Useful terms when working with IoT

The APN (Access Point Name) is a critical component for enabling IoT connectivity with Com4's managed IoT SIM cards. This alphanumeric identifier must be configured on a terminal device to establish a secure and reliable Internet connection. Think of the APN as the "ticket" that grants access to seamless connectivity for your IoT devices.

The APN provides essential information on how a device connects to the Internet. It is typically set once per device and remains unchanged. However, when replacing an M2M SIM card from Com4, it may need to be re-entered to ensure uninterrupted IoT connectivity.

Some IoT devices equipped with Com4's M2M SIM cards can automatically determine an APN, enabling Internet access in select networks without manual configuration. However, for optimal performance and to take advantage of the full network coverage provided by Com4's IoT connectivity services, the APN must be correctly set up. Without proper configuration, devices may not access all available mobile networks, limiting their functionality in global IoT deployments.

Private APN: Enhanced Security for IoT Applications

A private APN offered by Com4 is an advanced solution for secure and efficient IoT connectivity. It routes mobile data traffic directly into a company’s private network, bypassing public Internet pathways. With a private APN, M2M devices and IoT sensors are isolated from public data channels, significantly reducing vulnerabilities and the risk of external attacks.

Com4's private APN solutions are ideal for businesses that require robust security and reliability in their IoT applications. Whether for industrial IoT, remote monitoring, or smart city projects, Com4’s IoT SIM cards with private APN support ensure secure, high-performance connectivity tailored to your needs.

Big data refers to vast amounts of data that traditional methods of collection and analysis cannot handle due to their size or type.

With some M2M SIM cards, blacklisting certain mobile networks is an option to manage device connectivity effectively. Blacklisting prevents an end device from connecting to a specific mobile network.

M2M SIM cards, designed as roaming SIMs, support multiple networks to provide the best available connection at any given location. However, in some scenarios, blacklisting may be useful. For example, if a specific network experiences frequent fluctuations or instability, blacklisting it can help prevent the device from repeatedly switching between networks, ensuring a more stable connection.

Blacklisting and Whitelisting Applications

In addition to network blacklisting, it is possible to blacklist or whitelist domains or email addresses. This functionality allows better control over access to SIM cards:

• Blacklist: Blocks access from untrusted or unwanted sources.
• Whitelist: Grants access to pre-approved, trusted sources.

This approach is similar to email systems, where untrusted messages are flagged or blocked, while trusted senders are allowed through.

These tools provide an effective way to limit and secure connectivity, ensuring reliable and stable operation for M2M and IoT devices.

Bluetooth is a wireless technology used for short-range communication in IoT projects.

Category M1(Cat M1) is a low-power, wide-area cellular technology designed specifically for IoT projects.

Cellular IoT projects often use the same cellular networks as mobile devices like smartphones, such as 2G, 3G, 4G LTE, and Cat M1.

Com4 Cloud Connectors simplify IoT data traffic management by seamlessly directing device-generated data to your cloud infrastructure. Our advanced solution routes all data from IoT SIM cards directly to a specific endpoint, ensuring precision and reliability in data transmission.

With Com4's direct integrations to leading cloud platforms like AWS, Microsoft Azure , and Google Cloud, businesses benefit from a private, dedicated connection that bypasses the public internet. This not only ensures enhanced IoT security, but also provides unparalleled bandwidth control and reliable data transmission, enabling uninterrupted connectivity for your IoT applications.

Our IoT connectivity solution is designed to optimize efficiency, ensuring seamless integration between your IoT devices and cloud infrastructure. By enabling efficient data routing and reducing unnecessary data transfers, Com4 Connectors help lower operational costs, conserve device power, and deliver real-time data processing capabilities.

Cloud computing provides on-demand computing services like servers, storage, and analytics over the internet.

CPaaS (Communication Platform as-a-Service) is a cloud-based service that enables developers and businesses to add real-time communication capabilities to their applications and services. It provides a set of APIs and tools that allow developers to easily integrate voice, video, messaging, and other communication functionalities into their existing applications without having to build and manage the underlying infrastructure themselves.

C-V2X stands for "Cellular Vehicle-to-Everything" and is a wireless communication technology that enables vehicles to communicate with other vehicles, infrastructure, pedestrians, and other devices

Data pooling allows all active M2M SIM or IoT SIM cards within a customer’s network to draw from a shared data quota instead of having individual data limits. This means that rather than assigning a fixed data allowance to each SIM, all active SIMs contribute to and consume from a common pool. If one device uses more data than expected, the lower usage from other devices helps balance the overall consumption.

