Solving IT Security Problems with iRODS at NOAA's National Climatic Data Center

 
Solving IT Security Problems with iRODS
Alan Hall – NOAA’s National Climatic Data Center
 
September 30, 2024
 
NOAA – DFC Interoperability
 
Ocean Observatory Initiative is tasked with
depositing climate data records in NOAA
archive
OOI has installed an iRODS data grid
NOAA National Climatic Data Center has installed
an iRODS data grid
Federation of the two systems will simplify
ingestion of climate data records
Provided security requirements can be met
 
DFC April 2013 NSF Review—5-5—1
ftp1
ftp4
ftp2
ftp5
ingest1
ingest2
Tape
Disk
Cache
HDSS
 
DMZ Landing Zone: Open for data delivery
 
DMZ
 
Firewall
 
NCDC External Firewall
FTP Load Balance
ftp3
External Providers
 
NCDC Internal Network
FTP PUSH/PULL
 
ftp
 
Anonymous FTP is:
Not Secure
Not a management tool (clean-up)
Limited in scope to one-to-one relationship
Pushes data into the NCDC archive
 
iRODS Secure Ingest
FTP/FTPS
iRODS
 
DFC April 2013 NSF Review—5-4—2
ftp1
ftp4
ftp2
ftp5
ingest1
ingest2
Tape
Disk
Cache
HDSS
DMZ Landing Zone: Open for data delivery
DMZ Firewall
NCDC External Firewall
FTP Load Balance
ftp3
External Providers
FTP/FTPS
NCDC Internal Network
FTP PUSH/PULL
ftp
iRODS Secure Ingest
 
iRODS is:
Secure authentication
Security via Obscurity (one to bind them)
Uses a pull mechanism to move data into NCDC grid
A virtual management tool (clean-up)
Scope is entire grid
iRODS
DFC April 2013 NSF Review—5-4—3
ftp1
ftp4
ftp2
ftp5
ingest1
ingest2
Tape
Disk
Cache
HDSS
DMZ Landing Zone: Open for data delivery
DMZ Firewall
NCDC External Firewall
FTP Load Balance
ftp3
External
Providers
FTP/
FTPS
NCDC Internal Network
FTP PUSH/PULL
ftp
NCDC Cloud Pilot
 
Cloud made easy:
Easy set up with iRODS
Connection to “cloud” is from the DMZ (Secure)
Can synchronize from either DMZ or NCDC Grids
End to End Data Management
Initial copy to “cloud” resource
Re-sync to “cloud” resource for failures
Copy to Amazon Web Services (AWS) S3
iRODS
/Archive
/NR2
DFC April
2013 NSF
Review—
5-4—4
undefined
Slide Note
Embed
Share

The NOAA DFC Interoperability initiative aims to deposit climate data records securely by utilizing iRODS data grids. The integration of iRODS systems between OOI and NCDC simplifies data ingestion, provided security requirements are met. The setup includes iRODS Secure Ingest in the DMZ landing zone, NCDC Cloud Pilot for cloud data management, and more. Security, authentication, and data management are key aspects of the iRODS implementation at NCDC.

  • IT security
  • iRODS
  • NOAA
  • data management
  • climate data
svensson_d
svensson_d Follow

Uploaded on Sep 30, 2024 | 0 Views

Download Presentation

Please find below an Image/Link to download the presentation.

The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author. Download presentation by click this link. If you encounter any issues during the download, it is possible that the publisher has removed the file from their server.

E N D

Presentation Transcript

  1. Solving IT Security Problems with iRODS Alan Hall NOAA s National Climatic Data Center September 30, 2024

  2. NOAA DFC Interoperability Ocean Observatory Initiative is tasked with depositing climate data records in NOAA archive OOI has installed an iRODS data grid NOAA National Climatic Data Center has installed an iRODS data grid Federation of the two systems will simplify ingestion of climate data records Provided security requirements can be met DFC April 2013 NSF Review 5-5 1

  3. iRODS Secure Ingest DMZ Landing Zone: Open for data delivery NCDC Internal Network ftp ftp1 ftp2 ftp3 Tape ingest1 DMZ Firewall HDSS ftp4 ftp5 ingest2 Disk Cache FTP Load Balance FTP PUSH/PULL NCDC External Firewall Anonymous FTP is: Not Secure Not a management tool (clean-up) Limited in scope to one-to-one relationship Pushes data into the NCDC archive FTP/FTPS iRODS External Providers DFC April 2013 NSF Review 5-4 2

