Skip to content

Enterprise Deployment (On-Premise / Private Cloud)

Overview

AnkaSecure offers an Enterprise Deployment Model for customers who need full control over their cryptographic environment, ensuring compliance with strict security and regulatory requirements.

In this deployment, the AnkaSecure API Server is hosted within the customer's private infrastructure, whether on-premises or in a private cloud. This ensures that all cryptographic operations, key management, and data security remain fully within the organization's environment.

Key Features

  • Full Data Control: No data or keys leave your infrastructure.
  • Compliance with Regulations: Meets strict data protection and security standards.
  • Custom Integration: Works with your existing security policies, IAM, and infrastructure.
  • Flexible Authentication: Supports JWT-based authentication and integrates with enterprise IAM solutions.
  • Scalability: Deployable on bare-metal servers, virtual machines, or private Kubernetes clusters.

Architecture Overview

flowchart BT
    C["AnkaSecure API Server OnPremise / Private Cloud"]
    D["AnkaSecure CLI"] --> C
    E["AnkaSecure SDK"] --> C
    F["Customer Logic"] --> C

Components:

  1. AnkaSecure API Server:

    • Hosts the cryptographic services and key management.

    • Provides RESTful API endpoints for encryption, decryption, signing, and key operations.

    • Supports post-quantum cryptographic (PQC) algorithms.

  2. SDK:

    • Integrates with applications to perform cryptographic operations via API calls.

  3. CLI:

    • Enables direct interaction with the API server for key management and encryption operations.

Deployment Requirements

Component Minimum Requirements
CPU 4 cores (recommended: 8+ cores)
Memory 16GB RAM (recommended: 32GB+)
Storage 50GB available (varies based on key storage)
OS Linux (Ubuntu, RHEL) / Windows Server
Network Internal access to API consumers

Supported Deployment Models

  • Bare-Metal Servers

  • Virtual Machines (VMs)

  • Kubernetes or OpenShift Clusters

  • Private Cloud (AWS VPC, Azure Private Cloud, Google Cloud Private)

Installation & Configuration

Step 1: Download AnkaSecure Server

Obtain the latest AnkaSecure API Server from the Enterprise Download Portal.

sh

CopiarEditar

wget https://enterprise.ankatech.co/download/ankasecure-server.tar.gz

Step 2: Install Dependencies

Ensure your system has the required dependencies:

sh

CopiarEditar

sudo apt-get update && sudo apt-get install -y openjdk-17 jq curl

Step 3: Unpack & Configure

Extract the package and configure the environment:

sh

CopiarEditar

tar -xvzf ankasecure-server.tar.gz -C /opt/ankasecure cd /opt/ankasecure cp config-template.yaml config.yaml

Modify config.yaml with your database, authentication, and network settings.

Step 4: Start the Server

Run the API server:

sh

CopiarEditar

./ankasecure-server start

Verify the server is running:

sh

CopiarEditar

curl -X GET http://localhost:8080/api/health

Integration with Enterprise Systems

  • Identity & Access Management (IAM):

    • Integrates with LDAP, Active Directory, and OAuth2.

  • Logging & Monitoring:

    • Supports Prometheus, Grafana, and enterprise SIEM solutions.

  • High Availability & Load Balancing:

    • Deploy in clusters with Nginx, HAProxy, or Kubernetes Ingress.

Summary

  • AnkaSecure Enterprise Deployment provides a self-hosted cryptographic environment with full control.

  • Supports compliance, security policies, and integration with enterprise IAM.

  • Can be deployed in on-premise, private cloud, or hybrid environments.

  • Provides SDK and CLI tools for seamless application integration.

For further details, see Enterprise Installation Guide.