US 11233780

Here is a concise summary of US Patent 11233780:

US Patent Number: 11233780
Title: Embedded universal integrated circuit card supporting two-factor authentication
Current Assignee: Network 1 Technologies Inc, M2M and IoT Technologies LLC
Original Assignee: Network 1 Technologies Inc
Inventor(s): John A. Nix
Filing Date: 2019-06-26
Issue Date: 2022-01-25

Abstract:
The patent describes methods and systems for an embedded universal integrated circuit card (eUICC) that supports two-factor authentication. A module receives an encrypted profile containing two ciphertext portions. It decrypts the first portion using an eUICC profile key and symmetric ciphering to obtain an initial key (K) and network module identity. This allows the module to perform a first authentication with a wireless network. After this, a user associated with the module performs a second authentication (second factor) with the mobile network operator (MNO) over the wireless network. Upon successful second authentication, the MNO sends a symmetric key to the module, which is then used to decrypt the second ciphertext portion of the profile. This reveals a second, more permanent key (K) and network module identity. The module then disconnects and reconnects to the wireless network using this second key and identity, performing a second, more secure authentication.

---

Plain-Language Overview of Independent Claims:

• Independent Claim 1 (Method for securing communications):
  This claim outlines a process for a device (referred to as a "module") to establish secure communication. The module first receives an encrypted profile containing two distinct encrypted parts. It decrypts the first part to extract an initial security key and a network identity. Using these, the module performs an initial authentication with a wireless network. Subsequently, the module carries out a second authentication with the mobile network operator (MNO) using a "second factor" (a different verification method) over the same wireless network. Only after successfully completing this second authentication does the MNO send a specific symmetric key to the module. The module then uses this newly received symmetric key to decrypt the second encrypted part of the profile, thereby gaining access to a second, presumably more robust or permanent, security key and network identity.

• Independent Claim 11 (Module for securing communications):
  This claim describes a physical device, the "module," designed for secure communications. This module includes a physical interface for wireless network connection, a nonvolatile memory to store an embedded universal integrated circuit card (eUICC) and an encrypted profile (which has two encrypted sections), and a central processing unit (CPU). The CPU is specifically configured to carry out the steps detailed in Claim 1: decrypting the first part of the encrypted profile to get an initial key and identity, performing a first authentication with the wireless network using these credentials, then performing a second, two-factor authentication with the MNO over the wireless network, receiving a symmetric key from the MNO after this second authentication, and finally using that symmetric key to decrypt the second part of the profile to reveal a second key and network identity.

• Independent Claim 15 (Method for securing communications):
  This claim details a method focused on securely provisioning an eUICC profile key. The module initiates the process by sending its eUICC identity to an eUICC subscription manager via a first network. The module then receives an encrypted eUICC profile key, which was encrypted using an asymmetric ciphering algorithm and the eUICC's public key. The module decrypts this received key using the asymmetric ciphering algorithm and its corresponding private key to obtain a plaintext eUICC profile key. Subsequently, the module receives an encrypted profile, which itself was encrypted using the now-known plaintext eUICC profile key and a symmetric ciphering algorithm. The module then decrypts this encrypted profile to extract a plaintext first key and a plaintext first network module identity. Finally, the module uses this plaintext first key and identity to perform a first authentication with a wireless network.

---

CAFC 2026 Dockets:
Based on the provided patent information, there is currently no direct CAFC 2026 docket listed for US11233780. However, the patent family is involved in litigation:

• A PTAB (Patent Trial and Appeal Board) case, IPR2026-00114, has been filed and is pending.
• A US case (2:25-cv-00667) has been filed in the Texas Eastern District Court.
• The patent family also has first worldwide family litigation filed.

While PTAB and District Court cases can eventually lead to appeals at the CAFC, these specific entries do not indicate an active CAFC docket for 2026 at this time.