Secure Hybrid Cloud App-to-App Connectivity for Agile Enterprises
Kaazing’s WebSocket Intercloud Connect (KWIC) is designed to reduce the drag on connectivity when your services must be securely accessible to the cloud-extended enterprise. Instead of wrestling with traditional 30-year old VPN installations, KWIC securely connects your cloud apps to your on-premise services on-demand with no application code changes. KWIC delivers highly secure, two-way, real-time connectivity using a collection of modern industry standards and creative expertise from the Kaazing engineering team.
Using KWIC to connect back to an on-premise LDAP server
KWIC connects your remote cloud applications to on-premises services using the lightweight, locally-installed Kaazing Gateway – an open-source foundation that leverages modern web standards like WebSocket, HTTP and TLS/SSL encryption. KWIC enables the best of both worlds: it allows your customers and partners to directly connect their applications to your valuable services all inbound firewall ports totally closed. The way KWIC works is by extending one or more TCP/IP ports on on server to the other server over a trusted and encrypted channel. By using a KWIC component in the DMZ, all inbound ports on the inner firewall are completely closed. The outer firewall needs port 80 or 443 open. Or you can pick your own.
Inner firewall ports are closed
Not only does this secure and high-performance network architecture work for two parties, it scales to support thousands of applications to support your network of customers and ecosystem partners.
Your business is a complex federation. This means you have a wide spectrum of requirements for application connectivity. External applications hosted by a cloud vendor need access to your enterprise applications and services, which are on-premises or perhaps hosted by a different cloud vendor. Trading systems, real-time inventory, big data analytics, complex event processing, systems monitoring and management, mobile notifications, social media sentiment analysis, et al, increasingly require traversal across these multiple organizational boundaries.
However there are challenges in meeting these requirements:
- Opening additional inbound ports dramatically increases your chances of being hacked
- Encrypting and fully authenticating end-to-end communications is hard to manage
- Guaranteeing mobile connectivity for critical apps is difficult
- Providing reliable applications over unreliable mobile networks is hard
- Using traditional Non-real-time web communication negatively impacts revenue
- Scaling quickly to thousands of connections for a collection of services is a necessity
There’s finally a secure, scalable, resilient and economically viable mechanism to offer real-time APIs and on-premise/cloud communications. Why lean on a heavyweight, non-reactive “request-response” HTTP-based communication model or deal with the bureaucracy headaches of installing even more 30-year old VPN technology if there are better options?
Kaazing brings a proven, simpler, standards-based approach to securely extending your enterprise network. Leaders in Fortune 500 financial services, retail, healthcare, gaming, transportation and logistics trust Kaazing to provide a secure and reliable event-driven communication foundation for mobile and Web applications.