Integrating the SIMDr. Adrian EscottQualcomm Technologies, Inc.
@qualcommDate: 13 June 2018 Location: Sophia Antipolis
2
Agenda
Path toiSIM
1 2iSIM
Size benefit
4Certification and Standardization
5Beyond the
iSIM use case
3Hardware
Architecture
6Q&A
3
Path to an integrated SIM
Integrated UICCTraditional SIM Discrete eUICC
Qualcomm Snapdragon is a product of Qualcomm Technologies, Inc.
Qualcomm Technologies, Inc. (QTI) mobile processor not to scale
4
Size benefit of integrating the SIM card
85.6mm
25mm
15mm12.3mm
6mm
Full Size Mini Micro Nano Embedded
Qualcomm SPU
SnapdragonProcessor
Qualcomm SOC not to scale
5
c
Size benefit of integrating the SIM card
Qualcomm SPU
SnapdragonProcessor
Qualcomm SOC not to scale
Traditional SIM cards oreSIMs include NVM, constraining the technology node it can use
Typically 30nm
SoC use the latest technology nodes,currently at 10nmand reducing
External NVM is leveraged
7
Hardware Architecture
SYSTEM BUS
ApplicationProcessor
Cores
MemoryController
BasebandCore
Qualcomm SOC not to scale
SecureProcessor
Secure Processor
CPU
OTPArea ROMSP-
RAMMemMgrI/O Unit
CryptoBlock
Key MgmtUnit
Sensors & Counter Measure RNG
8
Hardware Architecture
SYSTEM BUS
ApplicationProcessor
Cores
MemoryController
BasebandCore
Qualcomm SOC not to scale
Secure Processor
CPU
OTPArea ROMSP-
RAMMemMgrI/O Unit
CryptoBlock
Key MgmtUnit
Sensors & Counter Measure RNG
The Secure Processor is an isolated core with secure trust boundaries with all other cores
It is not a softSIM ora TEE-based SIM
The Secure Processor isdesigned to meet the samesecurity criteria as a SIM card:Common Criteria EAL4+
9
Secure Processor
CPU
OTPArea ROMSP-RAMMem
MgrI/O Unit
CryptoBlock
Key MgmtUnit
Sensors & Counter Measure RNG
Secure Processor
CPU
OTPArea ROMSP-RAMMem
MgrI/O Unit
CryptoBlock
Key MgmtUnit
Sensors & Counter Measure RNG
SYSTEM BUS
ApplicationProcessor
Cores
MemoryController
BasebandCore
Secure Processor
CPU
OTPArea ROMSP-
RAMMemMgrI/O Unit
CryptoBlock
Key MgmtUnit
Sensors & Counter Measure RNG
Security
Secure Processing UnitActive and passive security againstSCA, FA and invasive attacks
HW accelerated and secure crypto operations (AES, RSA, ECC)
HW Random Number Generator
Random Access Memory (contains the executable code and data)
One Time Programmable(store configuration and per device keys)
Read Only Memory(store the SPU firmware – root of trust)
10
Security
The Secure Processing Unit is equivalent to a discrete smartcard Secure IC except that it does nothost Flash memory
Code and Data at rest are storedin the device Flash with a highlevel of security enforced by SPU:• Confidentiality
(AES-256 encryption)
• Authenticity(CMAC-AES-256)
• Anti-Rollback(version counter handleand stored in SPU)
Qualcomm® SPU designis targeting EAL4+ certificationaccording to PP084(Secure IC Platform)
11
Qualcomm has initiated a certification effort for theSecure Processor with the BSI, targeting EAL4+
Certification – example of eSIMThe principles of composite certification can apply as in the case of eSIM
Secure IC Platform PPBSI-CC-PP-0084
The Target of Evaluation isthe Secure Processor only
JavaCard PPOpen Configuration
Embedded UICC PPBSI-CC-PP-0089
Profile1
Profile2
A Remote SIM ProvisioningPP leverages a JavaCard PP
The JavaCard PP leveragesa secure IC PP
11
12
Standardization efforts & Industry activities
On-going standardizationwithin ETSI SCP
Publication ofiUICC POC Group Primary
Platform Requirements
Endorsed new ways to store operator credentials compatible
with integrated SIM
13
Beyond the SIM use case – realizing thefull potential of a secure processor
Payment Transit Secure Identity
Each use case today has his own dedicated solution, with its own ecosystem, standardization and security certification processes.
14
Enabling multiple use casesVPP Interfaces Standardized in GlobalPlatform
VPP APPLICATION
Use CaseDependent
TechnologyDependent
Technology &Use CaseIndependent
Tamper Resistant Element
Application Application
High Level OS
API
VIRTUAL PRIMARY PLATFORM
Low Level OS
Hardware
Services
US
E C
AS
E IN
DE
PE
ND
EN
T
US
E C
AS
E D
EP
EN
DE
NT
Follow us on:
For more information, visit us at:
www.qualcomm.com & www.qualcomm.com/blog
Thank you
Nothing in these materials is an offer to sell any of the components or devices referenced herein.
©2018 Qualcomm Technologies, Inc. and/or its affiliated companies. All Rights Reserved.
Qualcomm is a trademark of Qualcomm Incorporated, registered in the United States and other countries. Other products and brand names may be trademarks or registered trademarks of their respective owners.
References in this presentation to “Qualcomm” may mean Qualcomm Incorporated, Qualcomm Technologies, Inc., and/or other subsidiaries or business units within the Qualcomm corporate structure, as applicable. Qualcomm Incorporated includes Qualcomm’s licensing business, QTL, and the vast majority of its patent portfolio. Qualcomm Technologies, Inc., a wholly-owned subsidiary of Qualcomm Incorporated, operates, along with its subsidiaries, substantially all of Qualcomm’s engineering, research and development functions, and substantially all of its product and services businesses, including its semiconductor business, QCT.