How the new eSIM for IoT
specification can
improve global cellular
connectivity
� Cellular connectivity is a key enabler of IoT businesses. A growing number of connected devices and
use cases for businesses is paving the way for flexible market opportunities. The specificity of the eSIM
is that it adds increased flexibility and security to the 24/7 worldwide connectivity offered by mobile
devices.
The eSIM is a convenient remote provisioning solution that enables devices to switch between telecom
operators over the air.
Dedicated eSIM specifications exist for different applications for consumer IoT applications, or for
industrial machine-to-machine (M2M) communications. The new GSMA eSIM for IoT specification
provides a convenient and flexible solution for connected devices. It addresses devices with a limited
user interface (UI) and network connectivity constraints, lowering barriers to entry for IoT service
providers and IoT devices manufacturers.
The new GSMA eSIM specification
provides a convenient and flexible
solution for IoT devices.
A company wishing to sell and distribute mobile-enabled products for a worldwide market must make
sure that once the device is turned on it can connect to one of the available local mobile networks. The
process should not be a hassle for the end user. These products can be static, like a smart meter, or
nomadic, like a shipping or freight container that is loaded and unloaded from a truck or ship. For the
latter, the product must be able to switch to the different networks along its journey worldwide.
This whitepaper looks at the advantages of using eSIMs and how they work. It also
provides a comprehensive overview of the new GSMA eSIM for IoT specification
and how it ensures a flexible and secure solution for worldwide telecom coverage
for all types of connected devices and applications. At the end, we will look at ST's
convenient, easy-to-use eSIM for IoT portfolio.
2
�SOME CELLULAR CONNECTIVITY BASICS
What is an eSIM? eSIM OR iSIM?
The SIM (subscriber identity module) is able to authenticate a device An eSIM and an iSIM are not to be confused. The
in a telecom operator’s network. The SIM comes in different packages, iSIM provides the same functionality as the eSIM.
of which the size has been reduced over time to meet device The key difference between the two is that the
manufacturers’ requirements for smaller components to save space. eSIM implements the remote SIM provisioning
With market evolution came the need for a soldered solution. This led (RSP) functions in a standalone secure electronic
to the development of what is called the embedded SIM (eSIM), also component, while the iSIM implements the RSP
known as eUICC. functionality in a secure area of one electronic
Industry insiders may refer to the eSIM as a SIM in a solderable component that provides many diverse features.
package; however, the GSMA specification dictates that an embedded This area is called a secure enclave.
SIM is a SIM with remote provisioning capability.
Watch our short video to discover more about SIM and eSIM and how they work.
ID-1 Mini Micro Nano DFN WLCSP
Removable SIM Solderable eSIM
Package size optimization for reduced footprint
WHAT IS REMOTE SIM
PROVISIONING?
Remote SIM provisioning (RSP) is an over-the-air
protocol defined by GSMA to remotely manage SIM
profiles, without requiring direct access to the eSIM.
It simplifies the process of adding and replacing a
mobile subscription to a connected device.
Remote SIM provisioning can be managed securely
and transparently by an eSIM that complies with
the GSMA RSP specification. An eSIM is typically
soldered and, in compliance with GSMA RSP
specification, customers can switch telecom
operators and not be bound to a single one for the
lifetime of the device.
RSP to reduce environmental impact
With this RSP functionality, people no longer need to physically replace the SIM whenever they change
from operator. This means that a single chip can be used throughout the whole lifecycle of the product,
contributing to saving resources and reducing the environmental impact.
3
� WHICH eSIM SOLUTION FOR WHICH CUSTOMER?
There are three different types of eSIM:
The M2M eSIM
The Machine-to-Machine (M2M) specification
addresses telecom operators while serving primarily
automotive OEMs.
This business model implies a high level of
knowledge as well as financial resources to manage
servers, making it available only to large companies
and large M2M service providers. In the M2M
specification, the service provider is the end user.
The service provider can remotely and securely
manage its eSIMs and connected devices through
app servers that will push profiles to devices.
This M2M specification does not require devices
to implement specific remote SIM provisioning
features.
The consumer eSIM
However, the M2M specification does not address
other significant segments such as the consumer
segment with high user experience requirements.
The GSMA then released a new specification
targeting feature-rich devices, such as smartphones.
