EMQX Dedicated New Feature: Event History is available for private beta test. →

Exploring the Data Privacy-First Architecture of EMQX Cloud BYOC

EMQX Cloud Team
May 6, 2023
EMQX Cloud
Exploring the Data Privacy-First Architecture of EMQX Cloud BYOC

With the exponential growth of the Internet of Things (IoT), ensuring data privacy and security has become more crucial than ever. The need for a secure, scalable, and reliable IoT infrastructure has become paramount.

EMQ recently launched EMQX Cloud BYOC edition with a privacy-first architecture, providing an ideal solution that addresses these concerns. Users can deploy MQTT clusters in their own cloud environment while completely controlling data privacy and security.

Learn more about BYOC: Exploring BYOC: Taking Your MQTT Cloud Service to the Next Level

In this blog, we will dive into the architecture of EMQX Cloud BYOC and explore how it can secure your IoT infrastructure.

EMQX Cloud BYOC Overall Architecture

EMQX Cloud BYOC provides a flexible and scalable architecture that gives customers complete control over access. The architecture consists of two environments:

  • The EMQX Cloud's environment: Offering a range of features, including access control management, data integration, monitoring, and alerts, which enable customers to manage their MQTT cluster.
  • The customer cloud environment: Hosting an EMQX MQTT cluster managed by EMQX Cloud. All of the customer's MQTT data traffic goes in and out through this MQTT cluster.

The architecture diagram of EMQX Cloud BYOC

The architecture diagram of EMQX Cloud BYOC

In the customer's cloud environment, an EMQX cluster and BYOC Agent node are placed in an independent VPC. The load balancing service of the cloud platform is used to control the MQTT device traffic inflow. VPC peering is utilized for communicating with other IoT applications or message persistence components. The BYOC Agent node is responsible for managing the EMQX cluster, monitoring logs, and conducting data backup tasks.

In the EMQX cloud environment, a web-based management console is provided for easy management and control of your EMQX clusters, as well as viewing cluster logs and monitoring data. The Operation and Maintenance (O&M) Service is designed to collect monitoring data and logs, manage alert rules, and automate self-recovery processes.

The Heart of BYOC: Privacy-First Architecture

The privacy-first architecture of EMQX Cloud BYOC can also be divided into two parts: the control plane and the data plane.

The control plane, located in the EMQX cloud environment, features a management console and monitoring data. Its primary function is to collect monitoring data during system operation and send control instructions to the customer's cluster. It only deals with control and monitoring data and does not involve any business data inflow or outflow.

On the other hand, the data plane includes EMQX clusters and BYOC Agent nodes, both of which are located in the customer's cloud environment. They are responsible for managing the inflow and outflow of customers' business data.

In this way, privacy-first is at the heart of EMQX Cloud BYOC, as it provides complete control over access and improved privacy and security for enterprises looking to deploy secure and reliable IoT systems. With this BYOC architecture, customers' business data can be securely isolated in the customer's cloud environment, which meets customers' security and compliance needs.

Pre-Requests for Using EMQX Cloud BYOC

To use EMQX Cloud BYOC, customers need to meet certain technical requirements as follows:

  • Familiarize yourself with the basic concepts of public cloud services and network structures, such as VPC, subnet, ECS, etc.
  • Have a public cloud account and an EMQX Cloud account.
  • Prepare relevant cloud resources and account permissions.
  • Set up an Ubuntu 20.04 LTS environment to run the installation script.
  • Prepare EMQX Cloud BYOC license.
  • Prepare a domain name and its SSL certificate

Go For BYOC and Control Your Data Today

Besides a privacy-first architecture that enables secure data traffic and storage in your own cloud, EMQX Cloud BYOC also provides enterprise-grade security features and customization options that allows scalable, flexible deployment and integration. With the support of technical experts from EMQ, your MQTT infrastructure management will be easier than ever.

Visit our website or contact us for more info.

Try EMQX Cloud for Free
No credit card required
Get Started →
BYOC
Edit
EMQX Cloud Team

EMQX Cloud Team

The EMQX Cloud team provides a secure, reliable, and fully managed MQTT service. The team assists IoT developers in easily launching MQTT services unburdened and unworried about infrastructure maintenance.

Subscribe to our blogs

Related Posts

Jul 6, 2023EMQX Cloud Team
EMQX Cloud BYOC is Now Available on Google Cloud!

In this blog, we will explore the seamless integration, enhanced security, simplified deployment process, and comprehensive monitoring and operations that EMQX Cloud BYOC on Google Cloud offers.