Just Announced! SIMPL partners with Thales & T-Mobile. See the press release here.
SIMPL IoTSIMPL IoT
  1. Home
  2. >
  3. Insights
  4. >
  5. LPAe vs LPAd: Which is the best choice?

LPAe vs LPAd: Which is the best choice?

Author Profile Image - SIMPL IoT Wes Gay
EverSIM
LPAe vs LPAd: Which is the best choice?

The move toward eUICC and remote SIM provisioning has brought new ways for connected devices to download and manage carrier profiles. Two common terms in technical discussions are LPAe (Local Profile Assistant, embedded) and LPAd (Local Profile Assistant, device). While both aim for the same goal—over-the-air profile provisioning—their architectural differences can greatly affect your IoT deployment’s security, maintenance, and performance. This article explains how LPAe and LPAd work, clears up common misconceptions, and helps you choose the best approach for your needs. 

Understanding Local Profile Assistant (LPA)

In an eUICC scenario, the Local Profile Assistant (LPA) is the software that securely communicates with remote SIM provisioning servers (often called SM-DP+). The LPA handles the downloading and installing of new carrier profiles onto the eUICC chip. The key difference between LPAe and LPAd is where this software resides: 

  1. LPAe (Embedded): The provisioning logic and secure communications happen inside the SIM chip (or the eUICC itself).
  2. LPAd (Device): The device’s operating system handles the provisioning logic and relays profile data to the SIM.

How LPAe Works

When an LPA is embedded (LPAe), the eUICC chip contains the provisioning software internally. This means the device’s main processor only needs to perform basic tasks or provide network connectivity. The heavy tasks—encryption, downloading profiles, and installation—are done within the SIM’s secure environment. 

Advantages of LPAe

  • Reduced Integration Complexity: The device firmware is simpler because it doesn’t need a specialized eSIM provisioning code.
  • High Security: Since the provisioning logic is secure in the SIM, it’s safer from attacks on the operating system. 
  • Easier Maintenance: Updates to provisioning logic can often be pushed to the SIM through secure channels, avoiding the need for wide firmware updates.

Potential Drawbacks

  • Less Customization: If you want detailed control over how and when profiles are downloaded, LPAe might seem limited.
  • Dependence on SIM Vendor: If custom changes are needed, you may have to work closely with the SIM provider. 

How LPAd Works

LPAd places the provisioning logic in the device’s operating system or firmware. The SIM/eUICC chip still stores and executes the carrier profiles, but the device OS manages the actual download and interaction with the remote server. 

Drawbacks

  • Higher Security Risk: An attacker could disrupt provisioning if the device firmware is compromised.
  • Complex Maintenance: Any changes to provisioning logic require firmware updates on every device, which can be challenging for large fleets. 
  • Resource Requirements: The device OS must have sufficient computational resources to handle LPA tasks.

Which One to Choose?

LPAe is preferred for large IoT deployments that can download carrier profiles over the air (OTA). LPAd requires more customization and development on each individual device, which places a demand on time and resources for teams. For a streamlined, secure approach that makes life easier, LPAe is the best path forward. 

Impact on Lifecycle & Scalability

Consider the lifecycle of your devices. If you plan to keep them in the field for 5–10 years, you need to manage remote updates. With LPAe, you can adjust provisioning logic through secure SIM updates, which is usually easier than distributing new firmware. With LPAd, you may face more challenges, especially if you have thousands of devices in various locations. 

Operational Considerations

When implementing eUICC, you’ll also want a robust connectivity management platform. Such platforms can handle tasks like:

  • Monitoring data usage
  • Automating profile switching
  • Providing analytics on connectivity quality

The right software tools help you maximize the benefits of eUICC. In many cases, LPAe-based deployments pair well with a simplified management platform that hides the complexity, allowing non-technical staff to manage large fleets easily.

Conclusion

Choosing between LPAe and LPAd is critical for any IoT or eSIM-based solution. 

LPAe is straightforward, secure, and easily scalable. LPAd requires deep engineering muscle to build and maintain the custom development. 

If you’re still deciding, contact SIMPL Wireless. Our experts will help you assess your device resources, security requirements, and scale to find the best approach. Connecting to a network shouldn’t be more complicated than it needs to be.

Preview Arrow - SIMPL IoTWhat is eUICC?