Polygeist Ltd

Polygeist Forge: A Tactical Platform for Offensive & Defensive Media Forensics

Forge is a cloud service providing fully automated multimedia forensic and investigative analysis with high security, high availability, and zero-friction onboarding. Forensic signatures are automatically extracted, without an army of analysts. Forge cores provide a variety of domain-specific functions, from biometric analysis to geolocation and timestamping.

Features

• Real-Time Video, Image, and Audio Forensic analysis at cloud scale
• Condor: Beyond state-of-the-art deepfake, stable diffusion, and voice cloning detection
• Hornet: Sensor Pattern Noise for camera identification
• Face Core: Appearance matching and biometric age estimation
• Voice Core: Speech processing, voice-print matching, and acoustic matching
• Pixel-Based Time and Location analysis
• Deep forensic metadata analysis

Benefits

• The latest tools, continuously updated to the state-of-the-art
• Zero commitment credit-based usage model
• Automate forensics for rapid turn-around intelligence environments
• Identify subjects of interest, devices, and attempts at deception automatically
• Collaboration and intelligence-sharing at your fingertips
• Reduce burden of manual processes on expert users
• Automate triage of datasets for disclosure
• Forge Æther: Public cloud offering, zero-latency onboarding, continuous updates
• Forge Crypt: Maximum security on-premises private cloud installation

£0.10 to £0.40 a unit

• Free trial available

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at vince@polygei.st. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

633293588327504

Contact

Vincent Calloway
07884394158
vince@polygei.st

Service scope

• Software add-on or extension: No
• Cloud deployment model:
  • Public cloud
  • Private cloud
  • Community cloud
  • Hybrid cloud
• Service constraints: None.
• System requirements:
  • Server-grade Linux Environment
  • Docker Container Engine
  • Docker Compose or Kubernetes

User support

• Email or online ticketing support: Yes, at extra cost
• Support response times: Online support is staffed 0900-1700 weekdays. Other arrangements are available by agreement.
• User can manage status and priority of support tickets: No
• Phone support: No
• Web chat support: No
• Onsite support: Yes, at extra cost
• Support levels: Polygeist offers, at extra cost, support for Forge on Business Days 0900-1700. Tickets are responded to within 1 business day.; ; Other support arrangements are possible by special arrangement.
• Support available to third parties: No

Onboarding and offboarding

• Getting started: Users can sign up for a free Forge Æther account using a UK Government email address and start using their trial credits immediately.; ; Private cloud deployments of Forge Crypt will be provisioned and deployed against a particular use-case. This configuration process is defined by a mutually agreed Statement of Work, charged along our standard SFIA support rates. Polygeist support is available for installation of Forge on the cloud environment of the user's choice - including hybrid clouds, private clouds, and multi-cloud configurations.
• Service documentation: Yes
• Documentation formats: HTML
• End-of-contract data extraction: Data is available through the service interface for export as standards-compliant JSON documents.
• End-of-contract process: The end-of-contract process will be determined in collaboration with the user on a per-deployment basis.

Using the service

• Web browser interface: Yes
• Supported browsers: Chrome
• Application to install: No
• Designed for use on mobile devices: Yes
• Differences between the mobile and desktop service: The full suite of Forge features are available on mobile devices.
• Service interface: Yes
• User support accessibility: None or don’t know
• Description of service interface: Service interface is primarily for Polygeist support staff, but can be made available by special arrangement. Provides raw data access, performance monitoring data, and error log triage.
• Accessibility standards: WCAG 2.1 AA or EN 301 549
• Accessibility testing: WCAG accessibility tested by third party interface provider, aiming for AA conformance.
• API: No
• Customisation available: Yes
• Description of customisation: Customisation of workflow elements in a Forge Crypt deployment is available to achieve maximum utility for your use case. These tailored deployments are achieved through agreed statements of work with Polygeist. Polygeist can provide a dedicated team of specialists to get you up and running with custom Forge Crypt integrations.; ; These services are procured through a mutually agreed Statement of Work. Costs for these services are on a T&M basis, with rates according to the Polygeist SFIA rate card.

Scaling

• Independence of resources: Forge Æther is hosted on common infrastructure with IAM role separation to ensure firewalls maintained between tenant instances. Forge Crypt can be installed on dedicated resources, accounts, or full hardware stack as required.

