Remote SIM provisioning explained

Remote SIM provisioning is a specification realized by GSMA that allows consumers to remotely activate the subscriber identity module (SIM) embedded in a portable device such as a smart phone, smart watch, fitness band or tablet computer.[1] [2] The specification was originally part of the GSMA's work on eSIM[3] and it is important to note that remote SIM provisioning is just one of the aspects that this eSIM specification includes. The other aspects being that the SIM is now structured into "domains" that separate the operator profile from the security and application "domains". In practise "eSIM upgrade" in the form of a normal SIM card[4] is possible (using the Android 9 eSIM APIs) or eSIM can be included into an SOC.[5] The requirement of GSMA certification is that personalisation packet is decoded inside the chip and so there is no way to dump Ki, OPc and 5G keys. Another important aspect is that the eSIM is owned by the enterprise, and this means that the enterprise now has full control of the security and applications in the eSIM, and which operators profiles are to be used.

Background to the specification

In the background of the technology looked to address the following issues:

Origin

The GSM Association (GSMA) which brings together about 800 operators and 250 mobile ecosystem companies became the first to come up with the Consumer Remote SIM Provisioning initiative. The beginning of creation the technology was announced in the summer 2014. The complete version of the specification was realized in February, 2016.Initially, the specification was supposed to be used just by M2M devices, but since December, 2015 it has begun being spread over various custom wearable devices, and into enterprise applications like authentication and identity management.[7]

"This new specification gives consumers the freedom to remotely connect devices, such as wearables, to a mobile network of their choice and continues to evolve the process of connecting new and innovative devices," Alex Sinclair, Chief Technology Officer, GSMA.[8]
Besides, the right of independent service providers to transmit commands of loading profiles to SIM-cards in the device has been amended and the possibility to store arrays of profiles in independent certified data centers (Subscriptions manager) has appeared.

Functions and benefits

The specification that covers the carrier selection aspects aims to allow consumers to choose a mobile network operator from a wide range to activate the SIM embedded in a device via a subscription. It aims to simplify the users’ life by connecting their multiple devices through the same subscription. It should also motivate mobile device manufacturers to develop the next generation of the mobile-connected devices that will suit better the wearable technology applications. The specification that covers the carrier selection for M2M devices is simpler since typically there is no subscriber involved (e.g. changing the operator in an electricity meter).

The language that is used to describe these specification is a little confusing since eSIM is not a physical format (or "form factor" - the phrase that is used to describe the various SIM sizes). The eSIM describes the functionality in the SIM, not the physical size of the SIM - and there are eSIMs in many formats (2FF, 3FF, 4FF, MFF).

GSMA have also developed a compliance framework[9] for eSIM devices, eUICCs, and subscription management products - to help with interoperability and security for products supporting eSIM. This is published by the GSMA as SGP.24,[10] the eSIM compliance process describes common compliance requirements for:

Operation

Remote provisioning on the host device is initiated by the Local Profile Assistant (LPA), a software package that follows the RSP specification.

When the LPA wants to retrieve a carrier profile it contacts a subscription manager (SM) service on the internet via HTTPS. The address of the SM can be defined:

The LPA is responsible for validating the X.509 certificate of the SM is valid and issued by the GSMA certificate authority.[11] Once validation is complete the LPA will coordinate a secure channel between the eUICC and the SM using challenge-response authentication to enter programming mode. The LPA will request carrier profiles available for download, either by submitting the activation code provided by the user or the eSIM ID (EID) of the eUICC. The SM will provide the requested profile encrypted in a way that only the eUICC can decrypt/install to ensure the network authentication key remains secure.

Notes and References

  1. Web site: eSIM — Что это и как подключить в России. 2020-09-22. ru-RU.
  2. GSMA releases remote provisioning specification to help consumers connect mobile devices http://www.gsma.com/rsp/
  3. Web site: The SIM for the next Generation of Connected Consumer Devices - eSIM. eSIM. en-GB. 2018-03-01.
  4. Web site: eSIM.me Store . 2022-05-28 . esim.me . en.
  5. Web site: Vodafone, Qualcomm Technologies, and Thales Deliver World-First Smartphone Demonstration of Integrated SIM (iSIM) Technology Qualcomm . 2022-05-28 . www.qualcomm.com . en.
  6. News: Gartner Says 8.4 Billion Connected. 2018-03-01. en.
  7. News: BTG E-SIM project enters next phase - BTG. 2016-06-14. BTG. 2018-03-01. nl-NL.
  8. Web site: GSMA Remote Provisioning Release.
  9. Web site: GSMA eSIM Compliance Process.
  10. Web site: GSMA SGP 24.
  11. Web site: GSMA Certificate Issuer (CI). 2022-01-22. eSIM. en-US.