A Science DMZ (Data Management Zone) is a framework, model, and best practice to set up a high-performing, scalable and secure portion of a network to facilitate data-intensive science applications and does not include support for general-purpose networking (such as web surfing, email, etc.)—this traffic belongs behind the enterprise firewall and on the general-purpose network. By separating the high-performance science network from the general-purpose network, each network can respectively be optimized without interfering with the other.
While the core mission of a Science DMZ is the support of high-performance science applications, this cannot occur in isolation. The Science DMZ can easily incorporate wide area science support services, including virtual circuits and software defined networking at very high speeds without compromising security policies.