Security
When you build systems on AWS infrastructure, security
responsibilities are shared between you and AWS. This
shared
responsibility model
IAM roles
IAM roles allow customers to assign granular access policies and permissions to services and users on the AWS Cloud. This solution creates IAM roles that grant the solution’s AWS Lambda functions access to create Regional resources.
AWS KMS keys
The MLOps Workload Orchestrator solution allows you to provide your own AWS KMS keys to encrypt captured data by the inference endpoint, model monitor baselines and violations reports, and instances’ volumes used by different pipelines. We recommend referring to Security best practices for AWS Key Management Service to enhance the protection of your encryption keys.