Security and other development on the Embedded SIM

Its no surprise that GSMA has started working on Embedded SIM specifications. With M2M getting more popular every day, it would make sense to have the SIM (or UICC) embedded in them during the manufacturing process. The GSMA website states:

The GSMA’s Embedded SIM delivers a technical specification to enable the remote provisioning and management of Embedded SIMs to allow the “over the air” provisioning of an initial operator subscription and the subsequent change of subscription from one operator to another.

The Embedded SIM is a vital enabler for Machine to Machine (M2M) connections including the simple and seamless mobile connection of all types of connected vehicles. In the M2M market the SIM may not easily be changed via physical access to the device or may be used in an environment that requires a soldered connection, thus there is a need for ‘over the air’ provisioning of the SIM with the same level of security as achieved today with traditional “pluggable” SIM. It is not the intention for the Embedded SIM to replace the removable SIM currently used as the removable SIM still offers many benefits to users and operators in a number of different ways – for example, the familiarity of the form factor, easy of portability, an established ecosystem and proven security model.

The last time I talked about embedded SIM was couple of years back, after the ETSI security workshop here. Well, there was another of these workshops recently and an update to these information.

The ETSI presentation is not embedded here but is available on Slideshare here. As the slide says:

An embedded UICC is a “UICC which is not easily accessible or replaceable, is not intended to be removed or replaced in the terminal, and enables the secure changing of subscriptions” (ETSI TS 103 383)

Finally, Embedded SIM should not be confused with Soft-SIM. My last post on Soft-SIM, some couple of years back here, has over 15K views which shows how much interest is there in the soft SIM. As the slide says:

Soft or Virtual SIM is a completely different concept that does not use existing SIM hardware form factors and it raises a number of strong security issues:

• Soft SIM would store the Operator secret credentials in software within the Mobile device operating system - the same system that is often attacked to modify the handset IMEI, perform SIM-Lock hacking and ‘jail-break’ mobile OS’s
• Operators are very concerned about the reduction in security of their credentials through the use of Soft SIM. Any SIM approach not based on a certified hardware secure element will be subject to continual attack by the hacking community and if compromised result in a serious loss of customer confidence in the security of Operator systems
• Multiple Soft SIM platforms carrying credentials in differing physical platforms, all requiring security certification and accreditation would become an unmanageable overhead – both in terms of resource, and proving their security in a non-standardised virtual environment

The complete GSMA presentation is as follows:

GSMA Embedded SIM from Zahid Ghadialy

You may also like my old paper:

• M2M, Cellular and Small Cells

Rich Communication Suite (RCS)

I have heard quite a bit about Rich Communication Suite (RCS) recently. It was supposed to start become popular by 2011 but Infonetics puts it as a little too late to become mass market anytime soon in a recent report. The new report forecasts that there would be around 6.8 million RCS subscribers worldwide by end of 2012.

Dean Bubley from Disruptive Wireless released a report some months back saying that RCS is a bit too late and inflexible and the built-in assumptions have problems which wont make it a mass market technology.

Anyway, I decided to explore the technology a bit to understand it better. Before we start digging into this, the following Youtube Video gives a good overview of what RCS is supposed to be:

The following article gives a good summary of RCS as of now:

The GSMA is welcoming a new version of Rich Communication Suite (RCS) that will enable mobile phone customers to use instant messaging (IM), live video sharing and file transfer across any device on any network operator. Deutsche Telekom, Orange, Telecom Italia, Telefonica and Vodafone intend to commercially launch RCS across several European markets from late 2011, and additional operators are expected to launch later in 2012.

Once adopted, Rich Communication Suite – e* (RCS-e) will enable customers to use these enhanced communication services across mobile networks in a simpler and more intuitive way. It is based on a specification put forward by Bharti, Deutsche Telekom, Orange, Orascom Telecom, SK Telecom, Telecom Italia, Telefonica, Telenor and Vodafone which aims to lower the hurdle and speed up the market introduction and adoption of these services.

With RCS-e, customers will be able to use IM, share live video and share files such as photos simultaneously during calls, regardless of the network or device used. RCS-e will enable users to communicate in a very natural way, much like with GSM voice and text today, and will also offer the simplicity and security customers expect from mobile operator services.

As customers open their address book, they will be able to see which communication services are available to them. They can then choose their preferred communications option. For example, a customer would see if their contact is in an area with 3G coverage and is able to receive video.

The participating operators will work with handset suppliers to ensure the service is integrated into the address books of devices, so that customers will not have to download any additional software or technically configure their handsets in order to benefit from the enhanced experience.

