Tetrate Service Bridge
Tetrate Service Bridge (TSB) from tetrate.io is an 'edge-to-workload' application management platform. It provides a service mesh management plane designed to manage and configure networking, security, and observability. The TSB works at the backend 'edge', at cluster ingress, between the workloads within a Kubernetes cluster. The mesh management plane configures gateway and intra-cluster service connectivity.
Tetrate managed environments provide an excellent opportunity for integration with Cequence monitoring and mitigation components. Typically a 'hybrid' approach is used in which the Cequence Defender is spun up in the same hosting space as the TSB, and Bot Defense and API Sentinel are SaaS based.
Cequence Integration Architecture
Cequence API Security Platform (ASP) is comprised of a control plane and a data plane. The CQAI system comprising of CQAI components including Cequence API Sentinel and Bot Defense make up the control plane, whereas the Cequence Defender, responsible for processing traffic, makes up the data plane.
In a hybrid model the control and analysis components CQAI analysis and UI components are provided as SaaS services, while Cequence Defender is deployed to within the application cluster.
In a typical hybrid Cequence/Tetrate managed environment the Tetrate Service Bridge is configured to route incoming network application traffic through Cequence Defender where it is quickly analyzed and, if safe, forwarded onto the destination application.
When mitigation policies are enabled, the Defender actively mitigates the bad traffic issuing a preconfigured mitigation response back to the requesting client. The Defender asynchronously sends network metadata to the CQAI system that then populates the Bot Defense and API Sentinel dashboards with the traffic analysis.
Detailed documentation steps are available to existing and prospective customers.