10 Nov
2024
10 Nov
'24
3:09 p.m.
Dear Harald,
Thanks for the answer.
that is true, and has been very clear from the very
beginning of the
eSIM universe. It's a *MASSIVE* shift of control from "whoever is
technically capaable to issue a chip card with an UICC/USIM profile on
it" to a single, cerntralized entity of control. It's one of my main
criticisms of this scheme.
No doubt, this is terrible. And I am not even sure how soon we will
see the increase of UEs that has not physical SIM slots at all...
The eUICC specifications explicitly permit multiple
roots of trust, and
I have personally successfully created such eUICCs.
It's just that the eUICCs don't offer anyone the addition of such roots
of trust except [even that optionally] the EUM (eUICC manufacturer).
Yeah, this would be a solution if I want to build my own UEs and can
embed an EUM eUICC, so I can upload my own certs, then I could use my
own SM-DP+ and eSIM profiles. Not really an option for private network
operators with commercial UEs at play unfortunately.
sysmocom does not have any plans to operate a
GSMA-accredited SM-DP+
itself. However, we do work with partners who do and we are able to
issue GSMA-signed eSIM profiles. If I wouldn't be constantly distracted
by other tasks, we would also have completed the development of a
web-based platform where customers can personalize such profiles - sadly
that is still WIP at this point. But we can do it manually, if you have
a UPP that you'd want to get signed.
Shall I reach out to you in private to further discuss this?
Regards,
Csaba