Inside Qovery's security architecture: how we secure your cloud & Kubernetes infrastructure

Qovery is a DevOps automation platform that emphasizes security and transparency, aiming to streamline infrastructure management while maintaining operational control. It allows users to define their desired state through various interfaces like CLI, Terraform, or a web console, which the Qovery engines execute to manage Kubernetes clusters and other infrastructure tasks. Qovery is designed to minimize vendor lock-in, ensuring that services continue to run independently of Qovery's availability. The platform prioritizes security by using AWS KMS for encryption, maintaining separate keys for each customer, and ensuring that application logs and metrics remain on the user's infrastructure. Access control is managed through a Role-Based Access Control system, allowing for fine-grained permissions, while audit logs provide comprehensive tracking of all actions. Qovery adheres to industry best practices for security and continuously improves its systems through regular updates and penetration testing. The company also values customer feedback to guide future developments and enhancements in the platform.