Skip to content

Security

Human Health Data#

The HPC core Cluster is not authorized to host healthcare data.

L'HPC core Cluster n'est pas habilité pour héberger des données de santé à caractère personnel (certification HDS).

Datacenter#

The HPC core Cluster is hosted by HPC Core Facility and located in DC1 computing center.

This center has high security standards:

  • Access is restricted and strictly controlled (closed zone, "Zone à Régime Restrictif"), including access control system, intrusion detection system, video surveillance and security guard
  • Redundant power supply
  • Reliable air conditioning system
  • Fire protection

Network#

Network access is controlled and restricted by a firewall.

  • All access protocols are encrypted.
  • Cluster access protocol is SSH (or SFTP).
  • Web access is done on HTTPS.

Authentication#

The HPC core users are managed through a central directory (OpenLDAP).
The access is limited to authorized users.

The HPC core Cluster Support service uses the same password authentication than the HPC core Cluster.

The HPC core Cluster supports password and public key authentication.

  • Each access on a project must be approved by the project owner.

Data access are not logged.

IT administrators (HPC core Cluster team support) can access the data but only in cases of security or maintenance.

Backup#

⚠️ There is no backup for the main storage.

Snapshots#

Some snapshots are available to protect against deletion by error but only one by day and for 5 days.

Servers / Services#

All servers and services are deployed using Ansible (and configurations are under revision control).
Main infrastructure services are backed up.

Data encryption#

There is no encryption on the storage.

Availability#

This service is provided as an academic best effort, but without any warranty.

Monitoring#

IT Infrastructure is monitored and the HPC core team is notified by email on each warning.

Contact#

HPC core Cluster team : ask-hpc@pasteur.fr.fr