AI-powered eSIM profile qualification platform

Profile Sentinel

powered by Clause

The AI-native workbench for eSIM profiles — design, decode, check, compare and understand any SAIP profile in one place, grounded in the standards, with an assistant that cites its sources.

Design Decode Check Compare Learn Ask

Built for mobile operators and eSIM profile providers who need to qualify, explain and document profile behaviour before launch.

Prevent production incidents

Qualify eSIM profiles before they become customer-impacting failures.

Profile issues discovered in production can trigger failed downloads, customer-care calls and urgent supplier escalation. Profile Sentinel helps teams detect risks before launch.

Clause is advisory — the deterministic SAIP analysis remains the source of truth.

Design Studio Profile Cockpit Profile Delta Knowledge Base · 1031 fiches Word Report 2.0 Clause AI · live
eSIM / SAIP parse · diagnose Clause qualified
Design · Decode · Check · Compare · Learn · Ask one workbench
The business risk

Production incidents start before production.

When an eSIM profile configuration issue reaches production, customers may fail to download or activate their profile. Operators must escalate to the supplier, isolate the issue, request a correction, retest and redeploy — a full delivery cycle at the worst possible moment.

Without pre-production qualification Faulty profile Failed activation Customer-care pressure Supplier escalation Emergency correction
With Profile Sentinel + Clause Pre-production qualification Deterministic evidence Clause explanation Correction before launch Confident go / no-go
Why it is hard today

SAIP profile review is expert work — and expert time is scarce.

Complex ASN.1 files

SAIP profiles are dense ASN.1 structures that are difficult to read and interpret by hand.

Standards fragmentation

The answer is spread across GSMA, TCA, ETSI, 3GPP, ISO/IEC, GlobalPlatform and JavaCard specifications.

Multi-release ambiguity

Behaviour shifts between releases; the right clause depends on the version in play.

Manual expert bottleneck

A complete review is slow and often not feasible under project pressure.

Static reports are not interactive

A PDF helps, but it is not a workflow you can interrogate or drill into.

Supplier assurance is not enough

Operators often rely on supplier sign-off, with little independent evidence of their own.

The product

One workbench, six powers.

Profile Sentinel is not one tool bolted to another. It is a single, authenticated workbench where a team can design, decode, check, compare, learn and ask — every step grounded in the standards.

Design

Author and generate a valid SAIP profile — from a template, from scratch or from import — and prove it round-trips byte-for-byte.

Decode

Reconstruct the full file system and interpret every element — access conditions, security domains, applications and OTA.

Check

Run 200+ standards-informed rules; each finding is severity-classified and traced to its clause.

Compare

Put two profiles side by side — golden vs candidate, release N vs N+1 — and see what changed.

Learn

Reach a curated standards knowledge base — 1031 fiches, EF-linked and release-aware.

Ask

Ask Clause, the assistant that cites its sources, right where you are working.

The platform

Six pillars. One place to design, decode, check, compare, learn and ask.

No existing tool offers the combination. Three of these have effectively never been done together: generate a byte-round-tripping profile, compare two profiles element by element, and a grounded assistant that cites its sources.

Profile Design Studio

Design

Author a SAIP profile — and prove it round-trips. Not just read a profile: generate one.

  • Design → edit → validate → generate → export, from a template, from scratch or from import
  • Strict round-trip oracle — byte-identical output, and it fails on a wrong Ki
  • Generates Milenage / TUAK test vectors and a DER export package
In every tier

Profile Cockpit

Decode

Drop a SAIP file; in seconds the whole file system is reconstructed and every finding is pinned to the exact element it affects.

  • Deterministic ASN.1 parse + 5-layer MF / DF / ADF / EF reconstruction
  • 12-tab element explorer — access conditions, security domains, keysets, OTA, applications
  • Findings attached to the exact EF, app or access condition — symptom to evidence
In every tier

Profile Compliance

Check

200+ standards-informed rules run automatically, severity-classified, each traceable to a clause — honest about what it cannot assess.

