- \n
- Functional interoperability of all entities<\/li>\n
- Security of provisioning entities\n
- \n
- By design (for eUICC)<\/li>\n
- In production (for eUICC)<\/li>\n
- At the operational location (for SM-DP and SM-SR)<\/li>\n<\/ul>\n<\/li>\n<\/ul>\n
The outcome of a successful compliance submission is eligibility for the Digital Certificate (PKI), needed for system authentication between the eUICC and M2M remote provisioning subscription management entities, SM-DP and SM-SR.<\/p>\n
![\"\"](\"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/internet-of-things\/wp-content\/uploads\/2018\/12\/esim_IoT_1218.png\")
<\/a><\/p>\nDemonstrating compliance<\/h2>\n
In order to benefit from industry best practice for certification, GSMA has worked with specific global certification bodies that are:<\/p>\n
- \n
- Recognised in the eUICC industry for test and certification expertise in either functional interoperability<\/strong> or security<\/strong>,<\/li>\n
- Accessible to all organisations planning to operate in the GSMA defined M2M remote provisioning environment.<\/li>\n<\/ul>\n
The test and certification from these organisations, together with defined areas of vendor owned testing, form the basis for an M2M remote provisioning product to declare compliance with the M2M specifications.<\/p>\n
Functional interoperability<\/strong><\/h3>\n
GSMA has developed an M2M test specification, SGP.11<\/a>.\u00a0 This provides test cases for each of the entities defined in the eUICC remote provisioning ecosystem, and for all test scenarios judged as key for a compliant product. Each test case references one or more requirements from the SGP.02 technical specification, with testing scopes covering:<\/p>\n
- \n
- Interface interoperability<\/li>\n
- System behaviour testing<\/li>\n<\/ul>\n
For eUICC:<\/u> \u00a0The SGP.11 requirements applicable to eUICC have been integrated into the test & certification programme of GlobalPlatform<\/a>.<\/p>\n
- \n
- GlobalPlatform has developed an SGP.11 based M2M test plan and certification programme for functional interoperability testing.<\/li>\n
- Embedded UICC wishing to declare SGP.16 compliance must first be GP qualified to the GlobalPlatform M2M test suite.<\/li>\n<\/ul>\n
For SM-DP and SM-SR<\/u>: In order to declare SGP.16 compliance, vendors are required to develop and execute their own SGP.11 based test plans.<\/p>\n
- \n
- These vendor owned test plans will typically use either simulated testing via commercially available test equipment, or MNO based interoperability testing.<\/li>\n
- Whichever methodology is selected the vendor owned test plan must reference the SM-DP and SM-SR test requirements from SGP.11.<\/li>\n<\/ul>\n
Security of provisioning entities<\/strong><\/h3>\n
Product Security by design<\/h4>\n
The security of the embedded UICC design is required to be assured on two levels:<\/p>\n
At the hardware level<\/u>: certification to BS-CC-PP-0084, or its predecessor, BS-CC-PP-0035.\u00a0 This is the industry recognised security IC Protection Profile.<\/p>\n
At the embedded UICC functional level<\/u>: BSI-CC-PP-0089.\u00a0 This is a protection profile developed specifically for the embedded UICC.<\/p>\n
Methodologies and certification are available through Common Criteria<\/a> laboratories and Certification Bodies with competence in the SOG-IS Smartcard technical domain<\/a>.<\/p>\n
Security in operation<\/strong><\/h4>\n
GSMA\u2019s long established, industry respected, Security Accreditation Scheme<\/u> (SAS) has been adopted as the required security accreditation for M2M entities handling sensitive assets, and provisioning assets; including MNO profile information and Digital Certificates.\u00a0 SAS is an audit based scheme and the preparation time for audit should be taken into account when planning a compliance campaign for eUICC, SM-SR and SM-DP.<\/p>\n
For eUICC production:<\/u> a SAS-UP audit comprehensively reviews the handling of sensitive data during eUICC production.\u00a0 A valid GSMA SAS-UP accreditation is required in order to declare SGP.16 compliance.<\/p>\n
For SM-DP and SM-SR operational location<\/u>: a SAS-SM audit assesses the robustness of processes affecting secure data management at the Subscription Management datacentre.\u00a0 A valid GSMA SAS-SM accreditation is required in order to declare SGP.16 compliance.<\/p>\n
Connecting to M2M remote provisioning<\/h2>\n
Assurance and authentication for operational M2M remote provisioning is based on a GSMA root public key interface (PKI), as defined in the M2M specifications. eUICC, SM-DP and SM-SR all need a PKI Digital Certificate to operate within GSMA M2M remote provisioning.<\/p>\n
The end result of a successful SGP.16 compliance declaration is a GSMA confirmation for PKI issuance.\u00a0 This is accepted by the GSMA M2M CI as proof of eligibility for a Root PKI certificate.\u00a0 Details of the M2M Root CI can be found\u00a0at this link.<\/p>\n
Note: <\/em><\/p>\n
- \n
- The PKI certificate will not be issued by the Root CI without proof of eligibility. <\/em><\/li>\n
- Organisations intending to apply for a PKI certificate are advised to initiate contract discussions with the M2M Root CI in advance, in order to avoid delays once their compliance process is successfully completed. <\/em><\/li>\n
- The CI is generally able to issue test certificates for test purposes, contact the CI for details. <\/em><\/li>\n<\/ul>\n
Find out more<\/h2>\n
- Organisations intending to apply for a PKI certificate are advised to initiate contract discussions with the M2M Root CI in advance, in order to avoid delays once their compliance process is successfully completed. <\/em><\/li>\n
- The PKI certificate will not be issued by the Root CI without proof of eligibility. <\/em><\/li>\n
- Accessible to all organisations planning to operate in the GSMA defined M2M remote provisioning environment.<\/li>\n<\/ul>\n
- Recognised in the eUICC industry for test and certification expertise in either functional interoperability<\/strong> or security<\/strong>,<\/li>\n