Leeds Analytic Secure Environment for Research
LASER is a Trusted Research Environment (TRE), also known as a Data Safe Haven, managed and run by LIDA. LASER offers the combination of meeting the highest standards of security for data analytics, of course ensuring ISO27001 and NHS Data Security and Protection Toolkit compliance with the flexibility to enable constant agility in design and function; alongside scalability depending on the researcher need. This platform is supported through a commitment backed up by both LIDA and the University of Leeds IT Service to ensure high quality service wrap around to maximise ease and efficiency of time for researchers.
What is a Trusted Research Environment?
LASER is the platform upon which we can build and host Trusted Research Environments (TREs).
In their simplest form, a TRE is a virtualised environment consisting of virtual machines and shared storage where data flow is strictly controlled. Taking a ‘walled garden’ approach, there is no access to the internet or other networks from inside a TRE.
Research is conducted by connecting to a virtual machine (VM) within a TRE. The VMs within a single TRE can all see the same project shared storage, which is inaccessible from other TREs. Software can be installed to, and run directly on, the VMs.
More complex and involved TREs can be designed; please discuss your project requirements with a member of the Data Analytics Team as early as possible to explore what might be suitable.
The LASER Platform has been designed with and for researchers and includes the following capabilities:
- Fully flexible and scalable to enable researchers to align spend to research requirements.
- Agile and quick to provision, to support a range of research user cases.
- Access to the latest tools and capabilities such as machine learning to support researchers.
Standards & Specifications
The system has been specified and is maintained to ensure the highest standards of data security:
- Resilience levels and backups provided by one of the most cyber-aware and heavily invested companies in the world.
- Regularly patched with the latest software and operating system updates.
- Encryption at rest – all data at rest is encrypted to AES256 Bit encryption.
- Encryption in transit – all data is encrypted using TLS 1.2.
- Residency – all data is stored in the UK.
- Access Controls – role-based access controls and the principles of least privileged access are implemented to ensure only authorised users are able to view data.
- Data are classified according to sensitivity and criticality, with robust checks on data input and output to and from the Cloud, including a fully maintained asset register.
- Multifactor authentication is implemented with the ability to restrict access to specified safe rooms on Campus, for data requiring the highest level of security.
- Monitoring and threat detection provides unified security management with supporting network controls to isolate information in our networks and its supporting information processing facilities.
- ISO27001 compliant.
- NHS Data Security and Protection Toolkit compliant.
If you have any questions or are interested in working with LIDA and using the LASER platform, please contact a member of the Data Analytics Team