SIM Profile Mark-Up Language V2 0 Final Release Candidate

SIM Profile Mark-Up Language (UXP) Template Sheet

Version 2.0

Published by now Trusted Connectivity Alliance

June 2010 Document history:

Versi Date Author Description on 2.0 04.06.2010 SIM This document has been based on the UXP 1.4 ( (U)SIM XML Alliance Profile (UXP) Template Sheet) forum which comprises of Gemalto, Giesecke & Devrient, O2, Oberthur Technologies, and SanDisk.

Page2of59 Datewritten:04.06.2010 www.simalliance.org

CONTENTS

ABSTRACT ...... 4 1.General Considerations...... 5 2. Header XML Tag List / Requirements...... 6 3. Body XML Tag List/Requirements ...... 8 4. Card Management...... 16 5. OTA Access Conditions ...... 19 5.1 Example...... 20 6.Key Set Definition...... 22 7. Applets...... 23 8. File StructureBody ...... 26 9. OTA Mechanism References...... 27 10. Open Platform and Global Platform References ...... 28 11. Restrictions and implementation advice...... 29 12. Profile Naming convention...... 30 13. SIM Profile Mark-Up Language – XML Schema (XSD file)...... 31 14. SIM Profile Mark-Up Language Sample – XML File (UXP file)...... 51

www.simalliance.org ABSTRACT ThisdocumentspecifiestherequirementstoimplementaunifiedXMLschemaforSIMcardsprototypingandtesting, sotheSIM Profile Mark-Up Language (SIMpml). It has been defined to simplify the transfer of card profile configuration information and the approval of test and productioncards,withtheintentionofreplacingtheexistingvarioustextbaseddocuments.Itisfirmlybelievedbythis forumthatthisapproachwillreducethefailurerates,decreasetestloopsandminimisehumaninteractions,since XMLisacommonusedwayoftransferringstructureddata. ThisformatallowsanyCardVendororNetworkOperatortospecifyandimplementanySIMcardelectricalprofile, sinceitstronglyreliesonSmartCardsSpecificationssuchas3GPP,GSMAandSIMAlliance. The document is based on the UXP 1.4 (U)SIM XML Profile (UXP) Template Sheet, the output of an initiative created by a dedicated forum set up in 2007 under the initiative of Telefónica O2 UK. This forum comprised Gemalto, Giesecke & Devrient, Oberthur Technologies, SanDisk and Telefónica O2 UK.

Page4of59 Datewritten:04.06.2010 www.simalliance.org 1. General Considerations Herearesomereferencesusedinthisdocument: - M:Thefileismandatory - O:Thefileisoptional - R:Thefilemayberepeated - C:The file presence depends on a specific condition (presenceismandatoryiftheconditionis fulfilled) DataGeneration: Static:Usedforalphacardcreationorfixeddata Dynamic:DataProcessingwillbedetailedinadedicateddocument. DifferencesbetweenUXP1.4andUXP2.0areshowningreen.

Page5of59 Datewritten:04.06.2010 www.simalliance.org 2. Header XML Tag List / Requirements Item / Structure Function Status Value Type Header Thissectiondescribesalltheattributesthatwill TemplateInformation M capturedetailsabouttheskeleton TemplateVersion Referenceaccordingtowhichskeletonversion M Variable thisfilehasbeenproduce String Valueistakenfromthenamespace "http://www.simalliance.org/SIMProfile/2.0" Setasfixedvalueof“2.0”. DateOfIssuance Dateoftheskeletontemplateused–e.g.YYYY M MMDD Date Setasfixeddateof“20100604”. XMLValidated IndicatesiftheXMLfilehasbeenvalidated M accordingtheXMLSchema. Boolean The tool updates automatically this field after saving the UXP file. Detailsthehistoryoftheskeleton. Setasfixedtextof Variable TemplateVersionHistory M “ Add of profile naming convention and name String space, correction of existing fields, add of new fields “ Detailsinformationaboutthe3rdpartytoolused Variable XMLToolInformation O toproducedthisprofiledocument String Freetextwhichallowstoaddfurtherinformation Variable Comments O aboutthetemplateversioning String SIMCardProfileReference Customerprofilereferenceinformation M

CustomerMobileCountryCode M 3 MobileCountryCode int CustomerMobileNetworkCode M 3 MobileNetworkCode int Customerprofilesname–FreeText M Variable ProfileName String Uniqueidentifierthatdefinestheversionofthe M Variable ProfileVersion profile String 2 ProfileRevision Trackversionnumber M String Dateofthecreationofthedocument–e.g. DateOfIssuance M Date YYYYMMDD Nameofthepersonwhocreatedtheprofileorto Variable Issuer M whomtheenquiriesneedtobemade String Freetextwhichallowstoaddinformationabout Variable RevisionHistory O themodificationmadetotheprofile String CustomerSpecificRequirements Specificcustomerrequirementsforthe M configurationofthecard TheProtocolandParameterSelection(PPS) 1 PPS O procedure Hex Voltageclasssupportrequired.Thevaluesare asfollows: 1,8V 3V Voltage O Enumeration 5V 1,8Vto5V 1,8Vto3V 3Vto5V

Page6of59 Datewritten:04.06.2010

www.simalliance.org Variable ProprietaryAlgorithm NameoftheMNOproprietaryAlgotobeused O String ClockStopModeprocedureasfollows(TS102 221,table11.6): Clockstopallowed Nopreferredlevel Highlevelpreferred ClockStopMode O Enumeration Lowlevelpreferred Clockstopnotallowed Never Unlessathighlevel Unlessatlowlevel typeofcardandprofilerequired: SIM(2Gonly) CardTechnology USIM(3Gonly) M Enumeration CombiCard(2Gand3G) HastobecheckedagainsttheAlgoused 1 NumberIncomingMessages Numberofincomingconcatenatedmessages O Hex 1 NumberOutgoingMessages Numberofoutgoingconcatenatedmessages O Hex DefinesiftheSIM/USIMneedtosupportUpdate DataDownloadviaUPDATERECORD O Boolean RecordonSMSsubmit–(YesorNo) Enumeratedtypethatshouldincludeallthe Reentrance eventstoselectthosethatareallowed(43.019 O/R Enumeration (R5)Table1:Handleravailabilityforeach event)–102241and31.130(R6) BIP DefinesiftheBIPisenabled(YesorNo) O Boolean FreetextforMNOcommentsonfurther Variable Comments O implementationguidelinesorrequirements String

