Trusted Repository Services (TRS)

Customer Need

Issues

The client had three significant areas of concern:

• Trust – Required high level of trust in AI applications and data to include mandatory Trust artifacts (AV scans, CVE reports, SBOM, cybersecurity artifacts, integrity, etc…) not normally provided by application and data sources.
• Replication – Wanted multiple local repositories of all trusted application and data files for development, testing, release, and version control purposes.
• Isolated Operation – Needed to deploy trusted application and data files on isolated enclave systems.

Solution

• Trust – By design, Real Obvious TRS is a Trusted service. The TRS Trust Factory collects, composes, and certifies application and data files before delivering to customers.
• Replication – Real Obvious TRS mirroring capability replicates selected application and data files to local Real Obvious TRS instances. In the case of isolated enclaves, manual trusted transfer of files (e.g., sneakernet) to local Real Obvious TRS instances is also supported.
• Isolated Operation – Real Obvious TRS is designed to deploy, run, and update in isolated enclave environments.

Details

The client recognized the potential benefits of using AI Services to analyze, update, and adjust (feedback loop) their real time application. Because of the proprietary nature / compliance requirements of their application and data, they were required to operate the AI Services offline (air-gapped / disconnected from the Internet).

While it was possible for them to deploy AI Services on their own, they recognized that long term operations and maintenance (software updates) would place a significant burden on their internal IT team. The process of downloading, scanning, testing, validating, and creating the required cybersecurity artifacts for the application and data files would be a time consuming manual process. They were also very concerned about the quality (level of trust) of the AI applications and data being loaded onto their isolated system initially and on each update.

The solution for delivery of trusted application and data files involved the design and deployment of a Software “Trust” Factory, Vault storage, and repository management services architecture. This architecture was designed to operate in both connected and isolated environments. Using DevSecOps best practices, a Software “Trust” Factory was built to transition applications and data from a untrusted –> trusted state. All software was developed using Red Rake’s Real Obvious technologies.

Technologies

• Apache
• Bash
• CentOS Linux
• Certificate Authority
• Containers
• Debian Linux
• Eclipse
• Git
• Jenkins
• JFrog Artifactory / X-ray
• Microsoft Windows
• MySQL
• PHP
• PostgreSQL
• Powershell
• Real Obvious Trusted Private Artificial Intelligence (AI)
• Red Hat Enterprise Linux
• Syslog Server
• Terraform
• VMware vSphere

Results

The initial release of the project was completed on time and within budget. Work continues on the project to accommodate enhancements and upgrades to Real Obvious Trusted Repository Services (TRS).

Related Links

• Datasheet – Real Obvious Trusted Repository Services (TRS)
• Summary – Real Obvious Trusted Private Artificial Intelligence (AI)
• Datasheet – Real Obvious Trusted Private Artificial Intelligence (AI)
• White Paper – The Future of Artificial Intelligence – A Deep Dive into Private AI Systems
• White Paper – Unlocking Business Potential – The Power of Real Obvious Private AI Services