“Mobile operators are committed to giving their customers greater choice in the way they communicate with one and other,” said Rob Conway, CEO and Member of the Board of the GSMA. “We welcome the pragmatic approach taken by these operators to accelerate the commercialisation of RCS and simplify the experience for mobile customers and we will work to adopt this specification within the RCS initiative.”

The RCS specification is designed to be interoperable between all operators and devices, giving customers greater choice in how they communicate. The new RCS-e is the result of extensive trials and is a subset of the current RCS 2.0 standard with enhancements. It is focused on extending the principles of voice and SMS calls to deliver an advanced set of interoperable data-centric communications services.

* RCS-e is a new enhanced version of the RCS specification which is based on the use across networks of IP Multimedia Subsystem (IMS) technology, an architectural framework for delivering Internet Protocol (IP) multimedia services.

The following presentation provides a bit more detail

Rich Communication Suite (RCS)

View more presentations from Zahid Ghadialy

Eduardo Martin's blog provides some more insight into the RCS Releases:

RCS has 3 releases, each upgrades the previous one. I will focus on SIP Presence only, but RCS touches more than SIP Presence, it also works other services such as IM.

RCS Release 1 evolves around the concept of the Enhanced Address Book (EAB), an evolution of the usual address book. In short the address book is decorated with enriched information, coming from different services. This plays nicely with today's wishes for cloud stored information, unified social networks status updates, contact content such as portrait icons. I'm not going into technical details, but I for sure am someone who is aware of the design issues around SIP Presence, its hard time scaling due to huge traffic, the dozens of ugly workarounds to make it work, and RCS is a nice step forward into the right direction, there are simple decisions that deeply simplify the network design, making it more like "old" presence networks, which simply work. One remark, it takes quite an effort to define this endorsing IMS and OMA, 27 pages of functional description, plus 39 of technical realization, it should be a lesson for everyone in these standard bodies when defining more extensions or new versions.

The RCS Release 2 effort focuses on enabling access to rich communication services from a wider range of devices. In short it tells that the user has multiple devices, for instance a mobile phone and a PC, possibly concurring for services, and adapts Release 1 for that. It also introduces the Network Address Book, which is just the realization that the EAB needs to be in the network and sync the multiple user devices.

The RCS Release 3 mostly consolidates Release 2 features, and adds some minor enhancements, such as preparing the network for different usages of it, for instance users with devices, which are not connected to mobile network, instead only have broadband connections. In my humble opinion a very important and positive decision, it's about time to consider these scenarios and find out new opportunities. It is weird to say this, but the fact that the industry finally acknowledges that content sharing between two users may happen off the voice/video session is a victory, welcome to the world not session centric.

The RCS specs are available here.

Voice over LTE - GSMA Presentation

Voice over LTE

View more presentations from zahidtg.

Updates from GSMA Asia Mobile Congress 09 - Day 2

Summary of interesting facts from the GSMA Mobile Asia Congress 09, Via Tomi Ahonen's, Communities Dominate Brands:

• 55% of Japan has migrated past 3G to 3.5G
• Japanese mobile content industry is worth 14 Billion dollars annually
• 50% of mobile data in Japan is consumed in the home, the peak time for mobile data consumption is between 9 PM and 10 PM; and smartphone users consume 10 times more data than non-smartphone users.
  
• Japan's Softbank will turn off their 2G network already in March of next year, 2010.
• Allen Lew, Singtel's CEO, said that in Singapore almost 50% of smartphone owners are shifting web surfing activity away from PCs.
  
• Jon Fredrik Baksaas, Telenor's President and CEO, spoke about the eco-friendly initiatives they have, such as solar powered cellular network base stations etc, but an interesting tidbit that came out, is that in Europe, Telenor has installed 870,000 household electricity meters that are remote digital meters and operate on the GSM cellular network, in Sweden. As Sweden's population is only about 7 million people that is probably a third of all households.
  
• Rajat Mukarji of Idea (one of India's largest mobile operators), told us of the Indian market, where the average price of a voice minute is 1 cent (US). He Mr Mukarji also said that in India mobile is the first screen, not the fourth screen; and mobile is the first internet connectivity opportunity for most people of India.
• Tony Warren, GM of Regulatory Affairs at Telstra, told that 60% of phones in Australia are 3G already, and over half of mobile data is now non-SMS type of more advanced mobile data. And he said that MMS is experiencing enormous growth, grew 300% in the past year.

You can read the summary of first day here.

