SaaS Deployment Overview

AnkaSecure is available as a fully managed Software-as-a-Service (SaaS) platform, enabling you to start using post-quantum cryptography within hours without infrastructure management.

SaaS Model Benefits

Rapid Deployment

Start encrypting data in <1 hour: 1. Request access (contact sales or sign up) 2. Receive tenant credentials 3. Generate first API key 4. Integrate SDK or CLI 5. Encrypt your first payload

No Infrastructure Required:

✅ No servers to provision
✅ No databases to configure
✅ No certificates to manage
✅ No security patches to apply

Fully Managed Platform

AnkaTech Manages:

✅ Infrastructure: Servers, load balancers, databases
✅ Security: TLS certificates, security patches, vulnerability management
✅ Availability: 99.9% uptime SLA, multi-zone redundancy
✅ Monitoring: 24/7 platform health monitoring
✅ Backups: Automated daily backups, disaster recovery
✅ Updates: Automatic platform updates (non-breaking changes)

You Manage:

✅ Integration: SDK/CLI/API integration into your application
✅ Configuration: Tenant users, applications, API keys
✅ Keys: Cryptographic key lifecycle (generation, rotation)
✅ Compliance: Your regulatory compliance requirements

Elastic Scaling

Automatic Scaling:

Platform scales automatically with your workload
No capacity planning required
Pay for actual usage (operations/month)

Performance Tiers:

Tier	Operations/Month	Rate Limit	Price
Developer	100,000	10 req/min	Contact sales
Professional	1,000,000	60 req/min	Contact sales
Enterprise	10,000,000+	600 req/min	Contact sales

Note: Contact sales@ankatech.co for custom quotas and pricing.

Multi-Region Availability

Available Regions:

🇺🇸 USA: Virginia, Oregon, California
🇪🇺 EU: Frankfurt (Germany), Dublin (Ireland), Paris (France)
🇯🇵 Asia-Pacific: Tokyo (Japan), Singapore, Sydney (Australia)

Data Residency:

Choose region during tenant provisioning
Data stored in selected region only (GDPR compliance)
Cross-region replication optional (for disaster recovery)

Latency (typical round-trip from client to API):

Same region: 20-50ms
Cross-region (US-EU): 80-120ms
Cross-continent (US-Asia): 150-250ms

High Availability

SLA: 99.9% uptime (8.76 hours downtime/year maximum)

Redundancy:

Multi-zone deployment (availability zone failures tolerated)
Automatic failover (seconds, transparent to clients)
Load balancing across multiple instances

Maintenance Windows:

Scheduled maintenance: Monthly, announced 7 days in advance
Maintenance duration: <2 hours
Zero-downtime deployments (rolling updates)

Getting Access

1. Request SaaS Account

Contact: sales@ankatech.co or sign up at https://console.ankasecure.com/signup

Information Needed:

Organization name
Primary contact (email, phone)
Preferred region (USA, EU, Asia-Pacific)
Estimated usage (operations/month)
Use case (healthcare, finance, government, general)

Response Time: 1 business day

2. Receive Tenant Credentials

You'll Receive:

Tenant ID: Your organization's unique identifier (e.g., acme-corp)
Admin Username: Initial admin user (e.g., [email protected])
Temporary Password: Change on first login
API Endpoint: https://api.ankasecure.com
Console URL: https://console.ankasecure.com

Email Example:

Welcome to AnkaSecure!

Your tenant has been provisioned:

Tenant ID: acme-corp
Region: US-East (Virginia)
API Endpoint: https://api.ankasecure.com
Admin Console: https://console.ankasecure.com

Admin Credentials:
Username: [email protected]
Temporary Password: [REDACTED - check secure channel]

Next Steps:
1. Log in to Admin Console
2. Change admin password
3. Create first API key
4. Integrate SDK or CLI

Need help? Check the Getting Started guide:
https://docs.ankasecure.com/getting-started/quickstart

Support: [email protected]

3. Initial Configuration

See complete tenant setup guide →

Security & Compliance

Data Protection

Encryption:

