eSIM (eUICC) forensics

It seems that the initial config process to install a Issuer Security Domain - Profile (ISD-P) to activate an eUICC ID (EID) had no Proof Of Concept (POC) in real life.

The secure communication over the Android App and the Bluetooth transactions (e.g. Samsung setup process) are nowhere standardized. Do I miss something?

Rolf did you see this web article?

http//www.smartinsights.net/Secure-Transactions-News/SIM-vendors-showcase-eUICC-Proof-of-Concept

Just for clarification the above identifies those involved with their eUICC P-O-C and it might be stored their study case archives.

GSMA use the word "MAY" in their documents when referring to EID RSP Technical Specification Version 1.0 13 January 2016 - http//www.gsma.com/rsp/wp-content/uploads/docs/SGP.22%20Technical%20Specification%20v.1.0.pdf

GSMA (as do 3GPP, ETSI, etc.) follow the convention for certain words as per the interpretations given in RFC2119 - https://www.ietf.org/rfc/rfc2119.txt

trewmte, no, thank you for the information. As eUICC is a 'new age' in crypto, security and provisioning of 'eSIMs' its worthy to deep understand this issue.

Profile Download Initiation is described on page 24 top (The End User MAY initiate, trewmte you are right)

http//www.gsma.com/rsp/wp-content/uploads/docs/SGP.22%20Technical%20Specification%20v.1.0.pdf

Mainly ES2+ is running, which is illustrated on page 26 top

http//www.gsma.com/newsroom/wp-content/uploads/SGP.21-v1.01.pdf

The setup with MNO-Smartphone-App-Bluetooth-Device (eUICC) (Remote SIM Provisioning RSP) runs by ES2 and the interfaces SM-DP+ (ES2+) (residing on eUICC) - MNO (ES2+).

Hold me cracy An Android Smartphone infected with spyware can tap the initiation as timely splitted in subprocesses (time to intercept).

Willing to learn if I am wrong. Please tell me.

Did anybody decap the MFF2 of G&D? Who knows if HiSilicon showed somewhere up as 'trusted manufacturer' for eUICCs?

Who did analyze the Samsung Gear S2 3G in-lab? (May chip-out)

Worth watching Simulity presentation at M2M Summit 2015

https://www.youtube.com/watch?v=ml_eAy0UTWk

Do you find the eSIM (Infineon) on the PCB (no 1st April joke)? If yes, pls mark and repost -)

http//images.anandtech.com/doci/11175/esim_2.jpg

Do you find the eSIM (Infineon) on the PCB (no 1st April joke)? If yes, pls mark and repost -)

http//images.anandtech.com/doci/11175/esim_2.jpg

Not seen one yet.

However, when I see how minute the SoC-chip is perhaps having an optical microscope is going to be needed for examination purposes

http//www.anandtech.com/show/11175/infineon-shows-off-future-of-esim-cards-1-65-mm2-14nm-ff

So at least we have some idea who is going to use eSIM

https://www.otrglobal.com/newsroom/cnotes/134413

Apple May Go Its Own Way

…….

Apple, however, has gone quiet on its role in this new technology. A telecom executive said he believes the ongoing delays by GSMA to finalize specifications (see OTR Global's May 25, 2016 note) and severe security issues during test runs of devices (see OTR Global's Oct. 5, 2016 note) prompted Apple to go its own way and prepare a launch at a later date.

Multi-Carrier Tablets Already in 2017
Engineers who specialize in remote provisioning of customer data for mobile phones said Samsung Electronics Co. Ltd. (005930 KS) is expected to drive devices with embedded SIM cards into the market in Apple's absence.

……………….

Small Group of Operators

………………

When it comes to the smartphones, though, sources expect the first device to most likely be limited to a small group of operators. "This has nothing to do with exclusivity; this is more about the lack of skills. Some carriers are simply not ready to do this yet, and so maybe just a handful of names will move ahead with this," one source said, adding he believes two network operators in Europe and one each in the United States and China most likely have the overall process of provisioning, billing and security ready for the first eSIM phone launches early next year.