Here, the users scan a QR code with their phone to
request the eSIM profile download from the mobile
network operator (MNO). This operation is managed
by the local profile assistant (LPA).
The eSIM for IoT
The third GSMA eSIM specification targets IoT devices, with low computational power and a limited or non-existent user
interface. In spite of the fact that IoT devices may be network-constrained, still they require connectivity worldwide and at all
times. This whitepaper provides a comprehensive overview of this new specification and its implications.
4
�INTRODUCING THE eSIM FOR IoT SPECIFICATION
In 2023, the GSMA introduced an eSIM specification for IoT applications to address devices with technological limitations and
network connectivity constraints.
Another driving force behind the new IoT specification is that IoT devices, unlike consumer ones, generally work without
human intervention, creating a need for profiles to be pushed to devices.
This new specification simplifies the deployment of eSIMs Additionally, modifications have been made regarding
thanks to the eSIM IoT remote manager (eIM). The eIM is the bootstrap connectivity. As in the previous consumer
used for the remote control and management of eSIMs, specification, bootstrap connectivity is optional in the new
removing the need for a user interface on the device. To bring GSMA eSIM for IoT specification. Depending on the use
more flexibility, the eIM can be configured at several steps: at case, bootstrap connectivity is not required and alternative
the eSIM manufacturing, at the IoT device manufacturing, or connectivity can be used.
even in the field.
There are some IoT devices that may have quite a long
The eIM interacts with an agent on the IoT device that is lifecycle (10-15 years). They may be powered by batteries
called IoT profile assistant (IPA), which serves as a proxy to that cannot be physically replaced during the device’s
the eSIM. lifetime. Therefore, the number of RSP transactions that
can be done over this period is limited. The GSMA eSIM
for IoT specification has defined reduced size profiles, so
The GSMA eSIM for IoT specification is specifically designed
optimizing the time for download and consequently the power
to cope with constrained networks, e.g. the narrowband
consumption to complete the operation.
Internet of Things (NB-IoT), a low-power wide-area network
(LPWAN) technology. However, it can also be used for non-
constrained networks as well. IoT devices are generally On a more general standpoint, this new specification does
constrained in resources, for instance with limited capability not state any performance requirements. The adoption of
to run complex protocols. Therefore, the new specification no eSIM in IoT applications for a large-scale deployment is now
longer requires the use of the full IP stack. possible, especially with regards to how easy it is to remotely
change eSIM profiles. This solution is designed to be fully
interoperable and to bring more flexibility, with three different
architectures.
5
� IPAd architecture
Within the eSIM for IoT ecosystem, the IPA is external to the eSIM and runs either on the IoT device or on the modem. This
configuration is called IPAd and the architecture can be schematized as follows:
With an eSIM, it is possible to remotely swap
MNO Device owner
operators for a fleet of devices without physically
accessing them. Here are the different steps
IoT device involved in downloading a new profile in the eSIM:
the device owner starts by ordering profiles from
the MNO. The MNO prepares the ordered profiles
Operating system
in the SM-DP+. At the same time, the device owner
SM-DP+ eIM pushes the “Download” command to the eSIM
IPA IoT remote manager (eIM). The eIM then pushes
the information to the device. Finally, the device
downloads the profile from the SM-DP+ server.
Modem
This new architecture significantly simplifies
operations for IoT users and service providers.
ST4SIM-300
Alternative IPAd
device configuration
IoT device As previously mentioned, the IPAd offers two
options. The schema represents the configuration
where the IPA is embedded into the modem and
Operating system the selection between the two options is made by
the device owner according to the selected solution
Modem architecture.
IPA
ST4SIM-300
IPAe architecture
In the perspective to bring more flexibility with this specification, an alternative configuration has been defined.
Alternative IPAe
device configuration
In the IPAe configuration, the IPA is inside the
product and runs in the eSIM. Ideally, this
IoT device simplifies use in all IoT devices, and it reduces
the development time, even if some specific
Operating system requirements have to be considered on the modem
side. As the IPA is already embedded in the eSIM,
Modem device manufacturers do not have to worry about
the IPA implementation.
ST4SIM-300
IPA
6
�ENABLING A WIDE RANGE OF USE CASES
Cellular connectivity enables a wide range of use cases. In this section, we focus on tracking, metering, and healthcare
applications.
