Introduction #

The consumer architecture (SGP.21) follows a client-driven pull model that gives control over remote provisioning and local management of the profile to user of the device.

The solution consists of the SM-DP+ (Subscription Manager - Data Preparation Plus) for the creation and protection of MNO profiles and a specific application on the device, the LPA (Local Profile Assistant) that manages the communication between eSIM and backend.

The optional SM-DS (Subscription Manager - Discovery Server) enables automated profile discovery, if selected as an activation method by the MNO (Mobile Network Operator).

FOSS Solutions #

• osmo-smdpp (source code)

Articles #

eSIM RSP SM-DP+ Common Mutual Authentication #

• Part 1
• Part 2: GetEUICCInfo & GetEUICCChallenge
• Part 3: InitiateAuthentication
• Part 4: AuthenticateServer
• Part 5: AuthenticateClient

eSIM RSP SM-DP+ Understanding Profile Download and Installation #

• Part 1: PrepareDownload
• Part 2: GetBoundProfilePackage
• Part 3: InitialiseSecureChannelRequest

Do-It-Yourself eSIM RSP #

• Part 1
• Part 2
• Part 3
• Part 4

References #

• Error Codes (JSON)
• 2021-01-01 SM-DP+ で学ぶ TLS ハンドシェイク (楽天モバイル) (Japanese)
• 2021-02-08 SM-DP+ (IIJ) で学ぶ OpenSSL (Japanese)
• 2023-02-01 Enterprise eSIM Profiles for Anti-Theft Controls
• 2023-02-16 RSP Cookbook
• 2023-04-11 eSIM SAM.01 Secured Applications for Mobile
• 2023-04-13 eSIM Handbook
• 2023-04-22 Security Analysis of the Consumer RSP Protocol