Motivation

Building a mobile wallet based on eSIM.

And this documentation will help you understand eSIM technology and key integration point for building an eSIM wallet.

Persona

  1. Device Vendors : Party responsible for mobile devices.
  2. Mobile Network Operator : An entity providing access capability and communication services to Subscribers(Users) through a mobile network infrastructure.
  3. eUICC Manufacturer : Responsible for the initial cryptographic configuration and security architecture of the eUICC.
  4. CI (Certificate Issuer) : A Certificate Issuer issues Certificates for Remote SIM Provisioning system entities and acts as a trusted root for the purpose of authentication of the entities of the system. Issues test certificate to the device downloading the test profiles. More brief detail in the callout.
  5. Mobile Service Provider : Ties up with MNOs to deploy their service

<aside> đź’ˇ GSMA PKIs are managed by GSMA Certificate Issuers (CI)

Digital public key certificates play an essential role within the GSMA eSIM remote provisioning solutions.

Specific requirements for mutual authentication make internet-focussed certificates unsuitable for the GSMA remote provisioning solutions. Instead, specific Public Key Infrastructure (PKIs) are defined for eSIM and M2M remote provisioning. GSMA PKIs enable eUICC and Subscription Management entities to identify and authenticate within the GSMA remote provisioning ecosystems, facilitating security and interoperability.

GSMA SM-DP+ Service Providers LIST

</aside>

eSIM

An eSIM(embedded-SIM) is a form of programmable SIM card that is embedded directly into a device.

The overall eSIM Service can be divided into three categories:

  1. LPA (Local Profile Assistant),
  2. RSP (Remote SIM Provisioning),
  3. eUICC (Embedded Universal Integrated Circuit Card)

To avoid any confusion, suggesting the following way of looking at the definition:

**eSIM, the whole service ecosystem:

”SIM Profiles(access and managed in LPA) + eUICC(used to store and manage sensitive data and allows RSP) + RSP(creation, generation, management and the protection of resulting Profiles)”**

SIM CARD

SIM CARD

The UICC Chip embedded onto device is called eUICC in the eSIM Technology and it’s components

The UICC Chip embedded onto device is called eUICC in the eSIM Technology and it’s components

<aside> 💡 eSIM OTA(Over-The-Air) allows cellular operators to upload their SIM profile and to issue control commands to supporting devices and eSIMs embedded in smartphones and IoT devices. This enables remote life cycle management of the eSIM from its activation by a new user, through upgrades and updates, until the eSIM is canceled.

</aside>