Protect Data at Rest Using Encryption - Amazon SageMaker

Protect Data at Rest Using Encryption

To protect your Amazon SageMaker Studio notebooks and SageMaker notebook instances, along with your model-building data and model artifacts, SageMaker uses the AWS Key Management Service (AWS KMS) to encrypt the notebooks and data. SageMaker uses AWS managed customer master keys (CMKs) by default. For more control, you can specify your own customer managed CMKs. For more information on AWS KMS, see What is AWS Key Management Service?.