Nested Knowledge

Bringing Systematic Review to Life

User Tools

Site Tools


wiki:policies:dev

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision
Previous revision
Last revision Both sides next revision
wiki:policies:dev [2023/03/30 19:19]
kholub
wiki:policies:dev [2023/10/11 05:58]
kholub
Line 33: Line 33:
 === Supplier Adherence to SDLC === === Supplier Adherence to SDLC ===
  
-Nested Knowledge employees develop all application code. External platforms (e.g. AWS) may provide architecture, orchestrate deployment of, and execute application code. External libraries (e.g. OSS) are consumed by application code as modules. External platforms and libraries are verified with the following:+Nested Knowledge employees develop all application code. External platforms (e.g. AWS) may provide architecture, orchestrate deployment of, and execute application code. External libraries (e.g. OSS) are consumed by application code as modules. External providers offer data to code, most typically in the form of an API. External platforms, providers, and libraries are verified with the following:
  
   * A review of technical documentation   * A review of technical documentation
Line 76: Line 76:
 ====== System Design and Architecture ====== ====== System Design and Architecture ======
  
-The Nested Knowledge client application is served by an application server and hydrated by an API server; both of these servers run behind a load balancer. The API server communicates with the Search and ML backend services as well as the database. Certain functions of backend services communicate with external (public) APIs. The frontend servers, services, and database all run in a Virtual Private Cloud (VPC) for network isolation. The frontend load balancers are exposed to receive requests from the public internet. The client and server applications communicate with an external service, Auth0, for authentication; all communications with Auth0 are encrypted.+The Nested Knowledge client application is served by an application server and hydrated by an API server; both of these servers run behind a load balancer. The API server communicates with the Search and ML backend services as well as the database. Certain functions of backend services communicate with external (public) APIs. The frontend servers, services, and database all run in a Virtual Private Cloud (VPC) for network isolation. The frontend load balancers are exposed to receive requests from the public internet and are protected with a WAF using AWS's Core Ruleset. The client and server applications communicate with an external service, Auth0, for authentication; all communications with Auth0 are encrypted.
  
 {{:wiki:policies:nk_architecture_updated.png?600}} {{:wiki:policies:nk_architecture_updated.png?600}}
Line 93: Line 93:
  
 Our [[https://wiki.nested-knowledge.com/doku.php?id=wiki:policies:disaster#application_profile|application profile]] in the Business Continuity Plan describes the criticality of software applications used by Nested Knowledge employees on employee-owned devices. Our [[https://wiki.nested-knowledge.com/doku.php?id=wiki:policies:disaster#application_profile|application profile]] in the Business Continuity Plan describes the criticality of software applications used by Nested Knowledge employees on employee-owned devices.
- 
-At this time, Nested Knowledge does not issue personal computers or mobile devices to employees or contractors. 
  
 ====== Vulnerability and Patch Management ====== ====== Vulnerability and Patch Management ======
wiki/policies/dev.txt ยท Last modified: 2024/01/25 23:02 by katcow