Engineers Garage

  • Electronic Projects & Tutorials
    • Electronic Projects
      • Arduino Projects
      • AVR
      • Raspberry pi
      • ESP8266
      • BeagleBone
      • 8051 Microcontroller
      • ARM
      • PIC Microcontroller
      • STM32
    • Tutorials
      • Audio Electronics
      • Battery Management
      • Brainwave
      • Electric Vehicles
      • EMI/EMC/RFI
      • Hardware Filters
      • IoT tutorials
      • Power Tutorials
      • Python
      • Sensors
      • USB
      • VHDL
    • Circuit Design
    • Project Videos
    • Components
  • Articles
    • Tech Articles
    • Insight
    • Invention Stories
    • How to
    • What Is
  • News
    • Electronic Product News
    • Business News
    • Company/Start-up News
    • DIY Reviews
    • Guest Post
  • Forums
    • EDABoard.com
    • Electro-Tech-Online
    • EG Forum Archive
  • DigiKey Store
    • Cables, Wires
    • Connectors, Interconnect
    • Discrete
    • Electromechanical
    • Embedded Computers
    • Enclosures, Hardware, Office
    • Integrated Circuits (ICs)
    • Isolators
    • LED/Optoelectronics
    • Passive
    • Power, Circuit Protection
    • Programmers
    • RF, Wireless
    • Semiconductors
    • Sensors, Transducers
    • Test Products
    • Tools
  • Learn
    • eBooks/Tech Tips
    • Design Guides
    • Learning Center
    • Tech Toolboxes
    • Webinars & Digital Events
  • Resources
    • Digital Issues
    • EE Training Days
    • LEAP Awards
    • Podcasts
    • Webinars / Digital Events
    • White Papers
    • Engineering Diversity & Inclusion
    • DesignFast
  • Guest Post Guidelines
  • Advertise
  • Subscribe

GSMA embedded SIM for Internet of Things 03 – eSIM architecture for consumer & M2M solutions (Continued)

By Nikhil Agnihotri January 30, 2022

eSIMs are not only going to cater to M2M solutions. They are about to have a significant impact on the consumer segment as well. Apple has already incorporated eSIM is some of its latest models. Other consumer device manufacturers are also moving on to include eSIMs in their smartphones and wearable devices. GSMA has proposed a different architecture of eSIM for consumer devices. Being GSMA-compliant solution, eSIM in consumer devices will be ensuring global internet connectivity and easy portability.

The consumer solution has a different backend infrastructure and different roles assigned to the architectural entities. While the M2M solution is server-driven and based on a push model, the consumer solution is client-driven and based on a pull model. To make the consumer model client-driven, Local Profile Assistant (LPA), either integrated into the eSIM or the consumer device, manages the entire subscription management. Let us have a look at architectural entities and the underlying architecture of consumer solutions. The consumer solution is based on GSMA’s consumer dedicated technical specifications – SGP.21, SGP.22, and SGP.23.

eSIM Card Architecture for Consumer Solutions; (Image: GSMA Specifications)

eSIM Architecture for consumer solutions
For consumer solutions, GSMA has specified remote SIM provisioning architecture, as illustrated in the diagram below.
Let us discuss different entities and their roles in this architecture.

  1. eUICC manufacturer – eUICC manufacturer (EUM) provides the eUICCs to the consumer device manufacturers. The eUICC contains the initial cryptographic configuration and security architecture. It may also contain Local Profile Assistant (LPA) integrated into the eSIM or at least interface to connect with LPA integrated into the consumer device. EUM is also responsible for issuing certification for eUICC authentication and certificates for authenticated keyset establishment between eSIM and SM-DP+.
  2. Consumer Device Manufacturer – The device manufacturer implements the LPA elements on the consumer device as well as applications that must reside on the primary (consumer) device.
  3. Operator and Communication Service Provider – Communication Service Provider (CSP) has access to SM-DP+. When a customer selects a CSP, the service provider initiates provisioning of a Profile package. The operator (MNO), on behalf of the CSP, specifies Profile characteristics, features, and applications that apply to the target eUICC.
  4. SM-DP+ – When requested by the operator (MNO), SM-DP+ creates Profiles and is responsible for their security and management. It is responsible for the delivery of a Profile to the client device within a Bound Profile Package. It also requests for the creation of ISD-P in the eUICC into which the Profile has to be installed. It remains responsible for the lifecycle management of ISD-P installed on the eUICC.
  5. SM-DS – Subscription Manager – Discovery Service (SM-DS) provides mechanisms to inform Local Discovery Service (LDS) within a device that SM-DP+ wants to communicate with it. SM-DP+ sends an Event Registration message to the SM-DS for a target consumer device. A Root SM-DS is configured on the eUICC, which has a unique address. Local Discovery Service (LDS) on the target device polls root SM-DS using the same address. If Root SM-DS has an event ID, it responds with SM-DS+ address; otherwise, it sends back a null response. In the case of cascaded SM-DS+, event registration is done with an alternative SM-DS. Then, this alternative SM-DS cascades event registration to the root SM-DS.
  6. Certificate Issuer – The certificate issuer is responsible for issuing certificates GSMA-compliant Remote SIM Provisioning entities (EUM, SM-DP+, SM-DS). It acts as a trusted third-party to authenticate different entities of the consumer solution.
  7. Subscriber and end user – A Subscriber can be a contract partner of the communication service provider (CSP). At the same time, the end-user is a customer, who may be using the consumer device and services related to enabled Profiles.

