WO2023052245A1 - A method of facilitating distribution of a profile to a programmable subscriber identity module, sim, embedded in a node device by a provisioner device, a provisioner device and a system for provisioning a profile to a programmable sim - Google Patents

A method of facilitating distribution of a profile to a programmable subscriber identity module, sim, embedded in a node device by a provisioner device, a provisioner device and a system for provisioning a profile to a programmable sim Download PDF

Info

Publication number
WO2023052245A1
WO2023052245A1 PCT/EP2022/076421 EP2022076421W WO2023052245A1 WO 2023052245 A1 WO2023052245 A1 WO 2023052245A1 EP 2022076421 W EP2022076421 W EP 2022076421W WO 2023052245 A1 WO2023052245 A1 WO 2023052245A1
Authority
WO
WIPO (PCT)
Prior art keywords
profile
sim
provisioner
programmable
programmable sim
Prior art date
Application number
PCT/EP2022/076421
Other languages
French (fr)
Inventor
Changjie Wang
Lei Feng
Jaya Valathur KARTHIK
Original Assignee
Signify Holding B.V.
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Signify Holding B.V. filed Critical Signify Holding B.V.
Publication of WO2023052245A1 publication Critical patent/WO2023052245A1/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W8/00Network data management
    • H04W8/18Processing of user or subscriber data, e.g. subscribed services, user preferences or user profiles; Transfer of user or subscriber data
    • H04W8/20Transfer of user or subscriber data
    • H04W8/205Transfer to or from user equipment or user record carrier