Page7of59 Datewritten:04.06.2010

www.simalliance.org 3. Body XML Tag List/Requirements Item / Structure Function Status Value Type CardBody Freetextwhichallowstoaddinformationabout Variable Comment O thecardbodysection String A MF_DF DefinitionofaMForDF R D F FileName NameoftheMForDF M Variable String FileDescription Freetexttoallowtoaddaquickdescriptionof O Variable theMForDF String 2 FileID Fileidentifier M Hex Typeofthefile.Thevaluesareasfollows: FileType MF M Enumeration DF PathoftheDForSubdirectory. 2*N FilePath M Repetitionof2bytes Hex Fileisshareableornot. Shareable O Boolean Ifnotset,defaultvalueistrue. AccessConditions2G O/C Valuesareasfollows: ALW CHV1 Create M Enumeration CHV2 ADM1,2…9,10,11 NEV Valuesareasfollows: ALW CHV1 Delete M Enumeration CHV2 ADM1,2…9,10,11 NEV AccessConditions3G O/C Valuesareasfollows(Min1Max29): ALW UPIN M/R DeleteSelf GPIN1,2,3…8 Enumeration ADM1,2…9,10 LPIN1,2,3…8 NEV TypeofOperation: OR Operator O Enumeration AND Ifnotavailable,defaultvalueisOR Valuesareasfollows(Min1Max29): ALW UPIN M/R TerminateDF GPIN1,2,3…8 Enumeration LPIN1,2,3…8 ADM1,2…9,10 NEV TypeofOperation: OR Operator O Enumeration AND Ifnotavailable,defaultvalueisOR

Page8of59 Datewritten:04.06.2010

www.simalliance.org Valuesareasfollows(Min1Max29): ALW UPIN M/R Activate GPIN1,2,3…8 Enumeration LPIN1,2,3…8 ADM1,2…9,10 NEV TypeofOperation: OR Operator O Enumeration AND Ifnotavailable,defaultvalueisOR Valuesareasfollows(Min1Max29): ALW UPIN M/R Deactivate GPIN1,2,3…8 Enumeration LPIN1,2,3…8 ADM1,2…9,10 NEV TypeofOperation: OR Operator O Enumeration AND Ifnotavailable,defaultvalueisOR Valuesareasfollows(Min1Max29): ALW UPIN M/R CreateChildDF GPIN1,2,3…8 Enumeration LPIN1,2,3…8 ADM1,2…9,10 NEV TypeofOperation: OR Operator O Enumeration AND Ifnotavailable,defaultvalueisOR Valuesareasfollows(Min1Max29): ALW UPIN M/R CreateChildEF GPIN1,2,3…8 Enumeration LPIN1,2,3…8 ADM1,2…9,10 NEV TypeofOperation: OR Operator O Enumeration AND Ifnotavailable,defaultvalueisOR Valuesareasfollows(Min1Max29): ALW UPIN M/R DeleteChild GPIN1,2,3…8 Enumeration LPIN1,2,3…8 ADM1,2…9,10 NEV TypeofOperation: OR Operator O Enumeration AND Ifnotavailable,defaultvalueisOR

2 EFArrID5 FileIdentifierofEFARR O Hex

1 EFArrRecordNb5 RecordNumber(SE01) O Int

OTAAccess3 MappingofKeysetReferenceandTAR O/R Notmorethan16repetitions

Page9of59 Datewritten:04.06.2010

www.simalliance.org

KeySetReference Range00to0F M Enumeration 3 TAR TARvalueofRFMInstance M Hex ADF O R FileName NameoftheADF.Thiscanbeusedtoprovision M Variable EFDIR String FileDescription Freetexttoallowtoaddaquickdescriptionof O Variable theADF String FileID M 2 Fileidentifier Hex AID M 5to16 AIDoftheApplication Hex FileType Typeofthefile.E.g.: M Enumeration USIM ISIM FilePath PathoftheADF. 2*N M Repetitionof2bytes Hex AID_ETSI_102226_DAP Ifthisfieldispresent:ThelinkedSDisnotthe ISD.ThevaluegivenistheSDAIDvalue. 5to16 O Ifthisfieldisnotpresent:ThelinkedSDisthe Hex ISD. Fileisshareableornot. Shareable O Boolean Ifnotset,defaultvalueistrue. AccessConditions2G O Valuesareasfollows: ALW CHV1 Create M Enumeration CHV2 ADM1,2…9,10,11 NEV Valuesareasfollows: ALW CHV1 Delete M Enumeration CHV2 ADM1,2…9,10,11 NEV AccessConditions3G M Valuesareasfollows(Min1Max29): ALW UPIN M/R DeleteSelf GPIN1,2,3…8 Enumeration LPIN1,2,3…8 ADM1,2…9,10 NEV TypeofOperation: OR Operator O Enumeration AND Ifnotavailable,defaultvalueisOR Valuesareasfollows(Min1Max29): ALW UPIN M/R TerminateDF GPIN1,2,3…8 Enumeration LPIN1,2,3…8 ADM1,2…9,10 NEV

