Welcome to VeliKey Aegis
Quantum-Safe TLS Policy Management Platform
VeliKey Aegis is a comprehensive crypto-agile TLS gateway platform that provides post-quantum ready security policy enforcement, real-time monitoring, and compliance automation for modern applications and infrastructure.
🛡️ What is VeliKey Aegis?
VeliKey Aegis transforms how organizations manage TLS security by providing:
- Crypto-Agile Policy Engine: Dynamic cryptographic algorithm selection based on compliance requirements
- Post-Quantum Readiness: Built-in support for quantum-safe cryptographic algorithms (Kyber, SPHINCS+)
- Distributed Agent Architecture: Lightweight agents deployed across your infrastructure
- Real-Time Monitoring: Comprehensive visibility into TLS configurations and security posture
- Compliance Automation: Automated validation against SOC2, PCI DSS, HIPAA, and GDPR frameworks
- Unified Management: Single control plane for policy deployment and monitoring
🚀 Quick Start
Get up and running with VeliKey Aegis in minutes:
1. Install the Platform
Choose your deployment method:
2. Deploy Your First Agent
# Install Aegis CLI
curl -L https://github.com/velikey/aegis/releases/latest/download/aegis-cli-linux-amd64.tar.gz | tar xz
sudo mv aegis /usr/local/bin/
# Configure control plane + API token
export AEGIS_CONTROL_PLANE_URL="https://axis.velikey.com"
export AEGIS_API_TOKEN="<your_api_key>"
# Verify hosted connectivity
aegis status
aegis agent list
3. Create a Security Policy
# Policy creation/apply is currently managed in the Axis dashboard:
# Dashboard -> Policies / Compliance Bundles
#
# CLI policy read (session-auth route):
export AEGIS_SESSION_TOKEN="<nextauth_session_token>"
aegis policy list
🏗️ Architecture
VeliKey Aegis consists of several key components:
See Architecture Overview for a component and data-flow walkthrough.
Control Plane
- Policy Engine: Manages cryptographic policies and compliance rules
- Agent Registry: Tracks and manages distributed agents
- Metrics Aggregator: Collects and processes security telemetry
- API Gateway: Provides REST API and dashboard access
Agents
- TLS Proxy: Terminates and initiates TLS connections with policy enforcement
- Health Monitor: Tracks system health and performance metrics
- Policy Enforcer: Applies cryptographic policies in real-time
- Telemetry Collector: Gathers security events and usage data
Management Tools
- Web Console: Interactive dashboard for policy management and monitoring
- CLI Tool: Command-line interface for automation and DevOps workflows
- SDKs: Native libraries for Python, JavaScript/TypeScript, and Go
🎯 Use Cases
DevSecOps Integration
Integrate quantum-safe security policies into your CI/CD pipeline:
# .github/workflows/security.yml
- name: Hosted Axis CLI Smoke
run: |
aegis status
aegis agent list
aegis suites list --pq-only
Compliance Automation
Automatically validate and report on compliance frameworks:
from velikey import AegisClient
client = AegisClient(api_key="your-key")
# Validate SOC2 compliance
compliance = await client.compliance.validate_framework("soc2")
if not compliance.compliant:
print(f"Compliance issues: {compliance.issues}")
Infrastructure as Code
Manage security policies alongside infrastructure:
resource "velikey_policy" "production" {
name = "Production Security Policy"
compliance_framework = "soc2"
enforcement_mode = "enforce"
rules {
tls {
min_version = "1.2"
allowed_ciphers = [
"TLS_AES_256_GCM_SHA384",
"TLS_KYBER768_P256_SHA256"
]
}
}
}
🔧 Core Features
Crypto-Agility
- Dynamic algorithm selection based on threat landscape
- Seamless migration to post-quantum cryptography
- Backward compatibility with legacy systems
- Real-time policy updates without service disruption
Policy Management
- Compliance framework templates (SOC2, PCI DSS, HIPAA, GDPR)
- Custom policy builder with validation
- Staged deployment with rollback capabilities
- Impact analysis and testing tools
Monitoring & Analytics
- Real-time security dashboard
- TLS handshake analysis and optimization
- Threat detection and anomaly alerting
- Performance impact monitoring
Multi-Cloud Support
- Kubernetes-native deployment
- Cloud provider integrations (AWS, Azure, GCP)
- Hybrid and on-premises support
- Edge computing compatibility
📚 Documentation
Getting Started
- Installation Guide - Platform deployment options
- Quick Start Tutorial - Get running in 15 minutes
- Agent Deployment - Deploy and manage agents
User Guides
- Policy Management - Create and deploy security policies
- Compliance Automation - Automate compliance validation
- Monitoring & Alerts - Configure monitoring and alerting
API & Integration
- REST API Reference - Complete API documentation
- Python SDK - Python client library
- JavaScript SDK - Node.js and browser support
- Go SDK - High-performance Go client
Operations
- CLI Reference - Command reference
- Configuration Guide - Configuration options
- Troubleshooting - Common issues and solutions
🏢 Enterprise Features
Advanced Security
- Hardware Security Module (HSM) integration
- Certificate lifecycle management
- Key rotation automation
- Audit logging and compliance reporting
Scalability
- Multi-region deployments
- High availability configurations
- Load balancing and failover
- Performance optimization
Integration
- SIEM and monitoring tool integrations
- Identity provider integration (SAML, OIDC)
- Webhook notifications
- Custom metrics exporters
🤝 Community & Support
Getting Help
- Documentation: docs.velikey.com
- Community Forum: community.velikey.com
- GitHub Discussions: Ask questions and share ideas
- Discord: discord.gg/velikey
Contributing
- Open Source: Core platform is open source
- Contributing Guide: See individual repository CONTRIBUTING.md files
- Bug Reports: Use GitHub Issues in respective repositories
- Feature Requests: Community forum or GitHub Discussions
Commercial Support
- Professional Services: Implementation and consulting
- Enterprise Support: 24/7 support with SLA
- Training: Security team training and certification
- Custom Development: Feature development and integration
🔐 Security
VeliKey Aegis is built with security as the foundation:
- Zero Trust Architecture: No implicit trust, verify everything
- Least Privilege: Minimal required permissions
- Defense in Depth: Multiple layers of security controls
- Continuous Monitoring: Real-time threat detection
- Compliance by Design: Built-in compliance frameworks
Security Reporting
For security issues, please email security@velikey.com instead of using public channels.
📄 License & Legal
VeliKey Aegis is available under multiple licensing options:
- Open Source: Core platform under MIT/Apache 2.0
- Commercial: Enterprise features and support
- Government: Special licensing for government agencies
See individual repositories for specific license information.
Ready to get started? Start with the Quick Start or the Installation Guide.