Locking the front door without leaving the windows open: positioning authentication technologies within the "Five Safes" framework for effective use of sensitive research data

This project explores the options for access to sensitive data sets; what authentication technologies (e.g. multi-factor authentication) are needed to access sensitive data and secure compute environments.  This project seeks to position choices around authentication technologies within the Five Safes framework for research use of sensitive data, proposed in 2003 by Felix Ritchie of the UK Office of National Statistics:
• Safe Projects: is the proposed research use of the data appropriate? 
• Safe People: can the users be trusted to use the data in an appropriate manner? 
• Safe Settings: does the access facility limit unauthorised use?
• Safe Data: is there a disclosure risk in the data itself?
• Safe Outputs: are the research results non-disclosive i.e. they do not compromise privacy or breach confidentiality?

DOI: 10.5281/zenodo.3547980

Licence: Creative Commons Attribution 4.0

Contact: contact@ardc.edu.au

Keywords: ARDC, Storage and Compute Summit, FAIR, Infrastructure, NCRIS, eResearch, training material


Additional information

Status: Active

Authors: Churches, Tim, Jorm, Louisa

Locking the front door without leaving the windows open: positioning authentication technologies within the "Five Safes" framework for effective use of sensitive research data https://dresa.org.au/materials/locking-the-front-door-without-leaving-the-windows-open-positioning-authentication-technologies-within-the-five-safes-framework-for-effective-use-of-sensitive-research-data-b83124f8-2add-41c6-b194-d5dd50d098f6 This project explores the options for access to sensitive data sets; what authentication technologies (e.g. multi-factor authentication) are needed to access sensitive data and secure compute environments.  This project seeks to position choices around authentication technologies within the Five Safes framework for research use of sensitive data, proposed in 2003 by Felix Ritchie of the UK Office of National Statistics: • Safe Projects: is the proposed research use of the data appropriate?  • Safe People: can the users be trusted to use the data in an appropriate manner?  • Safe Settings: does the access facility limit unauthorised use? • Safe Data: is there a disclosure risk in the data itself? • Safe Outputs: are the research results non-disclosive i.e. they do not compromise privacy or breach confidentiality? contact@ardc.edu.au ARDC, Storage and Compute Summit, FAIR, Infrastructure, NCRIS, eResearch, training material