This document gives an overview of the conctept for a Secure Applications on Mobile (SAM) to get access to Secure Elements in mobile devices.

Secured Application on Mobile (SAM) represents an important standardisation item pursued by GSMA and GlobalPlatform. This is a proposal to make eSIM, which are permanently installed in mobile devices, usable beyond telecommunication for protection requiring applications. Hereby the chip gains the character of a platform. In particular eID, ticketing or payment applications can benefit from hardware security regardless of the original equipment manufacturer (OEM) or mobile network operator (MNO). For this purpose, an isolated security domain (SAM-SD) is provided on the eSIM, which exists and can be used independently of the telecommunication contract.

Based on the evolution of hardware security chips and a short technical description of the SAM-SD, a position paper details the BSI’s interest in the topic. Using widespread hardware security anchors in mobile devices to protect personal information increases security in digital processes for citizens.