Inventory
This inventory provides a detailed overview of the technical building blocks that constitute the Nexus SDV platform. It highlights the synergy between managed GCP services, existing open-source components, and the dedicated logic contributed by the Nexus project.
GCP Infrastructure
Section titled “GCP Infrastructure”The foundation of the platform relies on managed Google Cloud services for enterprise-grade scalability and security.
- Cloud Bigtable: The primary high-performance data sink for vehicle telemetry and transactional data.
- Google Kubernetes Engine (GKE): The scalable compute runtime hosting the Nexus service mesh.
- Artifact Registry: Central management for container images and platform artifacts.
- Secret Manager: Secure storage for cryptographic keys and service credentials.
- Certificate Authority (CAS): Underpins the “Remote-only” PKI for vehicle identity.
- Cloud DNS: Manages service discovery and secure routing for external vehicle connectivity.
Infrastructure as Code: All resources are provisioned via Terraform. See the iac/terraform folder for details on Service Accounts and Networking.
Base Services
Section titled “Base Services”These services form the core of the Nexus platform. We distinguish between Nexus Open Source Contributions (developed specifically for this framework) and integrated Existing Open Source Components.
Nexus Open Source Contributions
Section titled “Nexus Open Source Contributions”These components were built from the ground up to enable the Nexus SDV architecture:
| Component | Description |
|---|---|
| Registration Server | Handles factory trust verification and issues operational certificates. |
| NATS Auth Callout | Implements fine-grained, JWT-based authorization for the NATS messaging layer. |
| Data API | Provides a secure governance and access layer on top of raw Bigtable data. |
Existing Open Source Components
Section titled “Existing Open Source Components”Nexus integrates these industry-standard tools to provide a robust backbone:
- NATS & nats-box: The distributed messaging system. nats-box is a utility container providing the NATS CLI and tools for monitoring and managing the cluster.
- nats-bigtable-connector: Streams NATS messages directly into Bigtable.
- Keycloak: The central Identity Provider (IdP) for OIDC-based authentication and token exchange.
Service Examples
Section titled “Service Examples”To kickstart development, Nexus includes reference services that showcase platform integration.
- Data API Sampler: A blueprint for building custom services that leverage the Nexus Data API.
Sample Clients
Section titled “Sample Clients”Functional reference implementations that demonstrate the required security handshakes and telemetry patterns.
- Python Client: A running software example in Python for vehicle simulation and platform interaction.
- Go Client: A running software example in Go demonstrating platform integration.