Platform Architecture

The eTag Fuse® Platform

The architectural framework of the eTag Fuse Platform, divided into distinct layers and experiences, provides a comprehensive structure for integration, automation, and interoperability.

It’s architectural design emphasizes modularity and flexibility, allowing organizations to tailor the platform to their specific needs while maintaining strong integration, security, and governance features.

Engagement Layer

The Engagement Layer provides a seamless and integrated user experience. It encompasses components that users and administrators interact with to perform tasks, manage processes, and access applications.

AI Assistant
An intelligent, context-aware assistant designed to help users provide recommendations, make decisions, and automate tasks. It works across the platform to offer predictive insights and interactive support for end-users.

Fuse Hub
A centralized web-based user interface where users and administrators can manage workflows, applications, and platform settings. Fuse Hub acts as the primary interface for accessing the platform’s features.

Fuse Engine
The backend processing engine that drives the platform’s automation, integration, and scheduling capabilities. Fuse Engine orchestrates workflows, manages event triggers, and communicates with external systems.

Experiences Layer

Each experience provides its own set of capabilities but also leverages the core platform services for consistent and reliable operations.

The AI Experience
Provides AI-driven capabilities like predictive analytics, automation, and decision-making.

Tools & Toolsets: Enables users to build and manage AI-driven workflows.
AI Assistants: Interactive assistants for contextual task support.
AI Models & Fine-Tuning: Manages AI models used for specific tasks, including fine-tuning based on user requirements.
AI Automation: Uses AI to drive business automation across workflows.
AI Prompts: Customizable AI prompts for task-specific responses.
Predictive Analytics: Provides forecasts and insights based on historical data.

The Security Experience
Focused on managing identities, access controls, provisioning, and security policies across the platform.

Identity and Access Management (IAM): Manages user identities, roles, and permissions, including provisioning and de-provisioning of user accounts, roles, and access based on organizational needs.
Multi-Factor Authentication (MFA): Adds a layer of security through multi-factor methods such as SMS, email, or app-based authentication.
Federated Identity Management (FIM): Allows users to access multiple domains using a single identity. Supports provisioning capabilities by automatically creating and managing user accounts across integrated domains.
Role-Based Access Control (RBAC): Granular control over who can access specific platform features and resources, with support for automatic provisioning of roles and permissions.
Privilege Access Management (PAM): Secures and monitors privileged accounts, including the provisioning of elevated access when required and its removal when no longer needed.
Risk-Based Access Control (RiBAC): Dynamically adjusts access based on context such as location and user behavior, with provisioning to ensure users only receive access they need based on risk factors.
Certificate-Based Authentication: Adds another layer of security using certificates, including provisioning of certificates for users and systems as part of access control.

The Application Experience
Unifies access to multiple applications, allowing users to interact with all their tools in a single pane of glass.

Workspaces: Personalized or admin-configured spaces that aggregate different tools and applications.
Desktop-Like UI Capabilities: Minimize, maximize, snap, and drag windows, allowing for multitasking.
Application Manager: Manages the lifecycle of integrated applications, including adding, modifying, and removing apps.
Navigations & Proxies: Configure menus and proxies for application access.
Access Banners: Displays important notifications or warnings before accessing applications.

Platform Layer

The Platform Layer underpins the functionalities of the Engagement and Experiences layers. It manages core services, integrations, data flow, and centralized configuration, ensuring the platform’s scalability and reliability.

Core Services
The foundation that supports task automation, process orchestration, and data management across the platform.

• Process Automation: Manages workflow execution and task scheduling.
• Real-Time Data Processing: Ensures data is captured and processed as events occur.

Integration Capabilities
Enables seamless communication between disparate systems, whether internal or external, using connectors and messaging:

• Service Bus Architecture: Centralized routing for message-based communication between systems.
• Pre-Built & Custom Connectors: Facilitates integration with third-party systems and legacy platforms.
• REST/gRPC APIs: Supports real-time data exchange and interaction between systems.
• Routing: Ensures that data is directed to the appropriate services or systems based on defined rules and workflows.
• Message Broker: Manages the exchange of messages between services, ensuring reliable delivery and communication across systems.
• Transformations: Transforms data formats and structures to ensure compatibility between different systems and protocols, enabling seamless data integration.

