CoreESIM: Silicon-Level SIM Architecture & Security

At the silicon level, the fundamental purpose of both traditional physical SIM cards and embedded SIMs (eSIMs) remains consistent: to securely store subscriber identity modules (IMSI, keys) and facilitate network authentication according to 3GPP specifications. However, their physical implementation and integration within devices diverge significantly, impacting form factor, security posture, and manufacturing processes.

A physical SIM, technically known as a Universal Integrated Circuit Card (UICC), is a self-contained, removable smart card designed to ISO/IEC 7816 standards. Its silicon die typically comprises a dedicated microcontroller (MCU), cryptographic co-processor, and various memory types (ROM for OS, RAM for execution, EEPROM for data storage, including the IMSI and authentication keys). This entire assembly is encapsulated within a plastic module (e.g., 2FF, 3FF, 4FF form factors) with external contacts for power and data communication. The security boundary is clearly defined by the physical card itself, relying on tamper-resistant packaging and internal secure element design certified to standards like Common Criteria EAL.

Conversely, an eSIM, or embedded UICC (eUICC), represents a paradigm shift in integration. Instead of a removable card, the eSIM's silicon is either directly soldered onto the device's main PCB (e.g., in a WLCSP or LGA package) or, increasingly, integrated as a secure element (SE) within a larger System-on-Chip (SoC). This integration means the eSIM does not have its own external contacts but communicates with the host processor via internal bus interfaces such as SPI, I2C, or a dedicated Single Wire Protocol (SWP) in compliance with ETSI TS 102 622 for secure data exchange. The GSMA SGP.22 Remote SIM Provisioning (RSP) specification governs the over-the-air management and profile download capabilities, a key differentiator from physical SIMs.

Silicon-Level Security & Protocols

Despite their physical differences, both SIM types rely on robust silicon-level security to protect sensitive subscriber data and cryptographic operations. Each incorporates a hardware Secure Element (SE) – a tamper-resistant microprocessor, often with a dedicated hardware random number generator and crypto accelerators – designed to resist physical attacks, side-channel analysis, and fault injection. These SEs are typically certified to high assurance levels, such as Common Criteria EAL4+ or FIPS 140-2, ensuring the integrity and confidentiality of stored keys and algorithms.

Communication protocols between the SIM and the host device also share common ground. Both utilize Application Protocol Data Units (APDUs) as defined in ISO/IEC 7816-4 for command and response exchanges, and support AT commands specified in 3GPP TS 27.007 for device control. For eSIMs integrated within an SoC, the internal communication channels must maintain the same security isolation as an external interface, often through secure channels or memory protection units. The tightly coupled nature of eSIMs with the host SoC can offer enhanced resistance to sophisticated physical attacks, as the SE is not easily isolated or removed without damaging the entire device, presenting a higher barrier for attackers compared to a removable card.