Table of Contents

QuSmart.AI Infinity Perfect Secrecy Encryption as a Service: High Availability with REST API Azure Documentation

Network Diagram

QuSmart.AI Infinity Engine High Availability Rest API Topology

  • Resources are deployed as an Azure Managed App in the Customer’s Tenant.  The Publisher only has Just In Time access granted by the customer to the Virtual Machine, the Managed Identity, the Key Vault with the secret, the Network Security Group, the subnet, and the Virtual Network.
  • The customer controls the API.

Key Vault Preconfiguration

The key vault is deployed with soft delete and purge protection. Azure makes multiple redundant copies of your key vault. It is a best practice for customers to make a backup and a glass key of the secret in the key vault that ignites the engine.  Learn More about the importance of your secret for disaster recovery.

Supported Azure VM

RHEL Standard_D2ds_v4

VM Preconfiguration

The high availability cluster is preconfigured to deploy 3 Standard_D2ds_v4 with 2 vCPUs.

  • The 2 vCPU cluster allows customers to encrypt and decrypt up to 600 TB a month.
  • The 4 vCPU cluster allows customers to encrypt and decrypt up to 1.2 PB a month.

Introduction

Ensure reliable, uninterrupted service with the EaaS Engine’s High Availability (HA) option, featuring a VM Scale Set of 3 VMs across 3 zones. The EaaS Engine delivers advanced encryption with Perfect Secrecy, powered by AI, managing all encryption keys transparently so users can focus solely on their data. This robust solution automates key management and applies Perfect Secrecy Masks effortlessly. The QuSmart.AI Infinity Engine integrates seamlessly via REST API, offering a streamlined approach to managing encryption tasks within your systems.

Features

  • Seamless Integration: Compatible with Linux/Windows operating systems.
  • Dynamic Encryption: Each TCP/IP session uses a new encryption method.
  • AI-Driven: No need to manage encryption keys; our AI handles it all.
  • Versatile Data Support: Encrypts any data type, including database dumps, full backups, and critical files.
  • Fault-Tolerant VM Cluster: The VM cluster is deployed across three zones to ensure fault tolerance. Customers also have the flexibility to shut off VMs manually that are not in use, optimizing resource management and cost efficiency.
  • Autoscaling: The high availability version of QuSmart.AI Infinity EaaS incorporates Azure Virtual Machine Scale Sets (VMSS) for seamless autoscaling, dynamically adjusting resources to meet customer needs.
  • Extensible API Connectors: Easily integrate with any API-based system, ensuring a smooth and secure data encryption process.

Purpose of High Availablity (HA) Product

This section explains the purpose of the High Availability (HA) product offering and includes information on data throughput and typical use cases.

Overview:

  • Primary Design: Business continuity rather than capacity.
  • Capacity: 2 vCPU setup can handle over 200TB of data per month.
  • Fault Tolerance: Leveraging Azure’s VM Scale Set (VMSS) product.

Azure Availability:

  • Uptime: Azure’s VMSS provides 99.99% availability (5 minutes downtime per month).
  • Instances: Minimum of three instances spread across three zones.
  • Increased Capacity: A 2 vCPU VM can manage over 600TB of data per month with additional instances.

Design and Flexibility:

  • Default Configuration: Three instances are always running for maximum availability.
  • Deployable Image: Used for replication.
  • Updates: VMSS configuration automatically updates the cluster after updates.
  • Key Vault: Subsequent spin-ups and shutdowns are not required for the stateless Titanium Engine, which is the core of the QuSmart.AI Infinity Engine.

Customer Flexibility:

  • VMSS Control: Can be turned off to stop and deallocate all VMs.
  • Instance Count: Can be adjusted manually or via custom autoscale feature.

API Description

QuSmart.AI Infinity API is a secure web service designed for data encryption and decryption, ensuring that sensitive information is protected through perfect secrecy.

Base URL

https://{local_subdomain_assigned}.azurewebsites.net

Authentication

The API requires OAuth 2.0 authentication with Azure Active Directory (Microsoft Entra ID). Users must authenticate using the provided OAuth 2.0 security definitions before accessing the endpoints.

Endpoints

Encrypt Data

  • Endpoint: /Encrypt
  • Method: POST
  • Consumes: multipart/form-data
  • Parameters:
    • file (formData): The file to be encrypted.
  • Produces: text/plain
  • Responses:
    • 200 Success: Encrypted data is returned.

Decrypt Data

  • Endpoint: /Decrypt
  • Method: POST
  • Consumes: multipart/form-data
  • Parameters:
    • file (formData): The file to be decrypted.
  • Produces: text/plain
  • Responses:
    • 200 Success: Decrypted data is returned.

Security

The API uses HTTPS for secure communication and includes OAuth 2.0 security definitions for authentication.

Definitions

The API uses a binary format for data and has predefined definitions for:

  • enc_data: Encrypted data (binary)
  • dec_data: Decrypted data (binary)

Downloadable Swagger 2.0 file and Postman Collection

Please reach out to the support team through our Technical Support Form to receive the Swagger 2.0 file and Postman Collection.

QuSmart.AI is a women-founded Quantum Security company with patent pending technology for perfect secrecy solutions that are quantum proof AI solutions.

Scroll to Top