Data Security & Architecture
A number of drivers are considered in developing a suitable architecture for CED3 that fits the requirements of the CEnet membership. These drivers include, but are not limited to:
- Secure multi-tenancy requirements including the ability for dioceses to access staged and aggregate data repositories for their own purposes. This allows dioceses that do not already own a data warehouse environment to leverage a standardised (SIF-AU), diocese specific environment in conjunction with the benefits of a consortium approach to data warehousing. Such an approach also provides inherent security boundaries for access to diocesan data.
- Identity and access requirements including relevant role based access controls to data within the data warehouse and reporting environment.
- Data transfer and data transformation requirements including the identification of real-time vs. batch processing of data, and the ability for the data warehouse architecture to support a standardised data transformation process whereby diocesan staging environments are consistent with the standardised data schema of the CED3 data warehouse.
- Flexible services integration enabling the ability for dioceses to be empowered through distributed and innovative reporting practices across the CEnet membership. The CED3 service can enable inter-diocesan report collaboration and sharing - enabling one diocese developed report to be able to be re-used to report on another dioceses data set in a secure fashion.