Transcript OnSite@Home Remote Access at Statistics Netherlands Anco Hundepool and Peter-Paul de Wolf.

OnSite@Home
Remote Access at Statistics Netherlands
Anco Hundepool and Peter-Paul de Wolf
Contents
• Introduction
• OnSite@Home facility
• Functional
• Technical
• First experiences of pilot
• Conclusions and remarks
Introduction
Detailed microdata: only on-site (i.e., at SN)
Advantages
Disadvantages
detailed microdata
ability to play around
with the data, without
confidentiality checks
until final output
only at premises SN
no direct contact
with colleagues
only working hours
controlled safe settings
special offices needed
OnSite@Home facility
Goals:
Comparable with on-site concerning confidentiality
Reducing disadvantages
24/7 availability
Functional aspects
Only authorised users allowed
• Only selected research institutes
• Only under contract
Traditional on-site:
• users can not enter
nor leave SN
unaccompanied
OnSite@Home:
• Biometric identification
• PKI Certificates
• Username + Password
Functional aspects
(Micro) data stay at SN
Traditional on-site:
• Network separate
from production
• No internet
• No local printers
• No floppy, USB, …
OnSite@Home:
• Network separate
from production
• Citrix connection
Functional aspects
Checking output
Traditional on-site:
Desired output checked
by SN staff
OnSite@Home:
Desired output checked
by SN staff
Technical aspects
Internet
Smart CardClient
Reader Desktop
Met vingerafdruk PC
lezerwith
smartcardreader
FW1
DMZ
Remote Access
Webserver
FW2
BackEnd
FW3
Citrix Farm
Production
network
Domain Controller
Remote Access
Citrix STA
Fileserver
Remote Access
Technical aspects
First experiences of pilot
Pilot:
University of Tilburg
2 workstations (Windows PC’s)
6 users
Experiences:
Positive, no real problems
Performance like own desktop PC
Conclusions and remarks
• Promising counterpart of traditional on-site
• Confidentiality issues ‘under control’
• Check of output labour intensive but needed
• Can be used to provide access to MUC’s as
well?