This approach is particularly beneficial for M2M/IoT deployments where data usage varies across devices. By aggregating data usage, businesses can optimize their data plans, reducing the risk of exceeding individual limits while ensuring efficient allocation of available data.

EDGE (Enhanced Data Rates for GSM Evolution) and GPRS (General Packet Radio Service) are key technologies in the 2G mobile network, providing essential connectivity for many IoT and M2M applications.

• EDGE: An extension of GSM offering faster packet-switched data transmission. It bridges 2G and 3G and is still used in low-bandwidth IoT deployments like telemetry and remote monitoring.
• GPRS: Enables efficient packet-switched communication, supporting SMS, MMS, and mobile Internet. It often acts as a fallback when newer networks like 3G or 4G are unavailable, ensuring reliable coverage in remote areas.

Though largely replaced by advanced technologies like LTE-M and NB-IoT, EDGE and GPRS remain vital for IoT devices in areas with limited network infrastructure, offering cost-efficient, reliable global connectivity.

A computing model that processes data at or near the edge of the network, closer to the source of data, rather than sending it to a central data center for processing, which can result in faster processing and reduced latency.

An eSIM, short for “embedded Subscriber Identity Module,” is a type of SIM card that is embedded directly into a device - typically soldered as part of an industrial process - and not inserted later. Unlike traditional physical SIM cards, which can be removed and replaced, eSIMs are embedded into the device’s circuitry and cannot be physically removed or swapped out. You can today find eSIMs in both consumer products (smartphones, tablets, smart watches …)  and they are widely deployed B2B in the IoT space as they reduce footprint, improve logistics and security.

Embedded SIMs are a good match with eUICC technologies, where the profile controlling the connectivity can be modified and activated remotely, allowing the mobile network providers to optimize eUICC profil for use cases, and allowing users to switch between mobile network providers without having to physically replace the SIM card.

Seamless Network Switching Without SIM Swap: The Power of eUICC for IoT Connectivity

The ability to change mobile network operators without swapping physical SIM cards is a game-changer for IoT connectivity. This is precisely what eUICC (Embedded Universal Integrated Circuit Card) technology enables. Unlike traditional M2M SIM cards, an eUICC SIM allows for remote SIM profile management, giving IoT devices the flexibility to switch mobile network operators (MNOs) without manual intervention.

What is eUICC and Why is it Important for IoT Connectivity?

An eUICC SIM is not just a regular IoT SIM card—it comes with a reprogrammable SIM profile, enabling over-the-air (OTA) updates. This means that instead of physically replacing SIM cards in deployed IoT devices, businesses can manage connectivity remotely, saving both time and operational costs.

Unlike a standard M2M SIM, which is tied to a single carrier, an eUICC-enabled SIM supports multiple operator profiles. This flexibility is particularly valuable for global IoT deployments, ensuring seamless connectivity across different regions without needing to swap out SIM cards.

eUICC vs. eSIM: What’s the Difference?

Many people use eUICC and eSIM interchangeably, but they are not the same.

• eUICC refers to the software functionality that allows SIM profile switching.
• eSIM (Embedded SIM) refers to the hardware form—a chip-based SIM that is permanently embedded into IoT devices.

An eSIM can support eUICC, meaning its SIM profile can be changed remotely, but not all eSIMs are eUICC-enabled. This is an important distinction when selecting an IoT connectivity solution.

eUICC-Enabled IoT SIMs: Standard vs. Industrial-Grade

To meet the diverse needs of IoT devices, eUICC SIM cards come in multiple formats, including:

• Mini, Micro, and Nano SIMs – Standard removable SIMs.
• Embedded SIMs (eSIMs) – Soldered directly into the modem.

For industrial applications such as smart meters, industrial sensors, connected vehicles, and asset tracking, Industrial IoT SIM cards are essential. These rugged eUICC SIMs offer:

• Extended temperature resistance
• Longer lifespan
• Stronger durability for extreme environments

Benefits of eUICC SIMs for IoT Connectivity

Using eUICC-enabled M2M SIMs brings several advantages for IoT deployments:

• Remote SIM profile updates – No need for physical SIM replacement.
• Multi-network support – Ensures uninterrupted connectivity by switching operators when necessary.
• Cost savings – Reduces the logistical challenges of replacing SIM cards in remote IoT devices.
• Security benefits – Embedded eSIMs with eUICC are harder to tamper with or remove from devices.

This is particularly valuable for IoT solutions such as smart agriculture, connected healthcare, fleet management, and smart cities, where uninterrupted mobile connectivity is critical.