Definitions

  • the present disclosure generally relates to the field of wireless communication, and, more specifically, to a method of facilitating distribution of a profile to a programmable Subscriber Identity Module, SIM, embedded in a node device by a provisioner device, a provisioner device and a system for provisioning a profile to a programmable SIM.
  • SIM Subscriber Identity Module
  • a subscriber identification module or simply a SIM card, also known as a universal integrated circuit card, UICC, is an integrated circuit running a card operating system, COS, that serves the purpose of securely storing an international mobile subscriber identity, IMSI, number and its related key, which are used to identify and authenticate a mobile device comprising the SIM card onto a communication network.
  • COS card operating system
  • a traditional SIM card takes the form of a removable “Secure Element”, which is linked or bond to a mobile network service operator and has to be physically installed into or removed from a mobile device.
  • SIM Element a removable “Secure Element”
  • One issue with the traditional SIM card is that switching from one service provider to another entails also the switching of SIM cards.
  • Embedded SIM card eSIM, or embedded universal integrated circuit card, eUICC, which is developed to replace the traditional SIM card, has the advantage of enabling simplified management of subscriptions and connections.
  • the GSM Association GSM Association
  • GSMA GSM Association
  • the SIM may be securely downloaded into a ‘Secure Element’ that can be permanently embedded inside any type of device.
  • the eSIM needs a profile to access a network and to work correctly.
  • a Profile comprises operator data related to a subscription, including the operator’s credentials and potentially operator or third-party SIM based applications.
  • the secure element in the eSIM solution can accommodate multiple profiles. Profiles are remotely downloaded over-the-air, OTA, into an eUICC. GSMA defines a remote SIM provisioning process for this profile download procedure.
  • the GSMA has created a consumer solution suitable for the “direct to consumer” channel and a machine to machine, M2M, solution which serves the needs of business-to-business customers, specifically in the Internet of Things, loT, market.
  • remote eSIM provisioning for M2M utilizes a server driven (push model) to provision and remotely manage operator Profiles.
  • the solution is organized around three elements: the Subscription Manager - Data Preparation, SM-DP, the Subscription Manager - Secure Routing, SM-SR and the eUICC.
  • the SM-DP is responsible for preparing, storing and protecting operator profiles, including the operator credentials. It also downloads and install profiles onto the eUICC.
  • the SM-SR is responsible for managing the status of profiles on the eUICC (enable, disable, delete). It also secures the communications link between the eUICC and SM-DP for the delivery of operator profiles.
  • the eUICC is a secure element that contains one or more subscription profiles. Each profile enables the eUICC to function in the same way as a removable SIM issued by the operator that created it.
  • An eUICC may be built using any form factor from the traditional removable card to embedded formats soldered into devices.
  • an eUICC information set of an eUICC manufactured by an eUICC manufacturer, EUM is stored in a database of the SM-SR after registration of the eUICC with the SM-SR.
  • EUM eUICC manufacturer
  • the above remote eSIM M2M provisioning process has the assumptions or requirements that each manufactured eUICC should contain a Provisioning Profile and is linked to an active Provisioning Subscription.
  • This Provisioning Profile supports the communication between the SM-SR and the eUICC for the purpose of provisioning.
  • This Provisioning Profile and related Subscription, and the potential roaming fee incur extra cost for applying the eSIM solution.
  • many node devices or lighting devices do not need to have their long range communication interfaces (i.e. cellular interfaces) activated, as normally only selected node devices need to communicate directly with a remote device such as a backend server, and to assume a role of router to forward information from a group of other nodes to the backend server. In this case, it is a waste to pay for provisioning profiles for each and every eSIM included in lighting devices in the lighting system.
  • Still another difficulty with remote provisioning and management of profiles for eSIMs is that permanent or even temporary roaming may not be allowed in some regions.
  • a method of facilitating, by a provisioner device, distribution of a profile to a first programmable Subscriber Identity Module, SIM, embedded in a node device comprising a short range communication interface, the provisioner device comprising a short range communication interface and a long range communication interface comprising the steps of: establishing a communication channel with a profile managing server via the long range communication interface of the provisioner device, in response to the profile managing server determining that the provisioner device is associated with the first programmable SIM of the node device based on a received profile installation request, targeted to the first programmable SIM of the node device; establishing a communication channel with the node device comprising the first programmable SIM via the short range communication interface of the node device; and facilitating authentication between the profile managing server and the first programmable SIM, such that distribution of the profile to the first programmable SIM, over a communication channel from the profile managing server to the first programmable SIM and via the provisioner device, is enabled.
  • the present disclosure is based on the insight that remote provisioning of a profile to a programmable SIM card, such as an eSIM, may be facilitated by using a new entity referred to as a provisioner device.
  • the provisioner device provides a transparent communication bridge between the profile managing server and the eSIM, such that a secure communication channel for profile downloading is available.
  • a transparent communication bridge as used herein means that neither the profile managing server nor the eSIM needs to change its processing procedures, such as transmission protocol, for sending and receiving the profile by way of the transparent communication bridge.
  • the provisioner device comprises a short range communication interface and a long range communication interface and functions to establish a communication channel with the profile managing server using its long range communication interface and a further communication channel with a node device comprising the eSIM to be provisioned using its short range communication interface. It thereby enables transmission or provision of a profile from the profile managing server to the eSIM.
  • the communication channel with the profile managing server using the long range communication interface is built when it is determined from a profile installation request received at the profile managing server that the provisioner device is associated with the first programmable SIM of the node device.
  • the further communication channel with a node device comprising the eSIM to be provisioned is established between the provisioner device and the node device, which makes it possible to forward the profile installation request to the eSIM.
  • This allows the profile managing server to authenticate each other with the eSIM via the provisioner device.
  • a profile can be distributed to the first programmable SIM, over a communication channel from the profile managing server to the first programmable SIM, via the provisioner device.
  • the provisioner device is provided with a second programmable SIM, the provisioner device being associated with the first programmable SIM of the node device is determined based on a mapping between a first information set of the first programmable SIM of the node device and a second information set of the second programmable SIM of the provisioner device stored at the profile managing server.
  • An information set of an programmable SIM such as an eSIM is stored at the profile managing server such as a SM-SR, after the eSIM is manufactured by an eSIM manufacturer and registered with the SM-SR.
  • the profile managing server further stores a mapping between the information set of the first programmable SIM of the node device and the information set of the second programmable SIM of the provisioner device. Such a mapping allows the profile managing server to know that, a communication channel is to be established with the provisioner device, instead of with the node device composing the target eSIM.
  • the mapping between the first information set of the first programmable SIM of the node device and the second information set of the second programmable SIM of the provisioner device is added to the profile managing server, prior to establishing the communication channel with the profile managing server.
  • the adding comprises adding an identification of the second programmable SIM of the provisioner device to the first information set of the second programmable SIM of the node device stored at the profile managing server.
  • the profile managing server i.e., the SM-SR