  4. iRODS Secure Ingest NCDC Internal Network DMZ Landing Zone: Open for data delivery ftp iRODS NCDC Grid iRODS DMZ ftp1 ftp2 Grid ftp3 Tape ingest1 /NCDC /Ingest DMZ Firewall HDSS /NR2 /NR3 ftp4 /DMZ /Archive /NR2 /NR3 /Archive ftp5 ingest2 /NR2 /NR3 Disk Cache FTP Load Balance FTP PUSH/PULL NCDC External Firewall iRODS is: Secure authentication Security via Obscurity (one to bind them) Uses a pull mechanism to move data into NCDC grid A virtual management tool (clean-up) Scope is entire grid FTP/FTPS iRODS External Providers DFC April 2013 NSF Review 5-4 3

  5. NCDC Cloud Pilot NCDC Internal Network DMZ Landing Zone: Open for data delivery ftp iRODS NCDC Grid iRODS DMZ ftp1 ftp2 Grid ftp3 Tape ingest1 /NCDC /Ingest DMZ Firewall HDSS /NR2 /NR3 /DMZ /AWS-s3 /NR2 /Archive ftp4 ftp5 /Archive ingest2 /NR2 /NR3 Disk Cache /NR2 /NR3 FTP Load Balance FTP PUSH/PULL NCDC External Firewall Cloud made easy: Easy set up with iRODS Connection to cloud is from the DMZ (Secure) Can synchronize from either DMZ or NCDC Grids End to End Data Management FTP/ FTPS iRODS External Providers AWS S3 Initial copy to cloud resource Re-sync to cloud resource for failures Copy to Amazon Web Services (AWS) S3 DFC April 2013 NSF Review 5-4 4

  6. National Science Foundation Cooperative Agreement: OCI-0940841

Related


Role of Security Champions in Organizations

Role of Security Champions in Organizations

irvin
NOAA HRD User Group

NOAA HRD User Group

lemuel
Guide to Ordering and Downloading VIIRS L2 Data Files from NOAA CLASS

Guide to Ordering and Downloading VIIRS L2 Data Files from NOAA CLASS

hawk
Climate and Climatic Regions of Pakistan

Climate and Climatic Regions of Pakistan

erik
Agro-Climatic Regions of India: Overview and Objectives

Agro-Climatic Regions of India: Overview and Objectives

aadhya
Earth's Climatic Zones

Earth's Climatic Zones

raya
Roles of a Security Partner

Roles of a Security Partner

zaara
National Access Elsewhere Security Oversight Center (NAESOC) Overview

National Access Elsewhere Security Oversight Center (NAESOC) Overview

umair
Solving CSP Problems in Python with python-constraint Package

Solving CSP Problems in Python with python-constraint Package

hosea
Overview of NOAA SAT Team and Its Scope

Overview of NOAA SAT Team and Its Scope

granger
Matrices and Solving Equations in Electrical Engineering

Matrices and Solving Equations in Electrical Engineering

franklin
NOAA's Center for Operational Oceanographic Products and Services Overview

NOAA's Center for Operational Oceanographic Products and Services Overview

karol
Sustainable Cultivation Strategies for EU Crops

Sustainable Cultivation Strategies for EU Crops

blay_716
NOAA Hurricane Forecasting Models Overview

NOAA Hurricane Forecasting Models Overview

looa531
Ecological Factors and Climatic Influences on Plant Life

Ecological Factors and Climatic Influences on Plant Life

vonfeldt_k
Advancements in NOAA's Next-Generation NWP System

Advancements in NOAA's Next-Generation NWP System

kynziqu
Satellite Data Use at NOAA/ESRL for Rapid Analysis and Forecast Systems

Satellite Data Use at NOAA/ESRL for Rapid Analysis and Forecast Systems

kaan
Data Management and Publication Workflow for Research Repositories

Data Management and Publication Workflow for Research Repositories

can_eny
Advances in Global Data Assimilation at NOAA/NCEP: Radiance Data and Future Developments

Advances in Global Data Assimilation at NOAA/NCEP: Radiance Data and Future Developments

cyaq
Enhancing Problem-Solving Skills in Mathematics Workshops

Enhancing Problem-Solving Skills in Mathematics Workshops

edepi
Python_constraint: Solving CSP Problems in Python

Python_constraint: Solving CSP Problems in Python

ktroi
Improving Sub-Seasonal to Seasonal Prediction at NOAA

Improving Sub-Seasonal to Seasonal Prediction at NOAA

brey925

More Related Content

giItT1WQy@!-/#giItT1WQy@!-/#giItT1WQy@!-/#