Challenges and Costs of eUICC Deployment

Despite its advantages, eUICC SIMs come with challenges. Implementing remote SIM provisioning requires:

• eUICC-capable SIM cards – Typically more expensive than standard IoT SIMs.
• A subscription management platform – To handle SIM profile changes.
• Multiple SIM profiles – Each new profile requires investment.

For companies planning large-scale IoT rollouts, switching operator profiles via eUICC can result in significant cost savings compared to manual SIM swaps. However, businesses must weigh the initial investment against the long-term operational efficiencies.

Multi-IMSI SIMs: A Cost-Effective Alternative

If remote profile switching via eUICC is too costly, a simpler approach is to use Multi-IMSI SIM cards. 

Firmware-over-the-air (FOTA) is a Mobile Software Management (MSM) technology that allows cellular device firmware to be upgraded wirelessly over the network.

The GSMA SGP.32 standard represents a pivotal evolution in eSIM technology, designed to merge the strengths of M2M eSIM (SGP.02) and consumer eSIM (SGP.22) into a unified framework for IoT. Set for certification and availability in 2025, this standard aims to enhance global device interoperability and streamline connectivity management for IoT ecosystems.

Key benefits include:

• Improved Operational Efficiency: Simplified provisioning and management of IoT devices, reducing operational complexity for manufacturers and service providers.
• Remote Management: Combines the remote SIM provisioning capabilities of M2M eSIM with local management features of consumer eSIM.
• Interoperability and Flexibility: Enables seamless operation across diverse networks and platforms by integrating advanced profile management methods (SM-DP+ from consumer eSIM and SM-DP from M2M eSIM).

SGP.32 is poised to future-proof IoT deployments, ensuring adaptability to evolving connectivity needs while optimizing efficiency and reliability. Businesses should evaluate their long-term strategies now to align with this transformative standard.

A Home Location Register (HLR) is a database in 2G and 3G mobile networks that stores subscriber details, including the IMSI, phone number (MSISDN), account status, and last known location.

In 4G networks, the HLR is replaced by the Home Subscriber Server (HSS), and in 5G networks, it’s replaced by Unified Database Management (UDM).

How HLR Works

When a device connects to a cellular network, the Mobile Switching Center (MSC) queries the HLR to:

• Verify network access.
• Enable billing for services.
• Route communications to the correct location.

If a contract ends, the carrier removes the subscriber from the HLR, cutting off network access.

Roaming and the HLR

For roaming, the Visitor Location Register (VLR) temporarily retrieves data from the home network’s HLR. This allows the roaming network to validate the device and manage its connectivity.

Tracking Devices

HLRs store a device’s last known location based on periodic Tracking Area Updates (TAUs). This information helps route communications efficiently.

The HLR ensures seamless connectivity in legacy networks while evolving technologies like the HSS and UDM take over in newer networks.

The fifth generation of cellular network technology that promises faster data transfer rates, lower latency, and greater network capacity, which makes it an ideal technology for supporting IoT devices.

5G RedCap, also known as 5G NR-Light, is a groundbreaking enhancement to 5G technology, designed specifically for IoT devices and applications with moderate performance needs. By offering cost-efficient and energy-friendly connectivity, it bridges the gap between 4G LTE and high-performance 5G for devices that don’t require ultra-high speeds or low latency.

Key Benefits of 5G RedCap:

• Reduced Costs: Simplified 5G features allow for more affordable device production.
• Energy Efficiency: Optimized data transmission lowers power consumption, extending battery life.
• Medium Data Rates: Provides sufficient bandwidth for most IoT applications, balancing performance and efficiency.

How 5G RedCap Stands Out

• Compared to 4G: 5G RedCap delivers better efficiency tailored for IoT, offering improved performance over LTE for applications needing reliable connectivity without the full spectrum of 5G features.
• Compared to 5G: While traditional 5G prioritizes ultra-low latency and maximum data rates, RedCap focuses on moderate connectivity requirements, ideal for IoT devices.

Compatibility with Existing Networks

5G RedCap operates on standard 5G frequencies, eliminating the need for additional hardware. Devices only need a RedCap-compatible radio module to leverage the technology.

Applications of 5G RedCap

5G RedCap is perfect for IoT devices with moderate connectivity needs, including:

• Industrial Sensors: Facilitating data transmission from machines and systems.
• Wireless Monitoring: Supporting applications like health monitoring and environmental sensors.
• Smart Grids: Managing traffic flow and energy systems, such as lighting control.
• Video Surveillance: Enabling real-time streaming from security cameras.
• Wearables: Powering intelligent devices like smartwatches and fitness trackers.