Special Setup for China Likely
Another source said discussions between operators and handset manufacturers on some technical details are ongoing. Both sides agree on the need for two secure elements in an eSIM phone (one for the embedded SIM card and one for other secure services like mobile payments). Samsung, as the new strong force in eSIM launches, prefers to use Infineon Technologies AG's secure element in its high-end Galaxy devices globally, with the exception of in China, where Samsung is believed to use NXP Semiconductors N.V. instead. (Apple's sole supplier to date is NXP.) Sources expect European and U.S. operators to insist on manufacturers using eSIMs from established Western vendors Gemalto N.V., Oberthur Technologies S.A. or German-based Giesecke & Devrient GmbH, though Chinese network operators are expected to insist on Chinese players Eastcompeace Technology Co. Ltd. (002017 CH), Watchdata System Co. Ltd. or market leader Hengbao Co. Ltd. (002104 CH). "Samsung is relatively weak in China, so they will just go with what the carriers want, I think," a manager from a network operator said. Sources expect G&D to win the eSIM contract for the tablets in 2017 and for the eSIM phone launch at Mobile World Congress 2018 due to a technological lead over its major two competitors in Western markets.

An improved Apple patent for tamper prevention of eSIM appeared here

https://patents.google.com/patent/US20170078870A1/en

Even patent engineers are not perfect eSIM stands for embedded not electronic SIM.

### UltraCompact Newborn eSIMs are called

bootstrap-type eSIM

, after registration process of subscription they change name to

operator-type eSIM

.

