Integrating the SIMDr. Adrian EscottQualcomm Technologies, Inc.

@qualcommDate: 13 June 2018 Location: Sophia Antipolis

2

Agenda

Path toiSIM

1 2iSIM

Size benefit

4Certification and Standardization

5Beyond the

iSIM use case

3Hardware

Architecture

6Q&A

3

Path to an integrated SIM

Integrated UICCTraditional SIM Discrete eUICC

Qualcomm Snapdragon is a product of Qualcomm Technologies, Inc.

Qualcomm Technologies, Inc. (QTI) mobile processor not to scale

4

Size benefit of integrating the SIM card

85.6mm

25mm

15mm12.3mm

6mm

Full Size Mini Micro Nano Embedded

Qualcomm SPU

SnapdragonProcessor

Qualcomm SOC not to scale

5

c

Size benefit of integrating the SIM card

Qualcomm SPU

SnapdragonProcessor

Qualcomm SOC not to scale

Traditional SIM cards oreSIMs include NVM, constraining the technology node it can use

Typically 30nm

SoC use the latest technology nodes,currently at 10nmand reducing

External NVM is leveraged

6

Snapdragon Processor

7

Hardware Architecture

SYSTEM BUS

ApplicationProcessor

Cores

MemoryController

BasebandCore

Qualcomm SOC not to scale

SecureProcessor

Secure Processor

CPU

OTPArea ROMSP-

RAMMemMgrI/O Unit

CryptoBlock

Key MgmtUnit

Sensors & Counter Measure RNG

8

Hardware Architecture

SYSTEM BUS

ApplicationProcessor

Cores

MemoryController

BasebandCore

Qualcomm SOC not to scale

Secure Processor

CPU

OTPArea ROMSP-

RAMMemMgrI/O Unit

CryptoBlock

Key MgmtUnit

Sensors & Counter Measure RNG

The Secure Processor is an isolated core with secure trust boundaries with all other cores

It is not a softSIM ora TEE-based SIM

The Secure Processor isdesigned to meet the samesecurity criteria as a SIM card:Common Criteria EAL4+

9

Secure Processor

CPU

OTPArea ROMSP-RAMMem

MgrI/O Unit

CryptoBlock

Key MgmtUnit

Sensors & Counter Measure RNG

Secure Processor

CPU

OTPArea ROMSP-RAMMem

MgrI/O Unit

CryptoBlock

Key MgmtUnit

Sensors & Counter Measure RNG

SYSTEM BUS

ApplicationProcessor

Cores

MemoryController

BasebandCore

Secure Processor

CPU

OTPArea ROMSP-

RAMMemMgrI/O Unit

CryptoBlock

Key MgmtUnit

Sensors & Counter Measure RNG

Security

Secure Processing UnitActive and passive security againstSCA, FA and invasive attacks

HW accelerated and secure crypto operations (AES, RSA, ECC)

HW Random Number Generator

Random Access Memory (contains the executable code and data)

One Time Programmable(store configuration and per device keys)

Read Only Memory(store the SPU firmware – root of trust)

10

Security

The Secure Processing Unit is equivalent to a discrete smartcard Secure IC except that it does nothost Flash memory

Code and Data at rest are storedin the device Flash with a highlevel of security enforced by SPU:• Confidentiality

(AES-256 encryption)

• Authenticity(CMAC-AES-256)

• Anti-Rollback(version counter handleand stored in SPU)

Qualcomm® SPU designis targeting EAL4+ certificationaccording to PP084(Secure IC Platform)

11

Qualcomm has initiated a certification effort for theSecure Processor with the BSI, targeting EAL4+

Certification – example of eSIMThe principles of composite certification can apply as in the case of eSIM

Secure IC Platform PPBSI-CC-PP-0084

The Target of Evaluation isthe Secure Processor only

JavaCard PPOpen Configuration

Embedded UICC PPBSI-CC-PP-0089

Profile1

Profile2

A Remote SIM ProvisioningPP leverages a JavaCard PP

The JavaCard PP leveragesa secure IC PP

11

12

Standardization efforts & Industry activities

On-going standardizationwithin ETSI SCP

Publication ofiUICC POC Group Primary

Platform Requirements

Endorsed new ways to store operator credentials compatible

with integrated SIM

13

Beyond the SIM use case – realizing thefull potential of a secure processor

Payment Transit Secure Identity

Each use case today has his own dedicated solution, with its own ecosystem, standardization and security certification processes.

14

Enabling multiple use casesVPP Interfaces Standardized in GlobalPlatform

VPP APPLICATION

Use CaseDependent

TechnologyDependent

Technology &Use CaseIndependent

Tamper Resistant Element

Application Application

High Level OS

API

VIRTUAL PRIMARY PLATFORM

Low Level OS

Hardware

Services

US

E C

AS

E IN

DE

PE

ND

EN

T

US

E C

AS

E D

EP

EN

DE

NT

Follow us on:

For more information, visit us at:

www.qualcomm.com & www.qualcomm.com/blog

Thank you

Nothing in these materials is an offer to sell any of the components or devices referenced herein.

©2018 Qualcomm Technologies, Inc. and/or its affiliated companies. All Rights Reserved.

Qualcomm is a trademark of Qualcomm Incorporated, registered in the United States and other countries. Other products and brand names may be trademarks or registered trademarks of their respective owners.

References in this presentation to “Qualcomm” may mean Qualcomm Incorporated, Qualcomm Technologies, Inc., and/or other subsidiaries or business units within the Qualcomm corporate structure, as applicable. Qualcomm Incorporated includes Qualcomm’s licensing business, QTL, and the vast majority of its patent portfolio. Qualcomm Technologies, Inc., a wholly-owned subsidiary of Qualcomm Incorporated, operates, along with its subsidiaries, substantially all of Qualcomm’s engineering, research and development functions, and substantially all of its product and services businesses, including its semiconductor business, QCT.