Security · /// Trust Layer

Enterprise-grade security.

Security is at the core of everything. Encryption, RBAC, secure agents, and a signed audit chain — every layer designed with the assumption that performance-testing data is sensitive infrastructure data.

Talk to an Engineer Start Free Trial

Company › Security

Mode: BasicOnline

Security Vault

Layered defenses · live access-events · signed audit chain.

TLS

1.2+

in transit

JWT TTL

short

no browser exposure

Roles

7+N

built-in + custom

Audit log

signed

every action

Encryption

RBAC

Secure Agents

Compliance

secure perimeter

tls 1.2+

Active eventlive

JWT verified

Server-side BFF validated short-lived token · Blazor Server · no browser JWT exposure.

Audit log · stdoutlast 5 events

DocumentationSupportCreate Ticket

Security pillars

Four pillars. One audit chain.

Encryption, RBAC, secure agents, and compliance — all layered into the same trail your auditors read.

ENCRYPT

Data encryption

All data is encrypted at rest and in transit using industry-standard protocols.

RBAC

Role-based access

Granular role-based access control with 7 built-in roles and custom permission trees.

AGENTS

Secure agents

Agents use unique enrollment tokens and API keys for secure communication.

COMPLIANCE

Compliance practice

Best-practice alignment with SOC 2, GDPR, and other widely-adopted security standards.

Layered architecture

Security layered into the build — not bolted on.

The platform architecture is built with security-first principles. From the Blazor Server frontend that keeps JWTs out of the browser to typed service interfaces and SignalR WebSocket security — your data stays protected.

"Compliance is the floor. Honest engineering is the ceiling."

Blazor Server frontend

JWTs stay out of the browser. The web UI never holds the auth secret — server-side BFF pattern by design.

Typed service interfaces

500+ REST endpoints with typed service contracts. Misuse is a compile error, not a runtime surprise.

SignalR over WSS

Live cockpit traffic runs over WebSocket Secure — no plaintext channel in the realtime path.

Agent enrollment tokens

Each agent registers with a unique token and rotates API keys without disrupting workloads.

RBAC with HTTP-method control

7 built-in roles plus custom roles · permission tree by category · GET / POST / PUT / DELETE per endpoint.

Signed audit log

Every action — every grant, rotation, push, pull, and run — signs into the same immutable audit chain.

Operational commitment

Audits, penetration tests, and a dedicated team.

The platform is designed for the most demanding enterprise environments. Security is operational, not aspirational.

Designed for the most demanding enterprise environments — performance testing and monitoring often involve sensitive infrastructure data.
Security-first architecture: Blazor Server frontend that keeps JWTs out of the browser, typed service interfaces, and SignalR WebSocket security.
Regular security audits and penetration tests to identify and mitigate potential vulnerabilities.
Dedicated team maintaining the highest levels of security for customers — compliance is the floor, not the ceiling.

Test with confidence. Your data stays protected.

Talk to an engineer about the architecture, ask the hard questions, or start the trial and see the audit log run end-to-end.