Architecture & Integrations
This does not need to be complicated
Frequently answered questions
-
Today we support the following 2 technical ingestion methods to the log data processing engine:
AWS Kinesis Firehose
AWS S3
-
As a customer you are provisioned your own unique and dedicated instance of the Bluehat Platform’s data processing & distribution tier. With access to full visibility into the infrastructure itself.
-
All data is encrypted in transit by default due to the nature of the supported ingestion patterns themselves.
For more information visit: https://docs.aws.amazon.com/whitepapers/latest/introduction-aws-security/data-encryption.html -
Your account is securely managed and constantly validated and repaved against the correct operating state.
-
From the ground up the platform and ecosystem has been designed with security in mind incorporating defense in depth, principles of least privilege and a zero trust architecture that enables trust and safety while maintaining the outcomes expected.
-
We currently support the following AWS Regions
us-east-1
us-west-1
ap-southeast-2
ap-northeast-1
eu-west-2
eu-central-1
Connectivity Patterns
-
Depending on your product you will have the following options available to you
Dual forwarding from your collection infrastructure (i.e. agents or aggregators) to one of our supported ingestion methods
From the tool itself as part of its archive/backup functionality the ability to store in an s3 bucket location which can be used as the ingestion method
-
Depending on your provider of choice there are options outlined below on the supported integration types for the different offerings.
You also have the option of using other aggregation tools such as datadog/fluentd/cribl etc.
-
Congratulations on starting this journey!
I would suggest the following steps
Have a look at some of our blog posts (like https://medium.com/@Shaun_Vlassis/prioritising-your-threat-detection-capabilities-effdc8f0d95d) to get a better idea on what your goals are
Begin with tools like OSQuery for endpoint monitoring as your first toe in the water.
Chat to us about a Threat Detection Healthcheck which can help you in deciding the best way to start this journey.
Supported Integrations
Not seeing an integration?
We are always adding more integrations, reach out to discuss our roadmap