Overview
The log that would close the ticket cannot leave the building, so your model never sees it. LLM Capsule lets enterprises run AI on operational data that cannot leave their environment. Logs, tickets, PDFs, network topology and runbooks often hold values that legally or physically cannot move to an external model. Capsule turns those values into protected working versions inside your environment, lets approved models work on the protected version, and reconstructs usable results back in your workflow. Masking breaks the workflow: a redacted log stops being a log, and the AI can no longer do root-cause analysis. Capsule keeps the structure the AI needs. The model path can be external; the original values do not have to be. Your team defines what is sensitive, so protection covers more than names and card numbers like circuit IDs, AS numbers, topology nodes, OT asset IDs, incident IDs and internal codenames. Capsule runs on-prem, in your VPC, or in air-gapped environments. The original values and the mapping used for reconstruction stay inside the customer-controlled environment. It is already deployed in some of the hardest operational environments in telecom, OT and the public sector. Capsule opens the blocked data path on-prem. Syntitan (cloud AI-ready data platform by CUBIG) then validates and operates the workflow in production.
Differential-privacy-based mechanisms are used to reduce re-identification risk when replacement values are combined with external data. Reconstruction is not a mathematical inversion of those values; it is performed only inside the customer-controlled environment through a protected mapping layer. The original values and the mapping never leave the customer environment.
Highlights
- Get the real answer back. Results return reconstructed in your workflow. Reconstruction is deterministic, substituted markers are rebuilt exactly through an internal mapping, not by inverting any privacy step. If a person has to rebuild the answer by hand, it was never automation. Protect what generic detectors miss. You define the sensitive markers like circuit IDs, topology, OT asset IDs, internal codenames, not just names, emails and card numbers.
- Keep the record usable. Structure is preserved, so a log stays a log and a graph stays relationships. Redaction protects the field; Capsule protects the workflow. Keep control of your own data. Original values and the reconstruction mapping stay inside your environment. The approved model path can be external; the raw values are not.
- Run inside the workflow you already have. Embeds into ServiceNow, Jira, OSS/NOC, RAG and on-prem systems. No copy-paste masking, no manual cleanup. Change what is protected without rebuilding. Update protected markers over time. What you protect will change; your pipeline should not break.
Details
Introducing multi-product solutions
You can now purchase comprehensive solutions tailored to use cases and industries.
Features and programs
Financing for AWS Marketplace purchases
Pricing
Dimension | Description | Cost/month |
|---|---|---|
License | LLM Capsule License | $4,000.00 |
Vendor refund policy
Contact contact@cubig.ai for refund inquiries.
How can we make this page better?
Legal
Vendor terms and conditions
Content disclaimer
Delivery details
LLMCapsule for Amazon ECS
- Amazon ECS
Container image
Containers are lightweight, portable execution environments that wrap server application software in a filesystem that includes everything it needs to run. Container applications run on supported container runtimes and orchestration services, such as Amazon Elastic Container Service (Amazon ECS) or Amazon Elastic Kubernetes Service (Amazon EKS). Both eliminate the need for you to install and operate your own container orchestration software by managing and scheduling containers on a scalable cluster of virtual machines.
Version release notes
Version 1.0.4 - Container Configuration Update
- Container runs as non-root user (UID: 1000)
- Added health check endpoint (/health)
- Removed unnecessary dependencies
- Optimized container image structure
- Updated documentation for external dependencies
- Fully backward compatible with previous deployments
Additional details
Usage instructions
Usage Instructions
- Prerequisites
- Docker runtime environment (Amazon ECS, EKS, etc.)
- No external database required
-
Environment Variables Refer to product documentation for required environment variables.
-
Run Container docker run -d -p 8080:8080 <image-uri>
-
Verify Health Check curl http://localhost:8080/health Expected response: {"status":"healthy"} or similar
-
External Dependencies
- No external database required
- No external paid APIs required
- All AI processing is performed locally within the container
-
Included Packages (from PyPI) fastapi, uvicorn, torch, transformers, huggingface-hub, pandas, numpy, cryptography, pydantic All packages use permissive licenses (MIT, BSD, Apache-2.0) for commercial use.
-
Runtime Configuration
- Container runs as non-root user (UID: 1000)
- Health check endpoint: /health
- Exposed port: 8080
Support
Vendor support
Please reach us at contact@cubig.ai for any assistance or questions.
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Similar products

