- Become a partner›
- Partner success›
- KiwiCloud
KiwiCloud Partners with AWS to Build Cloud-native UEM Solution, Enhancing Commercial Device Management Efficiency and Compliance Support
KiwiCloud provides a unified platform for business clients with cutting-edge technology, helping them streamline device management, and translating mobility into a driver of their growth. During its global expansion, KiwiCloud has partnered with AWS and its Premier Tier Services Partner, eCloudrover, to build a unified endpoint management (UEM) solution using a series of cloud-native services, with the aim to deliver secure, controllable, and sustainable digital management infrastructure for intelligent endpoints across all industries.
Benefits
40%
Boost multi-region deployment efficiency of UEM SaaS by 40%100%
Achieve a near-100% policy reach rate leveraging the “Shadow Device” feature of Amazon IoT Core.100
Coverage of 100-plus countries/regions Win trust from global users with secure and compliant servicesOverview
KiwiCloud is a cloud-native UEM solution, providing businesses with a simple and secure way to manage their commercial devices. It supports remote control, automated support and policy-driven operation and maintenance, enabling whole-lifecycle management of devices.
With the help of eCloudrover, an AWS Premier Tier Service Partner, KiwiCloud built a highly available and resilient microservice architecture on AWS, and incorporated the “Shadow Device” mechanism of Amazon IoT Core, to ensure full reach and consistent execution of device policies. For KiwiCloud, this not only accelerated its shift from a self-built technology approach to one focused on cloud-native development, but also marked a new journey of long-term co-creation with AWS. Through the transformation, KiwiCloud further translated technology and operating capability into its core competence, providing more reliable and higher-quality UEM services for business clients worldwide.
Opportunity
Facilitating Commercial Device Management for Users through Simple and Secure UEM Services Accessible Worldwide
With the fast growth of intelligent commercial endpoints, business demand for unified management and compliance support continues to expand. Committed to “empowering simple and secure commercial device management”, KiwiCloud has launched the UEM solution, providing commercial endpoints worldwide with management services across their lifecycle from device registration, policy allocation, application distribution, and remote operation & maintenance to retirement. As a strategic partner of iMin Technology, an intelligent commercial device manufacturer, KiwiCloud has seen its solution widely applied in catering, retail, and other scenarios. Through the SaaS delivery model, KiwiCloud makes it easier for businesses to manage diverse types of endpoints, further unlocking the values of intelligent commercial devices.
While pursuing fast expansion of operations worldwide over the last years, KiwiCloud recognizes that its existing cloud infrastructure is increasingly inadequate to support tough customer demand for service quality, security, and compliance. Therefore, an upgrading intended to reshape cloud architecture standards and technological capabilities is imperative, so that KiwiCloud can sustain innovation and stay competitive in the global UEM field.
Client Testimonial
"AWS multi-region deployment capability and compliance design enable KiwiCloud to quickly establish presence in different countries while maintaining a consistent user experience during global expansion. This drives continuous improvements in policy reach rates, deployment efficiency and operational control, bringing us closer to our vision of establishing KiwiCloud as a globally leading UEM solution."
— Lin Xibang, CEO of KiwiCloud
Solution
Partnering with AWS to Achieve Co-creation on the Cloud and Build Global Cloud-native UEM Services
To meet future development, KiwiCloud, after prudent evaluation, chose AWS as the core technical foundation for its global UEM solution. This marked its shift from a stage reliant on self-built technology to a new one characterized by cloud-native development and long-term co-creation. Empowered by AWS worldwide infrastructure, mature service system, and security and compliance capabilities, KiwiCloud has built a unified technical foundation applicable to multiple regions. Meanwhile, supported by eCloudrover, an AWS Premier Tier Service Partner, KiwiCloud successfully completed the deployment of cloud environment, and gained further assistance in terms of architecture optimization, technological upgrading, and team building, allowing its team to concentrate more on product innovation and business expansion.
With the help of the professional teams of AWS and eCloudrover, KiwiCloud has built a highly available and resilient cloud-native microservice architecture, enabling the UEM platform to efficiently handle concurrent requests from millions of devices worldwide. KiwiCloud’s core applications are built on Amazon Elastic Kubernetes Service (Amazon EKS), which provides a unified entry point and robust security (e.g., authentication, rate limiting) for external service requests. Service registration and configuration are enabled via Nacos.
