Breadcrumbs

SQS ARCHITECTURE

High Level Overview SQS Architecture

 System architecture diagrams provide a visual illustration of a system's various components and show how they communicate and interact with each other. These diagrams document a system's structure and architecture. This allows for a clear understanding of how the system works and how it can be improved

Right now We don’t currently have a sanitised architecture diagram I can share unfortunately – the current diagrams are internal diagrams that include a lot of sensitive security information - Will will endeavour to provide a Sanitised version soon

All the SQS components are hosted within Azure.

  • Each customer site is serviced from a nearby, regional Azure data centre.  In the case of Australian and New Zealand customer sites, this is currently the East Australia Azure DC in Sydney.

  • All customer data resides entirely within their regional data centre to address customers data sovereignty requirements (most important for EU customers).

  • All data is encrypted both in transit (via TLS and/or IPsec tunnels) and at rest (within the databases, etc).

  • The hardware installed on each vehicle maintains a TLS VPN tunnel to an Azure IoT endpoint service, through which it uploads all the collected data (buffering it onboard in the event of no network connection).

  • We utilise Azure FrontDoor to perform threat analysis and filtering of all web requests targeting the services, and Azure Firewall to perform traffic analysis and filtering of all traffic between the various security domains / services within the solution.

  • We use a central Azure Log Analytics service to capture, analyse and report on all service telemetry and audit information.

If a Cloud Security Assessment is required by the Customer please contact you local Komatsu Smart Quarry Site Representative for details or contact schelpdesk@komatsu.com.au