The specifications and regulatory frameworks governing SIM card technology
Several organizations are responsible for developing and maintaining the standards that govern SIM card technology:
The European Telecommunications Standards Institute (ETSI) is the primary standards organization responsible for SIM card specifications. ETSI developed the original GSM specifications, including those for SIM cards [^8].
The 3rd Generation Partnership Project (3GPP) took over the maintenance and development of GSM specifications, including SIM card standards, as mobile technology evolved to 3G, 4G, and 5G [^8].
The International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC) jointly developed the ISO/IEC 7816 series of standards for smart cards, which form the foundation for SIM card physical characteristics and communication protocols [^8].
The GSM Association (GSMA) represents mobile network operators worldwide and develops specifications for interoperability, including the eSIM specifications for remote SIM provisioning.
GlobalPlatform develops specifications for secure element management, which are relevant for modern SIM cards that support multiple applications and secure services.
The JavaCard Forum promotes and develops the JavaCard specification, which is widely used for programming applications on modern SIM cards.
The following standards define various aspects of SIM card technology. Each standard plays a crucial role in ensuring interoperability, security, and functionality:
SIM card standards have evolved significantly since their inception to support new technologies and use cases:
| Era | Primary Standards | Key Features | Reference |
|---|---|---|---|
| 2G (GSM) | GSM 11.11 / TS 51.011 |
| View |
| 3G (UMTS) | TS 102 221, TS 31.102 |
| View |
| 4G (LTE) | TS 102 221, TS 31.102, TS 31.103 |
| View |
| 5G (NR) | TS 102 221, TS 31.102, TS 33.501 |
| View |
| eSIM | GSMA SGP.21/22, SGP.01/02 |
| View |
SIM cards must undergo rigorous testing and certification to ensure compliance with standards and interoperability:
The GSMA Security Accreditation Scheme (SAS) certifies SIM card manufacturers for secure production and personalization processes. This certification is required by most mobile network operators.
Many SIM cards undergo Common Criteria certification (ISO/IEC 15408) to validate their security features against internationally recognized standards.
SIM cards are tested for compliance with ETSI specifications to ensure they function correctly with mobile devices and networks.
Modern SIM cards often undergo GlobalPlatform qualification to ensure compliance with secure element management standards.
SIM card technology is subject to various regulatory requirements around the world:
Many countries require SIM cards to be registered to a verified identity, with regulations specifying the identification documents required and the registration process.
Regulations like the GDPR in Europe affect how subscriber data stored on SIM cards can be processed and protected. SIM card standards have evolved to include enhanced privacy features in response to these regulations.
Many jurisdictions have requirements for lawful interception capabilities in mobile networks, which can influence SIM card authentication and encryption standards.
SIM cards with advanced cryptographic capabilities may be subject to export controls in some countries, affecting global distribution and manufacturing.
Standardization bodies are working on several areas to address emerging needs in SIM technology:
Work is underway to standardize integrated SIM (iSIM) technology, which embeds SIM functionality directly into the device's main processor or modem chip.
Standards are evolving to address new security threats, including quantum-resistant cryptography for future-proofing SIM card security.
New standards are being developed to optimize SIM technology for IoT applications, including power efficiency, remote management, and long lifecycle support.
Standards are evolving to enhance the role of SIM cards in digital identity ecosystems, including support for decentralized identity models.
The following resources provide additional information about SIM card standards:
Search for ETSI standards including TS 102 221, TS 102 223, and other SIM-related specifications.
Access 3GPP specifications including TS 31.102, TS 31.103, and other USIM/ISIM standards.
Information about the ISO/IEC 7816 series of standards for smart cards.
Access GSMA specifications for eSIM technology, including SGP.21, SGP.22, and related documents.
Comprehensive overview of eSIM technology, architecture, and benefits.
Technical report on interworking between different generations of SIM cards.
Overview of secure element technology, which is a key component of modern SIM cards.
Responsible for GSM and UICC standards.
Responsible for 3G, 4G, and 5G standards, including USIM and ISIM.
Industry organization representing mobile network operators, responsible for eSIM specifications.
Responsible for secure element standards and management.
Responsible for ISO/IEC 7816 and other smart card standards.