Preparing your thing for the AnyNet Secure SIM
Your thing modem must support:
SIM Toolkit, with SIM Toolkit enabled.
For more information, see Enabling SIM Toolkit.
- Restricted SIM access using the +CRSM command, as defined in 3GPP TS 27.007.
Before you begin
Sign up for an Amazon Web Services (AWS) account, or log into an existing account: https://aws.amazon.com
For instructions, see: https://aws.amazon.com/premiumsupport/knowledge-center/create-and-activate-aws-account/
- Create a thing in AWS IoT Core, using an AnyNet Secure SIM number as an identifier. For more information, see Creating a thing with AnyNetThingType.
- Ensure that the AnyNet Secure SIM with the matching number is correctly installed in your IoT device.
- Power on the modem.
- Ensure the modem can acquire a network signal. To do this, ensure you have a GPS antenna connected to the device, and the network signal strength is good.
Connecting securely to AWS
AWS provisions the AnyNet Secure SIM over a cellular network. During provisioning, the AnyNet Secure service transfers the following identity and security information to your AnyNet Secure SIM:
The unique AWS thing name
- The Amazon Resource Name (ARN) that defines which AWS endpoint supports the thing
- A set of X.509 certificates
- An encrypted private key – AWS and the
modemuse key pairs for signing data
You must extract this information into the modem to enable the secure data connection from your device to the AWS IoT Core platform.
For information about monitoring provisioning progress, see Provisioning the AnyNet Secure SIM.
For information about which files to extract from the AnyNet Secure SIM, see Reading AnyNet Secure SIM files.
For information about how to extract the files, see AT+CRSM – read files from the SIM.