AWS KMS-based Encryption for Training and Hosting on Amazon

AWS KMS-based Encryption for Training and Hosting on Amazon

Amazon SageMaker uses throwaway keys (transient keys) to encrypt the ML General Purpose storage volumes attached to training and hosting EC2 instances. In fact, the volumes can safely be used to store confidential data because these keys are used to encrypt the ML storage volumes and are then immediately discarded. Furthermore, volumes can be accessed through the associated instances that have controlled access. Then, the ML volumes are deleted and the data in the volumes are inaccessible.

However, customers want to use keys that are managed through AWS Key Management Service (KMS).

Now, you can use a KMS master key to encrypt the training and hosting data. So, you can use this AWS KMS features such as centralized key management, key usage audit logging, master key rotation, and so on, for distributed training and model hosting.

In order to encrypt training data, you must specify a KMS master key in the call to the CreateTrainingJob API. In the case of hosting, you must specify the key in the call to the CreateEndpointConfig API.

Summary
AI is everywhere
User Rating
5 based on 126 votes
Service Type
AI is everywhere
Provider Name
BigDataGuys, Telephone No.202-897-1944
Area
United States
Description
Amazon SageMaker uses throwaway keys (transient keys) to encrypt the ML General Purpose storage volumes attached to training and hosting EC2 instances. In fact, the volumes can safely be used to store confidential data because these keys are used to encrypt the ML storage volumes and are then immediately discarded. Furthermore, volumes can be accessed through the associated instances that have controlled access. Then, the ML volumes are deleted and the data in the volumes are inaccessible.
By | 2018-11-22T02:41:14+00:00 November 21st, 2018|Categories: Blockchain blogs, Blog|Tags: , , |0 Comments

Share This Post

About the Author:

Leave A Comment

Live Training Instructor-led
In-Class Bootcamps in NYC | D.C | Bay Area & Metro Cities
close-link