We deliver the Corti solution as a secure cloud-based service to our customers. This approach allows us to configure each deployed service instance to meet our customers' needs with flexibility, scalability, and resilience.
Corti Service
Corti delivers its solution as a fully-managed service hosted in Azure's secure virtual cloud environment.
Each of Corti’s solutions is deployed in an Azure data center geographically optimized to meet regulatory and jurisdictional requirements. We configure Azure instances to provide customers with a fully-managed and secure infrastructure. This approach offers a scalable solution using a fully maintained and secure infrastructure.
We employ two customer deployment strategies: a multi-tenant or a customer-specific installation. The strategy is dependent on the product offering a customer has chosen.
Customers using our AI Platform or Applications: Healthcare are hosted in a multi-tenant environment, while customers using our Applications: Call Centers get a standalone environment.
Both strategies are designed so that all data management functions, including information security control, backup and recovery operations, logging, and auditing, are invisible to the customer. Consequently, these services eliminate the need for in-house specialists to operate and maintain the solution. We offer a customer-facing dashboard and API to notify customers about the system's status.
Client access is provided through a Web application, Microsoft Windows Installer, or API, depending on the customer's preference. The difference in data management between multi-tenant and standalone is the data isolation. Schema-based for multi-tenant and server-based for standalone.
Service Details
Access Management – Clients access Cortivia, our API gateways. For the AI Platform and Applications: Healthcare, we employ a regional API Gateway for each of our regional multi-tenant environments. For Applications: Call Centers, we employ an API Gateway for each dedicated environment.
Connectivity – Corti uses the Traefik reverse proxy and load balancing solution to implement secure connections between clients and the Azure-hosted service using a Transport Layer Security (TLS) protocol. Communications protocols employed include
Hypertext Transfer Protocol Secure (HTTPS) for external service applications, including Application Programming Interfaces (API), client applications on End-User Devices (EUD), and metadata from Computer-Aided Diagnosis (CAD) systems
SSH File Transfer Protocol (SFTP) for call data and associated metadata. SSH is the Secure Shell Protocol, a cryptographic network protocol for operating services securely over an unsecured network such as the Internet
Key Management – Corti uses Terraform, the infrastructure as a code solution to securely create and manage each customer's cryptographic keys. We strictly control key access using Azure's role-based access management technology and have a single SSH keypair per tenant. Additionally, key usage is audited and logged as part of the managed solution.
Content Management – We protect customer service instances against the ingress of malicious content, including malware, by imposing controls on permitted content types and limiting connections to approved IP ranges using IP safelisting techniques. For the Applications: Healthcare, we allow incoming traffic from a set of allow-listed countries, and for Applications: Call Centers, we whitelist an agreed set of CIDR ranges on a customer per customer basis.
SQL Database
Present in: multi-tenant and standalone environments
Corti provides our customers with an Azure SQL Database as a managed cloud service for storing structured data. This facility delivers the benefit of SQL functionality in a fully-managed service.
The Azure SQL Database offers
Advanced multi-layered security controls, including network security, data encryption, access, and key management, real-time threat protection, proactive vulnerability alerting, and tamper-evident cryptographic verification of data
An Azure SQL Database firewall that manages access control of stored data
Automatic provisioning that optimizes configuration while ensuring compliance with regulatory standards, including HIPAA and GDPR
Automatic updates to reduce the risk window for known vulnerabilities without imposing an administrative overhead
Automatic backup of important information as part of incident recovery and business continuity practices
Flexible scalability to meet growth requirements
High availability with service level options of up to a guaranteed 99.995%
Azure Blob Data Lake
Present in: multi-tenant and standalone environments
Customers of the Corti solution can select to use Azure Blob Storage as a managed cloud service for the bulk storage of unstructured data. This facility delivers the benefit of creating data lakes in a fully-managed service encapsulated within the customer’s Corti instance.
The Azure Blob Data Lake facility offers
Data security with Azure active directory role-based authentication, data encryption, and advanced threat protection
Massive data storage capabilities with cost-effective scalability
Multi-protocol access and file namespace support
End-to-end data management using policy-based access controls
Low latency storage to meet high-performance requirements
Supports backup of important information as part of disaster recovery practices
CockroachDB Data Management
Present in: standalone environment
CockroachDB is a distributed SQL database designed for global scale, high availability, and strong consistency. CockroachBD offers resilience and high availability for critical applications as a fully-managed service encapsulated within the customer’s Corti instance.
The CockroachDB facility offers
Maximized availability using data replication techniques
High availability when configured as a distributed solution
Automatic recovery of hosting failures at disk, machine, rack, or data center levels
Automatic scaling and repair
Supports backup of important information as part of incident recovery and business continuity practices
Elasticsearch
Present in: standalone environment
Corti provides customers of its solution with Elastic search functionality to help them maximize the extraction of information from data stores, improving the visibility of infrastructure and the data to deliver insights and visualization.
High-performance data search and analytic capabilities
Provide observability functionality for infrastructure health monitoring and real-time performance analysis
Provides advanced threat prevention, detection, and response functions to support end-point protection, event management, and active threat hunting