Tuesday, June 24, 2008

SIM next generation: Lars Hoff Telenor R&I

This is a blog from the Open Nordic conference in Skien Norway 19-20 june 2008.

First a bit about Telenor R&I and Telenor.

SIM a widespread technology. Present in all GSM phones. 2.4 billion 2007, more than 3billion today. A SIM card is a small CPU and memory. It is the secure part of the phone system. it is tamper resistant. An application stored in SIM can not be taken out of there. Thre main groups of cardss. Current sim . UICC (global platform. java card 2.x, UICC glboal paltform, java card 3.x).

  • Current and future SIM: Today, limited memory, single application.
  • Nexte gen SIM (green card): Browser ineraction, NFC, USB interface to the phone (faster than today´s 9.6 kbps). This enables all kinds of bandwidth using stuff inside the card. Can have multiple keys. The sim card can be dividedn into multiple security domains. The ISD (Issuer security domain) is the operator´s stuff. Can contain SIM part, WIB and applications. Master key for the SIM card. Can have several secondary security domains (SSD), have separate keys, but can also have several applications. The primary key can be used to install and remove ful SSDs, but they can not be changed.
Question: How can you get access to phone features? Different question, but don´t know how that will be handled.

Some example applications:
  • Credit cards
  • Tickets
  • Keys
  • Money
  • Music

Question about Telenor´s role: We may be a content provider, the main business will be to enable this service for other. A kind of rental model. That it at least the most probable model being considered by GSMA.

Smart card web server - SCWS.
Allows browser in phones to access services on local SIM card though special URLs. Can run MIDLets running on the card. APDU commands over JSR 177. Don´t know if it will be done, it is technically possible.

  • Near Field communication (contactless smart card). Used today for metro ticketing systems, some credit cards. We (Telenor) would like to combine the NFC thingy with applications running on the SIM card. Separate NFC controller on smart card, NFC hw on phone.

How to do provisioning:
  1. Do it in factories before the card is sent to the custoomer
  2. Can use OTA (Over the Air) protool to send the thing using SMS or something.
Comment: One domain can be fully open, and ca be accessed from the phone as a memory card (say). You can define dieffent roles with different levels of security, including no security at all.

Plug for wireless future from the audience.

UICC is well connected:
  • Physcal environemnt, java on phone, SCSW (end user), and the network.

The java card:

  • Familiar programming langauge
  • Ineteroperable apps etwen manufatureres
  • Secure (secure stuff)
  • CC EAL 4+ certified (some certification thingy)
  • java card 2.1. API


Service providers, network operatores, handset vendors, trusted service managers (TSMs). Some kind of trusted third party is necessary.

Even more future cards

  • In essence the the cards become full computers.

Question: How will the keys be managed? Well, you need an agreement with TSMs.

1 comment:

Anonymous said...

Interesting post... Looks like solid state memory is finally beginning to become more popular. Hopefully we'll start seeing a drop in solid state harddrive prices in the near future. Five dollar 32 GB SDs for your Nintendo DS flash card... imagine that!

(Posted by InterPost for R4i Nintendo DS.)