LSST Security Realms
This page is part of Security.
LSST infrastructure has three major levels, from a security point of view:
- Observatory & base station
- Archive center & internal processing
- Data access interfaces for the public and scientific applications
As you go down the list, each level, in comparison to the one before it:
- Is less critical to real-time science operation
- Is more visible to the scientific community and public
- Has more users and greater exposure to security risks
| Realm | Downstream | Endurance | Users |
| Mountaintop | Base Facility via dedicated network |
??? Days |
|
| Base Facility | Archive Center via Internet (high-bandwidth, specially provisioned link) |
??? Days |
|
| Archive Center | Data Access Centers via Internet (high-bandwidth) or local network |
unlimited |
|
| Data Access Center | Public & Science Access via Internet |
unlimited |
|
Definitions
- Realm
- A logical or physical site, with its own security requirements.
- Downstream
- The realms that connect to this realm; this realm must be protected from "backwash" of problems and attacks in the downstream realm.
- Endurance
- How long can this realm function without support from the downstream realms? For example, how soon will the mountaintop buffers fill up without export to the base station?
- Users
- Roles that have access to this realm. In practice, individuals may fill multiple roles, such as both base station administrator and archive center admin, but we must make sure that if their account in one role is compromised, it does not affect upstream roles (and preferably not downstream roles either).
Questions
- Mountaintop & base facility: Are admins for the two facilities the same people? Do the facilities share user accounts? Is there a firewall between them?
- Should Archive Center and Primary Processing be a single security realm?
