Ensuring compliance with the specification

The GSMA has published an Embedded SIM Test Specification for remote provisioning solution providers that will give assurance that different GSMA Embedded SIM remote provisioning systems functionally comply with the GSMA Technical Specifications. The GSMA has also extended its successful Security Accreditation Scheme (SAS) to cover remote provisioning subscription management service providers to ensure the robust security and product integrity requirements are maintained.

Security Accreditation Scheme for GSMA Embedded SIM

For almost 15 years, the GSMA’s Security Accreditation Scheme has been providing mobile network operators with valuable peace of mind that their SAS-certified UICC suppliers implement high levels of production security. With the advent of GSMA Embedded SIM Specification it is essential that remote provisioning subscription management service providers continue to safeguard the integrity of the Embedded UICC and its data. To facilitate industry confidence in the security of remote provisioning, the successful SAS model in use for UICC production is being extended to cover security auditing and accreditation of the Embedded UICC supplier and the providers of subscription management (DP and SR) services.

Accreditation process:

  • The SAS security standards developed and approved by mobile network operators and SIM manufacturers within GSMA are used by suppliers of Embedded UICCs or subscription management services to design the security of the environment and processes that are used to manufacture and manage Embedded UICCs.
  • The supplier requests an audit of its environment and processes at a specific site from the GSMA.
  • A professional security auditing team engaged by GSMA visits the supplier site, conducts a comprehensive audit against the SAS standard, and produces an audit report for review by a SAS Certification Body, an expert group made up of GSMA operator members.
  • Based on the audit report and its recommendations, the SAS Certification Body decides whether or not the supplier site is awarded SAS certification.

GSMA publicises certified supplier sites, highlighting to its members the benefits of acquiring products and services from such sites.

 

GSMA Embedded SIM Test Specification and eUICC Compliance

The purpose of the Test Specification for GSMA Embedded SIM is to ensure products made by vendors, including eUICC, SM-DP and SM-SR entities are functionally compliant to the GSMA Embedded SIM Technical Specification.

For eUICCs a Global Platform Compliance Program called “eUICC Test Spec Compliance Test Suite” is available to evaluate the functional behavior of a eUICC product against the test plan defined within the GSMA Embedded SIM Test Specification for GSMA Embedded SIM to achieve market interoperability.

More information on the Function Compliance Program for eUICCs can be found here

For SM-DP and SM-SR there is no Test Program available so the test tool manufacturers will use the GSMA Embedded SIM Test Specification to develop dedicated test tools for the market. SM-DP and SM-SR vendors will then develop their products and commission test houses to test their products, or buy in appropriate test tools and perform the testing themselves. The vendors may self-certify their products ifthe test cases are passed successfully, and the appropriate criteria are met that permits self-certification. (ISO/IEC 17050).

GSMA Embedded SIM – Certificate Issuance

The Certificate Issuer (CI) process within the GSMA Embedded SIM architecture ensures the various system entities (SM-DP, SM-SR, EUM, eUICC) can all authenticate each other.

Initially the GSMA will be the sole Certificate Issuer however, as the market establishes, other Certificate Issuers can be added. For example, issuers per region, or country, or even market sector.

eUICC Products

Only EUMs that have successfully been accredited by GSMA SAS-UP accreditation can apply for EUM certificates. Once an accredited EUM has a valid certificate from the Certificate Issuer it is able to generate certificates for its own eUICC products.

With the EUM certificate, the EUM is entitled to personalize and sell the eUICC products that have passed all the functional and security compliances as specified in SGP.01 and SGP.02.

SM-SR and SM-DP products

Only SM-SRs and SM-DPs that have successfully been accredited by GSMA SAS-SM accreditation can apply for SM certificates.

 

More information on the Security Accreditation Scheme can be found here

The importance of Embedded SIM certification to scale the Internet of Thing As a provider of connected devices why should you care about test and certification of Embedded SIM? Because it enables your devices to reach market faster since they do not need...

Read more | See all Resources

Webinar Highlights: Changing of the SIM Card – Are You Ready for Remo Remote SIM Provisioning is one of the most exciting technologies in the M2M market and has the potential to accelerate the delivery of millions of connected devices across the g...