  • the profile managing server needs to reach the target eSIM as identified by the profile installation requestion, it will reach the provisioner device instead, using the associated information.
  • the adding is performed via a communication interface between a manufacturer of the programmable SIM and the profile managing server.
  • the communication interface between the manufacturer of the programmable SIM and the profile managing server can be conveniently used by the provisioner device to update the related eSIM registration information. That is, to add the mapping as described above.
  • the added mapping is sent to the profile managing server directly by the provisioner device.
  • the provisioner device may also communicate directly with the profile managing server to add the mapping, this allows more flexibility.
  • the first information set of the first programmable SIM is further stored at the provisioner device.
  • An information set of an programmable SIM such as an eSIM is generally stored at the profile managing server such as a SM-SR, after the eSIM is manufactured by an eSIM manufacturer and registered with the SM-SR.
  • the information set has to be stored at the provisioner device as well. It thereby allows the profile managing device to determine the mapping between the eSIM to be provisioned and the provisioner device.
  • the provisioner device comprises an independent portable device.
  • the provisioner device may be a tablet or a hand-hold device, which may be easily used by a field engineer to facilitate the distribution of the profile to any selected node device easily.
  • the method further comprises at least one step of: enabling the profile on the programmable SIM; disabling the profile on the programmable SIM; and deleting the profile on the programmable SIM.
  • the provisioner device may also perform profile management such as enabling, disabling and deleting of the profile distributed to the programmable SIM. This is convenient and does not incur extra roaming cost.
  • the provisioner device may transfer the role of the transparent bridge to a provisioned node device in the same network as the node device comprising the programmable SIM to be provisioned.
  • the provisioned node device becomes a provisioner device for facilitating the distribution of the profile to the programable SIM. It therefore allows auto-provisioning to be realized in the network.
  • a provisioner device connected to a network comprising a node device comprising a short range communication interface and embedded with a first programmable Subscriber Identity Module, SIM, the provisioner device comprising a short range communication interface and a long range communication interface and configured to facilitate, according to the first aspect of the present disclosure, distribution of a profile to the first programmable SIM embedded in the node device.
  • SIM Subscriber Identity Module
  • a system for provisioning a profile to a programmable Subscriber Identity Module, SIM, embedded in a node device comprising a short range communication interface comprising a short range communication interface
  • the system comprising a provisioner device, a profile managing server, a profiling preparation server
  • the provisioner device comprises a short range communication interface and a long range communication interface and is connected to a network comprising the node device, the provisioner device being configured to: update an information set of the programmable SIM of the node device stored at a profile managing server
  • the profile managing server is configured to: receive a profile installation request targeted to the programmable SIM, from a profile preparation server, the profile installation request sent by the profile preparation server in response to a profile download request received by the profile preparation server from a network service provider; establish a communication channel with the provisioner device via its long range communication interface, based on the updated information set of the programmable SIM; transmit the profile installation request to the provisioner device over the communication channel between the profile managing server and the provisioner device
  • the provisioner device is configured to function as a transparent bridge between the profile managing device and the programmable SIM.
  • a computer program product comprising a computer readable storage medium storing instructions which, when executed on at least one processor, cause the at least one processor to carry out the method according to the first aspect of the present disclosure.
  • Fig. 1 schematically illustrates an eUICC M2M remote provisioning system according to the GSMA specification.
  • Fig. 2 schematically illustrates a remote provisioning system for provisioning a programmable SIM according to the present disclosure.
  • Fig. 3 schematically illustrates detailed data flow among different elements of Fig. 2 for provisioning an eUICC according to the present disclosure.
  • programmable SIM is used to comprise an secure element such as an embedded SIM, eSIM, or eUICC which may be provisioned with a profile to enable a SIM function.
  • FIG. 1 schematically illustrates an eUICC M2M remote provisioning system 10 according to the GSMA specification.
  • the remote provisioning system 10 comprises a Certificate Issuer, CI 11, a Subscription Manager Data Preparation, SM-DP 12, an Operator 13, an eSIM manufacturer EUM 14, at least one Subscription Manager Secure Routing, SM-SR 15, a M2M service provider, M2M SP 16, an eUICC 17, and a device 18.
  • eUICCs 17 are manufactured, according to given standards, by an EUM 14, which will also perform registration of the eUICC 17 with a SM-SR 15. After registration, each eUICC 17 has a corresponding eUICC Information Set, EIS, stored in a database of the SM-SR 15 with which the eUICC is registered.
  • EIS includes related information of the eUICC 17, such as a unique ID, credentials, certificate and so on.
  • an operator 13 orders profiles, in certain quantity, with a selected SM-DP 12.
  • the order contains production data such as the quantity of profiles and a Start-IMSI, an IMSI range or a list of IMSIs and a reference to the Un-personalized Profile type, and other related information.
  • the SM-DP 12 creates the profiles using the data received from Operator 13 and stores the profiles within the SM-DP 12. Order completion is confirmed to the Operator 13, including all data necessary to register the Profiles in the Operator’s backend systems.
  • Each Profile is uniquely identified at least by its Integrated Circuit Card ID, ICCID.
  • a procedure generally indicated by a numeral 130 secure profile downloading of the profile to the eUICC 17, via the SM-SR 15 storing the EIS of the eUICC 17, is performed.
  • the Operator 13 sends a Profile Download request to the SM- DP 12.
  • the request must include the relevant information to allow the identification of the SM-SR 15 storing the EIS of the eUICC 17, the target EID and ICCID of the eUICC 17.
  • the SM-DP 12 identifies the SM-SR 15, where the eUICC 17 is currently registered.
  • the SM-SR 15 and the SM-DP 12 authenticate each other to establish a protected communication channel.
  • the SM-DP 12 retrieves and validates the EIS of the eUICC 17 from the SM-SR 15. If no problem, the SM-DP 12 sends an installation request to the SM-SR 15, and the SM-SR 15 will then authenticate with the eUICC 17 to establish a protected communication channel.
  • the SM-DP 12 and the eUICC 17 will negotiate a profile key to encrypt the profile (i.e.
  • EncP EncP
  • the EncP will be sent from SM-DP 12 to the eUICC 17 via the protected channel, via the SM-SR 15.
  • the eUICC 17 sends the result of the installation of the Profile to the SM-DP 12.
  • the SM-DP 12 notifies the SM-SR 15 to update the related EIS records.
  • the operator 13 may also ask the SM-DP 12 to enable the Profile once it is downloaded and installed.
  • the eUICC 17 has at least one enabled working profile and can start to access to the network.
  • a method is proposed in the present disclosure, which helps to obviates the limitations of the conventional remote provisioning method.
  • Figure 2 schematically illustrates a remote provisioning system 20 for provisioning a programmable SIM according to the present disclosure.
  • the remote provisioning system 20 comprises a Certificate Issuer, CI 21, a profile preparation server such as the illustrated Subscription Manager Data Preparation, SM-DP 22, an Operator 23, an eSIM manufacturer, EUM 24, a profile managing server such as the illustrated Subscription Manager Secure Routing, SM-SR 25, a M2M service provider, M2M SP 26, an eUICC 27, a device maker 29 and a local provisioner device, LP 28.
  • CI 21 Certificate Issuer, CI 21, a profile preparation server such as the illustrated Subscription Manager Data Preparation, SM-DP 22, an Operator 23, an eSIM manufacturer, EUM 24, a profile managing server such as the illustrated Subscription Manager Secure Routing, SM-SR 25, a M2M service provider, M2M SP 26, an eUICC 27, a device maker 29 and a local provisioner device, LP 28.
  • a profile preparation server such as the illustrated Subscription Manager Data Preparation, SM-DP 22, an Operator 23, an eSIM manufacturer, EUM 24, a profile managing server
  • the SM-DP 22 is a same role as defined by GSMA.
  • the SM-SR 25 is a same role as defined by GSMA.
  • the interface between the SM-SR 25 and the EUM 24 is not only for eUICC registration, but also for eUICC information update.