5G RedCap combines affordability, energy efficiency, and reliability, making it a game-changer for IoT applications. With Com4’s expertise in IoT connectivity solutions, we ensure seamless integration of 5G RedCap for your devices, enabling smarter, cost-efficient IoT deployments.

IoT (Internet of Things) is the concept of connecting devices and their components to the internet to add intelligence and value.

An IoT (Internet of Things) gateway is a device or software program that serves as a bridge between IoT devices and the cloud. It collects data from sensors, cameras, and other IoT devices, and then filters, processes, and analyzes that data before sending it to the cloud for further analysis and storage.

IoT gateways may also perform other functions, such as security and protocol translation, to ensure that the data transmitted between devices and the cloud is secure and compatible with the relevant protocols.

Routers can be used to connect IoT devices to the internet or to other devices in a network. They may also include security features, such as firewalls or virtual private networks (VPNs), to protect against unauthorized access or data breaches.

What is IPSec and Why It Matters for Secure IoT Connectivity

IPSec (Internet Protocol Security) is a critical framework for securing network communications, widely used in enterprise IoT deployments, M2M connectivity, and private LTE/5G networks. At Com4, we leverage IPSec to establish secure, encrypted tunnels for IoT devices, ensuring end-to-end data protection across cellular, satellite, and hybrid IoT networks.

IPSec consists of three essential security protocols:

• Authentication Headers (AH) – Uses a shared key to verify device identity before transmission and applies a checksum to prevent data tampering. This is crucial for preventing unauthorized access to IoT networks.

• Encapsulating Security Payload (ESP) – Encrypts data packets, including headers, making the entire transmission invisible to outsiders. In IoT VPN solutions, ESP ensures secure remote device management and data integrity.

• Internet Security Association and Key Management Protocol (ISAKMP) – Defines encryption methods, session durations, and key exchanges for establishing highly secure communication between network entities.

Together, these protocols encrypt data before transmission and verify its integrity, mitigating cyber threats like Denial of Service (DoS) attacks. IPSec’s anti-replay mechanism blocks repeated attack attempts by tagging packets with a unique sequence number.

IPSec in IoT: Tunnel Mode vs. Transport Mode

• Tunnel Mode – The preferred mode for IoT VPNs and enterprise-grade security. IPSec is always active, creating a site-to-site VPN that allows all IP addresses from one network to securely communicate with another.

• Transport Mode – Encrypts only the data payload, often used for specific application-level security rather than network-wide IoT encryption.

At Com4, our IPSec VPN solutions generate a private shared key during setup, ensuring seamless, secure data transmission across global IoT deployments. With support for 4G, 5G, LTE-M, NB-IoT, and satellite communications, our IPSec-enabled IoT connectivity protects critical machine-to-machine communications from cyber threats, ensuring reliable, encrypted, and scalable IoT operations.

An iSIM (integrated SIM) is a type of SIM card that is integrated directly into a device's chipset or processor, eliminating the need for a physical SIM card. iSIMs are smaller and more energy-efficient than traditional SIM cards, making them ideal for use in IoT devices and other small, connected devices that may not have the physical space to accommodate a traditional SIM card.

iSIMs can be remotely provisioned, activated, and managed, making them highly flexible and adaptable to changing network requirements or service provider preferences.

Low-power wide-area networks (LPWANs) are a class of networks designed for low-power, long-range communication. Some popular LPWAN networks include LoRaWAN, SigFox, LTE-M, NB-IoT, RPMA, Symphony Link, and Weightless.

A wireless communication protocol designed specifically for long-range, low-power IoT devices that operate in the unlicensed radio spectrum.

LTE Cat-1 (Category 1) is a cellular communication technology that provides low-cost, low-power, and low-complexity connectivity for IoT and M2M (machine-to-machine) devices.

Compared to traditional LTE connections, LTE Cat-1 provides lower data rates (up to 10 Mbps download and up to 5 Mbps upload) but also has lower power consumption and cost. This makes it an ideal solution for IoT devices that need to transmit smaller amounts of data over long periods of time, such as remote sensors, smart meters, or asset trackers.

LTE Cat-1 also supports voice and SMS (text messaging) services, allowing devices to provide basic communication capabilities in addition to data transmission.

LTE Cat-M2 (Category M2) is a low-power, wide-area (LPWA) cellular communication technology designed specifically for IoT and M2M (machine-to-machine) applications.

Compared to other LTE categories, Cat-M2 provides even lower data rates (up to 1 Mbps download and up to 375 kbps upload) but also has extremely low power consumption, allowing devices to operate on a single battery charge for years. This makes it an ideal solution for IoT devices that need to transmit small amounts of data infrequently, such as smart sensors, wearables, and asset trackers.

