Today, when we talk of a network capable of delivering content to mobile devices, we’re actually talking about a series of networks; from traditional GSM/3G to broadband through to WiFi and Wimax, IMS and others.
We should instead be talking about a ‘network of networks’ - the ability to seamlessly direct the application to whatever channel is most appropriate for the consumer. Irrespective of the network type, there is an undoubted need for a secure and interoperable element.
This is where a Universal Integrated Circuit Card (UICC), integrating ISIM features for authentication to IMS networks (as recommended by SIMalliance in a profile published in June 2010) comes into play. This is a critical point, because the flexibility of the Internet world brings with it security threats never seen before in the mobile environment.
Multi Authentication Capabilities
Immune to viruses and malware, the switched network was not under permanent threat of malicious attack. By contrast, the number of attacks in the online world is huge.
Featuring a multi-application and authentication structure, the UICC in the LTE environment offers authentication to the different networks via different applications. This is critical to ensure the mobile operator is protected against the threats of the Internet world, while the user can be assured of seamless connectivity across different networks.
Tunnelling Approach
Creating this ‘access tunnel’ is critical for ensuring users are securely authenticated to a defined series of services held on separate applications and via separate networks. Users could potentially sign up for embedded services and applications that require high levels of security and lightning-fast access. Also, the ISIM offers a level of secure access similar to a desktop VPN connection, giving both user and service provider a secure connection unprecedented in consumer mobile communications. This VPN-style connection is achieved by opening a secure IP tunnel that doesn’t endanger the MNO’s core network.
It also allows new business opportunities for mobile operators: they can offer new services - such as ID Providers - or create new business models giving third parties access to the transport layer (while keeping them locked-out of the core).
UICC’s capabilities also offer users and service providers remote file management and application management options. In the same way that loyalty cards provide supermarkets with important information regarding each shopper’s purchasing choices, UICC over LTE could potentially return feedback to MNOs and service providers. Naturally, the fine line between privacy and fair use of user data needs to be established, but it heralds exciting possibilities for further improving the service to end users.
From B2C to M2M
But these features aren’t just useful for MNOs and end users, they are also ideal for M2M applications. Security in the machine-to-machine and embedded sectors is just as important as in the consumer sector, sometimes more so. For M2M applications, the UICC opens up new possibilities such as streaming video or collecting sensitive data conducted through a secure connection.
So it seems that the future is the combination of UICC and the network – whatever that network may be. And by using its built-in authentication, interoperability and secure access and data exchange features, the UICC integrating ISIM features will provide a truly secure, future proof solution.
