Published March 24, 2021 | Version v1
Report Open

Open Source Secure Data Infrastructure and Processes for Data Visiting

  • 1. TU Wien

Description

Meeting the conflicting goals of protecting and maintaining control over sensitive data while also allowing access by third parties constitutes a significant challenge. Secure data infrastructures support data visiting in a highly controlled and monitored environment which, if properly set-up and operated, provide high security guarantees through a combination of technical, legal and procedural mechanisms. To ease the process of deploying such a secure data infrastructure, we present a detailed documentation of the architecture and processes of such an infrastructure and provide a pre-configured reference implementation based entirely on open source software that can be flexibly configured to meet differing security requirements and deployment scenarios. We combine mechanisms for data visiting on secured infrastructure components with optional components of data anonymization and fingerprinting, covered by extensive logging and monitoring functions and embedded in defined processes and contractual frameworks based upon the experience of operating such a secure infrastructure in the medical domain for almost ten years, addressing the emerging need to make such a solution available to a larger set of stakeholders. We show that our system significantly enhances data visiting, offers a higher level of isolation and present lessons learned.

Files

eosc_ossdip_report.pdf

Files (95.7 kB)

Name Size Download all
md5:ba1021ec1f06f6daf15293fb716ad978
95.7 kB Preview Download

Additional details

Related works

Is supplemented by
Software documentation: https://gitlab.tuwien.ac.at/martin.weise/ossdip (URL)

Funding

EOSCsecretariat.eu – EOSCsecretariat.eu 831644
European Commission