Analytics

• Service usage metrics: Yes
• Metrics types: Service interface includes CPU and Memory load across processing cluster, and per-file analysis performance data. It also offers detailed application performance monitoring for all cores, services, and ingest pipelines, as well as instrumentation for web interface use.
• Reporting types:
  • API access
  • Real-time dashboards
  • Reports on request

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Conforms to BS7858:2019
• Government security clearance: Up to Developed Vetting (DV)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations:
  • United Kingdom
  • European Economic Area (EEA)
• User control over data storage and processing locations: Yes
• Datacentre security standards: Managed by a third party
• Penetration testing frequency: At least every 6 months
• Penetration testing approach: In-house
• Protecting data at rest:
  • Physical access control, complying with another standard
  • Encryption of all physical media
  • Scale, obfuscating techniques, or data storage sharding
• Data sanitisation process: Yes
• Data sanitisation type: Deleted data can’t be directly accessed
• Equipment disposal approach: A third-party destruction service

Data importing and exporting

• Data export approach: Data is available through the service interface for export as standards-compliant JSON documents.
• Data export formats: Other
• Other data export formats: JSON
• Data import formats:
  • CSV
  • Other
• Other data import formats:
  • Common image formats, including JPEG, HEIC, PNG, BMP
  • Common video formats, including MP4, h265, AVI, QuickTime
  • Common audio formats, including M4A, OGG, MP3, WAV

Data-in-transit protection

• Data protection between buyer and supplier networks:
  • Private network or public sector network
  • TLS (version 1.2 or above)
• Data protection within supplier network:
  • TLS (version 1.2 or above)
  • Other
• Other protection within supplier network: Virtual Private Cloud network layers provided through Kubernetes or internal Docker networks.

Availability and resilience

• Guaranteed availability: Availability is primarily impacted by the hosting provider selected by the user. Specific Forge SLAs can be agreed between Polygeist and the user as required.
• Approach to resilience: Forge is built with redundancy, scalability, and availability at its core. Details of how this is achieved are confidential, but available on request to UK Government customers.
• Outage reporting: Soft outages are reported via API, and further detail logged on the service dashboard.

Identity and authentication

• User authentication needed: Yes
• User authentication:
  • 2-factor authentication
  • Identity federation with existing provider (for example Google Apps)
  • Username or password
• Access restrictions in management interfaces and support channels: Management accounts are held separate from user accounts.Process for allocation of these accounts will be determined in collaboration with the user on a per-deployment basis.
• Access restriction testing frequency: At least every 6 months
• Management access authentication:
  • 2-factor authentication
  • Identity federation with existing provider (for example Google Apps)
  • Dedicated link (for example VPN)
  • Username or password

Audit information for users

• Access to user activity audit information: Users contact the support team to get audit information
• How long user audit data is stored for: At least 12 months
• Access to supplier activity audit information: Users contact the support team to get audit information
• How long supplier audit data is stored for: At least 12 months
• How long system logs are stored for: At least 12 months

Standards and certifications

• ISO/IEC 27001 certification: No
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: No
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: No
• Security governance approach: Security is maintained through engineering best practice, security board reviews, and continuous integration software pipelines for automated vulnerability scanning.
• Information security policies and processes: Information security policies vary based on the user-selected cloud hosting provider. These policies will be determined in collaboration with the user.

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: Change management policies will be determined in collaboration with the user on a per-deployment basis.
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: Vulnerabilities in our software stack are automatically detected and patched through our software release process. Patches for critical vulnerabilities can be made available on demand, per the policies determined in collaboration with the user.
• Protective monitoring type: Undisclosed
• Protective monitoring approach: Protective monitoring practices will be determined in collaboration with the user on a per-deployment basis.
• Incident management type: Supplier-defined controls
• Incident management approach: Incident management policies will be determined in collaboration with the user on a per-deployment basis.

Secure development

• Approach to secure software development best practice: Conforms to a recognised standard, but self-assessed

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Tackling economic inequality
  • Wellbeing

  Fighting climate change

  Forge offers a unique suite of highly sensitive power-related optimisations, ensuring that AI, machine learning, and statistical models are applied to massive data holdings with the minimum environmental impact possible.

  Tackling economic inequality

  Polygeist are a UK startup, rapidly investing in UK staff across the nation. Investment in Polygeist's technology directly leads to the creation of new jobs and skills opportunities for the UK workforce, ensuring the UK remains at the forefront of the AI skills revolution. Polygeist actively seeks to employ staff outside of traditional tech centres, such as London, and to instead cast our employment net as wide as possible, including underprivileged and underserved communities. Our commitment to diversity and inclusion ensures that the social value of investment in our technology is reflected immediately in the investment in our people.

  Wellbeing

  Forge helps to promote health and wellbeing in the workplace by reducing the exposure of officers and investigators to horrific media. It reduces the burden on these users of repeatedly viewing media for analysis purposes, through automation. Forge additionally includes user interface components and options designed in tandem with psychology professionals to reduce the impact of CSAM, CT media, and other disturbing content. Forge ensures rapid processing of media provided by victims, minimising time required for personal communication devices are held be the police - one of the key reasons rape allegations are dropped after 3 months.

Pricing

• Price: £0.10 to £0.40 a unit
• Discount for educational organisations: No
• Free trial available: Yes
• Description of free trial: UK Government email addresses are offered 100 free credits on signup for Forge Æther.

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at vince@polygei.st. Tell them what format you need. It will help if you say what assistive technology you use.