β Back to Home
β Back to Home
π‘οΈ EDD-i 2.0 Architecture
Enterprise Diagnostic Dashboard - Interactive | Cybersecurity Intelligence Platform
Production ReadySystem Overview
EDD-i is an enterprise-grade cybersecurity intelligence and compliance management platform focused on CIS Controls v8. It provides real-time compliance tracking, vulnerability scanning, risk assessment, and AI-powered remediation guidance.
Core Capabilities
- Real-time compliance calculation across 8 major compliance frameworks
- Automated vulnerability scanning via EDGAR and Belarc
- FAIR Risk Modeling for quantitative risk assessment
- AI-powered remediation recommendations via OpenAI
- Evidence upload and tracking for compliance audits
- Multi-tenant architecture for enterprise deployments
- Glassmorphism UI with real-time dashboard
Technology Stack
Backend
- Node.js 20+
- Express.js
- TypeScript
- Prisma ORM
- PostgreSQL 17
Frontend
- React 18+
- TypeScript
- Tailwind CSS
- Framer Motion
- D3.js (Charts)
Integrations
- OpenAI GPT-4
- EDGAR Scanner
- Belarc Advisor
- NVD Database
- GitHub API
Infrastructure
- Docker Containers
- Azure Cloud
- Kubernetes
- CI/CD Pipeline
- Redis Cache
Three-Tier Architecture
βββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββ
β Golden/Demo Environment β
β ββββββββββββ ββββββββββββ ββββββββββββ ββββββββββββββββ β
β β App β β DB β β Scanner β β Dashboard β β
β βContainer β βContainer β βContainer β β (React 18) β β
β ββββββββββββ ββββββββββββ ββββββββββββ ββββββββββββββββ β
βββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββ
β
βΌ
βββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββ
β Customer Environments β
β ββββββββββββ ββββββββββββ ββββββββββββ ββββββββββββββββ β
β β App β β DB β β Scanner β β Dashboard β β
β βContainer β βContainer β βContainer β β (React 18) β β
β ββββββββββββ ββββββββββββ ββββββββββββ ββββββββββββββββ β
β β
β (Isolated instances per customer with custom branding) β
βββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββContainer Images
- eddi-app - Node.js/Express backend with CIS Controls logic
- eddi-db - PostgreSQL 17 with 30-table schema
- scanner-edgar - Network vulnerability scanning with NVD integration
- scanner-belarc - Hardware/software asset inventory collection
Core Components
Navigation & Compliance Engine
- CIS Controls v8 hierarchical navigation with 303+ safeguards
- Real-time compliance calculation based on evidence
- Automated scoring across implementation groups
Dashboard & UI
- Glassmorphic design with real-time updates
- Compliance gauge visualizations
- Risk heatmaps and trend analysis
- Interactive safeguard detail pages
Risk Assessment
- FAIR (Factor Analysis of Information Risk) modeling
- Quantitative risk calculations
- Asset-to-threat mapping
- Vulnerability prioritization
Scanner Integration
- EDGAR network scanning (SSH, WinRM, nmap)
- Belarc hardware/software inventory
- NVD database integration for CVE data
- Automated evidence collection
AI-Powered Analysis
- OpenAI GPT-4 integration for remediation guidance
- Context-aware recommendations
- Automated security assessment
Comprehensive Compliance Coverage
| Framework | Controls/Safeguards | Purpose | Status |
|---|---|---|---|
| CIS Controls v8 | 303 Safeguards (6 IGs) | Primary security baseline | Active |
| NIST Cybersecurity Framework | 22 Core Functions | Risk management maturity | Active |
| HIPAA | 18 Technical Safeguards | Healthcare data protection | Active |
| GDPR | 12 Data Protection Principles | EU data privacy | Active |
| ISO 27001 | 93 Controls | Information security management | Active |
| CMMC 2.0 | 23 Practices | DoD contractor compliance | Active |
| PCI DSS 4.0 | 12 Requirements | Payment card security | Active |
| SOC 2 Type II | 5 Trust Service Criteria | SaaS company auditability | Active |
Database Schema
30-table PostgreSQL schema supporting comprehensive compliance tracking and evidence management:
Key Tables
- cis_controls - CIS Controls v8 safeguards hierarchy
- compliance_status - Real-time compliance scores
- vulnerabilities - Discovered CVEs and scanner findings
- evidence - Uploaded evidence for compliance
- risk_assessments - FAIR risk modeling data
- assets - IT assets from Belarc scans
- scan_results - Historical scanner data
- remediation_tasks - AI-generated action items
Performance & Deployment
Performance Targets
- Dashboard load time: <2 seconds
- Compliance calculation: <500ms
- Scanner integration: Real-time data ingestion
- API response time: <200ms for 95th percentile
Deployment Options
- Golden Environment - Shared demo instance for prospects
- Customer Instances - Isolated multi-tenant deployments
- Azure Cloud - Fully managed infrastructure
- Docker Containers - Easy scaling and updates
- Kubernetes Orchestration - Enterprise-grade operations
Security Architecture
- End-to-end encryption for sensitive data
- Role-based access control (RBAC)
- Audit logging for all compliance actions
- Multi-tenant data isolation
- Regular security assessments and penetration testing
- Secure credential storage for scanner integrations
- HIPAA and GDPR compliance by design
Integration Points
Scanners
- EDGAR (SSH/WinRM)
- Belarc Advisor
- NVD Database
- Custom plugins
AI & Analytics
- OpenAI GPT-4
- D3.js visualization
- Risk calculation
Enterprise
- SAML 2.0 SSO
- GitHub/GitLab
- Slack webhooks
- Email notifications
Project Status
Status: 100% Feature Complete
Completed Features:
- Navigation API & CIS Controls Seed Data
- Accordion Navigation Component
- Dashboard Layout with Glassmorphism UI
- Database Schema (30 tables)
- Real-time Compliance Calculation Engine
- FAIR Risk Modeling
- Belarc & EDGAR Scanner Integration
- OpenAI Integration for Recommendations
- Safeguard Detail Pages with Evidence Upload