eSIM, eUICC, and SGP Standards: Enabling IoT Connectivity

01 Oct 2024

In the world of IoT, connectivity is essential, and traditional SIM cards often limit flexibility and scalability. The rise of eSIM (embedded SIM) has revolutionized device connectivity, offering significant advantages in terms of remote provisioning, scalability, and global deployment. However, the success of eSIM is driven by a series of industry standards defined by the GSMA – notably SGP.02, SGP.22, and SGP.32 – which ensure consistent, secure, and interoperable SIM management. This post explores these standards and how they facilitate streamlined connectivity for IoT engineers.

Terminology and Technology

An eSIM is an embedded version of the traditional SIM card – no more, no less. An eUICC however is what makes an SIM programmable without needing to physically switch it. This programmability is called Remote SIM Provisioning (RSP) and a SIM card with eUICC functionality can come in all different SIM form factors, from traditional plastic to eSIM ICs.
Programmability (RSP) makes eUICCs in any form factor great for IoT devices, many of which are deployed in hard-to-reach or remote locations. eUICC eliminates the logistical burden of replacing SIM cards and support multiple carrier profiles, allowing devices to switch between network operators without manual intervention. In this blog we will dive in to the pro’s and con’s of each standard.

GSMA eUICC Standards

The GSMA has defined several key standards for eUICC, which ensure that the technology remains interoperable, secure, and scalable for global deployment.

SGP.02 – eUICC Technical Specification for M2M

This is the core technical specification for Machine-to-Machine (M2M) communication that governs how eUICC operate in industrial IoT environments. It defines the architecture for RSP, which allows cellular profiles to be downloaded and managed remotely.

Key Features of SGP.02

  1. Remote Profile Management: M2M devices, such as connected vehicles or smart meters, can have their eSIMs provisioned with cellular profiles over-the-air, eliminating the need for physical access to the device.
  2. Scalability: The specification is designed to support millions of IoT devices, making it a scalable solution for large deployments.
  3. Security: SGP.02 emphasizes strong encryption and authentication protocols to prevent unauthorized access or tampering with SIM profiles.

Advantages

  • Reduced Operational Costs: The ability to remotely provision SIM profiles reduces the need for on-site maintenance, improving the scalability of IoT deployments.
  • Global Connectivity: eUICC-enabled devices can switch between carriers across different regions, providing uninterrupted service across global IoT networks.

Disadvantages

  • SMS support needed: The technology relies on SMS to trigger downloads. If the network does not support it, you cannot use RSP.
  • Provider lock-in: You need to choose a connectivity provider (MNO/MVNO) up-front and sign a contract. You will not have a feasible ability to completely switch to another provider down the road as the server managing your SIMs are located with your first choice of provider.

For more details, refer to the GSMA's SGP.02 specification.

SGP.22 – eUICC Specification for Consumer Devices

This is the standard for a similar technology in consumer devices, such as smartphones, wearables, and tablets. While primarily focused on consumer applications, its implications for Consumer IoT are significant, particularly for wearables, health monitors, and connected home devices.

Key Features of SGP.22

  1. User-Initiated Profile Management: Unlike M2M applications, where profiles are managed by backend systems, SGP.22 allows users to download and manage carrier profiles through simple interfaces, such as QR codes or applications.
  2. Fexibility: SGP.22 supports multiple profiles on a single device, enabling seamless switching between carriers, depending on region or pricing preferences.
  3. Wide Adoption: The specification ensures that devices like smartphones, smartwatches, and fitness trackers can easily transition to new networks without needing physical SIM cards.

Advantages

  • User-Friendly: Consumer IoT devices can benefit from the ease of provisioning profiles without the need for physical SIM swaps.
  • Cross-Network Compatibility: Devices using SGP.22 standards can switch between carriers without disruptions, making it ideal for wearables and health-related IoT devices that require constant connectivity.
  • No provider lock-in: End users are free to move between contracts as they see fit, without a technical or commercial hurdle to navigate.

