Home icon

Building a secure and compliant HPC environment on AWS following NIST SP 800-223

HPC Blog

This article provides a comprehensive guide to building a secure and compliant High Performance Computing (HPC) environment on AWS following NIST SP 800-223 guidelines. The key points include:

  • A zone-based reference architecture dividing HPC systems into four functional zones:
    • Access zone
    • Management zone
    • High performance computing zone
    • Data storage zone
  • Leveraging AWS shared responsibility model for security
  • Implementing security measures for each zone:
    • Access zone: VPC isolation, AWS WAF, Secrets Manager, IAM
    • Management zone: IAM, AWS Config, CloudTrail, Systems Manager
    • Computing zone: Nitro Enclaves, CloudWatch, Batch/ParallelCluster
    • Storage zone: EFS, FSx, S3, KMS encryption
  • Provides CloudFormation templates for:
    • Network configuration
    • Security groups
    • Storage infrastructure
    • Slurm database
    • Active Directory
    • ParallelCluster deployment

The solution aims to create a secure, scalable HPC environment that balances performance and security requirements.

Go to article

The AWS News Feed is currently looking for gold sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.

Related articles

Sep 12
2024
Securing HPC on AWS – isolated clusters
Sep 26
2024
Customizing your HPC environment: building AMIs for AWS Parallel Computing Service
Jun 24
2024
A library of HPC Applications Best Practices on AWS
Jun 4
2024
Securing HPC on AWS: implementing STIGs in AWS ParallelCluster

The AWS News Feed is currently looking for silver sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.