Clear
Glossary

SM-DP (Subscription Manager Data Preparation)

« Back to Glossary Index

What is SM-DP (Subscription Manager Data Preparation)?

SM-DP (Subscription Manager Data Preparation) is a core server-side component within the GSMA M2M (Machine-to-Machine) Remote SIM Provisioning (RSP) architecture. It is responsible for securely storing, preparing, and encrypting operator profiles before they are downloaded and installed onto an eUICC (embedded Universal Integrated Circuit Card) in IoT or M2M devices.

The SM-DP acts on behalf of the mobile network operator (MNO) or connectivity provider to ensure that each operator profile is delivered securely and only to authorized devices.

How SM-DP Works in the M2M RSP Ecosystem

In the M2M RSP architecture (defined by GSMA SGP.01 / SGP.02 specifications):

  1. Profile preparation: The SM-DP securely stores operator profiles and related credentials, encrypting them before deployment
  2. Profile availability: It keeps profiles in a ready state until an authorized SM-SR (Subscription Manager Secure Routing) requests delivery
  3. Secure session establishment: When a download request is made, the SM-DP and the target eUICC establish an encrypted communication channel
  4. Profile download & installation: The SM-DP transmits the profile securely to the eUICC, where it is installed and made available for activation
  5. Lifecycle management: Once installed, the SM-SR maintains secure communication for ongoing management (enable, disable, delete) of profiles

This end-to-end process ensures confidentiality, integrity, and authenticity throughout profile creation, storage, and transfer.

Key Functions of SM-DP

  • Profile encryption and storage: Ensures operator credentials are never exposed in plaintext.
  • Secure data generation: Handles personalization data such as IMSI, Ki, and network parameters
  • Controlled distribution: Provides profiles only to authorized eUICCs following mutual authentication
  • Audit and traceability: Maintains logs and certificates for regulatory and operational assurance.
  • Integration with SM-SR: Works in tandem with the SM-SR for routing and profile state management

Why SM-DP Is Critical

  • Security compliance: SM-DP implementations must comply with GSMA’s SAS-SM (Security Accreditation Scheme – Subscription Management) for certified security
  • Scalability for IoT: Enables large-scale, unattended provisioning of connected devices
  • Operational flexibility: Allows operators to issue, update, and revoke profiles remotely
  • Standardization: Ensures interoperability between different eUICC vendors, network operators, and subscription managers