UI-Level Integration
Enables seamless integration and interoperability at the user interface level, ensuring that different systems can appear and function as one cohesive experience, streamlining workflows and reducing complexity.

Centralized Management
The Centralized Management component gives administrators full control over platform configurations, security, and system operations. It is divided into several management categories:

• Security Management: Manages the exchange of messages between services, ensuring reliable delivery and communication across systems.
• Application Management: Configures applications, pages, navigations, and workspaces.
• AI Management: Manages AI accounts, assistants, models, prompts, and tools.
• Automation Management: Manages automation processes, webhooks, and variables.
• Storage & Data Management: Manages storage, files, images, and retention policies.
• Notification & Feedback Management: Handles notifications, feedback types, and feedback queues.
• Discovery Management (Future): Handles discovery categories and classifications for resource discovery.

Development
The Fuse platform supports numerous extensibility capabilities and development frameworks that allow users to extend the platform’s functionalities. Developers can create custom integrations, applications, workflows, and tools that can interact with the core services of the platform, ensuring that the platform can evolve to meet specific business needs.

System Layer

The System Layer underpins the entire eTag Fuse Platform, providing the foundational infrastructure that supports all other layers. It is responsible for ensuring the platform’s performance, scalability, fault tolerance, and security.

Infrastructure

Handles the physical and virtual resources that the platform runs on, including:
• Cloud & On-Prem Deployment: Supports flexible deployment options, including public cloud, private cloud, and on-premise installations.
• Virtualization & Containers: Utilizes technologies like virtual machines (VMs) or containers (Docker, Kubernetes) to enhance scalability and portability.
• Load Balancing: Distributes workloads evenly across multiple servers or instances to ensure high availability and reliability.

Fault Tolerance & High Availability

• Redundancy Mechanisms: Ensures no single point of failure by maintaining redundant systems.
• Failover Capabilities: Automatically switches to backup systems in case of hardware or network failures.
• Disaster Recovery: Provides backup, restore, and disaster recovery procedures for system recovery after unexpected events.

Networking & Security

Manages the platform’s secure communication and network infrastructure.

• Network Configuration: Configures the network infrastructure to enable secure communication between distributed nodes.
• Firewall & Network Security Implements network-level security measures like firewalls and VPNs to protect data flow.
• Encryption: Ensures secure data transmission using encryption mechanisms.

Performance Optimization

• Caching: Utilizes in-memory caches to reduce latency and speed up data access.

Provider Layer

The Provider Layer is fundamental to the platform’s extensibility and integration capabilities. It enables seamless integration with third-party systems, external services, and identity providers. Providers allow for flexible configuration, allowing the platform to accommodate a wide range of use cases across various domains.

Identity Providers
Enables integration with identity systems such as SAML, OAuth, OpenID, and custom identity providers. These allow seamless Single Sign-On (SSO), Multi-Factor Authentication (MFA), and federated identity management across domains.

AI Providers
Facilitates integration with AI services and models, both internal and third-party, enabling the platform to access and leverage AI tools, fine-tuning capabilities, and predictive models in real-time.

Automation Providers
Enables integration with external systems to automate workflows and processes. Automation providers allow the platform to trigger workflows in response to external events, pull data from external sources, or push information to third-party systems.

Security Providers
Supports integration with security systems and policies, including authentication, role provisioning, and certificate management. This ensures that security measures are extensible and compliant with external security frameworks.

Custom Providers
Fuse allows for the creation and integration of custom providers to meet specific organizational needs. These custom providers can be designed to integrate non-standard systems or enable unique automation, security, or data workflows.

Governance Layer

The Governance Layer ensures that all activities within the platform comply with organizational policies, industry regulations, and data governance best practices. It provides oversight and control mechanisms to ensure that operations, user actions, and data handling follow compliance rules.

Compliance Management
Ensures that the platform adheres to regulations such as GDPR, HIPAA, and other industry standards.

