High-performance and secure web content delivery and edge computing.
Fully in-house managed solutions for CDNs. No vendor locks. No third party dependencies.
DDoS mitigation and bots protection
Being developers of Tempesta FW, an HTTPS reverse proxy with advanced application layer (L7) DDoS mitigation features, we know a lot about the modern DDoS attacks and the state-of-the-art DDoS protection open source projects.
Application security
We developed the core of a WAF mentioned in the Gartner magic quadrant 2015. Wallarm commissioned us development of their open source SQL detection library (read more about the case). We also develop Tempesta FW, an open source WAF accelerator.
Web acceleration
While most modern web accelerators are unable to pipeline HTTP requests, Tempesta FW can pipeline HTTP requests utilizing backed server connections more efficiently.
Load balancing
Tempesta FW uses machine learning to dynamically learn and predict changes in the performance and the availability of each of your backend servers. There is no need to configure and maintain many different weights in your web cluster!
Application performance monitoring
Tempesta FW dynamically monitors upstream server performance and using machine learning algorithms predicts how that performance will change in the near future.
Custom software development and consulting
The developers of our company have 10+ years of experience in C and C++ development. We develop the fastest code using C and C++programming languages and x86-64 and ARM assemblers, including SIMD extensions. For example, we outperform Nginx and OpenSSL for more than 80%.
High performance
We’re one of the best in development of highly concurrent data structures, multi-core workloads, text processing and sophisticated algorithms using fundamental mathematics. Our HTTPS accelerator Tempesta FW services up to x3 more HTTP requests per second than Nginx.
Networking
Our networking solutions are implemented in the Linux kernel, employ kernel bypass techniques (e.g. DPDK and Netmap), or use traditional event-driven sockets in user space.
Cryptography
Our engineers developed and optimized performance of several VPN products based on the IPsec and IKE protocols. During our work on Tempesta TLS we improved the original mbed TLS performance for more than 40 times and reported a side channel attack vulnerability for the WolfSSL library. Tempesta TLS outperforms OpenSSL for more than 80% and provides up to 4 times lower latency.
Databases
We’re contributors to MariaDB and Percona XtraDB Cluster. We contributed to the most sophisticated parts of the databases: InnoDB transaction engine, Galera Cluster synchronous replication, SQL query optimizer.
Linux kernel
Our company has deep knowledge of the Linux kernel internals. We have experience with the Linux TCP/IP stack, high-speed network adapter drivers (Intel, Mellanox/NVIDIA), XDP and eBPF programming, virtual memory management (VMM), disk and network filesystems.
Network Security
We have been developing network security software since 2008. We know a lot about network security and we provide consulting services in the area.
Machine learning
We employ ready-to-use deep learning platforms, like PyTorch or TensorFlow, as well as develop ad-hoc high-performance classification and regression algorithms.
Research
FOSDEM, February 2021.
Tempesta TLS is an implementation of TLS handshakes for the Linux kernel. Since the kernel already provides symmetric ciphers, we focus on asymmetric cryptography only, elliptic curves in particular…
Netdev 0x14, August 2020. [paper]
Tempesta TLS implements TLS handshakes in the Linux kernel and focuses on performance to filter out application layer DDoS attacks…
SCALE 18x, March 2020. [slides]
You probably might easily count ten or more web accelerators and the list is constantly growing. Besides different features, the proxies vary significantly in their architecture, how do they interact with the operating system and implement various HTTP standards.
Testimonials
Clutch.co publishes verified reviews conducted by independent analysts. Read the unbiased reviews about our work.