Skip to content

Welcome to VeliKey Aegis

Quantum-Safe TLS Policy Management Platform

VeliKey Aegis is a comprehensive crypto-agile TLS gateway platform that provides post-quantum ready security policy enforcement, real-time monitoring, and compliance automation for modern applications and infrastructure.

🛡️ What is VeliKey Aegis?

VeliKey Aegis transforms how organizations manage TLS security by providing:

  • Crypto-Agile Policy Engine: Dynamic cryptographic algorithm selection based on compliance requirements
  • Post-Quantum Readiness: Built-in support for quantum-safe cryptographic algorithms (Kyber, SPHINCS+)
  • Distributed Agent Architecture: Lightweight agents deployed across your infrastructure
  • Real-Time Monitoring: Comprehensive visibility into TLS configurations and security posture
  • Compliance Automation: Automated validation against SOC2, PCI DSS, HIPAA, and GDPR frameworks
  • Unified Management: Single control plane for policy deployment and monitoring

🚀 Quick Start

Get up and running with VeliKey Aegis in minutes:

1. Install the Platform

Choose your deployment method:

# Add VeliKey Helm repository
helm repo add velikey https://charts.velikey.com
helm repo update

# Install Aegis
helm install aegis velikey/aegis \
  --namespace aegis-system \
  --create-namespace
# Download compose file
curl -O https://raw.githubusercontent.com/velikey/aegis/main/docker-compose.yml

# Start services
docker-compose up -d
module "aegis" {
  source = "github.com/velikey/terraform-aegis"

  namespace = "aegis-system"
  # Additional configuration...
}

2. Deploy Your First Agent

# Install Aegis CLI
curl -L https://github.com/velikey/aegis/releases/latest/download/aegis-cli-linux-amd64.tar.gz | tar xz
sudo mv aegis /usr/local/bin/

# Configure control plane + API token
export AEGIS_CONTROL_PLANE_URL="https://axis.velikey.com"
export AEGIS_API_TOKEN="<your_api_key>"

# Verify hosted connectivity
aegis status
aegis agent list

3. Create a Security Policy

# Policy creation/apply is currently managed in the Axis dashboard:
# Dashboard -> Policies / Compliance Bundles
#
# CLI policy read (session-auth route):
export AEGIS_SESSION_TOKEN="<nextauth_session_token>"
aegis policy list

🏗️ Architecture

VeliKey Aegis consists of several key components:

See Architecture Overview for a component and data-flow walkthrough.

Control Plane

  • Policy Engine: Manages cryptographic policies and compliance rules
  • Agent Registry: Tracks and manages distributed agents
  • Metrics Aggregator: Collects and processes security telemetry
  • API Gateway: Provides REST API and dashboard access

Agents

  • TLS Proxy: Terminates and initiates TLS connections with policy enforcement
  • Health Monitor: Tracks system health and performance metrics
  • Policy Enforcer: Applies cryptographic policies in real-time
  • Telemetry Collector: Gathers security events and usage data

Management Tools

  • Web Console: Interactive dashboard for policy management and monitoring
  • CLI Tool: Command-line interface for automation and DevOps workflows
  • SDKs: Native libraries for Python, JavaScript/TypeScript, and Go

🎯 Use Cases

DevSecOps Integration

Integrate quantum-safe security policies into your CI/CD pipeline:

# .github/workflows/security.yml
- name: Hosted Axis CLI Smoke
  run: |
    aegis status
    aegis agent list
    aegis suites list --pq-only

Compliance Automation

Automatically validate and report on compliance frameworks:

from velikey import AegisClient

client = AegisClient(api_key="your-key")

# Validate SOC2 compliance
compliance = await client.compliance.validate_framework("soc2")
if not compliance.compliant:
    print(f"Compliance issues: {compliance.issues}")

Infrastructure as Code

Manage security policies alongside infrastructure:

resource "velikey_policy" "production" {
  name = "Production Security Policy"
  compliance_framework = "soc2"
  enforcement_mode = "enforce"

  rules {
    tls {
      min_version = "1.2"
      allowed_ciphers = [
        "TLS_AES_256_GCM_SHA384",
        "TLS_KYBER768_P256_SHA256"
      ]
    }
  }
}

🔧 Core Features

Crypto-Agility

  • Dynamic algorithm selection based on threat landscape
  • Seamless migration to post-quantum cryptography
  • Backward compatibility with legacy systems
  • Real-time policy updates without service disruption

Policy Management

  • Compliance framework templates (SOC2, PCI DSS, HIPAA, GDPR)
  • Custom policy builder with validation
  • Staged deployment with rollback capabilities
  • Impact analysis and testing tools

Monitoring & Analytics

  • Real-time security dashboard
  • TLS handshake analysis and optimization
  • Threat detection and anomaly alerting
  • Performance impact monitoring

Multi-Cloud Support

  • Kubernetes-native deployment
  • Cloud provider integrations (AWS, Azure, GCP)
  • Hybrid and on-premises support
  • Edge computing compatibility

📚 Documentation

Getting Started

User Guides

API & Integration

Operations

🏢 Enterprise Features

Advanced Security

  • Hardware Security Module (HSM) integration
  • Certificate lifecycle management
  • Key rotation automation
  • Audit logging and compliance reporting

Scalability

  • Multi-region deployments
  • High availability configurations
  • Load balancing and failover
  • Performance optimization

Integration

  • SIEM and monitoring tool integrations
  • Identity provider integration (SAML, OIDC)
  • Webhook notifications
  • Custom metrics exporters

🤝 Community & Support

Getting Help

Contributing

  • Open Source: Core platform is open source
  • Contributing Guide: See individual repository CONTRIBUTING.md files
  • Bug Reports: Use GitHub Issues in respective repositories
  • Feature Requests: Community forum or GitHub Discussions

Commercial Support

  • Professional Services: Implementation and consulting
  • Enterprise Support: 24/7 support with SLA
  • Training: Security team training and certification
  • Custom Development: Feature development and integration

🔐 Security

VeliKey Aegis is built with security as the foundation:

  • Zero Trust Architecture: No implicit trust, verify everything
  • Least Privilege: Minimal required permissions
  • Defense in Depth: Multiple layers of security controls
  • Continuous Monitoring: Real-time threat detection
  • Compliance by Design: Built-in compliance frameworks

Security Reporting

For security issues, please email security@velikey.com instead of using public channels.

VeliKey Aegis is available under multiple licensing options:

  • Open Source: Core platform under MIT/Apache 2.0
  • Commercial: Enterprise features and support
  • Government: Special licensing for government agencies

See individual repositories for specific license information.


Ready to get started? Start with the Quick Start or the Installation Guide.