Tracking
With globalization, the ability to track assets all
over the world has become a strategic concern of
companies. More recently, the digitalization of this
data is offering new perspectives, especially with the
growth of smart sensors.
Today, continuous worldwide cellular connectivity is
instrumental in tracking assets, providing companies
with real-time visibility over their supply chains and
helping them optimize logistics costs.
Asset tracking implies that objects are moving
all over the world through supply chain flows.
Depending on the flow, the goods will probably
change from one country to another, creating
the need to change telecom networks to ensure
coverage.
Thanks to the remote SIM provisioning capability in the new GSMA for IoT specification, it is easier for service providers to
switch to the correct profile for each country where the device is located. Depending on specific requirements, several profiles
can be downloaded on a single eSIM, even if only one at a time can be enabled.
Metering
Metering here designates any connected meters that
can track a specific consumption, most commonly
water and gas.
The major limitation for connected meters is that
they are battery powered devices that often use NB-
IoT networks. The GSMA eSIM for IoT specification
offers a well-adapted solution that now enables
remote SIM provisioning on these networks, which
was not possible with the previous eSIM M2M
specification.
Furthermore, the use of an eSIM makes it possible
to swap operators easily, even if the meters are
installed in remote places, widespread over a given
region, and difficult to reach.
Like many IoT devices, meters have a long lifecycle and generally last up to 15 years or more. During this time, it is not
advantageous to be locked to a single operator. An eSIM makes it easy to remotely change telecom operators, giving utility
companies the flexibility they need to renegotiate connectivity contracts when required.
7
� Healthcare
In the healthcare industry, the evolution of care
consumption paved the way for the development of
connected devices to ensure convenient and safer
use. This has especially contributed to increasing
home-use devices to monitor patients remotely,
making cellular connectivity ideal thanks to its wide
coverage and multiple RF technologies that ensure
the best fit for each use case.
The healthcare market is worldwide, meaning that
connected devices may be produced in a region that
may not be the same as the end market. When it
comes to cellular connectivity, localizing the device
with a specific profile according to the country
where the device is sold is key to ensure the best
possible coverage and performance. With the eSIM
for IoT, it is possible to easily switch operators or to
select the appropriate profile depending on the area.
Additionally, with the increased need to monitor patients remotely, the development of home-use devices has significantly
grown. This specific type of device implies that patients will need to share biometric data (collected by the device) with
physicians or medical personnel. In these circumstances, the eSIM for IoT becomes particularly useful as it enables cellular
connectivity with cloud-based services.
When it comes to health data, confidentiality is key. Based on a secure element, the eSIM architecture adds an application
layer to ensure the confidentiality and security of the end-to-end communications between the device and the cloud.
8
�INTRODUCING ST eSIM SOLUTION FOR IoT
ST's ST4SIM cellular connectivity portfolio now includes our
ST4SIM-300 solution that complies with the latest GSMA eSIM for
IoT specification (SGP.31/SGP.32). This scalable, secure solution is
compatible with IoT and industrial-grade applications.
Compliant with remote SIM provisioning (RSP), our ST4SIM-300 has
an ISO 7816 serial interface, with an SPI or I²C link (WLCSP package
only).
All eSIM commands are sent via the serial port from the modem.
The SPI or I²C are interesting options, where a dedicated Java Card
application can interact directly with the host microcontroller or
microprocessor. Thanks to this feature, the ST4SIM can double as
an embedded secure element for functions including GSMA IoT Safe
applet.
Additionally, the ST4SIM-300 was developed to increase convenience
of use for customers in that it may come already pre-configured with
an eIM by ST.
The ST4SIM-300 is available in a range of packaging options including
a removable, hardened plastic package (traditional SIM form) if
required.
Product reference SIM / eSIM Generic description Hardware Certification target Packages Operating temperature
GSMA eSIM SoC compliant to CC EAL6+ (hardware)
ST4SIM-300S ST33K1M5C Card plug-in -25 to +85°C
for IoT GSMA SGP.32 SoC GSMA eSA
Card plug-in
GSMA eSIM SoC compliant to CC EAL6+ (hardware)
ST4SIM-300M ST33K1M5M MFF2 -40 to +105°C
for IoT GSMA SGP.32 SoC GSMA eSA
WLCSP
Note: Different bootstrap operators are available on specific part numbers.
