VOXI Earth Modelling Data Security and Architecture



Similar documents
DAP Proxy Server Configuration. Technical Note

Security Overview Introduction Application Firewall Compatibility

White Paper. BD Assurity Linc Software Security. Overview

WebEx Security Overview Security Documentation

Ricoh HotSpot Printer/MFP Whitepaper Version 4_r4

OpenText Secure MFT Network and Firewall Requirements

Geosoft Technical Note Working with 3D Views in Oasis montaj

Blue Jeans Network Security Features

Omniquad Exchange Archiving

SCOPE OF SERVICE Hosted Cloud Storage Service: Scope of Service

BES10 Cloud architecture and data flows

Xerox Mobile Print Cloud

Data Security and Privacy Principles for IBM SaaS How IBM Software as a Service is protected by IBM s security-driven culture

Data Security and Governance with Enterprise Enabler

Managing Enterprise Devices and Apps using System Center Configuration Manager

Importing and Exporting Databases in Oasis montaj

DreamFactory Security Whitepaper Customer Information about Privacy and Security

TELSTRA CLOUD SERVICES CLOUD INFRASTRUCTURE PRICING GUIDE SINGAPORE

Course 20533: Implementing Microsoft Azure Infrastructure Solutions

Cluster Guide. Version: 9.0 Released: March Companion Guides:

Archiving User Guide Outlook Plugin. Manual version 3.1

: Deploying and Managing Windows 10 Using Enterprise Services

Microsoft Implementing Microsoft Azure Infrastructure Solutions

Endpoint Security VPN for Mac

The full setup includes the server itself, the server control panel, Firebird Database Server, and three sample applications with source code.

Microsoft Azure Configuration

Policy Based Encryption E. Administrator Guide

Policy Based Encryption E. Administrator Guide

Implementing Microsoft Azure Infrastructure Solutions

White Paper UC for Business - Queuing Desktop SMTP

PANO MANAGER CONNECTOR FOR SCVMM& HYPER-V

Implementing Microsoft Azure Infrastructure Solutions 20533B; 5 Days, Instructor-led

Fact Sheet FOR PHARMA & LIFE SCIENCES

Cloud Store & Share Frequently Ask Questions

Course 20533B: Implementing Microsoft Azure Infrastructure Solutions

20696B: Administering System Center Configuration Manager and Intune

Sophos Mobile Control Technical guide

SCADA SYSTEMS AND SECURITY WHITEPAPER

Double-Take Cloud Migration Center (CMC) Tech Brief

Developing Microsoft Azure Solutions

Certificate Management for your ICE Server

How To Be A Services Provider For Microsoft (For Pc)

Installing and Configuring vcenter Multi-Hypervisor Manager

Cisco Intercloud Fabric Security Features: Technical Overview

Transferring Files to the CU2 Global Secure FTP Site. Login & Access Application Preparation Guide.

Encryption Key Best Practices Nasuni Corporation Natick, MA

acquire GIM Suite System Requirements

Securing the Service Desk in the Cloud

The Evolving Threat Landscape and New Best Practices for SSL

Entrust Managed Services PKI. Configuring secure LDAP with Domain Controller digital certificates

CLOUD FORENSICS WITH F-RESPONSE

Symantec File Share Encryption Quick Start Guide Version 10.3

Configuring a single-tenant BIG-IP Virtual Edition in the Cloud

Introduction to Directory Services

Paxata Security Overview

User Manual. Onsight Management Suite Version 5.1. Another Innovation by Librestream

CONFIGURING AND USING WEBDAV IN LENOVO EMC LIFELINE

Endpoint Security VPN for Mac

AWS Plug-in Guide. Qlik Sense 1.1 Copyright QlikTech International AB. All rights reserved.