Page10of59 Datewritten:04.06.2010

www.simalliance.org TypeofOperation: OR Operator O Enumeration AND Ifnotavailable,defaultvalueisOR Valuesareasfollows(Min1Max29): ALW UPIN M/R Activate GPIN1,2,3…8 Enumeration LPIN1,2,3…8 ADM1,2…9,10 NEV TypeofOperation: OR Operator O Enumeration AND Ifnotavailable,defaultvalueisOR Valuesareasfollows(Min1Max29): ALW UPIN M/R Deactivate GPIN1,2,3…8 Enumeration LPIN1,2,3…8 ADM1,2…9,10 NEV TypeofOperation: OR Operator O Enumeration AND Ifnotavailable,defaultvalueisOR Valuesareasfollows(Min1Max29): ALW UPIN M/R CreateChildDF GPIN1,2,3…8 Enumeration LPIN1,2,3…8 ADM1,2…9,10 NEV TypeofOperation: OR Operator O Enumeration AND Ifnotavailable,defaultvalueisOR Valuesareasfollows(Min1Max29): ALW UPIN M/R CreateChildEF GPIN1,2,3…8 Enumeration LPIN1,2,3…8 ADM1,2…9,10 NEV TypeofOperation: OR Operator O Enumeration AND Ifnotavailable,defaultvalueisOR Valuesareasfollows(Min1Max29): ALW UPIN M/R DeleteChild GPIN1,2,3…8 Enumeration LPIN1,2,3…8 ADM1,2…9,10 NEV TypeofOperation: OR Operator O Enumeration AND Ifnotavailable,defaultvalueisOR

2 EFArrID FileIdentifierofEFARR O Hex

Page11of59 Datewritten:04.06.2010 www.simalliance.org

1 EFArrRecordNb RecordNumber(SE01) O Int

OTAAccess3 MappingofKeysetReferenceandTAR O/R Notmorethan16repetitions

KeySetReference Range00to0F M Enumeration 3 TAR TARvalueofRFMInstance M Hex EF O R FileName NameoftheEF M Variable String FileDescription Freetexttoallowtoaddaquickdescriptionof O Variable theEF String FileID M 2 Fileidentifier Hex FileType TypeofEF.Thevaluesareasfollows: M Enumeration TR LF CY Link FilePath PathoftheEF M 2*N Repetitionof2bytes Hex SFI SFI(ShortFileIdentifier)Referencingused O 1 Hex LifeCycleStatusInteger.Thevaluesareas follows: Operational NotOperational Initialised LCSI NotInitialised M Enumeration Note:seebelowlinkbetweenthisandtelecom standard: Initialised=initializationstate Operational=Operationalstateactivated NotOperational=Operationalstatedeactivated NotInitialised=Terminationstate Filetowhichthisfileislinked. Note:ItemisonlypresentifthefileisLinkfile 2*N LinkFilePath C (FileTypeisLink). Hex Repetitionof2bytes Fileisshareableornot. Shareable O Boolean Ifnotset,defaultvalueistrue. Fileisreadableornot. Readable O Boolean Ifnotavailable,defaultvalueisfalse. AccessConditions2G O/C Valuesareasfollows: ALW CHV1 Read M Enumeration CHV2 ADM1,2…9,10,11 NEV Valuesareasfollows: ALW CHV1 Update M Enumeration CHV2 ADM1,2…9,10,11 NEV

Page12of59 Datewritten:04.06.2010

www.simalliance.org Valuesareasfollows: ALW CHV1 Increase O Enumeration CHV2 ADM1,2…9,10,11 NEV Valuesareasfollows: ALW CHV1 Resize M Enumeration CHV2 ADM1,2…9,10,11 NEV Valuesareasfollows: ALW CHV1 Rehabilitate M Enumeration CHV2 ADM1,2…9,10,11 NEV Valuesareasfollows: ALW CHV1 Invalidate M Enumeration CHV2 ADM1,2…9,10,11 NEV AccessConditions3G O/C Valuesareasfollows(Min1Max29): ALW UPIN Read GPIN1,2,3…8 M/R Enumeration LPIN1,2,3…8 ADM1,2…9,10 NEV TypeofOperation: OR Operator O Enumeration AND Ifnotavailable,defaultvalueisOR Valuesareasfollows(Min1Max29): ALW UPIN Update GPIN1,2,3…8 M/R Enumeration LPIN1,2,3…8 ADM1,2…9,10 NEV TypeofOperation: OR Operator O Enumeration AND Ifnotavailable,defaultvalueisOR Valuesareasfollows(Min1Max29): ALW UPIN O/R Increase GPIN1,2,3…8 Enumeration LPIN1,2,3…8 ADM1,2…9,10 NEV TypeofOperation: OR Operator O Enumeration AND Ifnotavailable,defaultvalueisOR

Page13of59 Datewritten:04.06.2010

www.simalliance.org Valuesareasfollows(Min1Max29): ALW UPIN Resize GPIN1,2,3…8 M/R Enumeration LPIN1,2,3…8 ADM1,2…9,10 NEV TypeofOperation: OR Operator O Enumeration AND Ifnotavailable,defaultvalueisOR Valuesareasfollows(Min1Max29): ALW UPIN Activate GPIN1,2,3…8 M/R Enumeration LPIN1,2,3…8 ADM1,2…9,10 NEV TypeofOperation: OR Operator O Enumeration AND Ifnotavailable,defaultvalueisOR Valuesareasfollows(Min1Max29): ALW UPIN Deactivate GPIN1,2,3…8 M/R Enumeration LPIN1,2,3…8 ADM1,2…9,10 NEV TypeofOperation: OR Operator O Enumeration AND Ifnotavailable,defaultvalueisOR Valuesareasfollows(Min1Max29): ALW UPIN M/R DeleteItself GPIN1,2,3…8 Enumeration LPIN1,2,3…8 ADM1,2…9,10 NEV TypeofOperation: OR Operator O Enumeration AND Ifnotavailable,defaultvalueisOR