  • the Module/eUICC 27 is a secure element that contains one or more subscription Profiles.
  • the communication functionalities, and local management interface can be implemented either in eUICC 27 or the Module in which the eUICC 27 is embedded.
  • the provisioner device or LP device 28 is an entity newly introduced according to the present disclosure. It is connected to the network or has a way of network communication.
  • the LP 28 may be an independent portable device such as a tablet or a hand-hold device and functions as a local provisioner.
  • the network connection may comprise a long range network connection such as an ethemet or a cellular network connection. Moreover, a short range network connection such as a Bluetooth network connection.
  • the LP 28 provides a transparent communication bridge between the SM-SR 25 and the eSIM/eUICC 27.
  • the LP 28 can also provide local profile management functionalities via the local communication between the LP and the eSIM/eUICC 27.
  • an EUM 24 manufactures a batch of eUICCs 27 and performs a registration of the eUICCs 27 with a selected SM-SR 25, following the regular process as defined by GSMA.
  • an operator 23 orders profiles with a profile preparation server such as the illustrated SM-DP 22 following the regular process as defined by GSMA.
  • a device maker 29 purchases eUICCs 27 from the EUM 24, or alternatively via other distribution channels, and retrieves the related eUICCs information.
  • the device maker 29 produces loT products, implemented with the purchased eUICCs 27.
  • the eUICC information is also loaded to a LP device 28.
  • the LP device 28 update related eUICC registration information of the eUICC 27 stored at the SM-SR 25.
  • the LP 28 may communicate to the EUM 24 and reuse a communication interface between the EUM 24 and the SM-SR 25 to update the related eUICC registration information.
  • the LP 28 directly notifies the SM-SR 25 about the eUICC information update.
  • the update step 250 is performed only with regard to those eUICCs 27.
  • the LP device 28 may also be equipped with an eUICC and has an activated subscription with one operator.
  • a mapping of an identification information, e.g. EID, of a target eUICC 27 with an identification information of the eUICC in the LP, is added to the EIS of the eUICC 27 which is stored in the database of the SM-SR 25.
  • the EIS of the eUICC 27 is data stored in a database of the SM-SR 25 after eSIM registration of step 210.
  • Related information of the LP 28 may be added and associated with the registered eSIM as in the following example (assuming Profile 0 is the provisioning profile).
  • EIS ⁇ EID (EID of I. If Type, Version, Production Date, Platform Management Credentials, Certificate, Available Memory, Total Memory, SRID, ⁇ Profile 0: Profile Type, ISD-P AID, ICCID, MSISDN (MSISDN of LP), State, DPID, Allocated Memory, POL2
  • Profile 1 Profile Type, ISD-P AID, ICCID, MSISDN, State, DPID, Allocated Memory, POL2
  • the SM-SR 25 when the SM-SR 25 needs to reach the target eUICC or a device comprising the same, it will reach the LP 28 using the associated information (EID, MSISDN (Mobile Station International Subscriber Directory Number)).
  • EID Mobile Station International Subscriber Directory Number
  • messages to be sent, by the SM-SR, to the target eSIM/device (EID) is sent instead to the LP.
  • EID eSIM/device
  • the EID is included in the message header, such that the LP knows which device to forward the messages, some example messages are as follows:
  • the LP also maintains a mapping list of the eSIM that it manages.
  • the device maker 29 or an end user notifies the operator 23 to activate the eUICC, optionally via a M2M SP, the related eUICC information is also sent to operator 23.
  • the operator 23 sends a Profile Download request to the SM-DP 23.
  • the request comprises relevant information to allow the identification of the SM-SR, the target EID and ICCID by the SM-DP 23.
  • the SM- DP 23 then identifies the SM-SR 25 storing the EIS of the target EID and establishes a protected communication channel in the same way as defined by GSMA.
  • the SM-DP 23 sends an installation request to SM-SR 25.
  • the SM-SR 25 check its database to find the registered eUICC information.
  • the SM-SR 25 communicates to the mapping EID of the original EID, i.e. the LP 28.
  • the communication channel between SM-SR 25 and LP 28 could be based on their network connections situation, e.g. via a cellular channel.
  • the LP 28 authenticates to the eSIM/eUICC 27 to establish a communication channel, which is based on a local RF communication module, e.g. a Bluetooth channel.
  • the LP 28 then forwards the request from the SM-SR 25 to the target Module/eUICC 27.
  • the SM-DP 22 and the eUICC 27 can communicate securely to distribute the profile.
  • the communication message flow comprises several round trips and is the same as defined by GSMA.
  • the LP 28 therefore provides a transparent communication bridge between the SM-SR 25 and the eSIM/eUICC 27.
  • local profile management in the eUICC 27 can also be performed by the LP 28, which comprises having the profile management initiated by or performed via the LP 28.
  • the LP 28 can transfer the responsibility or the role of transparent bridge to a node device comprising a provisioned eSIM/eUICC.
  • the node device then becomes a LP to achieve auto provisioning of all the network nodes in the field.
  • Figure 3 schematically illustrates detailed data flow among different elements of Figure 2 for provisioning an eUICC according to the present disclosure.
  • Figure 3 is based on Figure 6 and the relevant description of Figure 6 as disclosed in Embedded SIM Remote Provisioning Architecture Version 4.2 published by the GSMA on 07 July 2020.
  • the EUM 24 interacts with the SM-SR 25 to register the manufactured eUICC 27 by sending the EIS of the eUICC to the SM-SR 25.
  • This step is the same as originally defined by GSMA.
  • step 302 the operator 23 orders a profile for an eUICC from the SM-DP 22. This step is also the same as originally defined by GSMA.
  • the related information of the eUICC 27 which is registered with the SM-SR 25 is updated to include information on the LP 28. This comprises identification mapping between the eUICC 27 and the LP 28.
  • the operator 23 sends a profile download request to the SM-DP, requesting the download of a profile for the eUICC 27. This step corresponds to step 1 of Figure 6 of Embedded SIM Remote Provisioning Architecture Version 4.2 by GSMA.
  • the SM-DP 22 and the SM-SR 25 authenticate each other and verify the EIS of the eUICC to provision.
  • This step corresponds to step 3 of Figure 6 of Embedded SIM Remote Provisioning Architecture Version 4.2 by GSMA.
  • the SM-SR 25 transmits the profile download notification to the LP 28, instead of to the eUICC 27.
  • the mapping EID i.e. the LP 28, of the original EID of the eUICC 27, instead of communicating to the original EID of the eUICC 27 directly.
  • a communication channel between the SM-SR 25 and the LP 28 is established based on their network connections situation, e.g. via a cellular channel, which allows the profile download request to be transmitted to the LP 28.
  • a secure local RF communication channel such as using the BLE protocol, is set up between the LP 28 and the eUICC 27.
  • the SM-SR 25 and the eUICC 27 authenticate each other via the LP 28.
  • step 10 of Figure 6 of Embedded SIM Remote Provisioning Architecture Version 4.2 by GSMA This is equivalent to step 10 of Figure 6 of Embedded SIM Remote Provisioning Architecture Version 4.2 by GSMA. However, it differs from step 10 by GSMA in that the authentication between the SM-SR 25 and the eUICC 27 is performed via the LP 28.
  • the authentication between the SM-SR 25 and the eUICC 27 allows a transparent communication bridge to be built between the SM-SR 25 and the eUICC 27, which makes it possible to provision the profile from the SM-DP 22 via the SM-SR 25 and further via the LP 28 to the eUICC 27.
  • the communication bridge being transparent allows the SM-SR 25 to communicate with the eUICC 27 based on a same protocol shared between them, without any undesirable modification as to the communication protocols and the like.
  • an Issuer Security Domain Profile ISD-P is created on the eUICC, and a confirmation is sent back to the SM-DP 22, via the SM-SR 25 and the LP 28.
  • the SM-DP 22 and the eUICC 27 authenticate each other and a shared key set is established between the ISD-P of the eUICC and the SM-DP through the SM-SR 25 and further via the LP 28.
  • the SM-DP 22 then encrypts and signs the profile with the key set to get the encrypted profile EncP.
  • the SM-DP 22 sends the encrypted profile EnCP securely to the eUICC 27, via both the SM-SR 25 and the LP 28.
  • an installation confirmation is sent from the eUICC 27 to the SM-SR 25.
  • the SM-SR then updates the EIS of the eUICC 27 that it stores.
  • the SM-SR 25 transmits an installation confirmation to the SM- DP, which in turn transmits an installation confirmation to the operator at step 315. This concludes the provisioning procedure.
  • the LP 28 in the present disclosure differs from the primary device in the eSIM consumer device solution of GSMA at least in that the LP of the present disclosure functions as a transparent communication bridge between the SM-DP and the end device comprising the eUICC and its role is transferrable to another device.

