Watch on YouTube
Watch on Vimeo
This presentation addresses the critical visibility and security gaps in private LTE and 5G networks. While traditional IT environments rely on device-centric IP identifiers, cellular networks were originally designed for telecommunications providers to track SIM cards for billing rather than identifying the hardware itself. This disconnect leaves IT administrators with limited data, such as IMSI or IMEI numbers, which fails to provide the necessary context for modern enterprise security and operational policies. OneLayer introduces its OneLayer Bridge solution to solve this fundamental problem by allowing enterprises to see and manage every device connected to their private cellular network, including those hidden behind SIM-enabled routers.
The cellular security model has historically focused on three pillars defined by mobile network operators: SIM authentication for billing, encrypted transmission to prevent eavesdropping, and core network protections like rate limiting to ensure uptime. However, this model assumes all devices are equal and simply require internet access, which contradicts the enterprise reality where devices must be segmented and privileged based on their specific function. OneLayer identifies that cellular identifiers such as IMSIs and IMEIs are foreign to existing enterprise security tools like NACs and firewalls, which typically operate on MAC and IP addresses. Consequently, the cellular core often obscures device identities, leaving security teams blind to the specific nature of the traffic crossing their perimeter.
To resolve this, OneLayer positions itself as a bridge that lives on both sides of the equation, ingesting data from the cellular core and correlating it with the traditional enterprise network. By translating cellular-specific metadata into a format that IT security tools can understand, the platform allows administrators to apply established 802.1X and NAC-like policies to their private cellular deployments. This enables organizations to follow a device’s journey as it transitions from a cellular signal to an Ethernet wire, ensuring that usernames and device types are accurately mapped to network activity. This integration ensures that the robust, high-coverage benefits of private 5G can be utilized without creating a security silo or an unmanaged attack surface.
Personnel: Ryan Matthews, Stephen Banda
Thank you for being part of the Tech Field Day community! Our mailing list is a great way to stay up to date on our events and technical content, and we appreciate your signup.
We promise that we’ll never spam you, send ads, or sell your information. This list will only be used to communicate with our community about our events and content. And we’ll limit it to no more than one message per week.
Although we only need your email address, it would be nice if you provided a little more information to help us get to know you better!