✅ At rest: All data encrypted with AES-256-GCM
✅ In transit: TLS 1.3 enforced for all communications
✅ Keys: Your cryptographic keys encrypted at rest

Access Control:

✅ Multi-factor authentication (MFA) for admin console
✅ Role-based access control (RBAC)
✅ API key rotation (recommended every 90 days)

Data Residency:

✅ Data stored in your selected region only
✅ No cross-border data transfers (GDPR compliant)
✅ Backup stored in same region

Compliance Support

Certifications:

✅ SOC 2 Type II: Service organization controls
✅ ISO 27001: Information security management
✅ GDPR: EU data protection regulation
✅ HIPAA: Available with Business Associate Agreement (BAA)

Compliance Documentation:

SOC 2 report available on request
ISO 27001 certificate available on request
BAA provided for healthcare customers
Compliance matrices (HIPAA, PCI-DSS, FedRAMP)

Request Compliance Docs: compliance@ankatech.co

Pricing & Quotas

Usage-Based Pricing

Billing Model: Pay for actual cryptographic operations

Billed Operations:

Key generation
Encryption/decryption
Signing/verification
Re-encryption/re-signing

Free Tier (Developer):

100,000 operations/month
10 requests/minute rate limit
Community support

Paid Tiers (Professional, Enterprise):

Contact sales@ankatech.co for pricing
Custom quotas and rate limits
Premium support (SLA-backed)

Quota Management

Check Your Quota (via API):

curl https://api.ankasecure.com/api/v1/tenant/quota \
  -H "Authorization: Bearer YOUR_TOKEN"

# Response:
# {
#   "operationsUsed": 45000,
#   "operationsLimit": 1000000,
#   "operationsRemaining": 955000,
#   "resetDate": "2025-01-01T00:00:00Z"
# }

Quota Exceeded (402 Payment Required):

{
  "error": "QUOTA_001",
  "message": "Monthly quota exceeded. Upgrade plan or wait for reset.",
  "quotaLimit": 100000,
  "quotaUsed": 100143,
  "resetDate": "2025-01-01T00:00:00Z"
}

Upgrade Request: sales@ankatech.co

Support & SLA

Support Tiers

Community Support (Free Tier):

Email support (support@ankatech.co)
Response time: 2-3 business days
Documentation and self-service

Professional Support (Paid Tiers):

Email and chat support
Response time: 1 business day (P1: 4 hours)
Assistance with integration and troubleshooting

Enterprise Support (Enterprise Tier):

Dedicated support engineer
Response time: 4 hours (P1: 1 hour)
Architecture consulting
Custom SLA available

Service Level Agreement (SLA)

Uptime Guarantee: 99.9% (monthly)

Downtime Credits:

99.9% - 99.0%: 10% credit
99.0% - 95.0%: 25% credit
<95.0%: 50% credit

Exclusions (not covered by SLA):

Scheduled maintenance windows
Issues caused by customer's infrastructure (network, firewall)
Third-party service failures (DNS, CDN)

Network Requirements

Outbound Access

Your application must allow outbound HTTPS:

Destination: api.ankasecure.com
Port: 443 (HTTPS)
Protocol: TCP
TLS: 1.2 or higher

Whitelist (for restrictive firewalls):

*.ankasecure.com       # API and Console

IP Addresses

Dynamic IPs: AnkaSecure uses dynamic load-balanced IP addresses

Static IPs: Available for Enterprise tier (on request, additional fee)

Request Static IPs: sales@ankatech.co

Proxy Configuration

If your network uses an HTTP proxy:

SDK (Java):

java -Dhttps.proxyHost=proxy.example.com \
     -Dhttps.proxyPort=8080 \
     -jar your-application.jar

CLI:

export HTTPS_PROXY=http://proxy.example.com:8080
ankasecure-cli key list

Next Steps

Ready to get started?

Request SaaS Access - Contact sales team
Tenant Setup Guide - Configure your tenant
Quickstart Guide - Your first encryption
SDK Integration - Complete integration guide

Need On-Premise? Contact sales@ankatech.co for professional services.

Documentation Version: 3.0.0
Last Updated: 2025-12-26