Case Study Summary
Onfido uses Datapath.io’s Managed VPN solution to deploy an IPsec VPN network spanning multiple AWS regions. Onfido needed a way of securely connecting multiple AWS regions. They needed an out of the box solution with minimal over head in terms of management, monitoring and maintenance, as well as being highly available and reliable.
The Managed VPN solution allowed them to setup secure connectivity between AWS regions. It also gave them access to an intuitive dashboard where they could easily monitor and manage the VPN tunnels.
Onfido helps businesses digitally verify people’s identities. Onfido is the brain child of three Oxford graduates who took on the mission of building trust in an inherently distrustful online world. Onfido uses machine learning technology, to validate a user’s identity document and compares it with their facial biometrics. The identity can then be cross-referenced against international credit and watchlist databases in 192 countries, worldwide.
Onfido runs CI (Continuous Integration) servers in one AWS region. They needed a way of deploying from one AWS region to another without having to completely replicate the CI server. One way of doing this was to connect those two AWS regions via private VPN tunnels. Ease of management, maintenance and monitoring was an important aspect of this Inter Region Connectivity.
They also required native integration into AWS KMS key management. Harvey Johal who heads DevOps at Onfido puts it this way,
“…we wanted a way of providing our own secret key as our clients might have objected to a 3rd party owning this. So, we asked if it was possible using AWS KMS for this.”
Cross-account support was another crucial application requirement.
How Datapath.io solution helped?
Onfido wanted its engineers to focus on their core competency i.e. coming up with cool new ways of helping businesses verify the identity of their online clients.
“We didn’t want to build our own solution and have to manage it because there are a lot of components involved and we are a small team. So, we needed something that wasn’t too expensive and basically managed itself.”
Datapath.io’s Managed VPN solution was perfect since it is super easy to setup and requires minimal management and maintenance, as well as being a far less expensive option as compared to some other solutions on the market right now.
Datapath.io helped Onfido meet their requirement of private connectivity between AWS regions, with minimal management and cost over heads.
“Our deployments from eu-west-1 to us-east-1 have been made possible now as we run our CI server runs in one region and are able to deploy to others. This wasn’t possible before without having to replicate the CI server.”
“We want to replicate data into other regions from eu-west-1, so we will be looking to setup new connections in the future to eu-central-1 and other AWS regions.”
“It was very encouraging to see that the Datapath.io team was very responsive to our needs; implementing custom requirements in a matter of days.”
Sign-up now and deploy VPN tunnels in minutes!