We search the 20170094628 Apple patent application mentioned here

https://translate.google.com/#zh-CN/en/%E6%9C%89%E5%9B%BE%E6%9C%89%E7%9C%9F%E7%9B%B8%EF%BC%81iPhone%208%E7%9C%9F%E7%9A%84%E6%9C%89%E5%8F%8C%E5%8D%A1%E5%8F%8C%E5%BE%85%E5%8A%9F%E8%83%BD%EF%BC%81%0Aiphone8%E5%8F%8C%E5%8D%A1%E5%8F%8C%E5%BE%85%0A%E6%9D%A5%E6%BA%90%EF%BC%9A%E8%81%8A%E8%B4%A5%E7%BD%91%E5%8F%91%E5%B8%83%E6%97%B6%E9%97%B4%EF%BC%9A2017-04-12%2023%3A50%3A12%0A%EF%BB%BF%E7%82%B9%E5%87%BB%E4%B8%8A%E9%9D%A2%E7%9A%84%E8%93%9D%E5%AD%97%0A%0A%0A%0A%E4%B8%80%E9%94%AE%E5%85%B3%E6%B3%A8iPhone%E9%A2%91%E9%81%93%E2%98%80%20iPhone%E9%A2%91%E9%81%93%E6%98%AF%E5%BE%AE%E4%BF%A1%E9%87%8C%E6%9C%80%E7%83%AD%E7%9A%84%E3%80%81%E7%B2%89%E4%B8%9D%E6%9C%80%E5%A4%9A%E7%9A%84%E8%8B%B9%E6%9E%9C%E7%B1%BB%E5%85%AC%E4%BC%97%E5%8F%B7%EF%BC%81%E8%BF%99%E9%87%8C%E8%8B%B9%E6%9E%9C%E8%BF%B7%E7%9A%84%E8%81%9A%E9%9B%86%E5%9C%B0%EF%BC%81%E6%9F%A5%E8%8B%B9%E6%9E%9C%E4%BF%9D%E4%BF%AE%E3%80%81%E6%9F%A5%E8%8B%B9%E6%9E%9C%E5%BA%8F%E5%88%97%E5%8F%B7%E3%80%81%E6%9F%A5iPhone%E6%8A%A5%E4%BB%B7%E3%80%81%E8%8B%B9%E6%9E%9CiPhone%E4%BC%B0%E4%BB%B7%E3%80%81%E4%B9%B0%E5%8D%96%E4%BA%8C%E6%89%8BiPhone%E3%80%81iPhone%E5%9B%9E%E6%94%B6%E3%80%81%E9%89%B4%E5%88%AB%E8%8B%B9%E6%9E%9C%E5%B1%B1%E5%AF%A8%E6%9C%BA%E3%80%81%E6%89%BE%E5%9B%9E%E4%B8%A2%E5%A4%B1%E7%9A%84iPhone%EF%BC%8C%E5%9C%A8%E8%BF%99%E9%87%8C%E9%83%BD%E8%83%BD%E7%BB%99%E4%BD%A0%E6%8F%90%E4%BE%9B%E6%9C%8D%E5%8A%A1%EF%BC%81%E6%B7%BB%E5%8A%A0%E5%BE%AE%E4%BF%A1%E5%8F%B7%E5%8F%AF%E7%9B%B4%E6%8E%A5%E6%90%9C%E7%B4%A2%E6%88%91%E4%BB%AC%E7%9A%84%E5%90%8D%E7%A7%B0%EF%BC%9A%20iPhone%E9%A2%91%E9%81%93%20%20%EF%BC%88%E5%BE%AE%E4%BF%A1%E5%8F%B7%EF%BC%9Aiphone-apple-ipad%EF%BC%89%0A%0A%E5%A6%82%E6%9E%9C%E8%AF%B4%E6%9C%89%E4%B8%80%E5%AE%B6%E6%99%BA%E8%83%BD%E6%89%8B%E6%9C%BA%E5%8E%82%E5%95%86%E6%8A%B5%E5%88%B6%E5%8F%8C%E5%8D%A1%E6%89%8B%E6%9C%BA%EF%BC%8C%E8%BF%99%E5%AE%B6%E5%85%AC%E5%8F%B8%E5%B0%B1%E6%98%AF%E8%8B%B9%E6%9E%9C%E3%80%82%E4%BD%86%E6%98%AF%EF%BC%8CiPhone%208%E2%80%94%E2%80%94%E5%BC%95%E5%85%A5%E8%AE%B8%E5%A4%9A%E5%AF%B9%E8%8B%B9%E6%9E%9C%E6%9D%A5%E8%AF%B4%E6%98%AF%E9%A6%96%E6%AC%A1%E7%9A%84%E6%96%B0%E7%89%B9%E6%80%A7%EF%BC%8C%E8%BF%98%E5%8F%AF%E8%83%BD%E6%88%90%E4%B8%BA%E8%8B%B9%E6%9E%9C%E5%8E%86%E5%8F%B2%E4%B8%8A%E9%A6%96%E6%AC%BE%E9%87%87%E7%94%A8%E5%8F%8C%E5%8D%A1(%E6%88%96%E6%9B%B4%E5%A4%9ASIM%E5%8D%A1)%E8%AE%BE%E8%AE%A1%E7%9A%84iPhone%E3%80%82%0A%0A%E6%AD%A4%E5%89%8D%E8%8B%B9%E6%9E%9C%E6%96%B9%E9%9D%A2%E4%BC%BC%E4%B9%8E%E5%AF%B9%E5%BC%80%E5%8F%91%E5%8F%8C%E5%8D%A1%E6%89%8B%E6%9C%BA%E5%B9%B6%E4%B8%8D%E6%84%9F%E5%85%B4%E8%B6%A3%EF%BC%8C%E4%BD%86%E9%9A%8F%E7%9D%80%E4%B8%80%E7%B3%BB%E5%88%97%E6%96%B0%E4%B8%93%E5%88%A9%E7%9A%84%E6%9B%9D%E5%85%89%EF%BC%8C%E6%90%AD%E8%BD%BD%E4%B8%80%E5%BC%A0%E6%88%96%E4%BB%A5%E4%B8%8ASIM%E5%8D%A1%E7%9A%84%E5%8F%AF%E8%83%BD%E6%80%A7%E8%B6%8A%E6%9D%A5%E8%B6%8A%E9%AB%98%E3%80%82%E5%A6%82%E6%9E%9CiPhone%208%E7%9C%9F%E7%9A%84%E6%90%AD%E8%BD%BD%E5%8F%8C%E5%8D%A1%E5%8F%8C%E5%BE%85%EF%BC%8C%E6%98%AF%E5%90%A6%E4%BC%9A%E5%AF%B9Android%E9%98%B5%E8%90%A5%E6%9C%BA%E5%9E%8B%E9%80%A0%E6%88%90%E5%A8%81%E8%83%81%E5%91%A2%EF%BC%9F%0A%0A%0A%0A%E5%A4%9A%E5%B9%B4%E6%9D%A5%EF%BC%8C%E4%B8%80%E7%9B%B4%E6%9C%89%E6%B6%88%E6%81%AF%E7%A7%B0%E8%8B%B9%E6%9E%9C%E5%B8%8C%E6%9C%9B%E5%88%A9%E7%94%A8eSIM%E5%8F%96%E4%BB%A3%E4%BC%A0%E7%BB%9FSIM%E5%8D%A1%EF%BC%8CeSIM%E4%B8%8D%E4%BB%85%E8%83%BD%E8%8A%82%E7%9C%81%E5%AE%9D%E8%B4%B5%E7%9A%84%E5%86%85%E9%83%A8%E7%A9%BA%E9%97%B4%EF%BC%8C%E8%BF%98%E8%83%BD%E6%8F%90%E9%AB%98%E9%98%B2%E6%B0%B4%E5%8A%9F%E8%83%BD%E3%80%82%E4%BD%86%E7%A7%BB%E5%8A%A8%E8%BF%90%E8%90%A5%E5%95%86%E5%8F%AF%E8%83%BD%E6%98%AF%E8%8B%B9%E6%9E%9CeSIM%E6%A2%A6%E6%83%B3%E7%9A%84%E9%9A%9C%E7%A2%8D%E3%80%82%E5%8E%BB%E5%B9%B4%E7%94%B3%E8%AF%B7%E7%9A%84%E6%96%B0%E4%B8%93%E5%88%A9%E7%94%B3%E8%AF%B7%E6%98%BE%E7%A4%BA%EF%BC%8C%E8%8B%B9%E6%9E%9C%E6%81%A2%E5%A4%8D%E4%BA%86%E5%AF%B9%E6%99%BA%E8%83%BDSIM%E5%8D%A1%E7%9A%84%E5%85%B4%E8%B6%A3%E3%80%82%0A%0A%E8%8B%B9%E6%9E%9C%E5%B8%8C%E6%9C%9B%E6%89%BE%E5%88%B0%E6%9C%AA%E6%9D%A5%E7%94%B1%E4%BC%A0%E7%BB%9FSIM%E5%8D%A1%E8%BF%87%E6%B8%A1%E5%88%B0eSIM%E7%9A%84%E7%AE%80%E5%8D%95%E9%80%94%E5%BE%84%E3%80%82%E8%BF%99%E5%B9%B6%E4%B8%8D%E6%84%8F%E5%91%B3%E7%9D%80iPhone%208%E4%B8%80%E5%AE%9A%E6%94%AF%E6%8C%81%E5%8F%8CSIM%E5%8D%A1%EF%BC%8C%E8%8B%B9%E6%9E%9C%E5%8F%AA%E6%98%AF%E5%B8%8C%E6%9C%9B%E8%AF%B4%E6%9C%8D%E7%A7%BB%E5%8A%A8%E8%BF%90%E8%90%A5%E5%95%86%E6%94%AF%E6%8C%81%E5%8F%8CSIM%E5%8D%A1%E3%80%82%0A%0A3%E6%9C%88%E6%9C%AB%E5%85%AC%E5%B8%83%E7%9A%84%E5%8F%B7%E7%A0%81%E4%B8%BA20170094628%E7%9A%84%E8%8B%B9%E6%9E%9C%E4%B8%93%E5%88%A9%E7%94%B3%E8%AF%B7%EF%BC%8C%E8%A7%A3%E9%87%8A%E4%BA%86%E5%8F%8CSIM%E5%8D%A1%E6%88%96%E5%A4%9ASIM%E5%8D%A1%E8%AE%BE%E5%A4%87%E7%9A%84