Tenant isolation
Supabase RLS policies isolate organizations, members, edge sites, nodes, telemetry events, inference requests, and API keys.
Investor-grade trust layer for distributed AI infrastructure.
UmamiEdge should not only route workloads. It must prove tenant isolation, node identity, regional compliance, and operational accountability.
Node identity
Each node uses a scoped credential for telemetry and heartbeat. Production should rotate keys and store only hashes.
Data-residency routing
Inference policies can restrict traffic by country, customer, model risk level, and private node group.
Auditability
Every route decision, model invocation, admin action, and telemetry anomaly should be written to an immutable audit stream.
SLA protection
Routing weighs latency, uptime, available power, GPU utilization, customer tier, and failover readiness.
Cyber defense
SOC use cases stay local where required, while suspicious node activity can trigger automatic quarantine.