The Science DMZ Model

The Science DMZ model helps colleges and universities take advantage of advanced network capabilities to help accelerate discovery on campuses

Science DMZ addresses common network performance problems encountered at research institutions by creating an environment that is tailored to the needs of high performance science applications, including high-volume bulk data transfer, remote experiment control, and data visualization.


A Science DMZ model integrates four key concepts into a unified whole:

  • A network architecture explicitly designed for high-performance applications, where the science network is distinct from the general-purpose network
  • The use of dedicated systems for data transfer
  • Performance measurement and network testing systems that are regularly used to characterize the network and are available for troubleshooting
  • Security policies and enforcement mechanisms that are tailored for high performance science environments


The Science DMZ Model addresses several key issues in data intensive science, including:

  • Reducing or eliminating the packet loss that causes poor TCP performance
  • Implementing appropriate security architectures and controls so that high-performance applications are not hampered by unnecessary constraints
  • Providing an on-ramp for local science resources to access wide area science services including virtual circuits, software defined networking environments, and 100 Gigabit infrastructures.
  • Incorporating network testing, network measurement, and performance analysis through the deployment of perfSONAR