2 EFArrID5 FileIdentifierofEFARR O Hex

1 EFArrRecordNb5 RecordNumber(SE01) O Int

OTAAccess3 MappingofKeysetReferenceandTAR O/R Notmorethan16repetitions

KeySetReference Range00to0F M Enumeration 3 TAR TARvalueofRFMInstance M Hex EFContent EFContentisnotavailableincaseofEFLink O 1 NbOfRecords Numberofrecords(LinearFixedorCyclicFileonly) C Int 1 RecordSize Sizeofrecord(LinearFixedorCyclicFileonly) C Int

Page14of59 Datewritten:04.06.2010

www.simalliance.org 2 FileSize Sizeofatransparentfile(usedforthistypeoffileonly) C Int Enumeration DataGenerationType StaticorDynamic M Valueoffixeddata Variable DataValue4 Min1Max254 O/R Hex

3ThisdatawillbesupersededbytheFileAccessinformationinSection5,intheeventofaconflict 4Ifthedatavaluefieldisemptyandthedatagenerationtypeisdynamic,seetheprocessflowtoknowhowthedata willbeprovided. 5IfEFArrIDandEFArrRecordNbarefilled,itisunderuserresponsibilitytoensurethatthecontentisconsistentwith AccesConditionalreadydefined.

Page15of59 Datewritten:04.06.2010 www.simalliance.org 4. Card Management Item / Structure Function Status Value Type CardManagement TocapturedetailsaboutPINmanagement, M Admincodes CHV_PUK_Settings DefinesthesettingsforCHVandPUKcodes O/R CHV_PUKName NameoftheCHVorPUKcode. M Enumeration Example:CHV1,CHV2,CHV1x,CHV2y(tobe usedforMultipleIMSIprofiles),PUK1 CHV_PUKLength Numberofbytesdefinedforthesecretcode M 1 (min4max8) Int CHV_PUKStatus Definesifthecodeisenabled(Y)ordisabled(N) M Boolean 1 CHV_PUKMaximumRetryNumber Maximumnumberofpresentations M Int Numberofleftpresentations(0ifthecodeis 1 CHV_PUKRetryNumberLeft O blocked) Int Enumeration DataGenerationType StaticorDynamic M 8 CHV_PUK_Value HexvalueoftheCHVorPUK O Hex PIN_PUK_Settings DefinesthesettingsforPINandPUKcodes O/R PIN_PUKName NameofthePINcode. M Enumeration Example:PIN1,PIN2,UPIN,… PIN_PUKLength Numberofbytesdefinedforthesecretcode M 1 (min4max8) Int PIN_PUKStatus Definesifthecodeisenabled(Y)ordisabled(N) M Boolean 1 PIN_PUKMaximumRetryNumber Maximumnumberofpresentations M Int Numberofleftpresentations(0ifthecodeis 1 PIN_PUKRetryNumberLeft O blocked) Int Enumeration DataGenerationType StaticorDynamic M 8 PIN_PUK_Value HexvalueofthePINorPUK O Hex ADF_AID AIDoftheADF,incaseofalocalPINisdefined O 5to16Hex DefinesifthiscodeismappedwithaPIN. Enumeration ThevalueisthenameofthePINitismapped with: Mapping2G3G CHV1 O CHV2 ADM1...ADM11 Ifnotpresent,theCHVisnotmapped. ADM_Settings DefinesthesettingsforADMcodes R Max112Gcard Max102G/3Gcard ADMName NameoftheADMcode. M Enumeration Example:ADM1,ADM2,… ADMLength Numberofbytesdefinedforthesecretcode M 1 (fixedvalue:8) Int ADMStatus Definesifthecodeisenabled(Y)ordisabled(N) M Boolean 1 ADMMaximumRetryNumber Maximumnumberofpresentations M Int 1 ADMRetryNumberLeft Numberofleftpresentations O Int

Page16of59 Datewritten:04.06.2010

www.simalliance.org Enumeration DataGenerationType StaticorDynamic M 8 ADM_Value HexvalueoftheADM O Hex SecurityDomain DefinesthesettingsofSecurityDomains O/R Variable SD_Name NameoftheSD M String 5to16 SD_AID AIDdefinedfortheSD M Hex SDPrivileges M DefinesiftheDAPVerificationisallowedornot DAPVerificationAllowed M Boolean (Y/N) DefinesiftheDelegatedManagementisallowed DelegatedManagement M Boolean ornot(Y/N) DefinesifSDwillmandateDAPverificationin MandatedDAPVerification M Boolean anyapplicationloading 1 PriorityLevel SDPriority M Hex 3 MinSecurityLevel SDlevelMSL. O Hex KeySetVersionInformation(Seesection5.1of 1 KeySetVersionInformation thisdocument) R Hex Min1Max127 OTASettings DefinesthegeneralsettingsusedforOverthe O Air UserNotificationMessage ReplacementtextmessageforSMSdata O downloadavailable(Y/N) 140 ValueOK ReplacementTextforsuccessfuldelivery O String 140 ValueNOK ReplacementTextforunsuccessfuldelivery O String 140 ValueCC ReplacementTextforConcatenatedMessages O String IndicateswhethertheTPOAfieldshallbe TPOA_Checking O/R checkedornot(Y/N) TPOAvaluerequirediftheTPOAfieldistobe Variable TPOA_Value checked(seeabovefield) C Hex CodingofTPOAvalueaccordingtoGSM04.11 3 TPOA_TAR LinkedTARtoTPOA_Value C Hex Authentication Definestherequirementsneededfor M Authentication Authentication2G O/R Authentication2GAlgorithm Algorithmusedfora2GContext(COMP1281, COMP1282,COMP1283,COMP1284(AES), M Enumeration COMP1284(GSMMILENAGE),XOR, Proprietary) Authentication2GCounter Counterlinkedtothe2GAuthentication. Variable O Numberoftimesauthenticationsallowed Hex Algo2GMappedTo3G Definesifthe2Gand3Galgorithmsshould M Boolean sharekeys(Y/N). Authentication3G O/R Authentication3GAlgorithm Algorithmusedfora3GContext: • MILENAGE M Enumeration • Dummy • Proprietary Authentication3GSeqNb Sequencenumberlinkedtothe3G O Boolean Authenticationactivatedornot(Y/N)