Abstract

A method of facilitating, distribution of a profile to a first programmable Subscriber Identity Module, SIM, embedded in a node device by a provisioner device is disclosed. The method comprising the steps of: establishing a communication channel with a profile managing server via a long range communication interface of the provisioner device, in response to the profile managing server determining that the provisioner device is associated with the first programmable SIM of the node device based on a received profile installation request, targeted to the first programmable SIM of the node device; establishing a communication channel with the node device comprising the first programmable SIM via a short range communication interface of the node device; and facilitating authentication between the profile managing server and the first programmable SIM, such that distribution of the profile to the first programmable SIM, over a communication channel from the profile managing server to the first programmable SIM and via the provisioner device, is enabled.

Description

A method of facilitating distribution of a profile to a programmable Subscriber Identity Module, SIM, embedded in a node device by a provisioner device, a provisioner device and a system for provisioning a profile to a programmable SIM
TECHNICAL FIELD
The present disclosure generally relates to the field of wireless communication, and, more specifically, to a method of facilitating distribution of a profile to a programmable Subscriber Identity Module, SIM, embedded in a node device by a provisioner device, a provisioner device and a system for provisioning a profile to a programmable SIM.
BACKGROUND
A subscriber identification module, or simply a SIM card, also known as a universal integrated circuit card, UICC, is an integrated circuit running a card operating system, COS, that serves the purpose of securely storing an international mobile subscriber identity, IMSI, number and its related key, which are used to identify and authenticate a mobile device comprising the SIM card onto a communication network.
A traditional SIM card takes the form of a removable “Secure Element”, which is linked or bond to a mobile network service operator and has to be physically installed into or removed from a mobile device. One issue with the traditional SIM card is that switching from one service provider to another entails also the switching of SIM cards.
Embedded SIM card, eSIM, or embedded universal integrated circuit card, eUICC, which is developed to replace the traditional SIM card, has the advantage of enabling simplified management of subscriptions and connections.
With an eSIM card, although the role of being a SIM card itself does not change, the GSM Association, GSMA, has defined a radical new way to load it into mobile devices. With an eSIM card, the SIM may be securely downloaded into a ‘Secure Element’ that can be permanently embedded inside any type of device.
Specifically, the eSIM needs a profile to access a network and to work correctly. A Profile comprises operator data related to a subscription, including the operator’s credentials and potentially operator or third-party SIM based applications. The secure element in the eSIM solution can accommodate multiple profiles. Profiles are remotely downloaded over-the-air, OTA, into an eUICC. GSMA defines a remote SIM provisioning process for this profile download procedure.
The GSMA has created a consumer solution suitable for the “direct to consumer” channel and a machine to machine, M2M, solution which serves the needs of business-to-business customers, specifically in the Internet of Things, loT, market.
According to Embedded SIM Remote Provisioning Architecture Version 4.2 07 July 2020, which is incorporated herein by reference, remote eSIM provisioning for M2M utilizes a server driven (push model) to provision and remotely manage operator Profiles. The solution is organized around three elements: the Subscription Manager - Data Preparation, SM-DP, the Subscription Manager - Secure Routing, SM-SR and the eUICC.
The SM-DP is responsible for preparing, storing and protecting operator profiles, including the operator credentials. It also downloads and install profiles onto the eUICC.
The SM-SR is responsible for managing the status of profiles on the eUICC (enable, disable, delete). It also secures the communications link between the eUICC and SM-DP for the delivery of operator profiles.
The eUICC is a secure element that contains one or more subscription profiles. Each profile enables the eUICC to function in the same way as a removable SIM issued by the operator that created it. An eUICC may be built using any form factor from the traditional removable card to embedded formats soldered into devices.
According to the GSMA M2M remote eSIM provisioning process, an eUICC information set of an eUICC manufactured by an eUICC manufacturer, EUM, is stored in a database of the SM-SR after registration of the eUICC with the SM-SR. When a profile, which is created by the SM-DP in response to an order from an operator, is to be downloaded to a related eUICC, a protected communication channel from the SM-DP to the eUICC has to be created via the SM-SR with which the eUICC is registered, thereby ensuring secure transmission of the profile.
The above remote eSIM M2M provisioning process has the assumptions or requirements that each manufactured eUICC should contain a Provisioning Profile and is linked to an active Provisioning Subscription. This Provisioning Profile supports the communication between the SM-SR and the eUICC for the purpose of provisioning. This Provisioning Profile and related Subscription, and the potential roaming fee incur extra cost for applying the eSIM solution. Moreover, in some applications, such as an intelligent city lighting system, many node devices or lighting devices do not need to have their long range communication interfaces (i.e. cellular interfaces) activated, as normally only selected node devices need to communicate directly with a remote device such as a backend server, and to assume a role of router to forward information from a group of other nodes to the backend server. In this case, it is a waste to pay for provisioning profiles for each and every eSIM included in lighting devices in the lighting system.
On the other hand, it is difficult to decide which lighting device should be equipped with an activated eSIM, until a field test after installation is finished, which essentially makes it impossible to choose to pay for only provisioning profiles for a selected and limited number of node devices.
Besides, during a long lifetime of a node device such as a lighting device, profile management and possible service plan update also have to be done remotely, which also requires that node devices having long range communication interface disabled in the first place must have a profile. For some node devices, this requirement cannot be met as there are no profile available.
Still another difficulty with remote provisioning and management of profiles for eSIMs is that permanent or even temporary roaming may not be allowed in some regions.
In consideration of all the above, there is a genuine need for a remote eSIM provisioning method which not only eliminates the need of a pre-loaded activated provisioning profile in each SIM but also facilitates easy management of a large number of profiles needed in a network system.
SUMMARY
In a first aspect of the present disclosure, there is provided a method of facilitating, by a provisioner device, distribution of a profile to a first programmable Subscriber Identity Module, SIM, embedded in a node device comprising a short range communication interface, the provisioner device comprising a short range communication interface and a long range communication interface, the method comprising the steps of: establishing a communication channel with a profile managing server via the long range communication interface of the provisioner device, in response to the profile managing server determining that the provisioner device is associated with the first programmable SIM of the node device based on a received profile installation request, targeted to the first programmable SIM of the node device; establishing a communication channel with the node device comprising the first programmable SIM via the short range communication interface of the node device; and facilitating authentication between the profile managing server and the first programmable SIM, such that distribution of the profile to the first programmable SIM, over a communication channel from the profile managing server to the first programmable SIM and via the provisioner device, is enabled.
The present disclosure is based on the insight that remote provisioning of a profile to a programmable SIM card, such as an eSIM, may be facilitated by using a new entity referred to as a provisioner device. The provisioner device provides a transparent communication bridge between the profile managing server and the eSIM, such that a secure communication channel for profile downloading is available.
It will be understood by those skilled in the art that a transparent communication bridge as used herein means that neither the profile managing server nor the eSIM needs to change its processing procedures, such as transmission protocol, for sending and receiving the profile by way of the transparent communication bridge.
The provisioner device comprises a short range communication interface and a long range communication interface and functions to establish a communication channel with the profile managing server using its long range communication interface and a further communication channel with a node device comprising the eSIM to be provisioned using its short range communication interface. It thereby enables transmission or provision of a profile from the profile managing server to the eSIM.
The communication channel with the profile managing server using the long range communication interface is built when it is determined from a profile installation request received at the profile managing server that the provisioner device is associated with the first programmable SIM of the node device.
Following that, the further communication channel with a node device comprising the eSIM to be provisioned is established between the provisioner device and the node device, which makes it possible to forward the profile installation request to the eSIM. This allows the profile managing server to authenticate each other with the eSIM via the provisioner device. As a result, a profile can be distributed to the first programmable SIM, over a communication channel from the profile managing server to the first programmable SIM, via the provisioner device.
In an example of the present disclosure, the provisioner device is provided with a second programmable SIM, the provisioner device being associated with the first programmable SIM of the node device is determined based on a mapping between a first information set of the first programmable SIM of the node device and a second information set of the second programmable SIM of the provisioner device stored at the profile managing server.
An information set of an programmable SIM such as an eSIM is stored at the profile managing server such as a SM-SR, after the eSIM is manufactured by an eSIM manufacturer and registered with the SM-SR. In order for the provisioner device to facilitate the distribution of the profile to the target eSIM, the profile managing server further stores a mapping between the information set of the first programmable SIM of the node device and the information set of the second programmable SIM of the provisioner device. Such a mapping allows the profile managing server to know that, a communication channel is to be established with the provisioner device, instead of with the node device composing the target eSIM.
