Ericsson Secure Entitlement Server
Ericsson Secure Entitlement Server (SES) is the Communication Service Provider’s (CSP) strategic control point between devices and their network. Further, by anchoring both device and network API flows, SES becomes the entitlement and programmable policy point feeding the exposure layer, so network APIs consistently reflect CSP service rules and 5G capabilities turning it into a monetization layer. It securely connects SIM, eSIM and non SIM devices while giving the operator end to-end control over which services, subscriptions and network capabilities are exposed to which devices, both through on device entitlement flows and network APIs.
As device ecosystems, eSIM and network exposure evolve, entitlement has moved from “nice to have” to “must have”. SES lets CSPs own the on device experience and at the same time support device triggered offers (for example, eSIM activation and transfers, RCS configuration and satellite mode requested from the phone) as well as network based exposure (for example, Silent Authentication/Number Verification via CAMARA APIs). This enables new 5G monetization use cases to be launched quickly while keeping policy, security and data firmly under operator control.
Ericsson SES is built in close collaboration with Apple and Android eco systems and is a market leading entitlement server with vast deployment footprint around the globe with more than 90 CSPs including several tier-1 customers providing superior services to more than 600 million devices.
Multi-service enabler
SES acts as a multi-service enabler and secure gateway between devices and the carrier network, centralizing entitlement and service logic in one platform. It supports SIM, eSIM and non SIM devices, smartphones, wearables and laptops, aligned with Apple iOS entitlement APIs and GSMA TS.43-based Android ecosystems, and more. So CSPs can and enforce consistent policies and experiences across brands, MVNOs and partners while reusing the same entitlement assets.
SES is highly capable providing a large amount of use cases, including but not limited to: Apple Feature Registration, VoWiFi, VoLTE, VoNR configuration, Secondary devices such as Watches & Wearables and tablets, eSIM activation and cross OS transfer, RCS configuration, 5G data management, Android self-activated differentiated connectivity, Number Verification and Satellite mode support.
Multi-channel eSIM service orchestrator
A full-fledged eSIM Orchestrator that unifies eSIM lifecycle management across on-device entitlement, web and application self-care, point-of-sale and enterprise portals. CSPs can design once and roll out digital eSIM journeys for activation, subscription transfer (including xOS transfers from Apple to Android and vice versa), recovery and enterprise onboarding across multiple brands and channels. Bring quick time to market for new offers and reducing integration and operational cost enabling end-user self-services with no human interaction needs from the CSP. All in all, focus on and enhancing the end customer experience.
Data boost enablement
In-app data boost functionality offers the user a way to upgrade their subscription and enjoy premium data quality experience, provided by functions such as Network slicing. Read more in the press release and blog post below:
Silent Authentication
Network Capability Service Function includes now Silent Authentication enabling the CSP to provide secure and easy-to-use 2-factor authentication for ASP's as an alternative to SMS OTP. This capability is exposed by the CSP over CAMARA API Number Verification.