Summary
This technical report details the security features of Celona's 5G LAN technology designed for private wireless networks. It outlines the implementation of full stack L1-L7 encryption, utilizing 128-bit AES ciphering to ensure data privacy and meet NSA’s CNSA 2.0 requirements. The report describes strong device identification and authentication mechanisms, including the use of Subscriber Identity Modules (SIMs) and subscription concealed identifier (SUCI) technology to enhance user confidentiality. It explains the certificate-based mutual authentication process that mitigates risks of man-in-the-middle attacks. The document also presents granular end-to-end traffic segmentation capabilities and robust API integrations with third-party security systems to enforce dynamic authorization changes upon detecting malicious activity. Furthermore, it highlights the ability to manage non-cellular endpoints securely and consistently enforce policies through static IP address pools. The report emphasizes the importance of secure cloud-based management and the overall benefits of the Celona 5G LAN system in maintaining data integrity and confidentiality.