In an example of the present disclosure, the mapping between the first information set of the first programmable SIM of the node device and the second information set of the second programmable SIM of the provisioner device is added to the profile managing server, prior to establishing the communication channel with the profile managing server.
It follows naturally from the above that such a mapping has to be present in the profile managing server before any communication channel between the provisioner device and the profile managing server is established.
In an example of the present disclosure, the adding comprises adding an identification of the second programmable SIM of the provisioner device to the first information set of the second programmable SIM of the node device stored at the profile managing server.
A mapping means that related information of the provisioner device is added and associated with the eSIM registered at the profile managing server. When the profile managing server, i.e., the SM-SR, needs to reach the target eSIM as identified by the profile installation requestion, it will reach the provisioner device instead, using the associated information.
In an example of the present disclosure, the adding is performed via a communication interface between a manufacturer of the programmable SIM and the profile managing server. The communication interface between the manufacturer of the programmable SIM and the profile managing server can be conveniently used by the provisioner device to update the related eSIM registration information. That is, to add the mapping as described above.
In an alternative example of the present disclosure, the added mapping is sent to the profile managing server directly by the provisioner device.
The provisioner device may also communicate directly with the profile managing server to add the mapping, this allows more flexibility.
In an example of the present disclosure, the first information set of the first programmable SIM is further stored at the provisioner device.
An information set of an programmable SIM such as an eSIM is generally stored at the profile managing server such as a SM-SR, after the eSIM is manufactured by an eSIM manufacturer and registered with the SM-SR. In order to enable the provisioner device to facilitate the remote provision procedure, the information set has to be stored at the provisioner device as well. It thereby allows the profile managing device to determine the mapping between the eSIM to be provisioned and the provisioner device.
In an example of the present disclosure, the provisioner device comprises an independent portable device.
The provisioner device may be a tablet or a hand-hold device, which may be easily used by a field engineer to facilitate the distribution of the profile to any selected node device easily.
When the provisioner device is an independent portable device, in a further example of the present disclosure, the method further comprises at least one step of: enabling the profile on the programmable SIM; disabling the profile on the programmable SIM; and deleting the profile on the programmable SIM.
In this case, the provisioner device may also perform profile management such as enabling, disabling and deleting of the profile distributed to the programmable SIM. This is convenient and does not incur extra roaming cost.
As an alternative, the provisioner device may transfer the role of the transparent bridge to a provisioned node device in the same network as the node device comprising the programmable SIM to be provisioned. In this sense, the provisioned node device becomes a provisioner device for facilitating the distribution of the profile to the programable SIM. It therefore allows auto-provisioning to be realized in the network. In a second aspect of the present disclosure, there is provided a provisioner device connected to a network comprising a node device comprising a short range communication interface and embedded with a first programmable Subscriber Identity Module, SIM, the provisioner device comprising a short range communication interface and a long range communication interface and configured to facilitate, according to the first aspect of the present disclosure, distribution of a profile to the first programmable SIM embedded in the node device.
In a third aspect of the present disclosure, there is provided a system for provisioning a profile to a programmable Subscriber Identity Module, SIM, embedded in a node device comprising a short range communication interface, the system comprising a provisioner device, a profile managing server, a profiling preparation server, wherein: the provisioner device comprises a short range communication interface and a long range communication interface and is connected to a network comprising the node device, the provisioner device being configured to: update an information set of the programmable SIM of the node device stored at a profile managing server; the profile managing server is configured to: receive a profile installation request targeted to the programmable SIM, from a profile preparation server, the profile installation request sent by the profile preparation server in response to a profile download request received by the profile preparation server from a network service provider; establish a communication channel with the provisioner device via its long range communication interface, based on the updated information set of the programmable SIM; transmit the profile installation request to the provisioner device over the communication channel between the profile managing server and the provisioner device; the provisioner device is further configured to establish a communication channel with the node device equipped with the programmable SIM via a short range communication of the provisioner device; the profile managing server is further configured to authenticate each other with the programmable SIM; and the profile preparation server is configured to provision the profile to the programmable SIM via a transparent communication bridge between the profile managing server and the programmable SIM. In an example of the present disclosure, the provisioner device is further configured to pre-load the information set of the programmable SIM into the provisioner device.
In an example of the present disclosure, the provisioner device is configured to function as a transparent bridge between the profile managing device and the programmable SIM.
In a fourth aspect of the present disclosure, a computer program product is provided, comprising a computer readable storage medium storing instructions which, when executed on at least one processor, cause the at least one processor to carry out the method according to the first aspect of the present disclosure.
The above mentioned and other features and advantages of the disclosure will be best understood from the following description referring to the attached drawings. In the drawings, like reference numerals denote identical parts or parts performing an identical or comparable function or operation.
BRIEF DESCRIPTION OF THE DRAWINGS
Fig. 1 schematically illustrates an eUICC M2M remote provisioning system according to the GSMA specification.
Fig. 2 schematically illustrates a remote provisioning system for provisioning a programmable SIM according to the present disclosure.
Fig. 3 schematically illustrates detailed data flow among different elements of Fig. 2 for provisioning an eUICC according to the present disclosure.
DETAILED DESCRIPTION
Embodiments contemplated by the present disclosure will now be described in more detail with reference to the accompanying drawings. The disclosed subject matter should not be construed as limited to only the embodiments set forth herein. Rather, the illustrated embodiments are provided by way of example to convey the scope of the subject matter to those skilled in the art.
In the following description, the term “programmable SIM” is used to comprise an secure element such as an embedded SIM, eSIM, or eUICC which may be provisioned with a profile to enable a SIM function.
Figure 1 schematically illustrates an eUICC M2M remote provisioning system 10 according to the GSMA specification. The remote provisioning system 10 comprises a Certificate Issuer, CI 11, a Subscription Manager Data Preparation, SM-DP 12, an Operator 13, an eSIM manufacturer EUM 14, at least one Subscription Manager Secure Routing, SM-SR 15, a M2M service provider, M2M SP 16, an eUICC 17, and a device 18.
A high-level description of the GSMA M2M remote eSIM provisioning process is as follows. For simplicity consideration, only interactions between different elements of Figure 1 which are relevant for the provisioning procedure described below are illustrated in Figure 1.
During a procedure generally indicated by a numeral 110, eUICCs 17 are manufactured, according to given standards, by an EUM 14, which will also perform registration of the eUICC 17 with a SM-SR 15. After registration, each eUICC 17 has a corresponding eUICC Information Set, EIS, stored in a database of the SM-SR 15 with which the eUICC is registered. The EIS includes related information of the eUICC 17, such as a unique ID, credentials, certificate and so on.
During a procedure generally indicated by a numeral 120, an operator 13 orders profiles, in certain quantity, with a selected SM-DP 12. The order contains production data such as the quantity of profiles and a Start-IMSI, an IMSI range or a list of IMSIs and a reference to the Un-personalized Profile type, and other related information. The SM-DP 12 creates the profiles using the data received from Operator 13 and stores the profiles within the SM-DP 12. Order completion is confirmed to the Operator 13, including all data necessary to register the Profiles in the Operator’s backend systems. Each Profile is uniquely identified at least by its Integrated Circuit Card ID, ICCID.
During a procedure generally indicated by a numeral 130, secure profile downloading of the profile to the eUICC 17, via the SM-SR 15 storing the EIS of the eUICC 17, is performed. Specifically, the Operator 13 sends a Profile Download request to the SM- DP 12. The request must include the relevant information to allow the identification of the SM-SR 15 storing the EIS of the eUICC 17, the target EID and ICCID of the eUICC 17.
Still with the procedure 130, the SM-DP 12 then identifies the SM-SR 15, where the eUICC 17 is currently registered. The SM-SR 15 and the SM-DP 12 authenticate each other to establish a protected communication channel. The SM-DP 12 retrieves and validates the EIS of the eUICC 17 from the SM-SR 15. If no problem, the SM-DP 12 sends an installation request to the SM-SR 15, and the SM-SR 15 will then authenticate with the eUICC 17 to establish a protected communication channel. The SM-DP 12 and the eUICC 17 will negotiate a profile key to encrypt the profile (i.e. EncP), and the EncP will be sent from SM-DP 12 to the eUICC 17 via the protected channel, via the SM-SR 15. The eUICC 17 sends the result of the installation of the Profile to the SM-DP 12. The SM-DP 12 notifies the SM-SR 15 to update the related EIS records.
It is noted that the operator 13 may also ask the SM-DP 12 to enable the Profile once it is downloaded and installed. In such a way, the eUICC 17 has at least one enabled working profile and can start to access to the network.
As described in the background section, such a remote provisioning method is limited in its application due to extra communication cost and other requirements.
A method is proposed in the present disclosure, which helps to obviates the limitations of the conventional remote provisioning method.
Figure 2 schematically illustrates a remote provisioning system 20 for provisioning a programmable SIM according to the present disclosure.
The remote provisioning system 20 according to the present disclosure comprises a Certificate Issuer, CI 21, a profile preparation server such as the illustrated Subscription Manager Data Preparation, SM-DP 22, an Operator 23, an eSIM manufacturer, EUM 24, a profile managing server such as the illustrated Subscription Manager Secure Routing, SM-SR 25, a M2M service provider, M2M SP 26, an eUICC 27, a device maker 29 and a local provisioner device, LP 28.
