8.43 Generic UICC logical channel access +CGLA

27.0073GPPAT command set for User Equipment (UE)Release 18TS

Tools: ARFCN - Frequency Conversion for 5G NR/LTE/UMTS/GSM

Table 103: +CGLA action command syntax

Command

Possible response(s)

+CGLA=<sessionid>,<length>,<command>

+CGLA: <length>,<response>

+CME ERROR: <err>

+CGLA=?

Description

Set command transmits to the MT the <command> it then shall send as it is to the selected UICC. In the same manner the UICC <response> shall be sent back by the MT to the TA as it is. Refer clause 9.2 for possible <err> values.

This command allows a direct control of the currently selected UICC by a distant application on the TE. The TE shall then take care of processing UICC information within the frame specified by GSM/UMTS.

Although Generic UICC Logical Channel Access command +CGLA allows TE to take control over the UICC‑MT interface, there are some functions of the UICC-MT interface that logically do not need to be accessed from outside the TA/MT. Moreover, for security reason the GSM network authentication should not be handled outside the TA/MT. Therefore it shall not be allowed to execute a Run GSM Algorithm command or an Authenticate command in GSM context from the TE using +CGLA at all time whether the +CGLA is locked or unlocked. This shall not forbid the TE to send Authenticate commands in other security contexts (e.g. EAP security context).

For example, the TA/MT shall forbid the transfer of the Authenticate command to a USIM application when parameters P2 = 0 (GSM security context). See 3GPP TS 31.102 [59] for USIM authenticate command definition.

NOTE: Compared to Restricted UICC Access command +CRLA, the definition of +CGLA allows TE to take more control over the UICC‑MT interface. The locking and unlocking of the interface may be done by a special <command> value or automatically by TA/MT (by interpreting <command> parameter). In case that TE application does not use the unlock command (or does not send a <command> causing automatic unlock) in a certain timeout value, MT may release the locking.

Defined values

<sessionid>: integer type; this is the identifier of the session to be used in order to send the APDU commands to the UICC. It is manadatory in order to send commands to the UICC when targeting applications on the smart card using a logical channel other than the default channel (channel "0").

<length>: integer type; length of the characters that are sent to TE in <command> or <response> (two times the actual length of the command or response).

<command>: command passed on by the MT to the UICC in the format as described in 3GPP TS 31.101 [65] (hexadecimal character format; refer +CSCS).

<response>: response to the command passed on by the UICC to the MT in the format as described in 3GPP TS 31.101 [65] (hexadecimal character format; refer +CSCS).

Implementation

Optional.