eSIM hardware and working
The hardware interface and commands remain the same for the eSIM irrespective of it is used in an M2M device or a consumer device. eSIM is a single global SIM, and its hardware and other technical specifications are not dependant on its use-case. eSIM is always based on GlobalPlatform Card Specifications (GPCS) and may be available in standardized ETSI form factors (2FF, 3FF, 4FF, MFF2). It is loaded with the eUICC operating system, on top of which various other security profiles, network applications, and SIM applets run. The SIM exchanges commands with the device controller to manage various subscription and services related functions. The structure of commands and responses is determined by the ETSI specifications (TS 102 221). Check out the eSIM architecture for M2M solutions to learn more about hardware specifications, commands, and responses of eSIM.

eSIM card architecture for consumer solutions
The card architecture of eSIM mainly refers to the software architecture of the eSIM. The following diagram shows the eSIM card architecture for consumer solutions.

eSIM Card Architecture for Consumer Solutions; (Image: GSMA Specifications)

As the off-card entities in a consumer solution have different roles, the different on-card representatives also operate differently on eSIM when it is embedded in a consumer device.

The eUICC is loaded with an eUICC operating system (SIM operating system) that supports all features defined in the GlobalPlatform Card Specifications (GPCS). As a SIM operating system, it includes a telecom framework, profile package interpreter, and profile policy enabler. The OS is responsible for managing security domains, and MNO enabled Profiles (Provisioning/Operational Profiles). The telecom framework is an operating system service and is responsible for the implementation of standardized network authentication algorithms to the NAAs (Network Access Applications) hosted in the ISD-P. It is also responsible for the configuration of algorithms with necessary parameters. The Profile Policy Enabler is responsible for the validation and enforcement of Profile Policy Rules. The Profile Package Interpreter is also an operating system service that translates Profile package data into installed Profile using the internal format of the target eUICC.

Embedded UICC Controlling Authority Security Domain (ECASD) is responsible for the storage of necessary credentials for the security domains on the eUICC. There can be only one ECASD on an eUICC. It is installed and personalized by the EUM according to the GlobalPlatform Card Specification. It contains eUICC private keys for creating signatures, Certificates for eUICC authentication, Certificate Issuers’ (CI) root public keys for verifying SM-DP+, and SM-DS Certificates and eUICC Manufacturers’ (EUMs) keyset for key/Certificate renewal. It also provides security functions during key establishment and eUICC authentication.

ISD-R creates new ISD-Ps and is responsible for the lifecycle management of all ISD-Ps. ISD-P is again a security domain that is responsible for hosting of a Profile. ISD-P is used to download and install Profiles and is on-card representative of SM-DP+. MNO-SD is the on-card representative of MNO (Operator). It contains OTA (Over-The-Air) Keys and is responsible for providing a secure OTA channel.

The most important on-card entity in consumer solution is Local Profile Assistant. LPA services provide necessary access to the services and data required by the LPA functions like Root SM-DS address, default SM-DP+ address, Local Profile Management, functions for the LPA to authenticate, and interact with the SM-DS. It enables the reception of Bound Profile Package and provides information about installed Profiles and Profile metadata. It also ensures that access to EID (eUICC ID) is restricted only to LPA.

How eSIM works in consumer devices
In consumer solutions, eUICC operates on a pull-model. When subscribed to a CSP, LPA on the eUICC facilitates the reception of Bound Profile Package. ISD-R then creates an ISD-P, which is responsible for hosting a Profile. The enabled ISD-P downloads and installs the requested Profile. The MNO-SD provides a secure OTA channel through which various network applications and SIM applets access services subscribed by the consumer device user. In a consumer solution, the client device that manages all the subscription-related operations instead of those operations being remotely managed by the SM-DP server.


Filed Under: Tech Articles

 

Next Article

← Previous Article
Next Article →

Questions related to this article?
👉Ask and discuss on Electro-Tech-Online.com and EDAboard.com forums.



