CoreESIM: Standardized eSIM Profile Transfer Between Devices
3 min read
The proliferation of embedded Subscriber Identity Modules (eSIMs) has introduced enhanced flexibility for mobile network operators (MNOs) and end-users alike. A critical aspect of this ecosystem is the ability to securely and efficiently transfer eSIM profiles between devices, a process governed by industry-standard specifications to ensure interoperability and maintain security integrity. This note outlines the foundational standards and protocols enabling such transfers.
The primary standard governing eSIM profile management, including transfers, is defined by the GSMA's Remote SIM Provisioning (RSP) specifications. Specifically, GSMA SGP.22 (RSP Phase 2) outlines the architecture and protocols for consumer device use cases. This specification mandates a secure, authenticated process for managing eSIM profiles on an eUICC (embedded Universal Integrated Circuit Card).
Standardized eSIM Profile Transfer Mechanisms
Evolving from initial subscription provisioning, eSIM profile transfer between devices presents unique challenges. The standard supports various scenarios for profile migration:
- Carrier-Initiated Transfer: In this model, the Mobile Network Operator (MNO) facilitates the transfer. The MNO, acting through its Subscription Manager - Data Preparation+ (SM-DP+) and Subscription Manager - Secure Routing (SM-SR) systems, orchestrates the secure transfer of a user's existing eSIM profile from an old device's eUICC to a new device's eUICC. This typically involves deactivating the profile on the source device and activating it on the target device, often requiring user authentication and consent.
- Device-to-Device (D2D) Transfer: Newer iterations of the GSMA specification, particularly those addressing "eSIM Quick Transfer" or similar functionalities, aim to standardize a direct, secure transfer mechanism between two user devices. This method minimizes MNO intervention in the immediate transfer process, though the MNO's SM-DP+ remains the authoritative source for profile management and activation. The protocol involves cryptographic key exchange and secure channel establishment between the eUICCs of the source and target devices, under the oversight of the MNO's backend systems. User authentication on both devices is paramount.
- User-Initiated Transfer (via MNO portal/app): Users can often initiate a transfer through the MNO's self-service portal or application. This approach leverages the standard RSP architecture, where the user authenticates with the MNO, requests a profile migration, and the MNO's SM-DP+ generates a new activation code (LPA/QR code) or pushes the profile directly to the new device, provided the device is registered and authenticated.
The security framework underpinning these transfers relies heavily on mutual authentication between the eUICC, the SM-DP+, and the SM-SR. Cryptographic keys and digital certificates ensure the integrity and confidentiality of the profile data during transit. The Local Profile Assistant (LPA) on the device plays a crucial role in interacting with the eUICC and the remote provisioning systems. Future enhancements to the GSMA specifications continue to refine these transfer mechanisms, focusing on improved user experience, enhanced security, and broader interoperability across diverse hardware and software platforms.