Disadvantages

  • User access: You need to initiate the download procedure from the device itself, it cannot be pushed from a server.
  • Peripheral internet access: Your device need access to the internet to download the profile, e.g. via a secondary connection such as Wi-Fi/Bluetooth.
  • Operator mismatch: Quite a few MNO/MVNOs do not support SGP.22 profiles for business use cases. They only sell this to end-consumers with a handset.
  • LPA needed: You need an application called a Local Profile Assistant (LPA) in your device to provision the profile to the SIM card. It is currently available in smartphones (Android/iOS) and Windows operating systems.

For more information, check the SGP.22 specification.

If you're searching for SGP.22 eUICCs, we have it available here.

SGP.32 – eUICC IoT Architecture

This is a relatively new standard that focuses on optimizing eUICC for IoT-specific use cases, combining elements from both SGP.02 (M2M) and SGP.22 (Consumer) specifications. SGP.32 is designed to address the distinct needs of IoT deployments that require a balance between M2M and consumer requirements.

Key Features of SGP.32

  1. Hybrid Flexibility: Combines the over-the-air provisioning capabilities of SGP.02 with the user-driven management aspects of SGP.22, making it ideal for IoT deployments that require both managed services and user control.
  2. Optimized for Low-Power Devices: Recognizes the unique requirements of IoT devices, many of which operate on low power and have intermittent connectivity. The specification optimizes data traffic for power-constrained devices.
  3. Enhanced Security: SGP.32 strengthens security measures by supporting more robust encryption and network authentication protocols.

Advantages

  • Versatile Use: SGP.32 is designed to handle a wide variety of IoT devices, from connected vehicles and smart cities to healthcare applications and industrial sensors.
  • Power Efficiency: Optimizations in this standard help ensure that IoT devices can function efficiently with limited power, extending device longevity.

Disadvantages

  • Availability: It is not here yet. A lot of PoCs has been launched and CSPs across the world tout their abilities, but in reality, no one seem to have released products/services with full functionality.
  • Early adoption pitfall: There are however quite a few products stating to be conformant to pre-standardisation of the specification. Will it conform to the open standard in the future? Time will tell..

You can explore the SGP.32 standard for additional insights.

Benefits of eSIM for IoT applications

  1. Cost savings: With eSIMs, manufacturers can reduce their supply chain costs and simplify the deployment of devices in remote or hard-to-reach locations. It reduces the requirement of sending SIM cards and manually installing them. Both cost and time efficient.
  2. Durability: an eSIM is more durable and can withstand vibration and shock.
  3. Improved security: eSIMs have stronger security measures in place than traditional SIM cards, helping to protect sensitive data transmitted over IoT networks. By embedding a SIM, you also prevent unauthorized physical access to the SIM.

Benefits of eUICC for IoT applications

  1. Global deployments: Managing devices across regions with varying network operators can be complex. eUICC, in conjunction with the SGP.02, SGP.22, and SGP.32 standards, simplifies this process by allowing remote profile management, enabling devices to switch between carriers as needed. This makes global deployment seamless and cost-efficient.
  2. Reduced device downtime: With eUICC, IoT devices can remain connected by dynamically switching between carriers or profiles without requiring physical intervention. This is especially useful for devices in remote locations, reducing downtime and the need for on-site repairs.

Conclusion

eUICC, governed by the SGP.02, SGP.22, and SGP.32 standards, is rapidly becoming an essential component of the IoT ecosystem. These standards ensure that eUICCs provide reliable, scalable, and secure connectivity for both M2M and consumer IoT devices. As IoT continues to expand globally, engineers can leverage eUICC technology to simplify deployments, reduce costs, and improve connectivity across a diverse range of devices.
For a detailed understanding of GSMA standards, visit the official GSMA eUICC Specifications page.

Subscribe to our blog

Sign up for our blog updates and get new content as soon as it is available.

This form is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Shopping cart

No items added yet

Check out our products and product categories

Continue to products