  • Rule Catalogue 1.0 → severity-classified diagnostic findings, not a pass / fail verdict
  • Rules traced to standard and clause; derived rule-to-standard coverage across 16 standards
  • Per-rule detail and a rule simulator that re-runs analysis on a generated profile
In every tier

Profile Delta

Compare

Two profiles, side by side. Golden reference vs candidate, release N vs N+1 — what changed, and does it matter.

  • First-class two-profile comparison, aligned with the Cockpit deep-dive UX
  • Candidate picker → element-by-element comparison with value-true compare
  • Clause bound to the comparison context for a sourced explanation of a change
In every tier

Knowledge Base

Learn

1031 curated standards fiches, EF-linked and release-aware — guidance on top of the source, not a raw spec dump.

  • Curated across GSMA, ETSI, 3GPP, TCA, ISO/IEC, GlobalPlatform and JavaCard
  • EF-to-fiche index; each fiche lists the precise EFs it defines and the clause
  • Tolerant search, tiles and “Ask Clause” from any fiche
In every tier

Clause

Ask

Ask in plain language, get a sourced, release-aware answer — right where you are working, not a generic chat window.

  • Standards-aware assistant over the 1031-document corpus, with traceable citations
  • Anti-hallucination citation contract — retrieve, don’t invent
  • Embedded in Cockpit, Delta and Studio; Enterprise can bring its own company key
In every tier
The workflow

From SAIP file to qualification intelligence.

  1. Upload profile

    Allow-listed, sanitised, size-capped.

  2. Parse & reconstruct

    Deterministic file system.

  3. Inspect topology

    Filesystem + security.

  4. Run diagnostics

    Standards-informed rules.

  5. Ask Clause

    Sourced explanation.

  6. Generate report

    Word Report 2.0.

  7. Decide

    Before production.

The platform

Everything inside the profile — reconstructed and explained.

Profile Sentinel parses and interprets SAIP profiles and exposes the configuration in a clear expert interface, then runs a standards-informed diagnostic rule set.

UICC file system

MF / DF / ADF / EF — FID, path, size, structure.

EF content & interpreted values

Decoded elementary-file content, interpreted for review.

Access conditions

Read / update / activate conditions per file.

PIN / PUK / ADM

Secret-code settings where available and authorised (by reference; key material never exposed).

Security domains

ISD · SSD · CASD configuration and roles.

Keysets & privileges

Keyset references and privilege bits, by reference.

OTA / RFM / RAM

Applications, TARs, keysets, security levels.

Installed applications

AID, priority, minimum security level, package / instance, parameters.

Rule findings & gaps

Detected gaps, warnings, doubts, non-assessable areas, recommended checks.

Word Report 2.0

A structured technical report for supplier and stakeholder communication.

Backed by Rule Catalogue 1.0 — 200+ standards-anchored rules and diagnostic signals.

live The differentiator
Clause Standards. Sourced. Explained.

The standards-aware AI assistant for telecom engineers.

Clause turns the telecom standards corpus into a conversation. Instead of spending hours searching for the right clause across GSMA, TCA, ETSI, 3GPP, ISO/IEC, GlobalPlatform and JavaCard specifications, engineers can ask Clause and get a sourced, release-aware answer directly in the qualification workflow. And because Clause is embedded in the Profile Cockpit, you can ask about any EF, finding or rule in context — not a generic chat window.

Sourced answers

Traceable citations and source references — retrieve, don't invent.

Release-aware

Citations reflect the version that applies, where available.

Anti-hallucination

A strict citation contract: no unsupported normative claims.

“What is EF UST?” “What is the purpose of SELECT?” “Explain this EF.” “Why did this rule trigger?” “What should I review next?”
Clause What is EF UST?

EF UST (USIM Service Table) is a mandatory file in the USIM application that indicates which optional USIM services are available and activated — a capability bitmap the ME reads at startup.

