Azure-HubAndSpokeResearchEnclave
所属分类:其他
开发工具:Bicep
文件大小:0KB
下载次数:0
上传日期:2023-10-27 01:37:05
上 传 者:
sh-1993
说明: 用于安全研究的中心辐射Azure飞地。,
(A Hub-and-Spoke Azure enclave for secure research.,)
文件列表:
.vscode/ (0, 2023-10-26)
.vscode/settings.json (255, 2023-10-26)
LICENSE (1071, 2023-10-26)
docs/ (0, 2023-10-26)
docs/architecture/ (0, 2023-10-26)
docs/architecture/Research Enclave Hub and Spoke diagrams.vsdx (432808, 2023-10-26)
module-library/ (0, 2023-10-26)
module-library/createValidAzResourceName.bicep (6762, 2023-10-26)
module-library/roleAssignments/ (0, 2023-10-26)
module-library/roleAssignments/roleAssignment-app.bicep (430, 2023-10-26)
module-library/roleAssignments/roleAssignment-appGw.bicep (443, 2023-10-26)
module-library/roleAssignments/roleAssignment-cr.bicep (566, 2023-10-26)
module-library/roleAssignments/roleAssignment-kv.bicep (416, 2023-10-26)
module-library/roleAssignments/roleAssignment-redis.bicep (437, 2023-10-26)
module-library/roleAssignments/roleAssignment-rg.bicep (309, 2023-10-26)
module-library/roleAssignments/roleAssignment-st.bicep (484, 2023-10-26)
module-library/roleAssignments/roleAssignment-uami.bicep (457, 2023-10-26)
module-library/roles.bicep (3953, 2023-10-26)
research-hub/ (0, 2023-10-26)
research-hub/azure-firewall-rules/ (0, 2023-10-26)
research-hub/azure-firewall-rules/azFwPolRuleColls-AVD.jsonc (1152, 2023-10-26)
research-hub/azure-firewall-rules/azFwPolRuleColls-AVDRDWeb.jsonc (930, 2023-10-26)
research-hub/azure-firewall-rules/azFwPolRuleColls-AzurePlatform.jsonc (2427, 2023-10-26)
research-hub/azure-firewall-rules/azFwPolRuleColls-ManagedDevices.jsonc (7312, 2023-10-26)
research-hub/azure-firewall-rules/azFwPolRuleColls-Office365Activation.jsonc (2558, 2023-10-26)
research-hub/azure-firewall-rules/azFwPolRuleColls-ResearchDataSources.jsonc (197, 2023-10-26)
research-hub/deploy.ps1 (719, 2023-10-26)
research-hub/hub-modules/ (0, 2023-10-26)
research-hub/hub-modules/avd/ (0, 2023-10-26)
research-hub/hub-modules/avd/avd-vm.bicep (3781, 2023-10-26)
research-hub/hub-modules/avd/avd-vmRG.bicep (1015, 2023-10-26)
research-hub/hub-modules/avd/avd.bicep (3514, 2023-10-26)
research-hub/hub-modules/azureFirewall.bicep (3515, 2023-10-26)
research-hub/hub-modules/dns/ (0, 2023-10-26)
research-hub/hub-modules/dns/allPrivateDnsZones.bicep (517, 2023-10-26)
research-hub/hub-modules/dns/allPrivateDnsZones.jsonc (5336, 2023-10-26)
research-hub/hub-modules/dns/privateDnsZone.bicep (236, 2023-10-26)
... ...
# Azure-HubAndSpokeResearchEnclave
A Hub-and-Spoke Azure enclave for secure research.
## Purpose
To accelerate the deployment of a hub-and-spoke architecture for building secure research enclaves in Azure.
## Architecture
[Visio Diagram](https://github.com/docs/architecture/Research%20Enclave%20Hub%20and%20Spoke%20diagrams.vsdx)
## Features
- Optional use of customer-managed keys for encryption at rest (required for FedRAMP Moderate compliance).
- Optional peering to a central hub.
- Choice between Active Directory or Azure Active Directory for device authentication and management. Optionally, use Intune for device management with AAD.
### Compliance
The goal of the project is that the templates will deploy resources that are compliant with the following frameworks (according to the Azure Commercial built-in initiatives):
- HIPAA/HITRUST
- NIST 800-171 R2
- FedRAMP Moderate
Compliance with all the above frameworks is a work-in-progress.
## Alternative research enclave accelerators
- Azure TRE:
- Standalone Azure Secure Enclave for Research:
- Mission Landing Zone (MLZ):
近期下载者:
相关文件:
收藏者: