I’m using this projekt https://github.com/srlabs/blue-merle wich offers IMEI change vor the gl-inet mudi. This Device also comes with eSim support. But to use this there would be the need to also change the EID/eUICCID for my understanding since this could also be used for tracking.
My Qubestion is:
is this in general possible? Or is this bound to a certificate within the chip?
If in general possible, any idears where to look for documentation for this.
My hope is that the situation is a bit like with IMEI change, where some modem vendors give the option to change this and other don’t offer this.
You cannot change the EID of an eUICC. It is the serial number of the CERT.EUICC by which the eUICC cryptographically identifies itself to the SM-DP+
In a hypothetical eUICC that allowed you to change the EID, it would still be present in the certificate (which is presented to the SM-DP+ or SM-SR). If you’d change it in the certificate, the certificates own signature would no longer verify, and hence certificate verification by the SM-DP+ or SM-SR would fail
yes, and you will inevitably run into the certificate validation errors I predicted in the post above, as the EID (obtained by LPA via ES10c#GetID) will not match the certificate.
Certain removable eUICC (eSTK.me) has virtual eID function, available via its STK menu. Dunno how it works and does it really hide the eID from the RSP (hard to believe given that like it was mentioned here, eID is involved in cryptographic exchange). Unfo I don’t have this product, only saw screenshots.