Architecture Overview

1 – TECHNICAL PARTNERSHIP

To guarantee performance, safety and reliability, Celinel has created significant partnerships:

Microsoft® for startup: Celinel development is supported by Microsoft® with the “Microsoft® for startup” program. Microsoft’s recommendations allow us to check development consistency.

Azure®: The web Architecture is created using the “Microsoft® Azure®” platform.

Akamai®: Worldwide Streaming Delivery (CDN) is guaranteed by the Partnership with Akamai®.

JWPlayer® Content playback is achieved by integrating the JWplayer® Video Player.

Token Security®: To ensure the exclusivity of content reproduction, we adopt integrated “Token Security®” technology in collaboration with the Akamai® team.

2 – APPLICATION

Celinel® is Cloud application software developed and owned by Streamtech srl.
Celinel is a Streaming live & On Demand CMS. Celinel is customizable and Easy-to-Use Web Platform that allows you to make available Live and VOD Content, only to Authorized Users. Authorized users will access with Ticket Code.

We use a Cloud Streaming Server architecture, switchable as edge, with 99.99% uptime. Data storages are located in Europe (for European customers), or in other countries for global customers.

Celinel Application and origin rtmp entrypoint servers are located in Microsoft Azure Scalable and Certified Architecture located in Ovest EU Area.

Globally delivered by Akamai with token security mode.

3 – SECURITY

Redundant Load Balancer
Azure Balancers are configured with automatic failover to maintain availability even when failures occur at the balancing layer. Internally, the active balancing component is monitored and fails over to a standby if necessary, meaning our load balancer is never a single point of failure.

Load Balancer. Our Load Balancer Let’s Encrypt certificates are fully managed and automatically renewed on your behalf every 60 days. We use SSL certificates with HTTPS and HTTP/2.

Secure Socket Layer. (SSL) can provide secure and encrypted HTTPS connections as a stream moves through the network connections from stream targets to playback destinations.

Encrypting connections. Encrypting connections between servers and clients using SSL and HTTPS prevents data from being intercepted and manipulated in transit and prevents third parties from altering a stream as it moves between servers.

Updates to Security Measures. Customer acknowledges that the Security Measures are subject to technical progress and development and that Celinel may update or modify the Security Measures from time to time provided that such updates and modifications do not result in the degradation of the overall security of the Services purchased by the Customer.

User authentication. for HLS streams provides a secure connection from the source encoder or camera into the ingest origin server and prevents third parties from connecting to and altering your stream.

Security Incident Response. Upon becoming aware of a Security Incident, Celinel shall notify Customer without undue delay and shall provide timely information relating to the Security Incident as it becomes known or as is reasonably requested by Customer.

4 – SECURITY APPLICATION

Celinel shall implement and maintain appropriate technical and organizational security measures to protect Personal Data from Security Incidents and to preserve the security and confidentiality of the Personal Data.

SSL application with Celinel certificate of ownership
Celinel architecture is Three Tier:
1. Azure Architecture to web application (viewed on Internet)
2. Dedicated Server to Data Management not accessible from the internet (DMZ) in disaster recovery mode
3. Dedicated Server to Files Management server not accessible from the internet (DMZ)
4. Celinel is GDPR compliant
5. the data are not shared with third parties;
Celinel guarantees that the entire infrastructure is monitored and meets the safety standards in force;
1. Data Backups
2. Disaster recovery system