Page17of59 Datewritten:04.06.2010

www.simalliance.org Authentication3GFreshnessTest Definesifthefreshnesstestisactivatedornot (acc.33.102,C2.2) O Boolean SEQ>SEQMS(i)activatedornot(Y/N) Authentication3GAgeLimitTest Definesifagelimittest(acc.33.102,C2.2)is setornot O Boolean SEQMSSEQ<Lactivatedornot(Y/N) Authentication3GWrapAroundProtection Definesifprotectionagainstwraparound(acc. 33.102,C2.1)issetornot O Boolean SEQSEQMS≤Deltaactivatedornot(Y/N) Authentication3GRFU RFU O Boolean Authentication3GDeltaValue Variable ValueofDelta C Hex Authentication3G_L_Value Variable ValueofL C Hex Authentication3GRESLength 1 ValueoftheRESlength M Hex Authentication3G_Ri_and_Ci_ValueType DefaultorCustomerSpecific M Enumeration Authentication3GDataGeneration StaticorDynamic M Enumeration Authentication3GAMFDefinition DefinitionoftheAMFvalue: • 0000 O Enumeration • UseAMF*ofincomingresponse Algorithmelementscanberepeatablebutthefirstonedefinedisthedefaultone. Default values are the values suggested by the standard, and Customer Specific means they will be exchangedinasecuredwaybetweenMNOandprovider.

Page18of59 Datewritten:04.06.2010 www.simalliance.org 5. OTA Access Conditions Item / Structure Function Status Value Type Tocapturedetailsabouttheapplications M Applications installedonthecard,AIDstructure,applet status. RFMApplication RFMapplicationsdescription O/R Min0Max16 3 TAR Toolkitreferenceapplication M Hex 1 MSL MinimumSecurityLevelrequired(SPI1) M Hex 3 MSLExtension OptionalBytes(SPI2/KiC/KiD) O Hex KeySetVersionInformation(Seesection5ofthis 1 KeySetVersionInformation document) M/R Hex Min1Max16 TargetApplicationRFMType M TargetApplication GSM/USIM/UICC M Enumeration Optionaldependingifthetargetapplicationisan 5to16 USIM_AID O USIM Hex DefaultISDAID–ifempty,referstoIssuer 5to16 LinkToSecurityDomain O SecurityDomain Hex FileAccess M TypeofAccessdomain TheValuewillbeonofthefollowing: FullAccess NoAccess Enumeration AccessDomainType M APDUMechanism UICCAPDU RFU Proprietary FilesAccessrightfortheapplicationwhen 2(APDU)or3(UICCAPDU) SecurityCondition APDUMechanismorUICCAPDUisselected O Hex (Seeexample4.1) RAMApplication • RAMdescription O 3 TAR Toolkitreferenceapplication M Hex 1 MinimumSecurityLevelrequired(SPI1)– MSL M Hex MinimumSecurityLevel=CC 3 MSLExtension OptionalBytes(SPI2/KiC/KiD) O Hex KeySetVersionInformation(Seesection5ofthis 1 KeySetVersionInformation document) M/R Hex Min1Max16

Page19of59 Datewritten:04.06.2010

www.simalliance.org

5.1 Example APDU access mechanism

SIM access mechanism

Possible combinations of fulfilled Access Conditions are shown below:

ADD value Applet access condition fulfilled '00 00' No access '00 01' ALWays '00 02' CHV1 '00 03' ALWays and CHV1 '00 04' CHV2 '00 05' ALWays and CHV2 '00 06' CHV1 and CHV2 : : '00 10' ADM1 : : '00 20' ADM2 : : '00 22' ADM2 and CHV1 : : '01 00' ADM5 : : '40 00' ADM11 : : '41 37' ADM11 and ADM5 and ADM2 and ADM1 and CHV2 and CHV1 and ALWays : :

If this is not supported the SIM Vendor shall maps his OTA technology on the APDU Mechanism.

Page20of59 Datewritten:04.06.2010 www.simalliance.org

UICC APDU access mechanism

From ETSI TS102226 Section 8.2.1.3.2.5.2

The UICC access mechanism shall be coded as follows:

Byte 1:

b8 b7 b6 b5 b4 b3 b2 b1 Application PIN 1 Application PIN 2 Application PIN 3 Application PIN 4 Application PIN 5 Application PIN 6 Application PIN 7 Application PIN 8 Byte 2:

b8 b7 b6 b5 b4 b3 b2 b1 ADM1 ADM2 ADM3 ADM4 ADM5 ADM6 ADM7 ADM8 Byte 3:

b8 b7 b6 b5 b4 b3 b2 b1 ADM9 ADM10 ALWAYS Local PIN (only applicable for ADF) RFU RFU RFU RFU

Page21of59 Datewritten:04.06.2010 www.simalliance.org 6. Key Set Definition Item / Structure Function Status Value Type DefinesthesettingsfortheKeysetsAssociated KeySetSettings M toanSD KeySetVersionInformation KeySetVersionInformation M/R Min1Max127 1 KeySetVersionInformationValue Definesversionbetween01hexand7Fhex M Hex KeyIdentifier KeyIdentifier M/R Min1Max128 1 KeyIdentifierValue Definesversionbetween00hexand7Fhex M Hex Algorithmassociatedandtobeusedwiththe Enumeration Keyset DES_CBC 3DES2_CBC KeyType 3DES3_CBC M

DES_ECB AES RSA Proprietary Numberofbytesdefinedforthekey–(8–16– Enumeration KeyLength M 24) DataGenerationType StaticorDynamic M Enumeration Variable Data4 Valueofafixedkey O Hex CounterValueGeneration O Valuesofthecounterassociatedtoakeyset Enumeration CounterValueGenerationType M StaticorDynamic 4 5 Data Valueofafixedcounter O Hex 5 CounterGAP(Window) GAPassociatedtoacounter O Hex 1 CryptographicChecksumAcceptedLength LengthoftheacceptedCC(4–8…48Bytes) O Hex 4Ifthedatafieldisemptyandthedatagenerationtypeisdynamic,seetheprocessflowtoknowhowthedatawillbe provided.

