SIM

SIM

A SIMSIMApplicationSmart card for mobile network authentication.Click to view → (Subscriber Identity Module) is a smart card that authenticates a subscriber on a cellular mobile network. Housed in a Secure Element chip, the SIM stores the subscriber's identity credentials, network authentication keys, and telecom applications. It is the most widely deployed smart card type in the world, with over 15 billion units produced since its introduction in the GSM standard in 1991.

SIM Internal Structure

The SIM card runs a dedicated telecom operating system with a JavaCard virtual machine for operator applets:

Authentication Process

When a device connects to the network, the SIM performs a challenge-response authentication:

1. The network sends a random number (RAND) to the SIM
2. The SIM computes a response (RES) using the Milenage/TUAK algorithm with the Ki and RAND as inputs
3. The SIM also derives session keys (CK for ciphering, IK for integrity) for encrypted communication
4. The network compares RES with its expected value — if they match, the subscriber is authenticated

All cryptographic operations occur inside the SIM's Secure Element — the Ki never leaves the chip. This design ensures that cloning a SIM requires physically extracting the key through side-channel attacks, which modern SIM chips are hardened against.

SIM Form Factors

The SIM has evolved through progressively smaller form factors while maintaining backward-compatible contact pad layouts:

OTA Management

SIM cards support Over-the-Air (OTAOTAPersonalizationRemote card management via mobile network.Click to view →) management via SMS-PP or HTTPS, allowing operators to remotely update applets, change network parameters, and install new applications without physical access to the card. The OTA channel is secured by 3DES or AES encryption with keys managed through key diversification from master keys stored in the operator's HSM.