The ST4SIM-300 is a flexible and scalable offer which can be integrated in various environments. High-quality and reliable, the
ST4SIM-300 is a ready-to-use solution available in commercial- and industrial-grade versions to satisfy the different market
requirements.
Worldwide coverage and interoperability are enabled thanks to connectivity solutions from approved ST partners that ensure
the provisioning process.
If your business model already has a clear view of the MNO that will provide connectivity for final use, it is also possible to
preload the final profile during production. ST has production facilities that are GSMA SAS-UP (GSMA security accreditation
scheme for UICC production) certified for this kind of work.
9
� PERSONALIZATION SERVICES BY ST
GSMA eSIM Data
credentials generation
eSIM eSIM
Wafer production Plugin, MFF2 and WLCSP Plug-in, MFF and WLCSP Delivery
packaging Package level personalization
GSMA SAS-UP Customer
A complete certified production process
At ST, we provide silicon design and manufacturing services, develop firmware and operating systems for embedded designs,
as well as personalize eSIMs at the wafer or package level. This means that GSMA credentials and eSIM data are securely
loaded into the eSIM at controlled ST facilities. Once personalized, the eSIM is packaged and delivered to customers. With its
personalization services, ST provides customers with off-the-shelf connectivity.
HOW CAN I BE SURE THAT MY SUPPLIER'S PERSONALIZATION SERVICES ARE TRULY SECURE?
The GSMA defined a security accreditation scheme for UICC production (GSMA SAS-UP) that
describes what facilities should comply with, and what procedure to implement, in order to build a
secure personalization service facility.
ST has multiple sites certified GSMA SAS-UP.
10
�CONCLUSION
The new GSMA eSIM for IoT specification represents a significant improvement,
enabling a large-scale adoption of the eSIM in IoT applications, thanks to an easier
management process for companies. The eSIM for IoT is a convenient and user-
friendly solution. It does not require to build a whole new ecosystem, and it enables
decentralized IoT device management contributing to lower barriers to entry for
IoT service providers and IoT device manufacturers. This enlarges the scope of
opportunities, with more use cases available.
We hope that this whitepaper provides you with a better insight of the new GSMA
eSIM for IoT specification and its implications for eSIM products, as well as showing
the benefits of using GSMA compliant eSIM for IoT products from our ST4SIM
portfolio.
An active participant in the development of GSMA specifications, ST fosters expertise
around secure connectivity solutions for IoT devices.
11
�ADDITIONAL RESOURCES
GSMA eSIM consumer specification [Webpage]
GSMA eSIM M2M specification [Webpage]
GSMA eSIM for IoT specification [Webpage]
GSMA security accreditation scheme [Webpage]
ST4SIM: SIM & eSIM cellular connectivity portfolio [Ecosystem page]
IoT devices: Is it time to consider GSMA eSIMs? [Blog article]
eSIM for IoT – Episode #1 What is an eSIM? [Animation]
eSIM for IoT - Episode #2 Why switch to GSMA eSIM? [Animation]
eSIM for IoT – Episode #3 Why are there 3 GSMA specifications for eSIMs? [Animation]
ACRONYMS
eIM eSIM IoT remote manager
eSIM embedded SIM
GSM Global system for mobile
GSMA GSM association
IoT Internet of Things
IPA IoT profile assistant
iSIM integrated SIM
LPA Local profile assistant
LPWAN Low-power wide area network
M2M Machine-to-Machine
MNO Mobile network operator
NB-IoT Narrowband IoT
RSP Remote SIM provisioning
SAS-UP Security accreditation scheme for UICC production
SIM Subscriber identity module
SM-DP+ Subscription manager data preparation plus
UI User interface
� At STMicroelectronics
we create
technology that
starts with You
For more information on ST products and solutions, visit www.st.com
© STMicroelectronics - March 2024 - Printed in the United Kingdom - All rights reserved
ST and the ST logo are registered and/or unregistered trademarks of STMicroelectronics International NV or
its affiliates in the EU and/or elsewhere. In particular, ST and the ST logo are Registered in the US Patent and
Trademark Office. For additional information about ST trademarks, please refer to www.st.com/trademarks.
Order code: WP2402ESIMIOT All other product or service names are the property of their respective owners.
