Infrastructure

Pellustro cloud deployment architecture:

1. Application Server

• Access to the servers through the management server

2. Dedicated Database Server

• Separate Database server to lower the impact of failures and improve performance.
• Application Server to connect to Database by IP and credentials.

3. Proxy Server(s)

• The proxy server takes care of routing the requests to the correct server.
• The proxy will also act as a cache to increase performance.

4. Management Server

• Cloud infrastructure team to connect to the application servers and databases.
• Access to this server is only possible through SSH using public-private key authentication

Amazon Web Services Collaboration

Pellustro uses the Amazon Web Services (AWS) as an IaaS (Infrastructure as a Service) provider. This means that AWS is only providing the virtual machines and storage needed for Element-22 to run instances of Pellustro.

Amazon AWS was chosen because of its high security and privacy standards. Some of the standards and certifications that AWS holds are:

• SOC3

AWS publishes a Service Organization Controls 3 (SOC 3) report. The SOC 3 report is a publically-available summary of the AWS SOC 2 report and provides the AICPA SysTrust Security Seal.

The AWS SOC 3 report includes AWS data centers in US East (Northern Virginia), US West (Oregon), US West (Northern California), AWS GovCloud (US) (Oregon), EU (Ireland), Asia Pacific (Singapore), Asia Pacific (Tokyo), Asia Pacific (Sydney), and South America (Sao Paulo) that support in-scope services. 

•  ISO 27001

AWS is ISO 27001 certified under the International Organization for Standardization (ISO) 27001 standard. ISO 27001 is a widely-adopted global security standard that outlines the requirements for information security management systems. It provides a systematic approach to managing company and customer information that’s based on periodic risk assessments. In order to achieve the certification, a company must show it has a systematic and ongoing approach to managing information security risks that affect the confidentiality, integrity, and availability of company and customer information.

The AWS ISO 27001 certification includes AWS data centers in US East (Northern Virginia), US West (Oregon), US West (Northern California), AWS GovCloud (US) (Oregon), EU (Ireland), Asia Pacific (Singapore), Asia Pacific (Tokyo), Asia Pacific (Sydney), and South America (Sao Paulo) that support in-scope services.

Complete list of AWS certification can be found here.

MongoDB Atlas

Pellustro uses MongoDB as data repository provided through MongoDB Atlas, a fully managed cloud database service, featuring automated provisioning and scaling of MongoDB databases,  management, setup and configuration, software patching, monitoring, backups, or operating a reliable, distributed database cluster and expert support.