Build applications for the cloud so it can uses all the power of it
We help you control your environnement at different levels (Security, Costs, Compliance, etc ..)
We support you in your endevoer towards the cloud by help you mostly
ID Quantique (IDQ) is a Swiss company, based in Geneva, Switzerland, and provides quantum key distribution (QKD) systems, quantum safe network encryption, single photon counters, and hardware random number generators.
ID Quantique needed to expose an internet API that would be scalable, provide "state of the art" API security and provide the lowest maintenance effort.
This API would consume services hosted on ID Quantique premises, formerly accessible from the private network only, that need to remain up and running, making the API responsible to protect against non-legitimate traffic.
Finally, from a budget standpoint, the requirement was to provide a "pay as you consume" model, to link the solution cost to its actual usage.
Our solution consists in creating an hybrid cloud with a fronting API Gateway, tied to a VPC.
This VPC has a VPN connectivity to ID Quantique premises, allowing a seamless network interconnection while ensuring redundancy thanks to the dual tunnel, which is part of the AWS VPN solution.
The API itself is protected by multiple mechanisms :
- Web Application Firewall
- Throttling
- API Keys
All these components were deployed with the AWS SAM framework and integrated into the software factory of ID Quantique, enabling an automated deployment and maintenance as the code evolves.
Public certificates were provisionned and managed using ACM.
The whole implementation is stateless, leveraging all the scalability provided by the AWS services.
This solution is based on serverless + managed services only, allowing ID Quantique to have a near zero additional maintenance for its IT.
The serverless approach let ID Quantique benefit from a strongly scalable solution, that were confirmed with load tests, while keeping running costs to a minimum.
The system, as-is, can keep on working for multiple years.
The alarms that were defined let ID Quantique measure the latency of its internal APIs as part of the configuration, giving additional insights that did not exist prior to this implementation.
We distribute single medications to pharmacies to ensure the right treatments to patients through personalized, automated end-to-end drug packaging is Dosepharma's mission.
The right dose of the right medication at the right time !
- Patients avoid errors and oversights
- Healthcare professionals follow their prescribed treatments more efficiently, easily, and securely
- Pharmacies focus on taking care of their patients while Doespharma packages the medication.
- Healthcare facilities save time and security
Full automation from the collection of prescription information processed by pharmacists to the delivery of medication to patients requires the coordination and planning of a multitude of information and tasks that DOSEPHARMA has integrated and continues to integrate into its information system. Enhancing functionality and ensuring the reliability and security of patient data is an ongoing challenge for DOSEPHARMA.
Guaranteeing this evolution requires concentration and focus.
It is to focus on its expertise and the means required for the growth of the activity around taking medical treatments.
Dosepharma with Smartwave’s support and expertise, has decided to rely on a reliable, robust, scalable, and secure infrastructure such as AWS.
The target architecture mixes IaaS (EC2) and PaaS (RDS, EFS...) leveraging the native compatibility of these services with existing code and databases, resulting in a lower maintenance footprint while increasing reliability
As such, and in order to be in perfect alignment with regulatory requirements, the anticipated migration to the AWS cloud was only initiated when the hosting of patient prescription data in Switzerland could be guaranteed following the opening of the AWS Region in Zürich.
The transfer from Dosepharma's premises allowed both to address a simplification of the architecture and to benefit from numerous services that no longer have to be performed by the internal teams.
A simplification of the architecture and better integration between development, test and production environments allows Dosepharma to take advantage of the automation of integration processes and continuous deployment.
A new backup management solution based on AWS backup services will further secure Dosepharma services.
Finally, new expansion projects can be more easily considered to keep pace with the development of the business.
Scott Sports is a 60 years old company that develops cutting-edge technology sport’s equipment’s. They early built their e-commerce platform on AWS to support their business need of product distribution, first by being B2B only and now by targeting the B2C channel. GDPR compliance pushed them to migrate their platform from a US region to a EU region
During an agile migration, SmartWave moved all US workload from a US region to a EU region, we had to respect a new constraint that improved the segregation of assets by introducing multiple new accounts, each one dedicated to a specific purpose. To make sure everything we do is repeatable we introduced the usage of CloudFormation and Ansible which helped us having a high level of automation and reliability the moment we were provisioning all the assets.
Scott Sports became GDPR compliant partially due to the US to EU migration, which improved the data
security and resulted in a leaner, more efficient security practice. This migration has also brought
closer the AWS's assets to the on premise's assets which improved the global performance of the
Scott Sports e-commerce platform by reducing the network latencies.
With the introduction of
CloudFormation, isolation with a multi account strategy coupled to a set of rules enforcing them,
Scott Sports is now able to provision their assets very easily and with reliability while having the
security and the cost constantly under control
trueLedger is a trusted, fully digitized deal platform for professional services. It manages the commercial relationship between buyers and vendors and provides a single point of truth in real-time for everybody. Build on AWS, the system provides Buyers with full transparency and control, invoices that are always correct – no checks needed – and savings up to 20% on external workforcespend. Vendors win more business through trust and transparent collaboration, better manage their profitability, reduce administrative costs, and have amuch-accelerated time to cash. To get ready for public usage of the platform, trueLedger was looking for a partner providing the required skills to do so
By performing a series of exploratory workshops, SmartWave has worked with the trueLedger technical team to assess the situation. By sharing recommendations and ideas we started to build a Landing Zone which allows to use different AWS services in a secure and efficient way used to provide services trueLedger built. Following this, we worked on the different DevOps processes for automatization and deployment of releases in the any environment. Back-up and restore procedures have been designed and implemented according to standards from the industry and SmartWave.
Having setup the landing zone have enable trueLedger to have better security control, thanks to
efficient usages of policies and authentication mechanisms, it introduce isolation using purposed
AWS accounts which is essential to contain potential risks and security threats, it setup
dataisolation per account which easily limits the number of people that can accessand manage those
data store. This helps with General Data Protection Regulation (GDPR) compliance. It also enable
many teams to work in parallel without over-stepping one another on the same
resources.
Concerning the deployments they are now easily triggerable on any AWS account
that trueLedger need and this has considerably elevated the level of confidence of the team.
We provide organisations with ICT consulting and engineering services to envision, design, construct and support product-based software solutions that enable business growth, innovation and operational excellence.
.png)
