{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2024,6,10]],"date-time":"2024-06-10T18:36:11Z","timestamp":1718044571019},"reference-count":17,"publisher":"Oxford University Press (OUP)","issue":"6","license":[{"start":{"date-parts":[[2016,11,5]],"date-time":"2016-11-05T00:00:00Z","timestamp":1478304000000},"content-version":"vor","delay-in-days":187,"URL":"http:\/\/creativecommons.org\/licenses\/by-nc\/4.0\/"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2016,11,1]]},"abstract":"<jats:title>Abstract<\/jats:title>\n               <jats:p>Objective We describe use cases and an institutional reference architecture for maintaining high-capacity, data-intensive network flows (e.g., 10, 40, 100 Gbps+) in a scientific, medical context while still adhering to security and privacy laws and regulations.<\/jats:p>\n               <jats:p>Materials and Methods High-end networking, packet filter firewalls, network intrusion detection systems.<\/jats:p>\n               <jats:p>Results We describe a \u201cMedical Science DMZ\u201d concept as an option for secure, high-volume transport of large, sensitive data sets between research institutions over national research networks.<\/jats:p>\n               <jats:p>Discussion The exponentially increasing amounts of \u201comics\u201d data, the rapid increase of high-quality imaging, and other rapidly growing clinical data sets have resulted in the rise of biomedical research \u201cbig data.\u201d The storage, analysis, and network resources required to process these data and integrate them into patient diagnoses and treatments have grown to scales that strain the capabilities of academic health centers. Some data are not generated locally and cannot be sustained locally, and shared data repositories such as those provided by the National Library of Medicine, the National Cancer Institute, and international partners such as the European Bioinformatics Institute are rapidly growing. The ability to store and compute using these data must therefore be addressed by a combination of local, national, and industry resources that exchange large data sets. Maintaining data-intensive flows that comply with HIPAA and other regulations presents a new challenge for biomedical research. Recognizing this, we describe a strategy that marries performance and security by borrowing from and redefining the concept of a \u201cScience DMZ\u201d\u2014a framework that is used in physical sciences and engineering research to manage high-capacity data flows.<\/jats:p>\n               <jats:p>Conclusion By implementing a Medical Science DMZ architecture, biomedical researchers can leverage the scale provided by high-performance computer and cloud storage facilities and national high-speed research networks while preserving privacy and meeting regulatory requirements.<\/jats:p>","DOI":"10.1093\/jamia\/ocw032","type":"journal-article","created":{"date-parts":[[2016,5,3]],"date-time":"2016-05-03T02:23:07Z","timestamp":1462242187000},"page":"1199-1201","source":"Crossref","is-referenced-by-count":11,"title":["The Medical Science DMZ"],"prefix":"10.1093","volume":"23","author":[{"given":"Sean","family":"Peisert","sequence":"first","affiliation":[{"name":"Computational Research Division, Lawrence Berkeley National Laboratory, Berkeley, CA, USA"},{"name":"Department of Computer Science, University of California Davis, Davis, CA, USA"},{"name":"Corporation for Education Network Initiatives in California (CENIC), Berkeley, CA, USA"}]},{"given":"William","family":"Barnett","sequence":"additional","affiliation":[{"name":"Indiana Clinical and Translational Sciences Institute and Regenstrief Institute, Indiana University, Indianapolis, IN, USA"}]},{"given":"Eli","family":"Dart","sequence":"additional","affiliation":[{"name":"ESnet, Lawrence Berkeley National Laboratory, Berkeley, CA, USA"}]},{"given":"James","family":"Cuff","sequence":"additional","affiliation":[{"name":"Research Computing, Harvard University, Cambridge, MA, USA"}]},{"given":"Robert L","family":"Grossman","sequence":"additional","affiliation":[{"name":"Center for Data Intensive Science, University of Chicago, Chicago, USA"}]},{"given":"Edward","family":"Balas","sequence":"additional","affiliation":[{"name":"Global Research Network Operations Center, Indiana University, Bloomington, IN, USA"}]},{"given":"Ari","family":"Berman","sequence":"additional","affiliation":[{"name":"BioTeam, Middleton, MA, USA"}]},{"given":"Anurag","family":"Shankar","sequence":"additional","affiliation":[{"name":"Pervasive Technology Institute, Indiana University, Bloomington, IN, USA"}]},{"given":"Brian","family":"Tierney","sequence":"additional","affiliation":[{"name":"ESnet, Lawrence Berkeley National Laboratory, Berkeley, CA, USA"}]}],"member":"286","published-online":{"date-parts":[[2016,5,2]]},"reference":[{"key":"2020110612352740100_ocw032-B1"},{"key":"2020110612352740100_ocw032-B2"},{"key":"2020110612352740100_ocw032-B3"},{"key":"2020110612352740100_ocw032-B4"},{"key":"2020110612352740100_ocw032-B5"},{"key":"2020110612352740100_ocw032-B6"},{"key":"2020110612352740100_ocw032-B7","author":"Dart"},{"key":"2020110612352740100_ocw032-B8"},{"key":"2020110612352740100_ocw032-B9"},{"issue":"23","key":"2020110612352740100_ocw032-B10","doi-asserted-by":"crossref","first-page":"2435","DOI":"10.1016\/S1389-1286(99)00112-7","article-title":"Bro: a system for detecting network intruders in real-time","volume":"31","author":"Paxson","year":"1999","journal-title":"Comput Networks."},{"key":"2020110612352740100_ocw032-B11"},{"key":"2020110612352740100_ocw032-B12"},{"key":"2020110612352740100_ocw032-B13"},{"key":"2020110612352740100_ocw032-B14"},{"key":"2020110612352740100_ocw032-B15"},{"issue":"2","key":"2020110612352740100_ocw032-B16","doi-asserted-by":"crossref","first-page":"69","DOI":"10.1145\/1355734.1355746","article-title":"Openflow: enabling innovation in campus net- works","volume":"38","author":"McKeown","year":"2008","journal-title":"ACM SIGCOMM Comput Commun Rev."},{"key":"2020110612352740100_ocw032-B17","doi-asserted-by":"crossref","DOI":"10.1007\/11596141_19","article-title":"PerfSONAR: a service oriented architecture for multi-domain network monitoring","volume-title":"Proceedings of the Third International Conference on Service Oriented Computing","author":"Hanemann"}],"container-title":["Journal of the American Medical Informatics Association"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/academic.oup.com\/jamia\/article-pdf\/23\/6\/1199\/34148023\/ocw032.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"syndication"},{"URL":"http:\/\/academic.oup.com\/jamia\/article-pdf\/23\/6\/1199\/34148023\/ocw032.pdf","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2020,11,6]],"date-time":"2020-11-06T17:36:15Z","timestamp":1604684175000},"score":1,"resource":{"primary":{"URL":"https:\/\/academic.oup.com\/jamia\/article\/23\/6\/1199\/2399316"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2016,5,2]]},"references-count":17,"journal-issue":{"issue":"6","published-online":{"date-parts":[[2016,5,2]]},"published-print":{"date-parts":[[2016,11,1]]}},"URL":"https:\/\/doi.org\/10.1093\/jamia\/ocw032","relation":{},"ISSN":["1527-974X","1067-5027"],"issn-type":[{"value":"1527-974X","type":"electronic"},{"value":"1067-5027","type":"print"}],"subject":[],"published-other":{"date-parts":[[2016,11]]},"published":{"date-parts":[[2016,5,2]]}}}