LOGBOOK

HELP

Quiz Entry - updated: 2026.07.05

How does the SIM (UICC) in LTE differ from a 2G SIM, and why are 2G SIMs forbidden on LTE?

The LTE UICC is a hardware store for the pre-shared key K and the IMSI, accessed only through a restricted API and performing the crypto on-card. Per 3GPP TS 33.401 §6.1.1, access to E-UTRAN with a 2G SIM or a 2G-COMP UICC application must not be granted.

UICC stores K and IMSI, on-card crypto via restricted API; 2G SIMs refused.

* The LTE UICC as a hardware key store; 2G SIMs are refused. *

The LTE UICC:

  • Hardware storage for confidential information: the pre-shared key K and the IMSI
  • Access to the UICC is only via a restricted API
  • The card performs the cryptographic operations for authentication itself (the key never leaves the card)

The 2G ban (3GPP TS 33.401 – 6.1.1):

Access to E-UTRAN with a 2G SIM card, or a SIM application on a UICC using the 2G COMP method, shall not be granted.

Why this rule exists: everything from the GSM-attacks card — COMP128's broken key derivation, the 54-bit key, side-channel extraction — makes a 2G SIM a liability. LTE simply refuses to bootstrap its security from that weak foundation. The pre-shared key K and the modern AKA procedure replace COMP128/Ki.

Tip: This single spec line is the clearest statement of "LTE learned from GSM's mistakes" — the old credential is not just deprecated, it's actively rejected.

Go deeper:

  • doc SIM card (Wikipedia) — the UICC as hardware key store: Ki/K never leaves the card, and how that differs from a plain 2G SIM.

From Quiz: MOBINFSEC / GSM & LTE Security Infrastructure | Updated: Jul 05, 2026