%E5%B7%A5%E4%BD%9C%E5%8E%9F%E7%90%86%E3%80%82%E8%8B%B9%E6%9E%9C%E5%9C%A8%E8%BF%99%E4%BB%B6%E4%B8%93%E5%88%A9%E4%B8%AD%E6%8F%8F%E8%BF%B0%E4%BA%86%E7%AE%80%E5%8C%96%E8%AE%BE%E5%A4%87%E4%B8%AD%E5%8F%8CSIM%E6%88%96%E5%A4%9ASIM%E5%8A%9F%E8%83%BD%E5%90%8E%E5%8F%B0%E7%AE%A1%E7%90%86%E7%9A%84%E6%8A%80%E6%9C%AF%E3%80%82%0A%0A%0A%0A%E8%BF%99%E9%A1%B9%E4%B8%93%E5%88%A9%E7%9A%84%E6%9C%89%E8%B6%A3%E4%B9%8B%E5%A4%84%E6%98%AF%EF%BC%8C%E8%8B%B9%E6%9E%9C%E8%80%83%E8%99%91%E4%BA%86SIM%E5%8D%A1%E5%92%8CeSIM%E5%9C%A8%E4%B8%80%E5%8F%B0%E8%AE%BE%E5%A4%87%E4%B8%AD%E5%85%B1%E5%AD%98%E7%9A%84%E5%9C%BA%E6%99%AF%E3%80%82%E5%9B%A0%E6%AD%A4%EF%BC%8CiPhone%208%E7%AD%89%E8%AE%BE%E5%A4%87%E5%8F%AF%E8%83%BD%E6%9C%89%E4%B8%80%E4%B8%AASIM%E5%8D%A1%E6%A7%BD%E2%80%94%E2%80%94%E5%8F%AA%E6%94%AF%E6%8C%81%E4%B8%80%E4%B8%AAnanoSIM%E5%8D%A1%EF%BC%8C%E4%BD%86%E4%B9%9F%E6%94%AF%E6%8C%81%E5%86%85%E7%BD%AEeSIM%E5%8A%9F%E8%83%BD%EF%BC%8C%E4%BD%BF%E7%94%A8%E6%88%B7%E8%83%BD%E4%B8%BA%E6%89%8B%E6%9C%BA%E5%A2%9E%E6%B7%BB%E8%87%B3%E5%B0%91%E4%B8%80%E4%B8%AASIM%E5%8D%A1%E3%80%82%0A%0A%E8%BF%99%E9%A1%B9%E4%B8%93%E5%88%A9%E7%94%B3%E8%AF%B7%E8%BF%98%E6%8F%8F%E8%BF%B0%E4%BA%86%E4%B8%80%E7%A7%8D%E5%9C%BA%E6%99%AF%EF%BC%8C%E4%B8%A4%E5%8F%B0%E8%AE%BE%E5%A4%87%E2%80%94%E2%80%94%E6%AF%8F%E5%8F%B0%E8%AE%BE%E5%A4%87%E5%8C%85%E5%90%AB%E8%87%B3%E5%B0%91%E4%B8%80%E4%B8%AASIM%2FeSIM%EF%BC%8C%E8%83%BD%E9%80%9A%E8%BF%87WiFi%E6%88%96%E8%93%9D%E7%89%99%E7%AD%89%E6%97%A0%E7%BA%BF%E5%8D%8F%E8%AE%AE%E7%9B%B8%E4%BA%92%E9%80%9A%E4%BF%A1%E3%80%82%E9%89%B4%E4%BA%8EApple%20Watch%20Series%203%E5%B0%86%E6%94%AF%E6%8C%81LTE%EF%BC%8C%E8%BF%99%E4%BB%B6%E4%B8%93%E5%88%A9%E8%A1%A8%E6%98%8EApple%20Watch%E8%83%BD%E5%9C%A8iPhone%E5%B8%AE%E5%8A%A9%E4%B8%8B%E5%A4%84%E7%90%86LTE%E7%AE%A1%E7%90%86%E4%BB%BB%E5%8A%A1%E3%80%82%0A%0A%0A%0A%E6%9C%AC%E6%96%87%E6%A0%87%E9%A2%98%EF%BC%9A%E6%9C%89%E5%9B%BE%E6%9C%89%E7%9C%9F%E7%9B%B8%EF%BC%81iPhone%208%E7%9C%9F%E7%9A%84%E6%9C%89%E5%8F%8C%E5%8D%A1%E5%8F%8C%E5%BE%85%E5%8A%9F%E8%83%BD%EF%BC%81%20%E6%AC%A2%E8%BF%8E%E5%A4%A7%E5%AE%B6%E8%AF%84%E8%AE%BA%E8%AE%A8%E8%AE%BA%0A%0A%E6%96%87%E4%B8%AD%E5%86%85%E5%AE%B9%E4%BB%85%E4%BB%A3%E8%A1%A8%E4%BD%9C%E8%80%85%E8%A7%82%E7%82%B9%EF%BC%8C%E4%B8%8E%E8%81%8A%E8%B4%A5%E7%BD%91%E6%97%A0%E5%85%B3

of the original site

http//www.176878.com/keji/article_4474823.html

Who knows a site to get this patent?