skip to main content
OSTI.GOV title logo U.S. Department of Energy
Office of Scientific and Technical Information

Title: The Medical Science DMZ

Journal Article · · Journal of the American Medical Informatics Association
DOI:https://doi.org/10.1093/jamia/ocw032· OSTI ID:1625349
 [1];  [2];  [3];  [4];  [5];  [6];  [7];  [8];  [3]
  1. Lawrence Berkeley National Lab. (LBNL), Berkeley, CA (United States). Computational Research Division; ; Univ. of California, Davis, CA (United States). Dept. of Computer Science; Corporation for Education Network Initiatives in California (CENIC), Berkeley, CA (United States)
  2. Indiana Univ., Indianapolis, IN (United States). Indiana Clinical and Translational Sciences Institute and Regenstrief Institute;
  3. Lawrence Berkeley National Lab. (LBNL), Berkeley, CA (United States). ESnet
  4. Harvard Univ., Cambridge, MA (United States). Research Computing
  5. Univ. of Chicago, IL (United States). Center for Data Intensive Science
  6. Indiana Univ., Bloomington, IN (United States). Global Research Network Operations Center
  7. BioTeam, Middleton, MA (United States)
  8. Indiana Univ., Bloomington, IN (United States). Pervasive Technology Institute
+ Show Author Affiliations

Objective We describe use cases and an institutional reference architecture for maintaining high-capacity, data-intensive network flows (e.g., 10, 40, 100 Gbpsþ) in a scientific, medical context while still adhering to security and privacy laws and regulations. Materials and Methods High-end networking, packet filter firewalls, network intrusion detection systems. Results We describe a “Medical Science DMZ” concept as an option for secure, high-volume transport of large, sensitive data sets between research institutions over national research networks. Discussion The exponentially increasing amounts of “omics” data, the rapid increase of high-quality imaging, and other rapidly growing clinical data sets have resulted in the rise of biomedical research “big data.” The storage, analysis, and network resources required to process these data and integrate them into patient diagnoses and treatments have grown to scales that strain the capabilities of academic health centers. Some data are not generated locally and cannot be sustained locally, and shared data repositories such as those provided by the National Library of Medicine, the National Cancer Institute, and international partners such as the European Bioinformatics Institute are rapidly growing. The ability to store and compute using these data must therefore be addressed by a combination of local, national, and industry resources that exchange large data sets. Maintaining data-intensive flows that comply with HIPAA and other regulations presents a new challenge for biomedical research. Recognizing this, we describe a strategy that marries performance and security by borrowing from and redefining the concept of a “Science DMZ”—a framework that is used in physical sciences and engineering research to manage high-capacity data flows. Conclusion By implementing a Medical Science DMZ architecture, biomedical researchers can leverage the scale provided by high-performance computer and cloud storage facilities and national high-speed research networks while preserving privacy and meeting regulatory requirements.

Research Organization:
Lawrence Berkeley National Laboratory (LBNL), Berkeley, CA (United States)
Sponsoring Organization:
USDOE Office of Science (SC), Advanced Scientific Computing Research (ASCR)
Grant/Contract Number:
AC02-05CH11231
OSTI ID:
1625349
Journal Information:
Journal of the American Medical Informatics Association, Vol. 23, Issue 6; ISSN 1067-5027
Publisher:
Oxford University PressCopyright Statement
Country of Publication:
United States
Language:
English
Citation Metrics:
Cited by: 6 works
Citation information provided by
Web of Science

References (4)

The Science DMZ: a network design pattern for data-intensive science
  • Dart, Eli; Rotman, Lauren; Tierney, Brian
  • Proceedings of the International Conference for High Performance Computing, Networking, Storage and Analysis on - SC '13 https://doi.org/10.1145/2503210.2503245
conference January 2013
Bro: a system for detecting network intruders in real-time journal December 1999
OpenFlow: enabling innovation in campus networks journal March 2008
PerfSONAR: A Service Oriented Architecture for Multi-domain Network Monitoring book January 2005

Similar Records

The medical science DMZ: a network design pattern for data-intensive medical science
Journal Article · Fri Oct 06 00:00:00 EDT 2017 · Journal of the American Medical Informatics Association · OSTI ID:1625349
+6 more
The medical science DMZ: a network design pattern for data-intensive medical science
Journal Article · Fri Oct 06 00:00:00 EDT 2017 · Journal of the American Medical Informatics Association · OSTI ID:1625349
+6 more
The Science DMZ: A Network Design Pattern for Data-Intensive Science
Conference · Tue Aug 13 00:00:00 EDT 2013 · OSTI ID:1625349
+2 more

Related Subjects

97 MATHEMATICS AND COMPUTING
Computer Science
Health Care Sciences & Services
Information Science & Library Science
Medical Informatics
Computer Communication Networks
Data Intensive Science
High Performance Computing
Biomedical Research
Computer Security
Health Insurance Portability and Accountability Act