Does SM-DP+ has access to MNO specific keys in the eSIM realm?
As you know in the eSIM realm, for the customer model, SM-DP+ is responsible for loading the MNO provided profile into the eSIM chip; and, after loading such profile, the final end-user, can authenticate himself/herself to the MNO network in order to utilize operator services. Additionally, utilizing such profile in the eSIM, the MNO is provided with the capability to communicate securely with the eSIM, on a communication channel different from the one SM-DP+ utilized.
My question is about the separation of the accesses. More specifically, given that the profile is loaded by the SM-DP+, I am curios to know whether the SM-DP+ has access to the user's authentication keys for the MNO network authentication (such as Ki)? And whether the SM-DP+ has access to the MNO-SD OTA keys?
One may answer "No" to both questions I asked above; but, in that case, given that the profile is loaded by the SM-DP+, I can imagine only two scenarios to prevent such problem:
- MNO provides the profile containing network authentication keys and MNO-SD OTA keys in an encrypted format that the SM-DP+ is not able to decrypt.
- The profile MNO provides to the SM-DP+, does not have these field inside, but only some primary initial information that helps the user to load such parameters on a different channel.
For the first approach, the eSIM shall already contain a pre-shared key between the MNO and the eSIM, which is not the case; the manufacturer only loads the eSIM with SM-DP+ authentication keys in first step.
And for the second approach, the SM-DP+ still has access to the keys that can be misused by it to obtain MNO and user credentials that are not necessary for SM-DP+ functionalities.
So, can someone please clarify how the access to the MNO credentials are controlled in eSIM realm? Are SM-DP+ entities fully trusted by different MNOs to have all the keys in plaintext?
the IPP that is transferred through ES8+ to eSIM contains everything. and DP+ is the one encrypting it. so it is the trusted party in the ecosystem. in case other keys are generated/put through OTA in the enabled ISD-P (after installation), then with a proper implementation its not possible to extract them in a commercial eSIM, but it cannot include the Ki.
- Send APDU commands to SIM card in android 11
- How to identify type of SIM?
- Does SM-DP+ has access to MNO specific keys in the eSIM realm?
- Can I program eSIM/eUICC devices with Java Applets
- SIM7080G GSM modem module cannot detect the network
- Does anyone know details about PERM-AR-DO?
- Empty response in gsm run algorithm command
- Commands are not recorded on the SIM7080G GSM modem
- How long does a Subscription ID stick around in Android?
- Why SIMToolkit does not trigger registerred EVENTs for my Applet?
- Notify SIM content change to ME
- How to determine the number of SIM cards on a device?
- Is there anyway that allow STK Applet on SIM to know the number of contacts in ADN file?
- How can I avoid having my hybrid app showing up on the Android dialer?
- Control SIM7080G CAT-M/NB-IoT Unit from ESP32-DevKitC-32E
- AT-COMMAND how to check data connection
- How to make TAG_ALPHA_IDENTIFIER empty not to ask user for a confirmation
- LOAD fails for Method component in USIM card via OTA SMS-DELIVER
- How to get the phone number and SIM card slot for the current device, on the callback of onCallAdded?
- AT+CCED=0,1 ERROR Minicom [GPRS]
- how to set ringtones for the second sim card
- Reason for uniquness of Ki in GSM mobile networks
- Usage of SIM card GlobalPlatform keys in field
- How to access a SIM card programmatically?
- Load STK applet on SIM card boot
- How to establish a TLS coonection in TLS-PSK mode between a USIM sim card as client and a server?
- How to segment command script that is too big to fit into one transport APDU
- Secure Channel Protocol 80 and 81 description
- 4G module returns CME ERROR:15 when I opend my own applet in the SIM card with AT+CCHO command
- Play pre-recorded audio into a voice call that created by simcom