An egress alert will be issued when a registered researcher violates certain security policies put in place by the All of Us Research Program’s Data and Research Center (DRC). The most common reason an egress alert is triggered is through an attempt to download data from the Researcher Workbench (accidental or intentional); however, there are several other types of events that can cause an alert, such as: error messages, large queries, downloading summary data that is larger than the threshold (summary data is allowed to be downloaded, but row level data is not), or large notebooks (which are typically caused by large outputs). If you're using a large notebook that has triggered the alert, please use this article to clear outputs without opening them again.
As a reminder, per the Data User Code of Conduct, registered users of the Researcher Workbench are not permitted to download or remove participant-level data from the platform.
Should an egress alert be triggered, the VM that triggered the alert will be shut down, and the researcher will receive an email from the DRC's Security team. Some of the questions that the Security team may ask the researcher include:
- Can you please confirm you were active in your account on [date / time], and also share the details of your activity?
- Can you please share the SQL query you used so we can validate it against our logs?
- Finally, can you please confirm no data were downloaded to your local device during this activity?
The DRC’s Security team may ask additional questions in order to help determine:
- What method was used to download the data?
- How much data were downloaded?
- Did the downloaded data include any personally identifiable information (PII)?
- Was this suspected malicious intent?
- How much data were downloaded?
- How quickly were the data downloaded?
- Were the data downloaded manually or through a script?
- What ports were used?
*If a high volume data egress activity is detected, the Researcher Workbench Developer team will automatically disable the researcher’s account. To reinstate the disabled account, the Security team will review the researcher’s responses to the questions above. If they deem it appropriate, they will give approval to the developers to reinstate the account.
If you have triggered an egress event due to a large file download or a large notebook, we now have a form that can be submitted to request a temporary relaxation of our egress limits to allow you to download files of approved summary statistics. Please complete the form and our support team will evaluate the request and let you know whether it's approved within a few business days. You can send a request here. Please note: While relaxation of the egress threshold is available for approved requests during a limited timeframe, it does not completely remove egress thresholds in the Researcher Workbench. Therefore, if you receive an error message when attempting to download a file during the time frame of an approved egress relaxation, it could be due to the file size. Therefore, we recommend you reduce larger files into small files prior to download, and space out timing of downloads of multiple files.
If you have any additional questions, please contact us at support@researchallofus.org.
Please review our All of Us Research Program Data and Statistics Dissemination Policy, All of Us Research Program User Appeals Policy and Data User Code of Conduct for further information.
Comments
0 comments
Article is closed for comments.