Private wireless network security
Strongest in-built security complemented by overlay solutions
About the solution
Your private wireless network is protected by native 3GPP features and benefits from additional cybersecurity best practices, including overlay solutions that ensure the appropriate security posture to comply with the needs of your OT environment.
Rock solid baseline security
User plane isolated from management plane for stronger OT data security
The user plane is physically isolated from the management plane ensuring the user plane remains on premises by default, while management tasks are performed through a secured internet connection to the DAC cloud. Nokia DAC continues to operate even when the management plane is down.
Strongest native security for wireless technologies
In-built 3GPP security features including tamper-proof SIM based user equipment authentication and communication plane integrity, and confidentiality protection ensure zero trust security principles natively.
Strong identity and access management
Administrators can access the Nokia DAC manager through single sign on (SSO) leveraging their IT credentials and are authorizied on attribute-based access control (ABAC) for a better security posture of OSS.
Security hardened edge cloud
The MX Industrial Edge OS is hardened by design. It has separate physical NICs for user and management plane, the application deployment is restricted to the application catalog and the applications are isolated by design.
Geo redundant architecture
To protect Nokia DAC from core failures that may result in a service outage, it supports geo redundant architecture options that can be implemented in local redundant or geo redundant deployments.
Components secured by design
Security principles and best practises are embedded in the product lifecycle of Nokia DAC private wireless network components via Nokia's Design for Security (DFSEC) framework.
Complement your private wireless network security with additional applications on your Nokia MX Industrial Edge
Third party security applications are also available from the Nokia Industrial Application Catalog. These can be deployed on MX Industrial Edge to enable additional security controls on top of baseline security features such as zero trust network access or next generation firewall.
Get advanced enterprise security apps
Get advanced security powered by Palo Alto Networks. Palo Alto Networks software Next Generation Firewalls (VM-Series and CN-Series) use AI and ML to prevent sophisticated cyber threats in the OT environment powered by MXIE, without adding physical hardware to the network. The comprehensive solution has industry-leading capabilities such as Advanced Threat Prevention, which blocks unknown command-and-control and exploit attempts in real time, Advanced WildFire, which stops highly evasive malware, DNS Security, which stops emerging DNS based attacks. Additionally, IoT/OT Security quickly profiles all OT, IT and IoT devices and assets, and protects them. This enables advanced security on both the IT and OT sides of the network to protect the entire organization with best-in-class security.
Get zero trust access to mission-critical edge workloads, OT, and IIoT systems with Zscaler Private Access™ running on Nokia MXIE. Unlike VPN solutions, Zscaler Private Access™ securely connects users, sensors, and devices to private applications without granting access to the enterprise IT or OT network. Providing remote access to private applications without bringing a remote user or device on the network minimizes the risk of lateral threat movement and business disruption.