Read the complete report here.

Updates from GSMA Asia Mobile Congress 09 - Day 1

Summary of interesting facts from the GSMA Mobile Asia Congress 09, Via Tomi Ahonen's, Communities Dominate Brands:

• According to Rob Conway, CEO of the GSM Association, the number of subscribers will grow to 8 Billion (not sure when though).
• China Unicom, China's second largest mobile operator with 142 million subscribers - bigger than AT&T and Sprint put together.
• Bharti Telecom of India has over 110 million subscribers
• According to Manoj Kohli, the CEO of Bharti Telecom, India already 20% of all mobile phone owners have 2 or more subscriptions. He also told us that as India will add 500 million new subscribers by the time frame of 2014-2015. India is currently adding 10 million new mobile subscribers every month. And most revealingly, he said that in India the customers will go from 'no internet' directly to 'mobile internet'.
• According to Wang Jianzhou the Chairman and CEO of China Mobile, the world's biggest mobile operator with over 500 million subscribers, on the Chinese 3G standard of TD-SCDMA, they already have 3G phones being sold that cost about 1,000 Yuan, or about 130 US dollars. The average China Mobile customer spends 1 minute per day on voice calls, but sends on average 3.6 SMS text messages per day.
• According to Yamada-san, the President and CEO of Japan's NTT DoCoMo, on NTT DoCoMo's network, today already 42% of their total revenues come from non-voice data services. NTT DoCoMo is so far in its migration of its customer base from 2G to 3G, they will terminate 2G in March of 2011.
• Yamada-san also told of their new 3G video TV service, they call BeeTV. BeeTV is special in that it is optimized for the small screen, not re-purposed video content from TV and the internet. BeeTV in only six months has achieved 800,000 paying subscribers - who pay 315 Yen per month (about 3 USD).
• Yamada-San's 20 minute presentation also mentioned that NTT DoCoMo's i-Consierge service (yes, think of it as your personal butler, the phone learns your habits and starts to help you with your life, this is like magic) has 2.3 million paying subscribers one year from launch. Their i-Channel idle screen invention is spreading and they have launched it also with their partner in India, Tata, who offer Cricket game updates via the idle screen using i-Channel.
• Japan's mobile advertising market in 2008 was worth 900 million dollars.
• Grameenphone and Huawei won the 'Green Mobile' award for their 'green' network initiatives.

Read the complete blog here.

GPRS Roaming eXchange (GRX) for LTE/EPS Networks

The GSM Association (GSMA) has came to the realization that GPRS roaming based on bilateral relationships between individual GPRS operators is incredibly complex and expensive to maintain, in particular if the number of roaming partners is high. In fact, each operator will have to have N(N - 1) dedicated links to other operators (given that N is the global numbers of operators for which roaming should be supported). The GSMA has therefore recommended the use of a GPRS Roaming eXchange (GRX) for the Inter-PLMN GPRS roaming scenario.

The GRX is built on a private or public IP backbone and transports GPRS roaming traffic via the GTP between the visited and the home PLMN (Figure above). A GRX service provider has a network consisting of a set of routers and the links connecting to the GPRS networks. Moreover, the GRX network will have links connecting to other GRX nodes to support GRX peering between networks.

The GRX service provider acts as a hub, therefore allowing a GPRS operator to interconnect with each roaming partner without the need for any dedicated connections. This allows faster implementation of new roaming relations, faster time to market for new operators, and better scalability since an operator can start with low-capacity connections to the GRX and upgrade them depending on the bandwidth and quality requirements of the traffic. Other benefits of GRX are as follows:

Support of QoS: This aspect that will be very important for the GPRS services and, in particular, for the transition to 3G systems.

Security: The interconnection between the home operator and the visited operator uses the private GRX networks, hence does not require the overhead of maintaining expensive IPSEC tunnels over the public Internet.

DNS support: Through GRX it is possible to support a worldwide ".gprs" DNS root, where the various GRX operators will collaborate in managing the root and each operator's DNS servers will be connected to such roots to provide translation of DNS names specific to one operator.

In conclusion, GRX is introduced for GPRS roaming to facilitate the network operators for the interconnection between networks to support roaming and will play a very important role for the transition to third-generation systems.

In the LTE World Summit, Alex Sinclair, Chief Technology Officer, GSMA mentioned about the important role GRX will play in the LTE networks. The figure below are his views on GRX.

Diagram and Initial text Reference: IP in Wireless Networks By Basavaraj Patil, et al.

More information on GRX is available in GSM Association IR.34 document.