The SM-DP 22 is a same role as defined by GSMA. The SM-SR 25 is a same role as defined by GSMA. Furthermore, the interface between the SM-SR 25 and the EUM 24 is not only for eUICC registration, but also for eUICC information update.
The Module/eUICC 27 is a secure element that contains one or more subscription Profiles. The communication functionalities, and local management interface can be implemented either in eUICC 27 or the Module in which the eUICC 27 is embedded.
The provisioner device or LP device 28 is an entity newly introduced according to the present disclosure. It is connected to the network or has a way of network communication. As an example, the LP 28 may be an independent portable device such as a tablet or a hand-hold device and functions as a local provisioner. The network connection may comprise a long range network connection such as an ethemet or a cellular network connection. Moreover, a short range network connection such as a Bluetooth network connection.
It will be described in the following that the LP 28 provides a transparent communication bridge between the SM-SR 25 and the eSIM/eUICC 27. The LP 28 can also provide local profile management functionalities via the local communication between the LP and the eSIM/eUICC 27.
A high-level description of an eSIM provisioning process performed by the system 20 illustrated in Figure 2 is as follows. For simplicity consideration, only interactions between different elements of Figure 2 which are relevant for the provisioning procedure described below are illustrated in Figure 2.
At a step indicated by a numeral 210, an EUM 24 manufactures a batch of eUICCs 27 and performs a registration of the eUICCs 27 with a selected SM-SR 25, following the regular process as defined by GSMA.
At a step indicated by a numeral 220, an operator 23 orders profiles with a profile preparation server such as the illustrated SM-DP 22 following the regular process as defined by GSMA.
At a step generally indicated by a numeral 230, a device maker 29 purchases eUICCs 27 from the EUM 24, or alternatively via other distribution channels, and retrieves the related eUICCs information. The device maker 29 produces loT products, implemented with the purchased eUICCs 27.
At a step indicated by a numeral 240, the eUICC information is also loaded to a LP device 28.
At step 250, the LP device 28 update related eUICC registration information of the eUICC 27 stored at the SM-SR 25. Specifically, the LP 28 may communicate to the EUM 24 and reuse a communication interface between the EUM 24 and the SM-SR 25 to update the related eUICC registration information. Alternatively, it is also possible that the LP 28 directly notifies the SM-SR 25 about the eUICC information update.
It can be contemplated by those skilled in the art that only a selected number of eUICCs 27 need to have a profile provisioned, the update step 250 is performed only with regard to those eUICCs 27.
It is noted that the LP device 28 may also be equipped with an eUICC and has an activated subscription with one operator.
To update the registration information of an eUICC 27, a mapping of an identification information, e.g. EID, of a target eUICC 27 with an identification information of the eUICC in the LP, is added to the EIS of the eUICC 27 which is stored in the database of the SM-SR 25.
The EIS of the eUICC 27 is data stored in a database of the SM-SR 25 after eSIM registration of step 210. Related information of the LP 28 may be added and associated with the registered eSIM as in the following example (assuming Profile 0 is the provisioning profile).
EIS = { EID (EID of I. If Type, Version, Production Date, Platform Management Credentials, Certificate, Available Memory, Total Memory, SRID, {Profile 0: Profile Type, ISD-P AID, ICCID, MSISDN (MSISDN of LP), State, DPID, Allocated Memory, POL2
Profile 1: Profile Type, ISD-P AID, ICCID, MSISDN, State, DPID, Allocated Memory, POL2
Profile n:
Subsequently, when the SM-SR 25 needs to reach the target eUICC or a device comprising the same, it will reach the LP 28 using the associated information (EID, MSISDN (Mobile Station International Subscriber Directory Number)).
In this case, messages to be sent, by the SM-SR, to the target eSIM/device (EID) is sent instead to the LP. For each message, the EID is included in the message header, such that the LP knows which device to forward the messages, some example messages are as follows:
{EID, ISD-P creation}
{EID, Profile download and installation request}
It is noted that the LP also maintains a mapping list of the eSIM that it manages.
At step 260, the device maker 29 or an end user notifies the operator 23 to activate the eUICC, optionally via a M2M SP, the related eUICC information is also sent to operator 23.
In a procedure generally indicated by a numeral 270, the operator 23 sends a Profile Download request to the SM-DP 23. The request comprises relevant information to allow the identification of the SM-SR, the target EID and ICCID by the SM-DP 23. The SM- DP 23 then identifies the SM-SR 25 storing the EIS of the target EID and establishes a protected communication channel in the same way as defined by GSMA. The SM-DP 23 sends an installation request to SM-SR 25. In a procedure generally indicated by a numeral 280, the SM-SR 25 check its database to find the registered eUICC information. Instead of communicating to the original EID of the eUICC 27, the SM-SR 25 communicates to the mapping EID of the original EID, i.e. the LP 28. The communication channel between SM-SR 25 and LP 28 could be based on their network connections situation, e.g. via a cellular channel.
In a procedure generally indicated by a numeral 290, the LP 28 authenticates to the eSIM/eUICC 27 to establish a communication channel, which is based on a local RF communication module, e.g. a Bluetooth channel. The LP 28 then forwards the request from the SM-SR 25 to the target Module/eUICC 27.
With SM-SR 25, and further via the LP 28, the SM-DP 22 and the eUICC 27 can communicate securely to distribute the profile. The communication message flow comprises several round trips and is the same as defined by GSMA. The LP 28 therefore provides a transparent communication bridge between the SM-SR 25 and the eSIM/eUICC 27.
It is noted that local profile management in the eUICC 27 can also be performed by the LP 28, which comprises having the profile management initiated by or performed via the LP 28.
In a network comprising a plurality of node devices each equipped with an eSIM, the LP 28 can transfer the responsibility or the role of transparent bridge to a node device comprising a provisioned eSIM/eUICC. The node device then becomes a LP to achieve auto provisioning of all the network nodes in the field.
Figure 3 schematically illustrates detailed data flow among different elements of Figure 2 for provisioning an eUICC according to the present disclosure.
Figure 3 is based on Figure 6 and the relevant description of Figure 6 as disclosed in Embedded SIM Remote Provisioning Architecture Version 4.2 published by the GSMA on 07 July 2020.
At step 301, the EUM 24 interacts with the SM-SR 25 to register the manufactured eUICC 27 by sending the EIS of the eUICC to the SM-SR 25. This step is the same as originally defined by GSMA.
At step 302, the operator 23 orders a profile for an eUICC from the SM-DP 22. This step is also the same as originally defined by GSMA.
At step 303, the related information of the eUICC 27 which is registered with the SM-SR 25 is updated to include information on the LP 28. This comprises identification mapping between the eUICC 27 and the LP 28. At step 304, the operator 23 sends a profile download request to the SM-DP, requesting the download of a profile for the eUICC 27. This step corresponds to step 1 of Figure 6 of Embedded SIM Remote Provisioning Architecture Version 4.2 by GSMA.
At step 305, the SM-DP 22 and the SM-SR 25 authenticate each other and verify the EIS of the eUICC to provision. This step corresponds to step 3 of Figure 6 of Embedded SIM Remote Provisioning Architecture Version 4.2 by GSMA.
At step 306, the SM-SR 25 transmits the profile download notification to the LP 28, instead of to the eUICC 27.
This involves the SM-SR 25 checks its database to find the registered eUICC information of the eUICC 27, which allows the SM-SR 25 to communicate with the mapping EID, i.e. the LP 28, of the original EID of the eUICC 27, instead of communicating to the original EID of the eUICC 27 directly.
Specifically, a communication channel between the SM-SR 25 and the LP 28 is established based on their network connections situation, e.g. via a cellular channel, which allows the profile download request to be transmitted to the LP 28.
At step 307, a secure local RF communication channel such as using the BLE protocol, is set up between the LP 28 and the eUICC 27.
At step 308, the SM-SR 25 and the eUICC 27 authenticate each other via the LP 28.
This is equivalent to step 10 of Figure 6 of Embedded SIM Remote Provisioning Architecture Version 4.2 by GSMA. However, it differs from step 10 by GSMA in that the authentication between the SM-SR 25 and the eUICC 27 is performed via the LP 28.
The authentication between the SM-SR 25 and the eUICC 27 allows a transparent communication bridge to be built between the SM-SR 25 and the eUICC 27, which makes it possible to provision the profile from the SM-DP 22 via the SM-SR 25 and further via the LP 28 to the eUICC 27. The communication bridge being transparent allows the SM-SR 25 to communicate with the eUICC 27 based on a same protocol shared between them, without any undesirable modification as to the communication protocols and the like.
A standard secure download and installation of a profile is available from Figure 30 and the related description on page 91 and 92 of Embedded SIM Remote Provisioning Architecture Version 4.2 by GSMA. The following steps performed in the present are the same as the standard steps, except that communications between the SM-DP 22 and/or SM-SR 25 and the eUICC 27 is performed via the transparent communication bridge by way of the LP 28.
At step 309, an Issuer Security Domain Profile, ISD-P is created on the eUICC, and a confirmation is sent back to the SM-DP 22, via the SM-SR 25 and the LP 28.
At step 310, the SM-DP 22 and the eUICC 27 authenticate each other and a shared key set is established between the ISD-P of the eUICC and the SM-DP through the SM-SR 25 and further via the LP 28.
At step 311, the SM-DP 22 then encrypts and signs the profile with the key set to get the encrypted profile EncP.
At step 312, the SM-DP 22 sends the encrypted profile EnCP securely to the eUICC 27, via both the SM-SR 25 and the LP 28.
At step 313, after verification, decryption and installation, an installation confirmation is sent from the eUICC 27 to the SM-SR 25. The SM-SR then updates the EIS of the eUICC 27 that it stores.
At step 314, the SM-SR 25 transmits an installation confirmation to the SM- DP, which in turn transmits an installation confirmation to the operator at step 315. This concludes the provisioning procedure.
As a supplementary note, in the eSIM consumer device solution defined by GSMA, there is (optionally) a so-called “primary device” which plays a role as a local assistant for provisioning of a consumer device. The LP 28 in the present disclosure differs from the primary device in the eSIM consumer device solution of GSMA at least in that the LP of the present disclosure functions as a transparent communication bridge between the SM-DP and the end device comprising the eUICC and its role is transferrable to another device.
The present disclosure is not limited to the examples as disclosed above, and can be modified and enhanced by those skilled in the art beyond the scope of the present disclosure as disclosed in the appended claims without having to apply inventive skills and for use in any data communication, data exchange and data processing environment, system or network.