Standards references
3GPP TS 31.102 §5.1.7 ETSI TS 102 221
Suggested checks
  • Confirm service bits against the intended provisioning
  • Cross-check structure vs the dictionary expectation
Bit positions & service definitions? Access conditions of EF UST?
Illustrative example · Clause is advisory; the deterministic SAIP analysis remains the source of truth.
Why it is different

Beyond parsers. Beyond static reports. Beyond generic chatbots.

Capability Manual expert review Static technical report Generic ASN.1 parser Generic LLM Profile Sentinel + Clause
Reconstructs profile structure ~
Runs standards-informed diagnostics ~
Designs / generates a valid profile ~
Compares two profiles element by element ~ ~
Curated, guided standards knowledge ~
Explains findings ~ ~
Answers engineering questions ~
Provides sourced standards references ~ ~
Release-aware ~ ~
Interactive workflow ~ ~
Generates technical report ~ ~ ~
One workbench, all six pillars

✓ strong · ~ partial / depends on a scarce expert · ✗ not addressed. A capability-level comparison.

Who it is for

Independent qualification for both sides of the delivery.

Built for the teams that live inside eSIM profiles — the makers, the operators who receive them, and the qualification and standards teams who sign them off.

eUICC & profile makers

  • Author and validate profiles before delivery
  • Reduce rework and redelivery cycles
  • Explain and defend design choices
  • Prepare technical evidence for review
  • Reduce post-delivery escalations

Mobile operators (MNO / MVNO)

  • Independently qualify supplier profiles before launch
  • Reduce production-incident risk
  • Challenge supplier-delivered profiles with evidence
  • Accelerate go / no-go decisions
  • Reduce dependency on scarce experts

QA & standards teams

  • Repeatable, evidence-backed diagnostics
  • Traceability to clause and release
  • Compare golden reference vs candidate
  • Honest reporting of non-assessable areas
  • Faster onboarding and knowledge transfer
Trust & governance

Controlled, auditable and honest by design.

Access-controlled

Request-access + admin validation; role governance and per-user data isolation.

User & license management

Administered accounts and licenses; no anonymous uploads.

Audit trail

Append-only record of logins, uploads, analyses and decisions.

Improvement feedback loop

Users can suggest improvements; governance reviews them.

Evidence-based findings

Findings carry evidence and clause references — engineers see why, never just a label.

Clause is advisory

Clause assists; the deterministic SAIP analysis remains the source of truth.

Honest about gaps

Non-assessable areas are reported as such — not hidden.

Under the hood

Modern engineering foundation.

Authenticated web platform

FastAPI + role-governed access, profile upload pipeline.

Deterministic engine

SAIP ASN.1 parsing + profile reconstruction (5 layers).

Rule Catalogue 1.0

Standards-informed diagnostics → severity-classified findings.

Profile Cockpit & Word Report 2.0

Expert-readable investigation + structured report.

Real Clause/Dify gateway

Standards RAG with citations; live, behind a gateway abstraction.

Tested & controlled

Automated tests, browser journeys and controlled deployment.

Developed and maintained with Claude Code under engineering supervision — enabling rapid iteration, automated validation and fast, controlled deployment cycles.

Product keynote

See Profile Sentinel in action

Watch a short product keynote showing how Profile Sentinel turns complex SAIP profiles into qualification intelligence, with Clause providing sourced expert explanations.

From profile parsing to findings, Clause explanations and professional reporting.

  • Parse and reconstruct the profile
  • Inspect findings in context
  • Ask Clause for sourced explanations
  • Export a professional report
AI-native engineering workflow

Built by an AI-native expert team

Profile Sentinel is built with an AI-native engineering workflow, orchestrating specialist agents across architecture, telecom standards, SAIP parsing, rule intelligence, UX, QA and deployment.

Each specialist agent focuses on a critical product discipline — from standards interpretation and profile modelling to test automation, reporting and controlled deployment. These are configured specialist agents in an orchestrated AI-native workflow — distinct roles, not human employees.

  • Chief Technology Director

    Executive technical sponsorship, eSIM strategy alignment and milestone sign-off.

    • Strategy
    • eSIM roadmap
    • Governance
  • Senior SAIP Profile Designer

    Encodes profile-design expertise into testable diagnostic rules.

