# HG changeset patch # User Mychaela Falconia # Date 1617779832 0 # Node ID 42229bec887bdf0f0a9d5490d116fa401697722a # Parent 9de2d8b8951d79bb5f09d2eaa8294eed73ed7bef doc/GrcardSIM2-programming: a few updates diff -r 9de2d8b8951d -r 42229bec887b doc/GrcardSIM2-programming --- a/doc/GrcardSIM2-programming Wed Apr 07 05:57:44 2021 +0000 +++ b/doc/GrcardSIM2-programming Wed Apr 07 07:17:12 2021 +0000 @@ -1,9 +1,8 @@ The card model which we call GrcardSIM2 is one of the many smart card models -made and sold by Grcard in China. As of this writing (2021-03) and going back -to somewhere around 2013, it is the card model they sell when a customer asks -for a GSM-only SIM card, as opposed to USIM cards for UMTS/LTE/etc. This card -model was once resold by Sysmocom as sysmoSIM-GR2, and we are hoping to get a -batch of our own FreeCalypso-branded version which we call FCSIM1. +made and sold by Grcard in China. Our FreeCalypso-branded version of this card +is called FCSIM1 (batch of 200 cards made in 2021-04), but the same card model +was previously sold by Sysmocom as sysmoSIM-GR2, going back to some time around +2013. Our fc-simtool supports full programming of these cards: you can take a card whose initial state is "blank" or unprogrammed, or a card with some previous @@ -21,11 +20,12 @@ * These cards have a fairly sophisticated security model with two different ADM access levels: see GrcardSIM2-security-model article for the details. pySim-prog support for this security model is fundamentally broken: it - authenticates with ADM11 as required for writing Ki, but does not support any - option of changing this key to a secure one, as would be required in any - application where traditional SIM security is desired. OTOH, pySim-prog - needlessly resets ADM5, even though they could have left it alone - ADM11 by - itself is sufficient for writing to all files. + authenticates with ADM11 as required for writing Ki, but it always sends the + default ADM11 key, i.e., pySim-prog -a or -A options have no effect on the key + that actually matters. Instead of supporting changeable ADM11 keys, + pySim-prog needlessly resets ADM5, even though they could have left it alone + (ADM11 by itself is sufficient for writing to all files), and the effect of + -a or -A options is only on this unnecessary ADM5 setting. * Further on the security model, GrcardSIM2 cards allow admins to reset PIN1/PIN2/PUK1/PUK2 secret codes after authenticating with ADM5 or ADM11 - @@ -74,8 +74,8 @@ 2) Per-card settings like ICCID, IMSI, ACC and Ki can only be set either manually (OK for one or two cards, but doesn't scale), or by way of custom front end or wrapper programs that generate and execute one-time fc-simtool - command scripts. We plan on implementing one such front end tool once we - get our FCSIM1 card batch made. + command scripts. Now that our FCSIM1 cards are here, we plan on implementing + the necessary front end tool soon - see FCSIM1-programming article. Please refer to Admin-write-commands, GrcardSIM2-WEKI-file and GrcardSIM2-security-model articles for commands to be used in crafting your