Compliance + Kubernetes® = Datica

Datica's Platform bridges security and compliance with Kubernetes® to offer a complete, enterprise cloud native solution for regulated industries.

The Datica Cloud Compliance Management System (CCMS)

The CCMS gives users visibility and control over the compliance of their Kubernetes® cluster:

  • Initial State: Compliance in the cloud is built on a foundation of secure, logical configurations. Without a proper foundation, the proverbial compliance house fails. When Datica deploys a Kubernetes® cluster, we do so with configuration automation and security best practices.
  • Compliance Artifacts: Once the proper compliance state is in place, the next step to ensuring continuous compliance is collecting data as compliance artifacts. Datica’s compliance deployments (logging, monitoring, IDS, etc.) report and log compliance artifacts to an encrypted block storage object. The CCMS then uses this data to ensure continuous compliance.
  • Compliance Engine: The core value of the CCMS is that we are continuously ensuring the complete compliance of both your cluster, and the underlying infrastructure that it resides on. We do this by comparing the running state with the expected initial compliance state. The compliance engine checks state every 5 minutes.
  • Management: Datica manages the compliance state of your cluster through intrusion detection review and remediation; vulnerability scanning management, remediation and proaction; and compliance reporting for HITRUST, SOC 2, GDPR and more.
  • Key Infrastructure: Datica’s public key infrastructure ensures that your data is protected and can only be accessed by those with appropriate permission. You have the option to either provide your own Root CA, or rely on Datica to create and store one for you. Once the Root CA is established, Datica creates an intermediate CA. This intermediate CA is used for generating all cluster specific certs.
  • Leverage the power of Kubernetes

    Compliant and HITRUST certified Kubernetes® in 10 minutes

    Datica automatically configures your underlying infrastructure, installs and configures a highly available Kubernetes® cluster, and connects that cluster to Datica’s Cloud Compliance Management System — all in 10 minutes.

    1. Setup


    First we collect information about your cloud provider, required infrastructure to run your deployments, and how redundant you want the master cluster to be (HA by default).

    2. Installation


    With the required information, Datica installs a new Kubernetes® cluster into your account (or into Datica’s account, your choice).

    3. Verification


    Once the cluster is installed, and all system-level configurations are set, the Platform will begin continuously pulling the cluster’s running state and compare that to the required compliance state.

    4. Done!


    Start shipping! Your newly deployed Kubernetes® cluster is ready for use. Scale and manage infrastructure at will. The Datica Compliance Management System has your back.

    Datica's shared responsibility model

    With Datica’s Cloud Compliance Management System, we ensure both the cluster and the underlying infrastructure on your cloud account are secure and compliant to the highest standards across an ever-growing list of frameworks and regimes.

    Shared Responsibility
    Shared Responsibility Diagram