Device policies and data management serve as the core framework for UEM, and hold the key to the stable and efficient operation of the platform. By calling the “Device Shadow” REST API provided by Amazon IoT Core, KiwiCloud can easily synchronize the state between devices and their shadows in the UEM solution. Even when a device is offline, its state can be retained through the shadow. Additionally, this capability provides users with support for multi-policy stacking, enabling them to view the latest device policies and deployment results in real time. In terms of data storage, by leveraging the Amazon RDS for MySQL primary-secondary cluster in Amazon Relational Database Service (Aurora and RDS), KiwiCloud guarantees data consistency and reliability, while simplifying operation and maintenance. At data flow and processing levels, KiwiCloud pushes messages from IoT devices to Amazon Managed Streaming for Apache Kafka(Amazon MSK)topics. Microservice applications running on Amazon EKS then subscribe to and consume the data in real time, enabling device state synchronization and business logic processing.
In addition, commercialized UEM SaaS services must be highly secure, providing customers with protection from data access to storage. In the architecture design, KiwiCloud fully integrates AWS networking and security services, and enables intelligent load balance for massive external device requests through Elastic Load Balancing, ensuring stable and efficient visits even in high-concurrency scenarios. Meanwhile, through integration with Amazon WAF, KiwiCloud has in place a multi-layered security protection framework for the web-based management portal, effectively defending common web attacks and potential risks.
Outcome
Boosting the Multi-region Deployment Efficiency of UEM SaaS by 40%, and Achieve a Near-100% Policy Reach Rate with “Shadow Device”
Powered by AWS global cloud infrastructure and flexible managed services, KiwiCloud has improved its multi-region deployment efficiency by over 40%. This makes it possible for KiwiCloud to efficiently launch the UEM services across North America, Europe, Southeast Asia, among other key regions. Meanwhile, driven by network path optimization enabled by proximity access, end-to-end latency dropped by about 20% from pre-migration levels. This further enhances the responsiveness of policy configuration and remote operation & maintenance.
Leveraging the “Shadow Device” provided by Amazon IoT Core, KiwiCloud’s technology team creates a persistent virtual version for every device under UEM, to retain its latest reported state and desired future state. Even if some commercial endpoint devices are temporarily offline, management and configuration policies can still be input into device shadows first, and will be automatically synchronized and executed once the devices are reconnected. Currently, approximately 14,580 device shadows have been created across KiwiCloud’s service nodes worldwide, with a policy reach rate of nearly 100%. KiwiCloud’s product power in addressing customers’ pain points, combined with the proven reliability of AWS Cloud, has helped KiwiCloud secure migration and procurement intentions for nearly 1 million devices worldwide.
From the perspective of business clients, this not only lowers IT and device operation & maintenance risk, but boosts the controllability of device management, making endpoint management across regions and types consistent at any time, any place.
Moreover, with the help of AWS Premier Tier Services Partner eCloudrover, KiwiCloud also integrates several security capabilities provided by AWS in the UEM solution, and enables robust two-way encryption and stringent access control between cloud services and commercial endpoints, to support customers in meeting security and compliance requirements under frameworks such as GDPR and personal information protection laws. These capabilities have helped the UEM solution provided by KiwiCloud earn trust from users in over 100 countries and regions worldwide.
Going ahead, KiwiCloud will further deepen its collaboration with AWS and its Premier Tier Services Partner eCloudrover, replacing more self-built middleware with AWS managed services, to lower operation & maintenance cost and boost system scalability. Meanwhile, KiwiCloud plans to integrate AWS AI capabilities in UEM, to help business users streamline policy configuration and daily operations, and achieve more intelligent and efficient device management. KiwiCloud will also expand the solution from commercial device management to support a wider range of endpoints, catering to diverse application scenarios for both businesses and individuals, and continuously empowering global users in endpoint device operation and management.
About KiwiCloud
KiwiCloud is a cloud-native UEM platform for global commercial device ecosystem, providing comprehensive lifecycle management capabilities, spanning from device deployment and policy configuration to remote operation & maintenance, and compliance management. With security, automation, and a globalized architecture at the core, the platform helps businesses streamline management processes, enhance operating efficiency, and ensure the consistency, controllability and security of devices across regions and types.
About eCloudrover
eCloudrover is a born-in-cloud consultancy, providing businesses with cloud architecture consulting, project migration, hybrid cloud hosting and training services, as well as a variety of cloud migration solutions. Globally, it has served over 1,000 businesses that span a diverse range of industries, including Internet, media, gaming, e-commerce retail, manufacturing, automotives, fintech, and social applications. In the global cloud service consulting industry, eCloudrover has long been a trustworthy provider of one-stop cloud migration solutions. Meanwhile, as an AWS Premier Tier Services Partner, eCloudrover provides AWS consulting services and technical support, conducting in-depth cooperation with AWS across the globe. Its team boasts hundreds of AWS professional architect licenses, and has been successively qualified for capabilities such as AWS migration, cloud security, cloud hosting, IoT, data analysis, machine learning, SAP, and DevOps.