Page22of59 Datewritten:04.06.2010

www.simalliance.org 7. Applets PleasenotethattheinstallationorderofthepackagesisintendedtobetheoneasdefinedintheAppletsectionof theprofile. Item / Structure Function Status Value Type Applets Definestheapplets/packages O Package M/R Thisdefinesifthepackageisdeliveredby thecustomer.(Y/N) Ifthepackageisnotprovided,the Boolean PackageProvided commentfieldwillbemandatory. M Ifthepackageisprovided,theother parameters(fieldsunderpackagedefinition) willfollowtheindicationM/O Variable Detailsaboutthepackagetoloadifit’snot Comment C String provided PackageDefinition C Variable Nameofthepackageasspecifiedinthe PackageName M String CAPfile 5to16 PackageAID TheAIDofaJavacardPackage M Hex Thisdefinesthetypeofpackagesentbythe customer.Thevalueshallbeasfollows: LOP Enumeration FileType IJC M CAP HEX JAR Definesthepathtothefilethatcontainthe VariableString FullFileName M applettoload FilePackageSignature MD5FilePackageSignature O VariableString 5to16 SecurityDomainAID SeespecOpenPlatform2.1.1 O Hex 2 C6 PackageNonvolatileMemorysize O Hex 2 C7 InstallationVolatileMemorysizes O Hex 2 C8 InstallationNonVolatileMemorysize O Hex Variable DAPKeyReference ThisdefinestheDAPkeytouse. O String ApplicationPersoScript O Thisdescribesthelevelwherethespecific persoscriptsmustberun.Thevaluesareas follows: Enumeration Level M BFSC(BeforeFileSystemCreation) AFSC(AfterFileSystemCreation) AI(AfterInstantiation) Variable Commandtobeexecutedforapplet Script(Commands) M String personalisation

Page23of59 Datewritten:04.06.2010

www.simalliance.org 12 Thisdefinesthepathofthefilesspecifictoa SpecificFilePath O/R Hex package. Applet R Variable Nameoftheappletasspecifiedinthecode AppletName M String file 5to16 AppletClassAID TheAIDoftheappletclass M Hex Instance O/R Variable InstanceName Appletnameasspecifiedincodefile M String TheAIDtobeassignedtotheinstantiation 5to16 ApplicationInstanceAID M oftheappletSeespecOpenPlatform2.1.1 Hex Thisdefinesthestateoftheappletafter ProductionStatus M perso. Installed Isthisappletinstalled:Y/N C Boolean MadeSelectable Isthisappletmadeselectable:Y/N C Boolean AIDoftheSDafterinstallation(ifthisfieldis 5to16 ExtraditionAID O presentthantheinstanceisextradited) Hex Variable C9 ApplicationSpecificParameters O Hex 2 C7 InstallationVolatileMemorysizes O Hex 2 C8 InstallationNonVolatileMemorysize O Hex ToolkitAppletspecificParameters–03.48 ToolkitTag O sectionA.1.1.4.2.1 Thisisaflagtobepositionedaccordingto UICCSpecific thespec102.226(section8.2.1.3.2.2). M Boolean ThevalueshallbeYorN 1 PriorityLevel AppletPriority M Hex 3 MinSecurityLevel AppletlevelMSL. O Hex 1 MaxMenuEntryTextLength MenuEntryMaxLength M Hex 1 MaxNbOfMenuEntries NumberofEntriestoallocate O Hex AccessDomain M TypeofAccessdomain • FullAccess • NoAccess AccessDomainType • APDUMechanism M Enumeration • UICCAPDU • RFU • Proprietary FilesAccessrightfortheapplicationwhen 2(APDU)or3(UICC AccessDomainCode APDUMechanismandUICCAPDUis O APDU) selected Hex 1 MaxNumberOfTimers Maximumnumberoftimersallowed M Hex Variable MenuEntriesPosition Menuentriesposition C Hex

Page24of59 Datewritten:04.06.2010

www.simalliance.org 1 MaxNumberOfChannels Maximumnumberofchannels O Hex 3 AssignedTARvalues(1 TARValue O/R Hex Ormore)(Rel6) Variable UICCToolkitParametersDAPSignature UICCDAPSignature O Hex (Rel6) UICCAccessApplicationParameters UICCAccessApplicationParameters(Rel6) O/R 5to16 ADFAID Ifempty,itreferstoUICC M Hex AccessDomain AccessDomainfortheADF M TypeofAccessdomain: FullAccess NoAccess AccessDomainType APDUMechanism M Enumeration UICCAPDU RFU Proprietary FilesAccessrightfortheapplicationwhen 2(APDU)or3(UICC AccessDomainCode APDUMechanismandUICCAPDUis O APDU) selected(Seesection102.2268.2.1.3.2.5.2) Hex Variable AccessDomainDAP AccessDomainDAP O Hex Maximumnumberofservicesforthis 1 MaxNumberOfService C applicationinstance(Rel6) Hex UICCAdministrativeAccessApplicati UICCAdministrativeAccessApplication O/R onParameters Parameters(Rel6) 5to16 ADFAID Ifempty,ifreferstoUICC M Hex AdministrativeAccessDomain AdministrativeAccessDomainfortheADF M TypeofAccessdomain: FullAccess NoAccess AccessDomainType APDUMechanism M Enumeration UICCAPDU RFU Proprietary FilesAccessrightfortheapplicationwhen 2(APDU)or3(UICC AccessDomainCode APDUMechanismandUICCAPDUis O APDU) selected(Seesection102.2268.2.1.3.2.5.2) Hex Variable AdministrativeAccessDomainD AdministrativeAccessDomainDAP O Hex AP

