Defines how users access the D4Science infrastructure, how Virtual Research Environments are governed, and which uses of services, APIs, and shared resources are permitted or prohibited.
1. Purpose and Scope
The D4Science infrastructure is a shared digital environment designed to support scientific research and innovation through collaborative access to data, computational resources, and services.
As a common infrastructure operated for the benefit of multiple research communities, it is essential that access to its services is governed by clear rules ensuring secure and controlled use of infrastructure resources, protection of users and research activities, fair access to shared capabilities, and compliance with applicable legal and institutional requirements.
This policy establishes the conditions under which users may access and use D4Science services. It applies to all interactions with the infrastructure, including access through Gateway portals, Virtual Research Environments (VREs), APIs, and programmatic interfaces.
2. Relationship with the Policy Framework
This policy is part of the D4Science Policy Framework and should be read together with the other policies governing the infrastructure.
Together, these policies define the rules for access, usage, security, and data management, ensuring that the infrastructure operates as a secure, reliable, and sustainable environment supporting scientific research.
3. Access to the Infrastructure
Access to D4Science is provided through Gateway portals, which serve as the main entry point to infrastructure services.
Through these portals, users can authenticate, discover available services, and participate in collaborative environments tailored to specific research communities.
Access is governed by participation in Virtual Research Environments, which define the scope of services and resources available to each user.
4. User Roles
The infrastructure supports a role-based access model that reflects the collaborative nature of research activities and ensures clear responsibilities.
A Gateway Member is a registered user who can access the infrastructure and request participation in Virtual Research Environments.
A VRE Member is a user who has been granted access to a Virtual Research Environment and can use its services and resources.
A VRE Manager is responsible for managing participation in a Virtual Research Environment, including approving access requests, inviting users, and defining community-specific access rules.
Infrastructure Administrators are responsible for operating and maintaining infrastructure services.
5. Authentication and Identity Management
The D4Science infrastructure uses a robust Identity and Access Management (IAM) system to ensure secure and controlled access.
Authentication mechanisms include federated identities through eduGAIN, local accounts where permitted, and optional multi-factor authentication.
This model supports interoperability across institutions while maintaining a high level of security.
Users are responsible for protecting their credentials and must not share access to their accounts.
6. Access to Virtual Research Environments
Virtual Research Environments are the core operational units of D4Science.
Each VRE provides a collaborative space where a research community can access data, computational tools, and shared resources.
VREs act as logical security contexts, ensuring that access to services and data is restricted to authorized users.
7. Virtual Research Environment Access Policies
D4Science supports flexible access models that allow each community to define how participation is managed.
An Open Access VRE allows any registered user to join without approval.
A Moderated Access VRE requires users to request access, which is reviewed by a VRE Manager.
A Private Access VRE allows access only by invitation.
These models enable the infrastructure to support both open and controlled scientific collaborations.
8. Programmatic Access and APIs
D4Science provides APIs to enable integration with external applications and automation of workflows.
API access is based on OpenID Connect (OIDC) authentication and secure token-based authorization within a Virtual Research Environment context.
To ensure fair use and system stability, the infrastructure may apply limits such as rate limits, quotas, and concurrency restrictions.
9. Acceptable Use
D4Science is a shared infrastructure supporting public research activities. Users are expected to use its services responsibly and in ways that contribute to scientific progress.
Acceptable use includes scientific research, education, collaboration, and dissemination of research results.
Users must comply with applicable laws, respect intellectual property rights, and adhere to ethical standards.
10. Prohibited Activities
Certain activities are not permitted as they may compromise the infrastructure and its users.
Users must not bypass security mechanisms, access unauthorized data, deploy malicious code, misuse APIs, impersonate other users, or perform illegal activities.
These restrictions are necessary to protect the integrity of the infrastructure.
11. Responsible Use of Resources
D4Science is a shared resource and must be used responsibly.
Users must avoid excessive consumption of storage, computational power, and API usage, and must ensure that their activities do not negatively impact other users.
Operational limits may be applied to ensure fair and sustainable use of the infrastructure.
12. Reporting Security Incidents
Users are encouraged to report any suspected security issues, including unauthorized access or abnormal behaviour.
Reports should be submitted through the support portal: https://support.d4science.org
13. Enforcement
Failure to comply with this policy may result in suspension or termination of access, removal from Virtual Research Environments, or other appropriate measures.
These actions are necessary to protect the infrastructure and its users.
14. Policy Updates
This policy may be updated to reflect changes in services, operational practices, or regulatory requirements.
Updated versions will be published through official D4Science channels.
15. Policy Framework
This document forms part of the D4Science Policy Framework.
For support or questions, please contact: https://support.d4science.org