Sage 200 Online. System Requirements and Prerequisites

TELSTRA CLOUD SERVICES CLOUD INFRASTRUCTURE PRICING GUIDE AUSTRALIA

Course A: Deploying and Managing Windows 10 Using Enterprise Services

Xerox Mobile Print Cloud

Complying with PCI Data Security

Implementing Microsoft Azure Infrastructure Solutions

IC L10: Seamless Encryption of Data Sync'ing to Dropbox Using Symantec File Share Encryption

Interworks. Interworks Cloud Platform Installation Guide

Mobile Printing for Business Made Easy

SECURE YOUR DATA EXCHANGE WITH SAFE-T BOX

3D Hybrid Gravity Inversion for Base of Salt Modelling

Learn More Cloud Extender Requirements Cheat Sheet

NCTA Cloud Architecture

MOC Deploying and Managing Windows 10 Using Enterprise Services

MS Skype for Business and Lync. Integration Guide

Version Comparison MAXIMIZER CRM Published By. DATA SHEET Version Comparison 1

VANGUARD ONLINE BACKUP

White Paper: NCBI Database of Genotypes and Phenotypes (dbgap) Security Best Practices Compliance Overview for the New DNAnexus Platform

Client side. DESlock + Data Encryption

Provisioning ShareFile on Microsoft Azure Storage

Cloud Deployment Models

LogMeIn Backup. Getting Started Guide

Cortado Corporate Server

Device LinkUP + Desktop LP Guide RDP

Windows Azure Data Services (basics) 55093A; 3 Days

Web Server XX Configuration Guide

Critical Steps to Encryption & Key Management in the Microsoft Azure Cloud

Repeater. BrowserStack Local. browserstack.com 1. BrowserStack Local makes a REST call using the user s access key to browserstack.

Data Storage that Looks at Business the Way You Do. Up. cloud

Personal Secure Certificate

Transcription:

WHITE PAPER VOXI Earth Modelling Data Security and Architecture By: Roger Amorim Director, Research and Technical Strategy As a Geosoft VOXI customer, you have entrusted Geosoft to help protect your data. Geosoft values this trust, and the privacy and security of your data is one of our top concerns. Geosoft strives to take an industry leadership role when it comes to security, privacy, and compliance practices. PURPOSE OF THIS DOCUMENT This document outlines the basic design, protocols and processes used to ensure customer data security within the VOXI service.

What is VOXI? Geosoft VOXI Earth Modelling is a geophysical inversion software service that generates 3D voxel models from airborne or ground gravity and magnetic data. VOXI Earth modelling is available through the Geosoft s Oasis montaj desktop application and uses the power of the Windows Azure cloud services to rapidly model large geophysical exploration datasets into 3D models. More information can be found on the VOXI Earth Modelling home page or at www.geosoft.com. We protect your data in the cloud All your data is transferred to/from Microsoft Windows Azure as 128 bit encrypted HTTPS. This means that your data is always safe and secure. Furthermore, the VOXI service/client is only able to read/write the binary VOXI object files, this means the input model data and inversion modelling results are only understandable to the VOXI service and no other application or service can logically use the binary files. Geosoft relies on the security policies of Windows Azure to ensure the security of the VOXI model data stored in the cloud service during the inversion process. Original exploration data is not transferred and stored in the Windows Azure Service but is converted by the client into an that contains the minimum amount of information to run the inversion. The Document can only be read by the VOXI Earth Modelling Service ensuring that the information in the document is secure. A Geosoft and model results are only stored in Windows Azure for as long as needed to complete and download the inversion results to the client and then they are deleted from the Microsoft Azure service. The VOXI Document A fundamental concept used in the VOXI service is the VOXI Document. A VOXI document is created by the user using Geosoft s Oasis montaj licensed software on their desktop computer. The document is a set of files that contains or references all data required for processing. The VOXI document contains information and data of the following types: 1. VOXI Model definition (number of cells, sizes of each cell, padding sizes, etc.) 2. Data and model Location (true origin, projection, etc.) 3. Observed data over the area (typically from a Geosoft Database (GDB) or Geosoft grid (GRD)) 4. Digital Elevation Model (DEM) grid defining topography 5. VOXI Model constraints Page 1