Page25of59 Datewritten:04.06.2010 www.simalliance.org 8. File StructureBody Thedeliveredxmlshavetobesignedasdefinedinthew3orgspecifications(http://www.w3.org/TR/xmldsigcore/). YouwillfindhereunderasimpleexampleofadetachedsignatureofthecontentoftheHTML4inXMLspecification. [s01] [s02] [s03] [s04] [s05] [s06] [s07] [s08] [s09] [s10] j6lwx3rvEPO0vKtMup4NbeVu8nk= [s11] [s12] [s13] MC0CFFrVLtRlk=... [s14] [s15a] [s15b] [s15c]

...

......... [s15d] [s15e] [s16] [s17]

Notes: • Thesha1algorithmusedaboveisnottheonlyoneavailable. • TheKeyInfosectionisoptional. • Thechosenalgorithmistobeagreedbythedifferentparties(MNOandCardVendors)

Page26of59 Datewritten:04.06.2010 www.simalliance.org 9. OTA Mechanism References RelevantspecificationforETSIRel.5is: •3GPP23.048 •TS31.102 •3GPP43.019 •ETSI300942 RelevantspecificationsforETSIRel.6are: •3GPP31.115 •3GPP31.116 •3GPP31.130 •TS102224 •TS102225 •TS102226 •TS102241

Page27of59 Datewritten:04.06.2010 www.simalliance.org 10. Open Platform and Global Platform References RelevantspecificationforOpenPlatformisOP2.0.1 RelevantspecificationforGlobalPlatformisGPCardSpec2.1.1

Page28of59 Datewritten:04.06.2010 www.simalliance.org 11. Restrictions and implementation advice Inordertodefineaxsdformatthatwouldavoidasmanypotentialerrorsaspossible,thefollowingrestrictionshave beendecided: • Thefieldsdeclaredasvariablestringsshouldnotexceed256characters • Thecommentfieldsshouldnotexceed32*1024characters • Thescriptcommandsshouldnotexceed256*1024characters Alltheserestrictionswillbeimplementedinthexsdthankstodatatypesrestrictions.Theenumerationtypewillbe usedforanytypeoffieldswhichhasonlyagivenpoolofvalues(i.e.AccessDomainType,DataGenerationType…) Forfieldswhichvalueisnotgivenbyapool,butthatmusthaveagivenformat,ithasbeendecided,toavoidas manyerrorsaspossible,tousethepatternfacetsinthexsd. Thefollowingexamplevaluesareaccepted:3F00,3F002F05,3F007F106F3A,...

Page29of59 Datewritten:04.06.2010 www.simalliance.org 12. Profile Naming convention Thefileshallberespectthefollowingconvention:LLLCCC_nnn_Vx.x.x (.UXP) With: LLL MCCforMobileCountryCode CCC MNCforMobileNetworkCode Incase2charactersareused,thefirstoneistobefilledbyunderscore‘_’ nnn customerProfileName(variablelength) x.x.x customerVersion(variablelengthcouldbex.x.xxx) Example: 222_01_profilename_V1.1.0.uxp(ItalyTIM) 722341_profilename_V2.0.010.uxp(ArgentinaPersonal) Remarks: • TheFilenamesizeislimitedto64characters. • ThespaceonProfileNameandProfileVersionshallberemoved. • Ifthefileisinvalided(accordingtheXMLSchema),thelabel“_draft”willbeaddedontheprofilenaming:

Page30of59 Datewritten:04.06.2010 www.simalliance.org 13. SIM Profile Mark-Up Language – XML Schema (XSD file) Page31of59 Datewritten:04.06.2010 www.simalliance.org

Page32of59 Datewritten:04.06.2010 www.simalliance.org

Page33of59 Datewritten:04.06.2010 www.simalliance.org

Page34of59 Datewritten:04.06.2010 www.simalliance.org

Page35of59 Datewritten:04.06.2010 www.simalliance.org

Page36of59 Datewritten:04.06.2010 www.simalliance.org

Page37of59 Datewritten:04.06.2010 www.simalliance.org

Page38of59 Datewritten:04.06.2010 www.simalliance.org

Page39of59 Datewritten:04.06.2010 www.simalliance.org Name of the applet as specified in the code file The AID of the applet class Applet name as specified in code file The AID to be assigned to the instantiation of the applet - See spec Open Platform 2.1.1 This defines the state of the applet after perso Is this applet installed: true | false Is this applet made selectable: true | false AID of the SD after installation Application Specific Parameters Installation Volatile Memory sizes

Page40of59 Datewritten:04.06.2010 www.simalliance.org Installation Non Volatile Memory size Toolkit Applet specific Parameters ? 03.48 section A.1.1.4.2.1 This is a flag to be positioned according to the spec 102.226 (section8.2.1.3.2.2): true | false Applet Priority Applet level MSL Menu Entry Max Length Number of Entries to allocate Type of Access domain: Full Access | No Access | APDU Mechanism | UICC APDU | RFU | Proprietary Files Access right for the application when APDU mechanism and UICC APDU is selected Maximum number of timers allowed Menu entries position Maximum number of channels

Page41of59 Datewritten:04.06.2010 www.simalliance.org Assigned TAR values (1Or more) (Rel6) UICC Toolkit Parameters DAP Signature (Rel6) UICC Access Application Parameters (Rel6) If empty, if refers to UICC Access Domain for the ADF Type of Access domain: Full Access | No Access | APDU mechanism | UICC APDU | RFU | Proprietary Files Access right for the application when APDU mechanism and UICC APDU is selected (See section 102.226 8.2.1.3.2.5.2) Access Domain DAP Maximum number of services for this application instance UICC Administrative Access Application Parameters (Rel6)

