, if yes, proceeding to step S50, otherwise, proceeding to step S60; S50: starting the communication apparatus normally, and S60: locking the communication apparatus.

An in-vehicle mobile station is presented. When a user purchases vehicle including in-vehicle mobile station, s/he operates his/her communication device and in-vehicle mobile station to write a profile in a SIM of in-vehicle mobile station and to activate the SIM. Specifically, the user initially operates communication device to register a profile to be written in the SIM of in-vehicle mobile station, in contract information management device. Subsequently, the user operates in-vehicle mobile station to write the profile registered in contract information management device, in in-vehicle mobile station, and to activate the mobile station.

A SIM router device is configured to access a SIM that stores a first authentication application and a second authentication application. The SIM router device includes a first input interface, a second input interface, a mapping information storage unit, and a controller. The mapping information storage unit is configured to acquire an authentication application list that lists the first authentication application and the second authentication application from the SIM, and store a mapping information in which the first input interface is associated with the first authentication application and the second input interface is associated with the second authentication application. The controller is configured to route, based on the mapping information, a first instruction received by the first input interface to the first authentication application of the SIM, and a second instruction received by the second input interface to the second authentication application of the SIM.

A method of authenticating access of an electronic device to an application server based on a subscriber identity module (SIM) associated with the electronic device. The method receiving an authentication challenge from an application executing on the device by a SIM application toolkit (SAT) executing on the device, transmitting a random number and an authentication value of the challenge to a SIM of the device by the SAT, receiving a response from the SIM by the SAT, transmitting an authentication response to the application by the SAT, where the authentication response comprises the response received from the SIM, generating an application key by the SAT based at least in part on the response received from the SIM, and transmitting the application key to the application by the SAT, whereby the application executing on the electronic device establishes a communication session with an application server via an access communication network.