6. results from previous VOXI runs The VOXI document is never transferred across the Internet and remains only on the Oasis montaj client machine. If the document file is lost or destroyed it cannot be recovered by the service. The When the Oasis montaj user initiates the Geosoft VOXI service, an is created directly from the VOXI Document on the Oasis montaj client machine. This contains the absolute minimum data required for the inversion to take place. This data includes: 1. The VOXI Model definition 2. The input Observed data that has been windowed to the exact area of interest and converted to the VOXI inversion space. This inversion space contains no coordinate systems or location information. 3. Model Location The can only be read by the VOXI service and cannot be reconstructed by the VOXI service. It contains the minimum amount of information to run the VOXI inversion. What is not placed in the inversion package is: 1. Coordinate System 2. Previous inversion results VOXI data transfer Once an has been created it is uploaded using 128 bit encrypted HTTPS by the Oasis montaj client to the VOXI Service Interface that resides on the External Windows Azure Deployed Endpoint. Windows Azure Endpoint Windows Azure Oasis montaj client HTTPS Transfer VOXI Interface Microsoft Encryption Key VOXI Storage VOXI Document Page 2

Only the VOXI Interface on the Windows Azure Deployed Endpoint is exposed to the Internet. All other VOXI inversion services reside inside the firewalls and security protocols provided by Windows Azure. The VOXI Interface uses both and a Microsoft encryption key to place the into the Internal Azure System storage. We rely on Windows Azure s security features and policy for storage level security to meet our end user requirements. There are numerous articles and white papers that discuss the Windows Azure security features and policies. They are found on-line in the Windows Azure Trust Centre or at Microsoft.com. Windows Azure Trust Centre: www.windowsazure.com/en-us/support/trust-center/ Understanding Windows Azure: www.windowsazure.com/en-us/develop/net/fundamentals/intro-to-windows-azure VOXI inversion execution Once an has been placed in VOXI storage the resources required for executing the inversions will be provisioned. This process can take up to 30 minutes as Windows Azure services instantiates the appropriate number of new machines (cores) and a cluster is formed to run the inversion process (for larger inversions). Windows Azure Endpoint Windows Azure Oasis montaj client HTTPS Transfer VOXI Interface Microsoft Encryption Key VOXI Storage VOXI Document VOXI Execution Once all the resources required for execution of the are ready, the inversion execution process begins with the being pulled from storage. During this phase only progress information is communicated to the client through the VOXI Interface. The remains completely inside the VOXI Internal server Within the Windows Azure storage. Page 3

result Once the inversion is complete an inversion result is produced and stored in the VOXI Storage within the Windows Azure. At this point the original is deleted from the VOXI storage. The inversion result remains in storage until the Oasis montaj client requests the VOXI Interface to download the results. These results are transferred using 128 bit encrypted HTTPS. Once the download is complete the inversion results are deleted from the VOXI storage within Windows Azure. Debug artifacts As a final step before releasing the VOXI Execution resources a Debug Artifact and a process report is produced and placed in storage. This artifact contains all the raw inversion inputs and outputs (zipped together) and is used to diagnose the inversion execution process. These artifacts are retained for an administrator set period of time (2 weeks) and then deleted from the VOXI storage. Privacy policy For further information regarding our privacy policy go to www.geosoft.com/privacy/. Geosoft Inc. Queens Quay Terminal, 207 Queens Quay West, Suite 810, PO Box 131 Toronto, ON Canada M5J 1A7 +1 800 363-MAPS, software@geosoft.com, www.geosoft.com International Offices: Geosoft Africa Ltd., Geosoft Australia Pty. Ltd., Geosoft Europe Ltd., Geosoft Latinoamerica Ltda., Geosoft (USA) Research Inc. 2012 Copyright. The content presented by Ash Johnson, Director of Global Sales, Geosoft Inc., and is property of Geosoft Inc. Geosoft and the Geosoft logo are trademarks of Geosoft Inc. Third-party trademarks and registration marks are the property of their respective owners. Please share this presentation with any interested parties. Page 4

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information