It can protect assets (root of trust, sensitive data, keys, certificates, applications) against high-level software and hardware attacks.
Applications that process this sensitive data on an SE are isolated and so operate within a controlled environment not affected by software (including possible malware) found elsewhere on the OS.
[1][2] The hardware and embedded software meet the requirements of the Security IC Platform Protection Profile [PP 0084] including resistance to physical tampering scenarios described within it.
[6][7] SEs are an evolution of the chips in earlier smart cards, which have been adapted to suit the needs of numerous use cases, such as smartphones, tablets, set-top boxes, wearables, connected cars, and other internet of things (IoT) devices.
Java Card and MULTOS are the most deployed standardized multi-application operating systems currently used to develop applications running on SEs.