Cat-M2 also supports features such as voice and SMS (text messaging), as well as device positioning using GPS, which can be useful for location-based IoT applications. It also provides enhanced security features, such as secure boot and encrypted communication, to protect against unauthorized access or data breaches.

Machine-to-machine communication (M2M) occurs when multiple machines interact with one another without human intervention.

Machine learning involves feeding information to computer systems so that they can learn how to solve problems and predict events like humans do.

Mesh networks are an infrastructure of wirelessly connected nodes, including gateways, repeaters, and endpoints.

A lightweight messaging protocol designed for IoT devices that enables efficient and reliable communication between devices, applications, and servers.

Network redundancy is a feature of IoT connectivity that provides backup or duplicate network paths between IoT devices and the cloud, ensuring that data can still be transmitted even if the primary network connection fails.

In other words, if the primary network connection becomes unavailable due to a network outage or other issue, the IoT device can automatically switch to a backup network path, such as a secondary cellular network or a Wi-Fi network, to maintain connectivity and ensure that data can still be transmitted to the cloud.

Narrowband IoT (Nb-IoT) is a low-power, wide-area network that powers various cellular devices and services without operating in licensed LTE construct.

OCPP is a communication protocol that enables electric vehicle charging stations and central management systems to communicate with each other using a standard set of messages and protocols, regardless of the equipment manufacturer or type.

OpenVPN is an open-source software application that provides a secure and encrypted VPN connection to protect data and ensure privacy.

The PCS Type Certification Review Board (PTCRB) is a certification board established by North American cellular operators to test mobile phones, IoT devices, M2M devices and modules, and similar hardware operating on mobile networks.

Remote Condition Monitoring (RCM) is the process of remotely monitoring and analyzing the operational status and performance of equipment or machinery using sensors and IoT devices to prevent problems and reduce maintenance costs.

Remote SIM Provisioning (RSP) is a process of remotely provisioning and managing SIM cards in IoT devices, without the need to physically replace or update the SIM card.

Using RSP, IoT devices can be remotely provisioned with the necessary SIM profile and credentials, enabling them to connect to cellular networks and transmit data.

Satellite IoT (Internet of Things) refers to the use of satellite communication technology to enable IoT devices to connect to the internet and transmit data.

Satellite IoT can be particularly useful in remote or rural areas where traditional cellular or wired connectivity may not be available or cost-effective. It can also be used in industries such as maritime, aviation, and transportation, where devices may need to transmit data across long distances or in areas with limited terrestrial coverage.

Subscriber Identity Module, a small chip that is inserted into an IoT device and contains unique identification information that enables the device to connect to a cellular network and access the internet.

SM-SR (Subscription Management Secure Routing) is a critical component in managing eSIMs (embedded SIMs) for IoT and M2M devices. It ensures secure transmission of SIM profile data and supports remote lifecycle management of eSIM profiles, such as activation, deactivation, and deletion, all according to predefined policies.

How Does SM-SR Work?

Secure Profile Routing:

SM-SR securely routes eSIM profiles from the SM-DP (Subscription Manager Data Preparation) server to the eSIM. It encrypts the data to prevent interception during transmission.

Profile Activation and Management:

Once a profile is securely transmitted, the SM-SR sends activation commands to the eSIM, switching the subscription. It can also deactivate or delete old profiles or retain them as backups.

Policy-Based Operations:

SM-SR operates based on pre-defined business rules, which can be set through a user portal or automated via APIs. These rules allow for dynamic actions, such as selecting specific networks based on location, data usage, or cost considerations.

Scalability:

SM-SR supports bulk operations for managing multiple devices simultaneously or automated campaigns, making it ideal for large-scale IoT deployments.

By enabling secure, flexible, and efficient eSIM management, SM-SR helps businesses optimize connectivity and comply with regulations like avoiding permanent roaming.

Transport Layer Security (TLS) is a protocol designed to provide secure communication over a network by encrypting data between two endpoints. It is commonly used to protect sensitive information, such as passwords, credit card numbers, and other personal data, transmitted over the internet. TLS is the successor to SSL (Secure Sockets Layer) and is commonly used in web browsers, email clients, and other network applications to ensure the confidentiality, integrity, and authenticity of data.

A VPN (Virtual Private Network) for IoT devices is a security solution that encrypts and protects the data transmitted between IoT devices and the internet. It creates a secure tunnel through which all data travels, making it nearly impossible for unauthorized parties to intercept or eavesdrop on communications.