Tell Us What You Think!! Cancel reply

You must be logged in to post a comment.

EE TECH TOOLBOX

“ee
Tech Toolbox: 5G Technology
This Tech Toolbox covers the basics of 5G technology plus a story about how engineers designed and built a prototype DSL router mostly from old cellphone parts. Download this first 5G/wired/wireless communications Tech Toolbox to learn more!

EE Learning Center

EE Learning Center
“engineers
EXPAND YOUR KNOWLEDGE AND STAY CONNECTED
Get the latest info on technologies, tools and strategies for EE professionals.

HAVE A QUESTION?

Have a technical question about an article or other engineering questions? Check out our engineering forums EDABoard.com and Electro-Tech-Online.com where you can get those questions asked and answered by your peers!


RSS EDABOARD.com Discussions

  • Identification of a 6 pin smd chip (sto-23-6) marked E2
  • Dynacord enter protect
  • IGBTs without negative gate drive
  • Need suggestions in task NI6363 retrigger (analog trigger)
  • Monte-Carlo simulation error on ADE-XL

RSS Electro-Tech-Online.com Discussions

  • Does US electric code allow branching ?
  • Faulty heat air gun (dc motor) - problem to locate fault due to Intermittent fault
  • Fun with AI and swordfish basic
  • Sump pit water alarm - Kicad 9
  • turbo jet fan - feedback appreciated.

Featured – LoRa/LoRaWan Series

  • What is the LoRaWAN network and how does it work?
  • Understanding LoRa architecture: nodes, gateways, and servers
  • Revolutionizing RF: LoRa applications and advantages
  • How to build a LoRa gateway using Raspberry Pi
  • How LoRa enables long-range communication
  • How communication works between two LoRa end-node devices

Recent Articles

  • How IoT network topologies work
  • The top five AI startups to watch in 2025
  • STMicroelectronics unveils SoC based on secure MCU
  • Nexperia’s 48 V ESD diodes support higher data rates with ultra-low capacitance design
  • Taoglas releases Patriot antenna with 18 integrated elements covering 600 to 6000 MHz

EE ENGINEERING TRAINING DAYS

engineering

Submit a Guest Post

submit a guest post
Engineers Garage
  • Analog IC TIps
  • Connector Tips
  • Battery Power Tips
  • DesignFast
  • EDABoard Forums
  • EE World Online
  • Electro-Tech-Online Forums
  • EV Engineering
  • Microcontroller Tips
  • Power Electronic Tips
  • Sensor Tips
  • Test and Measurement Tips
  • 5G Technology World
  • Subscribe to our newsletter
  • About Us
  • Contact Us
  • Advertise

Copyright © 2025 WTWH Media LLC. All Rights Reserved. The material on this site may not be reproduced, distributed, transmitted, cached or otherwise used, except with the prior written permission of WTWH Media
Privacy Policy

Search Engineers Garage

  • Electronic Projects & Tutorials
    • Electronic Projects
      • Arduino Projects
      • AVR
      • Raspberry pi
      • ESP8266
      • BeagleBone
      • 8051 Microcontroller
      • ARM
      • PIC Microcontroller
      • STM32
    • Tutorials
      • Audio Electronics
      • Battery Management
      • Brainwave
      • Electric Vehicles
      • EMI/EMC/RFI
      • Hardware Filters
      • IoT tutorials
      • Power Tutorials
      • Python
      • Sensors
      • USB
      • VHDL
    • Circuit Design
    • Project Videos
    • Components
  • Articles
    • Tech Articles
    • Insight
    • Invention Stories
    • How to
    • What Is
  • News
    • Electronic Product News
    • Business News
    • Company/Start-up News
    • DIY Reviews
    • Guest Post
  • Forums
    • EDABoard.com
    • Electro-Tech-Online
    • EG Forum Archive
  • DigiKey Store
    • Cables, Wires
    • Connectors, Interconnect
    • Discrete
    • Electromechanical
    • Embedded Computers
    • Enclosures, Hardware, Office
    • Integrated Circuits (ICs)
    • Isolators
    • LED/Optoelectronics
    • Passive
    • Power, Circuit Protection
    • Programmers
    • RF, Wireless
    • Semiconductors
    • Sensors, Transducers
    • Test Products
    • Tools
  • Learn
    • eBooks/Tech Tips
    • Design Guides
    • Learning Center
    • Tech Toolboxes
    • Webinars & Digital Events
  • Resources
    • Digital Issues
    • EE Training Days
    • LEAP Awards
    • Podcasts
    • Webinars / Digital Events
    • White Papers
    • Engineering Diversity & Inclusion
    • DesignFast
  • Guest Post Guidelines
  • Advertise
  • Subscribe