Reference Architectures
Multi-Tenant
Multi-Tenant architecture serves multiple organizations or business units through shared infrastructure with logical isolation. Tenants share compute, storage, and network resources while maintaining separation.
Architecture diagram
Tenant A ---> Shared Infrastructure ---> Servers A
Tenant B ---> (with isolation) ---> Servers B
Multiple tenants share infrastructure components. Isolation mechanisms prevent cross-tenant access.
Characteristics
Multi-Tenant architecture suits platform providers and enterprises with separation requirements. Isolation becomes the paramount concern. A failure of tenant isolation exposes one tenant's data to another.
Priority controls
| Component | Priority Controls |
|---|---|
| Tenant Isolation | AZN-02, AZN-04, DAT-05 |
| Data Segregation | DAT-04, DAT-06, OBS-06 |
| Per-Tenant Governance | GOV-01, GOV-02, GOV-05 |
| Segregated Audit | OBS-03, OBS-06 |
Required certification profile
Multi-Tenant deployments require Critical profile certification. The potential for cross-tenant data exposure demands the highest assurance level.