Documentation

ASTRA BASTION Documentation

Everything you need to secure, govern, and monitor AI systems across your enterprise. From initial setup to advanced agent orchestration.

/

Quick Start

Get ASTRA BASTION protecting your AI workloads in under 10 minutes.

Sign Up & Configure Tenant

Create your organization account, invite team members, and configure RBAC roles. Each tenant gets full data isolation via PostgreSQL Row-Level Security.

Connect Your AI Gateway

Point your LLM API calls through ASTRA's Gateway. Supports OpenAI, Anthropic, Google, Azure, AWS Bedrock, and 13+ more providers out of the box.

Monitor Your Trust Score

Your organization's Trust Score computes automatically across 5 pillars. Set thresholds, configure alerts, and track improvement over time.

Architecture Overview

Modular Monolith, Built for Scale

ASTRA BASTION is architected as a modular monolith with 12 bounded contexts following Domain-Driven Design. Each module enforces strict boundaries through hexagonal architecture (ports and adapters), enabling independent evolution while sharing infrastructure.

Hexagonal Architecture -- Domain logic has zero framework dependencies
CQRS -- Selective command/query separation for high-throughput modules
Event-Driven -- CloudEvents v1.0 on Redis Streams with consumer groups
Result Monad -- Result[T, DomainError] pattern throughout -- no thrown exceptions

# Architecture layers

modules/{module}/

domain/ # Pure business logic

entities/ value_objects/ events/ services.py

ports/ # Interfaces only

inbound/ outbound/

adapters/ # Implementations

rest/ persistence/ clients/

application/ # Use cases

commands/ queries/ dtos.py

12 modules | 13 DB schemas | 118 tables

137 domain events | ~239 API endpoints

Platform Modules

Each module is a fully self-contained bounded context with its own database schema, domain events, API surface, and test suite.

IAM

Identity, authentication, RBAC, ABAC, sessions, API keys, tenant provisioning, and SSO/SAML integration.

AI Gateway

14-step request pipeline with prompt injection detection, PII redaction, rate limiting, kill switch, and universal LLM adapter for 18+ providers.

Trust Engine

Composite trust scoring across 5 pillars (Security, Compliance, Risk, Resilience, AI Governance) with score decay and event-driven recalculation.

AEGIS

Agent security with kill switch, inter-agent HMAC, memory poisoning detection, MCP firewall, behavioral anomaly detection, and Shadow AI discovery.

Compliance

EU AI Act (Art. 5-53), NIST AI RMF (24 subcategories), cross-framework control mapping, evidence collection, and audit trail.

Risk

Monte Carlo simulation (10K iterations), FAIR quantitative analysis, PERT distributions, VaR/CVaR, threat modeling, and portfolio aggregation.

Resilience

Chaos engineering scenarios, blast radius analysis (BFS), RTO/RPO measurement, and breach-and-attack simulation framework.

BASTION AI

Platform-native AI assistant with RAG pipeline, provider failover, context-aware security insights, and multi-provider orchestration.

Platform

OCSF v1.4.0 event normalization, notification dispatch with retry, multi-channel routing, report generation, and workflow engine.

Admin

System configuration, tenant onboarding wizard, license management, feature flags, and platform health monitoring.

CyberTwins

Digital twin infrastructure modeling, graph-based attack path analysis, campaign simulation, and asset relationship mapping.

Data Governance

ML-powered data classification (PII/PHI/PCI), DSAR processing across 7 jurisdictions, data lineage, and retention enforcement.

Key Concepts

Multi-Tenancy (RLS)

Every table includes a tenant_id column with PostgreSQL Row-Level Security policies. Data isolation is enforced at the database level -- not the application level -- making cross-tenant data leakage architecturally impossible. Middleware sets SET LOCAL app.current_tenant_id on every request.

Event-Driven Architecture

Modules communicate asynchronously via 137 domain events published to Redis Streams using the CloudEvents v1.0 envelope format. Consumer groups with XAUTOCLAIM ensure at-least-once delivery. A transactional outbox pattern guarantees events are published only when the originating database transaction commits.

CQRS Pattern

High-throughput modules (AI Gateway, Trust Engine, CyberTwins) use selective Command/Query Responsibility Segregation. Write operations go through command handlers with domain validation; read operations use optimized query handlers that can bypass the domain layer for performance. Other modules use standard CRUD where CQRS overhead is unnecessary.

Trust Score (5 Pillars)

Your organization's Trust Score is computed from 5 weighted pillars: Security (25%), Compliance (25%), Risk (20%), Resilience (15%), and AI Governance (15%). Each pillar pulls real-time data from its respective module via Anti-Corruption Layer adapters. Scores decay over time using configurable models (linear, exponential, step, sigmoid) and recalculate on domain events with 30-second debounce.

SDKs & Libraries

Python SDK

Full-featured SDK with async support, type hints, and auto-retry. Built on httpx with Pydantic models.

bash

"text-purple-400">pip install astra-bastion

TypeScript SDK

Fully typed SDK for Node.js and edge runtimes. Tree-shakeable with zero dependencies.

bash

"text-purple-400">npm install @astra-bastion/sdk

REST API

~239 endpoints with OpenAPI 3.1 specs. JSON envelope responses, cursor pagination, RFC 7807 errors.

bash

"text-purple-400">curl https://api.astrabastion.com/api/v1/health

Ready to Secure Your AI?

Get started with a guided demo and see how ASTRA BASTION protects your AI workloads from prompt injection, data leakage, and compliance violations.

Request a Demo