Page42of59 Datewritten:04.06.2010 www.simalliance.org If empty, if refers to UICC Administrative Access Domain for the ADF Type of Access domain: Full Access | No Access | APDU mechanism | UICC APDU | RFU | Proprietary Files Access right for the application when APDU mechanism and UICC APDU is selected (See section 102.226 8.2.1.3.2.5.2) Administrative Access Domain DAP This defines if the package is delivered by the customer: true | false Details about the package to load if it?s not provided Name of the package as specified in the CAP file

Page43of59 Datewritten:04.06.2010 www.simalliance.org The AID of a Javacard Package This defines the type of package sent by the customer. The value shall be as follows: LOP | IJC | CAP | HEX| JAR Defines the path to the file that contain the applet to load Defines the MD5 signature of Applet Package File See spec Open Platform 2.1.1 Package Non volatile Memory size Installation Volatile Memory sizes Installation Non Volatile Memory size This defines the DAP key to use This describes the specific perso scripts This describes the level where the specific perso scripts must be run. The values are as follows: BFSC | AFSC | AI Command to be executed for applet personalisation This defines the path of the files specific to a package

Page44of59 Datewritten:04.06.2010 www.simalliance.org XML Tag List/Requirements Template Information SIM Card Profile Reference

Page45of59 Datewritten:04.06.2010 www.simalliance.org Customer Specific Requirements

Page46of59 Datewritten:04.06.2010 www.simalliance.org

Page47of59 Datewritten:04.06.2010 www.simalliance.org OTA Access Conditions/Applications RFM Application Target Application/RFM type FileAccess

Page48of59 Datewritten:04.06.2010 www.simalliance.org RAM Application Defines the settings for the Keysets Associated to an SD Data Generation Type Counter Value Generation Type

Page49of59 Datewritten:04.06.2010 www.simalliance.org Defines the applets / packages Defines the card profile

Page50of59 Datewritten:04.06.2010 www.simalliance.org 14. SIM Profile Mark-Up Language Sample – XML File (UXP file)

2.0 2010-06-04 true Add of profile naming convention and name space, correction of existing fields, add of new fields SPML Editor 2.0.0 001 001 UXP Sample File 01 01 2009-06-19 None 01 95 1.8V to 5V No preferred level CombiCard (2G and 3G) 03 03

FormattedSMSPPEnv

UnformattedSMSPPEnv

EventDownload

true None

NEV NEV ADM1 ADM1 ADM1 ADM2 ADM1 ADM2 ADM1 NEV NEV ADM1 ADM1 ADM1 ADM1 ADM1 Page51of59 Datewritten:04.06.2010 www.simalliance.org NEV NEV ADM1 ADM1 ADM1 ADM1 ADM1 NEV NEV ADM1 ADM1 ADM1 ADM2 ADM1 ADM2 ADM1 ALW ADM1 ADM1 ADM2 ADM1 ADM1 ADM1

61184F10A0000000871002FF81FFFF890305000150045553494DFFFFFFFFFFFFFFFFFFFFFFFF

FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF

Page52of59 Datewritten:04.06.2010 www.simalliance.org ALW GPIN1 NEV GPIN1 ADM1 GPIN1 ADM1 GPIN1 ADM1 656E00000000 ALW GPIN1 NEV ADM1 ADM2 ADM1 ADM2 NEV 000000 GPIN1 GPIN1 NEV LPIN1 LPIN1 LPIN1 FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF

Page53of59 Datewritten:04.06.2010 www.simalliance.org ALW ADM1 NEV ADM1 ADM1 ADM1 ADM2 GPIN1 GPIN1 ADM1 ADM2 LPIN1 LPIN1 ADM1 ADM2 2F06 2 FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF ALW ADM1 NEV ADM1 ADM1 ADM1 FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF

Page54of59 Datewritten:04.06.2010 www.simalliance.org GPIN1 GPIN1 NEV NEV ADM1 ADM1 NEV FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF GPIN1 ADM1 NEV ADM1 ADM1 ADM1 FFFFFFFFFFFFFFFFFF GPIN1 GPIN1 ADM1 LPIN1 LPIN1 ADM1 GPIN1 GPIN1 NEV NEV ADM1 ADM1 NEV

Page55of59 Datewritten:04.06.2010 www.simalliance.org 01 02 true true B00010 01 010101 01 02 GSM 0101010101 Full Access 0101 B00001 02 020202 01 02 USIM

Page56of59 Datewritten:04.06.2010 www.simalliance.org A0000000871002FF81FFFF8903050001 0202020202 UICC APDU 0202 030303 03 030303 01 02 01 01 DES_CBC 8 Static 0101010101010101 02 AES 8 Static 0202020202020202 Static 0101010101 0101010101 01 02 01 3DES2_CBC 24 Static 030303030303030303030303030303030303030303030303 02 3DES3_CBC 24 Static 040404040404040404040404040404040404040404040404 Static 0202020202 0202020202 02 true None Sample Package 0101010101 CAP filepath of applet to load

Page57of59 Datewritten:04.06.2010 www.simalliance.org 0101010101 0606 0707 0808 dap key AFSC 1122 3344 Applet 1 0000000001 Instance 1 0000000002 true true 0101010101 09 0707 0808 true 01 010101 05 05 Full Access 0101 05 05 05 010101 020202 01 0101010101 UICC APDU 0101 01 0202020202 APDU Mechanism 0202 02 05 0303030303 Full Access 0303 03 0404040404 APDU Mechanism 0404
Page58of59 Datewritten:04.06.2010 www.simalliance.org 04 0505050505 UICC APDU 0505 05

Page59of59 Datewritten:04.06.2010 www.simalliance.org