/Kasada_logo%402x.b0352c9e9b2ee63ff4747077e0ac334a87876c9c.png "kasada")
Kasada Modernizes for Faster Velocity and Scaling on AWS
2022
Malicious bots represent an increasing threat to online businesses; on average, 40 percent of login attempts to company websites are fake.
Kasada is a bot mitigation company that helps customers detect and defend against bot attacks across web, mobile, and application programming interface (API) channels.
Since gaining its first customer in 2016, Kasada has experienced rapid growth, acquiring a few enterprise clients that drive more than half of business volume. Though headquartered in Australia, Kasada has a growing customer base in the US, where businesses tend to incur much higher levels of web traffic. Scaling is critical, as bots swarm these customers’ websites when they launch a new product. Left unmitigated, bot attacks can bring a website down for hours, even days. Kasada software needs to quickly adapt to extreme spikes in traffic, from 10,000 requests per minute to 3 million requests the next.
To help the business run more efficiently at scale, Kasada began a multifaceted modernization exercise on Amazon Web Services (AWS). Project goals included increasing the velocity of deployment and improving DevOps practices with an automated continuous integration/continuous development (CI/CD) pipeline. The business engaged
CMD Solutions, an
AWS Partner, to accelerate project delivery.
Facilitates Autoscaling with Move to Microservices
Even before the modernization exercise, Kasada had initiated preliminary work to shift from single-tenant to multi-tenant architecture, from monolith to microservices. This strategy wouldn’t only reduce the cost to serve per customer, but also remove interdependencies that could hinder scaling. The engineering team considered how to scale optimally and deploy changes as fast as possible, which led them to containers and Kubernetes.
Kasada and CMD did extensive work to find the optimum balance between the number and type of instances used, as well as the limit of containers on each instance. The business is using
Amazon Elastic Container Service (Amazon ECS) and
Amazon Elastic Kubernetes Service (Amazon EKS) for container orchestration, both of which autoscale on demand.
“We’re confident now that we can scale up if something unknown happens, which takes place quite often given the increasing sophistication of attackers and the speed at which they adapt,” says David Turner, head of engineering at Kasada.
In regards to the partner support received, Turner adds, “CMD Solutions added valuable expertise around Kubernetes to support our decision-making process. We’d come up with a recommendation, they’d do the work and get the data, and then show us the impact of each decision path.”
Being able to deploy whenever we need had a massive impact on our adaptability when bots try to swiftly find a way around our software.”
David Turner
Head of Engineering, Kasada
Improves Resource Utilization Rates
Containerization with autoscaling has also improved resource utilization for Kasada. CPU rates are half their previous levels, down to 12 percent from 25 percent. Right-sizing instances and the number of containers per instance, performance improvements due to smart caching practices, and strategic use of
Amazon Elastic Compute Cloud (Amazon EC2) Spot Instances have all contributed to cost reduction.
Thwarts Bot Threats with Faster Releases and Response Times
Bots and their makers are fierce adversaries who seek out the tiniest vulnerabilities on websites. Kasada needs to constantly release and update its software to stay one step ahead. Transformation of its CI/CD pipeline and a streamlined DevOps practice have facilitated a shorter release cycle. Kasada was releasing once every two weeks or even once a month in some cases, and can now release daily. “Being able to deploy whenever we need had a massive impact on our adaptability when bots try to quickly find a way around our software,” says Turner.
Previously, deployment was painstaking. Engineers had to carefully select deployment windows with cushion time in case things didn’t go as planned. “It wasn’t a fun process and also a time sink for a full day,” Turner shares. “We no longer need someone to handhold releases; it’s just a one-button click and our people are confident doing it. Streamlining our CI/CD process definitely led to higher employee and customer satisfaction because we can iterate and deliver features faster.”
Kasada has also reduced application response times to about 30 milliseconds, which Turner attests is “insanely fast.” He says, “It’s imperative we have the fastest response times possible on a consistent basis. We need to stay up and scale up, both of which we can do without any concerns on AWS.”
Boosts Standardization and Automation
Standardization and automation using
AWS CloudFormation to provision infrastructure as code has likewise contributed to increased velocity, by minimizing the burden on operations. Implementation of an
AWS Landing Zone with
AWS Control Tower has also standardized governance and agile best practices across Kasada’s IT environment, paving the way for multi-tenant architecture. Onboarding of new customers is simpler, with automated deployment as part of Kasada’s CD process, “to ensure every customer starts on the right foot,” adds Turner.
Kasada now has all its customers on the same version of software, whereas previously 10 out of 15 customers could be using different versions. “CMD has helped a lot with finding a middle ground and standardizing, in addition to automating our testing strategy for each release under a modern CI/CD setup,” says Turner.
Eases Expansion through Codified Security and Compliance
As part of its modernization, Kasada codified security and compliance in alignment with the Payment Card Industry Data Security Standard (PCI DSS) and SOC 2 auditing framework. “To be a leading security company, you need certain certifications to show that you walk the walk. If a customer has PCI DSS compliance, we, as a proxy service, have to be compliant,” explains Turner. Services such as
AWS Security Hub,
AWS Config, and
Amazon GuardDuty have helped Kasada automate threat detection and access control.
Confident in its stance as a compliant service provider for businesses of any size, Kasada is pursuing further business expansion in the US while considering new markets in Asia and Europe. The modernization work till now has benefited further development of its multi-tenant architecture, which is currently in progress. Turner reflects, “Our overall experience working with CMD Solutions and AWS has been really positive. It’s been great not to have to do all this work on our own from scratch.”
Learn More
To learn more, visit https://aws.amazon.com/modern-apps/
About Kasada
Kasada is a bot mitigation company whose software defends web, mobile, and API channels against various types of threats. Its scalable software is easy to deploy and adapts to new attacks in seconds.
Benefits
- Scales from 10,000 to 3 million requests per minute
- Accelerates velocity of releases, facilitating daily release cycle
- Saves costs from lower CPU utilization, down to 12% from 25%
- Lowers application response times to 30 milliseconds or less
- Standardizes governance and access controls
- Achieves PCI DSS, SOC 2 compliance with codified security
- Facilitates multi-tenant architecture
AWS Services Used
AWS CloudFormation
AWS CloudFormation lets you model, provision, and manage AWS and third-party resources by treating infrastructure as code.
AWS Control Tower
If you have multiple AWS accounts and teams, cloud setup and governance can be complex and time consuming, slowing down the very innovation you’re trying to speed up.
AWS Security Hub
AWS Security Hub is a cloud security posture management service that performs security best practice checks, aggregates alerts, and enables automated remediation.
Amazon Elastic Kubernetes Service
Amazon Elastic Kubernetes Service (Amazon EKS) is a managed container service to run and scale Kubernetes applications in the cloud or on-premises.
Get Started
Companies of all sizes across all industries are transforming their businesses every day using AWS. Contact our experts and start your own AWS Cloud journey today.