    • Profile design
    • TCA / ASN.1
    • Rule catalogue
  • Senior GTS Standards & Troubleshooting Expert

    Anchors checks in real field incidents and GSMA / ETSI / 3GPP clauses.

    • Field troubleshooting
    • GSMA / ETSI / 3GPP
    • Severity
  • Standards & Traceability Owner

    Traces every rule to its GSMA, TCA, ETSI and 3GPP clause and version.

    • Standards matrix
    • Clause traceability
    • Versioning
  • SAIP Parser & Data Model Expert

    ASN.1 parsing pipeline and the versioned canonical data model for rules.

    • ASN.1 / TLV
    • Profile elements
    • Data model
  • Product Owner

    Prioritised backlog, roadmap and KPIs driving user-valued releases.

    • Backlog
    • Roadmap
    • Product KPIs
  • Solution Architect

    End-to-end architecture, ADRs, cross-cutting NFRs and design authority.

    • Architecture
    • ADRs
    • NFRs
  • Rule Engine Architect

    Deterministic, versioned, auditable rule engine and rule lifecycle.

    • Rule engine
    • Lifecycle
    • Determinism
  • Database Architect

    Persistence schema, migrations, retention and audit-trail integrity.

    • Schema
    • Migrations
    • Audit trails
  • UI / UX Designer

    Frictionless, accessible journeys for upload, results and reports.

    • Interaction design
    • Design system
    • Accessibility
  • Backend Developer

    Server-side API orchestrating parsing, rules, persistence and reports.

    • API
    • FastAPI
    • Secure coding
  • Frontend Developer

    Accessible, performant web UI for upload, analysis and reports.

    • Frontend
    • Accessibility
    • Performance
  • QA & Test Automation Lead

    End-to-end test strategy, rule regression suites and release-readiness gates.

    • Test automation
    • Rule regression
    • CI gates
  • Report Generator & Technical Writer

    Traceable, audience-tailored Word diagnostic reports per session.

    • Word reports
    • Templating
    • Traceability
  • DevOps & Deployment Engineer

    Reproducible CI/CD, safe rollbacks, observability and release runbooks.

    • CI/CD
    • Observability
    • Release
  • IT Security Officer

    Threat modelling, cryptography and key custody for profiles and access.

    • Threat modelling
    • AppSec
    • IAM
  • Data Governance & Confidentiality Officer

    Data classification, retention, anonymisation and report disclaimers.

    • Data governance
    • Privacy
    • Retention
  • Quality & Process Manager

    Delivery governance, release gates, RACI and quality-KPI stewardship.

    • Governance
    • Quality KPIs
    • Release gates

An orchestrated agent bench — primary owner plus supporting specialists per change, with human engineering supervision and controlled deployment.

Plans

Start with a trial. Grow into a team plan.

Every plan includes all six pillars — Design Studio, Cockpit, Compliance, Delta, Knowledge Base and Clause. Plans differ by seats, Clause key model and support, never by safety posture: TEST profiles only, in every tier.

Trial

See the full workbench end to end, on your own synthetic profiles.

Free · 30 days

Full platform, admin-approved

  • All six pillars — nothing pillar-gated
  • Clause on the platform key, with a daily quota
  • Milenage / TUAK test-vector generation
  • Word Report 2.0 export
  • Community / email best-effort support
Request a trial

Enterprise

For organisations that need their own key model and a named contact.

Per organisation / year

Negotiated seat bands

  • All six pillars, org tenancy
  • Clause with your own company key (platform-key fallback)
  • Milenage / TUAK test-vector generation
  • Word Report 2.0 export
  • Priority support, named contact and onboarding session
Contact us

Diagnostic analysis — not an official certification. TEST / synthetic profiles only, in every plan.

Ready when you are

Ready to qualify your next eSIM profile?

Request a trial; an administrator will review and set up your 30-day access. Existing users — sign in to pick up where you left off.

Request a trial See plans

Deterministic profile intelligence. Standards-informed diagnostics. Clause expert assistance. One workflow.