Science DMZs Behind Firewalls, Heresy?

Science DMZs Behind Firewalls, Heresy?

The Science DMZ architecture was developed in part to work around the fact that conventional firewalls are not capable of supporting single data transfer flows greater than 10 Gbps. Now that 100G capable firewalls are becoming available network engineers are considering how these firewalls can contribute to the security of their Science DMZs. This presentation will provide a brief overview of Science DMZ architectures and describe how 100G capable firewalls can be used within Science DMZs to make them more secure and help Supercomputing Centers; Research Universities; National Labs and other Federal Research Institutions meet FISMA, HIPAA and funding program mandates. Field trials and production use of this technology at Universities and Federal Research Labs will also be discussed.


JJ Jamison
CTO, Research & Education Network Markets, Juniper Networks

JJ Jamison is the Chief Technology Officer for Research & Education Markets at Juniper Networks. He has been working in the area of research networking for over 25 years in various roles: for network equipment manufacturers (Juniper and Cisco), academia (University of Illinois at Chicago); a Federally-funded Research & Development center (MITRE); and a carrier (MCI/Verizon). JJ has been involved in major network research efforts, including: DoD DISA funded Internet traffic measurement projects; the NSF’s vBNS NREN; the StarLight global NREN exchange point; and various collaborative research projects among network equipment manufacturers and universities, labs, and research networks in the U.S. and around the world.