The SSRI Protected Research Data Network (PRDN) is designed to accommodate the growing sensitive data needs of Duke's social science research community. This collaboration taps expertise in OIT, ITSO and SSRI to create a space that researchers will find useful for projects requiring a high level of security.
The foundational layer for the SSRI PRDN is the Duke Data Classification standard. Sensitive data is anything Duke has to protect in specific ways due to legislation, regulation, or contracts. So all research or corporate data which come with a DUA or DSP is Sensitive, by Duke's standard. SSRI's PRDN is intended to provide storage with computation for Sensitive data; the security controls for Restricted data can usually be handled by departmental IT resources, but we are happy to help with Restricted data as well.
For assistance accessing the PRDN please submit a ticket to SSRI's Protected Research IT staff.
Current configuration specifications:
- Technically configured and regularly maintained to comply with the ITSO Server Security standard and the ITSO Log Standard.
- A valid Duke NetID is required for data access. If necessary, access can be limited to certain affiliation types.
- Multi-factor authentication is required for access.
- All network access of the data is over encrypted channels.
- The potential for data exfiltration from the network is limited.
- Backups of the data are encrypted. Non-backup options are available to meet DUA requirements
- Signed acknowledgements of responsibility are required of users before granting access to the data.
- Authorization for data access is controlled by SSRI.
- Only those users approved by the Principal Investigator (PI) will be granted access.
- All workstations and laptops allowed to access the data are required to meet the ITSO Workstation and Laptop Security Standard, including whole disk encryption for laptops.
View the Guide to Duke's Research Computing Environments