• Audit Trails Captures detailed logs of all user and system actions for compliance auditing.
• Regulatory Compliance: Provides tools to ensure compliance with legal frameworks like data protection laws and information security standards.
• Data Governance Oversees the management, access, and control of data across the platform.
• Data Retention Policies: Manages how long data is stored and when it should be archived or deleted based on policy configurations.
• Access Control Policies: Defines rules and restrictions for data access, ensuring that sensitive data is accessible only by authorized users.

Policy Enforcement
Automatically applies policies across the platform to ensure consistent governance.

• Security Policies Ensures security measures such as multi-factor authentication (MFA), encryption, and role-based access control (RBAC) are enforced.
• User and Session Policies: Controls behaviors like session timeouts, concurrent sessions, and password policies.

Risk Management
Mitigates potential risks and identifies vulnerabilities within the platform.

• Risk-Based Access Control (RiBAC): Adjusts access levels dynamically based on real-time contextual factors like location, user behavior, and device trust.
• Security Incident Management: Monitors and responds to security threats and breaches.

Vertical Layers

The Vertical Layers represent cross-cutting capabilities that apply to multiple components and layers of the eTag Fuse Platform. These layers provide essential services that enhance the platform’s security, integration, interoperability, and operational efficiency.

Security

The Security Vertical Layer ensures that the platform operates in a secure and compliant manner across all areas, providing identity, access management, and protection.

Identity and Access Management (IAM): Centralized management of user identities, roles, and permissions.
Multi-Factor Authentication (MFA): Strengthens authentication by requiring multiple verification methods.
Role-Based Access Control (RBAC): Controls access based on user roles and permissions.
Risk-Based Access Control (RiBAC): Dynamically adjusts access based on user behavior and risk.
Encryption and Certificate-Based Security: Provides data encryption and secure certificate-based authentication across all platform layers.

Integration

The Integration Vertical Layer facilitates communication and data exchange between disparate systems, enabling the platform to function as a unified environment for multiple tools and services.

Service Bus Architecture: Manages data flow between services and external systems.
Pre-Built & Custom Connectors: Supports integration with third-party applications and legacy systems.
Routing, Message Broker, and Transformations: Ensures data routing, message handling, and format transformation between different systems and protocols.

Interoperability

The Interoperability Vertical Layer ensures that various components and systems within the platform can communicate and function together smoothly, regardless of their underlying architecture or technology.

Cross-Domain Communication: Allows different areas of the platform to leverage and access each other’s capabilities.
Discovery Services (Future): Enables real-time discovery of resources, workflows, and applications across the platform.
API Management: Provides control over how APIs interact with internal and external services to ensure smooth communication.

Orchestration

The Orchestration Vertical Layer manages workflows, event-driven processes, and automation within the platform, ensuring that tasks and processes are coordinated effectively.

Workflow Management: Provides tools to create, execute, and monitor workflows.
Event-Driven Automation: Allows workflows and processes to be triggered by specific events or user actions.
Business Process Automation: Streamlines and automates critical business processes across the platform.

Artificial Intelligence

The AI Vertical Layer incorporates AI-driven capabilities throughout the platform, allowing for intelligent automation, decision-making, and predictive analytics.

AI Automation: Integrates AI into workflows to enhance decision-making and automate complex processes.
Predictive Analytics: Leverages AI to provide forecasts, risk assessments, and actionable insights.
AI Tools: Provides tools for building, managing, and deploying AI models and workflows.
AI Agents & Assistants: Delivers context-aware assistants and autonomous agents for operational support and decision-making.

Monitoring and Logging

The Monitoring and Logging Vertical Layer ensures operational transparency by capturing, tracking, and analyzing system events and activities across the platform.

System Monitoring: Provides real-time monitoring of system health, performance, and resource utilization.
Log Management: Collects logs from various platform services for auditing and troubleshooting.
Audit Trails: Captures detailed records of user actions and system events for compliance and governance.
Alerts and Notifications: Issues real-time alerts for system events, errors, and security breaches.

Notification & Alerting

The Notification & Alerting Vertical Layer manages the dissemination of system notifications and alerts to ensure timely communication of critical events and updates across the platform.

Real-Time Alerts: Sends real-time notifications for critical system events or failures to ensure prompt action.
Configurable Notifications: Administrators can configure notifications for specific workflows or system events.
User Notifications: Delivers notifications to end-users regarding updates, actions, or critical tasks.