Claims

CLAIMS:
1. A method, performed by a provisioner device (28), for facilitating distribution of a profile to a first programmable Subscriber Identity Module, SIM, embedded in a node device (27) comprising a short range communication interface, the provisioner device (28) comprising a short range communication interface and a long range communication interface, the method comprising the steps of: update an information set of the programmable SIM of the node device (27) stored at a profile managing server (25); establishing a communication channel with a profile managing server (25) via the long range communication interface of the provisioner device (28), in response to the profile managing server (25) determining that the provisioner device (28) is associated with the first programmable SIM of the node device (27) based on the updated information set and a received profile installation request from a profile preparation server (22), the profile installation being targeted to the first programmable SIM of the node device (27); establishing a communication channel with the node device (27) comprising the first programmable SIM via the short range communication interface of the node device; and facilitating authentication between the profile managing server (25) and the first programmable SIM to allow distribution of the profile to the first programmable SIM, over a transparent communication bridge to be built from the profile managing server (25) to the first programmable SIM and via the provisioner device (028).
2. The method according to claim 1, wherein the provisioner device (28) is provided with a second programmable SIM, the provisioner device (28) being associated with the first programmable SIM of the node device (27) is determined based on a mapping between a first information set of the first programmable SIM of the node device and a second information set of the second programmable SIM of the provisioner device (28) stored at the profile managing server (25).
3. The method according to claim 1 or 2, wherein the mapping between the first information set of the first programmable SIM of the node device (27) and the second information set of the second programmable SIM of the provisioner device (28) is added to the profile managing server (28), prior to establishing the communication channel with the profile managing server (25).
4. The method according to claim 3, wherein the adding comprises adding an identification of the second programmable SIM of the provisioner device (28) to the first information set of the first programmable SIM of the node device (27) stored at the profile managing server (25).
5. The method according to claim 3 or 4, wherein the adding is performed via a communication interface between a manufacturer of the programmable SIM and the profile managing server (25).
6. The method according to claim 3 or 4, wherein the added mapping is sent to the profile server directly by the provisioner device (28).
7. The method according to any of the previous claims, wherein the first information set of the first programmable SIM is further stored at the provisioner device (28).
8. The method according to any of the pervious claims, wherein the provisioner device (28) comprises an independent portable device.
9. The method according to claim 8, further comprising at least one step of: enabling the profile on the first programmable SIM; disabling the profile on the first programmable SIM; and deleting the profile on the first programmable SIM.
10. The method according to any of the previous claims 1 to 7, wherein the provisioner device (28) comprises a further node device in a network comprising the node device equipped with the first the programmable SIM, the further node device comprising a further programmable SIM which is provisioned with a profile. 18
11. A provisioner device (28) connected to a network comprising a node device (27) comprising a short range communication interface and embedded with a first programmable Subscriber Identity Module, SIM, the provisioner device (28) comprising a short range communication interface and a long range communication interface and configured to facilitate, according to any of the previous claims 1 to 10, distribution of a profile to the first programmable SIM embedded in the node device (27).
12. A system for provisioning a profile to a programmable Subscriber Identity Module, SIM, embedded in a node device (27) comprising a short range communication interface, the system comprising a provisioner device (28), a profile managing server (25), a profile preparation server (22), wherein: the provisioner device (28) comprises a short range communication interface and a long range communication interface and is connected to a network comprising the node device (27), the provisioner device (28) being configured to: update an information set of the programmable SIM of the node device (27) stored at a profile managing server (25); the profile managing server (25) is configured to: receive a profile installation request targeted to the programmable SIM, from the profile preparation server, the profile installation request sent by the profile preparation server in response to a profile download request received by the profile preparation server (22) from a network service provider; establish a communication channel with the provisioner device (28) via its long range communication interface, based on the updated information set of the programmable SIM; transmit the profile installation request to the provisioner device (28) over the communication channel between the profile managing server (25) and the provisioner device (28); the provisioner device (28) is further configured to establish a communication channel with the node device (27) equipped with the programmable SIM via a short range communication of the provisioner device (28); the profile managing server (25) is further configured to authenticate each other with the programmable SIM; and 19 the profile preparation server (22) is configured to provision the profile to the programmable SIM via a transparent communication bridge between the profile managing server (25) and the programmable SIM.
13. The system according to claim 12, wherein the provisioner device (28) is further configured to pre-load the information set of the programmable SIM into the provisioner device (28).
14. The system according to claim 12 or 13, wherein the provisioner device (28) is configured to function as a transparent bridge between the profile managing server (25) and the programmable SIM.
15. A computer program product, comprising a computer readable storage medium storing instructions which, when executed on at least one processor, cause said at least one processor to carry out the method according to any of the claims 1 - 10.
PCT/EP2022/076421 2021-09-30 2022-09-22 A method of facilitating distribution of a profile to a programmable subscriber identity module, sim, embedded in a node device by a provisioner device, a provisioner device and a system for provisioning a profile to a programmable sim WO2023052245A1 (en)

Applications Claiming Priority (4)

Application Number Priority Date Filing Date Title
CNPCT/CN2021/122460 2021-09-30
CN2021122460 2021-09-30
EP21206359 2021-11-04
EP21206359.8 2021-11-04

Publications (1)

Publication Number Publication Date
WO2023052245A1 true WO2023052245A1 (en) 2023-04-06

Family

ID=83505770

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/EP2022/076421 WO2023052245A1 (en) 2021-09-30 2022-09-22 A method of facilitating distribution of a profile to a programmable subscriber identity module, sim, embedded in a node device by a provisioner device, a provisioner device and a system for provisioning a profile to a programmable sim

Country Status (1)

Country Link
WO (1) WO2023052245A1 (en)

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20160050557A1 (en) * 2014-08-14 2016-02-18 Samsung Electronics Co., Ltd. Method and apparatus for profile download of group devices
US20160374134A1 (en) * 2015-06-22 2016-12-22 Samsung Electronics Co., Ltd. Method and apparatus for subscribing electronic device in mobile communication system

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20160050557A1 (en) * 2014-08-14 2016-02-18 Samsung Electronics Co., Ltd. Method and apparatus for profile download of group devices
US20160374134A1 (en) * 2015-06-22 2016-12-22 Samsung Electronics Co., Ltd. Method and apparatus for subscribing electronic device in mobile communication system

Similar Documents

Publication Publication Date Title
US20220095098A1 (en) Method and apparatus for supporting transfer of profile between devices in wireless communication system
US10694369B2 (en) Profile management method, embedded UICC, and device provided with the embedded UICC
US8738729B2 (en) Virtual access module distribution apparatus and methods
CA2810360C (en) System and method for remote provisioning of embedded universal integrated circuit cards
EP2410777B1 (en) Virtual access module distribution apparatus and method
US9831903B1 (en) Update of a trusted name list
EP3114862B1 (en) Communication system
CN111935704B (en) Profile downloading method, device and equipment
KR101891326B1 (en) Subscription Changing Method for Embedded UICC using Trusted Subscription Manager and Embedded UICC Architecture therefor
KR20130026352A (en) Method and apparatus for managing key information of embedded uicc, mno system, provisioning method and mno-changing method using the same
EP3824594B1 (en) Apparatus and method for ssp device and server to negotiate digital certificates
KR101891330B1 (en) Subscription Method for Embedded UICC using Trusted Subscription Manager and Embedded UICC Architecture therefor
CN102457833B (en) Virtual AM access module distributor and method
CN109963275B (en) Sending method and receiving method of subscription data and processing system of subscription data
JP7384920B2 (en) Method of providing subscription profile, subscriber identity module, and subscription server
US11012830B2 (en) Automated activation and onboarding of connected devices
WO2023052245A1 (en) A method of facilitating distribution of a profile to a programmable subscriber identity module, sim, embedded in a node device by a provisioner device, a provisioner device and a system for provisioning a profile to a programmable sim
WO2019229188A1 (en) Subscriber access to wireless networks
US20220278985A1 (en) Method and device for transferring bundle between devices
US20220377081A1 (en) Mutual device-to-device authentication method and device during device-to-device bundle or profile transfer
US20220247577A1 (en) Provisioning system and method
CN115499821A (en) eSIM signing method and device
CN116097636A (en) Apparatus and method for linking or profile transfer between devices

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 22782531

Country of ref document: EP

Kind code of ref document: A1