Read more | See all Resources

Remote Provisioning Architecture for Embedded UICC Technical Specification This document provides a technical description of the GSMA’s ‘Remote Provisioning Architecture for Embedded UICC’. Download...

Read more | See all Resources

Architecture for Embedded UICC Test Specification v3.1 These test specifications are to be used by test labs to develop test for the principal components and interfaces of the GSMA’s Remote Provisioning Architecture for Embedded UI...

Read more | See all Resources

The GSMA IoT Webinar Series 2016-17 This webinar series explores key initiatives to accelerate the delivery of new connected services and devices in the Internet of Things (IoT). Topics will be explored and discuss...

Read more | See all Resources

Simplifying the adoption of compliant M2M solutions The recent backing of the GSMA Embedded SIM Specification from a large number of global auto manufacturers suggests that it is on the way to becoming the de-facto standard mechan...

Read more | See all Resources

Mobile IoT Connects China to the Future Showcase at MWC Shanghai highlights breadth of Mobile IoT deployments in China China is a global leader in harnessing the low power wide area connectivity delivered by Mobile IoT...

Read more | See all Industry News

New Roles in the Market for Operators as they Look Beyond Traditional Reven Andrew Parker, IoT Marketing Director, GSMA The role of network operators in the market is changing.  As the global infrastructure they support becomes more sophisticated – m...

Read more | See all Industry News

Mobile Industry Supports Gathering Momentum of Commercial Drones Market Graham Trickey, Head of Internet of Things Programme, GSMA Unmanned Aircraft, or ‘drones’, have hitherto been regarded as serving two typical purposes: military applications,...

Read more | See all Industry News

Operators Move Beyond Connectivity in the IoT Era as Asia Pulls Ahead 按此查阅中文版本 The Internet of Things is well on the way to transforming our lives – connecting devices across vast areas at low cost to make our working lives more p...

Read more | See all Industry News

GSMA: Global Mobile Operators Commit to Common Approach to IoT Security AT&T, China Mobile, China Telecom, China Unicom, Deutsche Telekom, Etisalat, KDDI, LG Uplus, Orange, Telefónica, Telenor Group, Telia, Turkcell, Vodafone Group and Zain Agre...

Read more | See all Industry News

Greater China set to Dominate Global Industrial IoT Market, says new GSMA R Government Backing 5G, AI and Data Analytics to Transform Industrial Sector; GSMA Intelligence Forecasts 13.8 billion IIoT Connections Worldwide by 2025, with China Accounting fo...

Read more | See all Industry News

M360 Series – Digital Societies September 05, 2018 GSMA Intelligence forecasts that IoT connections will reach 25 billion globally in 2025, up from 6.3 billion in 2016. Asia Pacific will continue to be the largest IoT market. The...

Read more | See all Internet of Things Events

Mobile World Congress Americas 2018 September 12, 2018 Join the GSMA’s Internet of Things programme at Mobile World Congress Americas 2018 to discover and shape the future of the IoT. Through a series of seminars, exhibitions a...

Read more | See all Internet of Things Events

GSMA IoT at M360 – Europe September 18, 2018 Mobile 360 Series – Europe brings industry leaders and policy makers to the GSMA’s newly opened office in the heart of Brussels. The discussions focus on how policy influenc...

Read more | See all Internet of Things Events

IoT at Edge Computing Congress September 19, 2018 Neill Young, IoT Enablers Lead in the IoT team at the GSMA, will be speaking at the Edge Computing Congress, on the subject of ‘Infrastructure on the Edge’ taking pl...

Read more | See all Internet of Things Events

European Drones Summit October 15, 2018 The European Drone Summit sets out to bring the up-and-coming drone sector together with industry. The aim of the conference is to define the demands placed on drone technology a...

Read more | See all Internet of Things Events

GSMA IoT at Europol-ENISA IoT Security Conference October 24, 2018 The 2nd Europol-ENISA IoT Security Conference focuses on the cybersecurity of the entire IoT ecosystem, enabling a broad discussion by bringing together experts from cybercrime u...

Read more | See all Internet of Things Events

Contact GSMA Legal Email Preference Centre Copyright © 2018 GSMA. GSM and the GSM Logo are registered and owned by the GSMA.