Amazon SageMaker HyperPod now supports customer managed AWS KMS keys (CMK) for encrypting EBS volumes, enabling enterprise customers to deploy machine learning clusters that meet their specific organizational security and compliance requirements. Customers training foundation models need full control over their encryption keys while maintaining high-performance computing capabilities, but previously could only rely on SageMaker HyperPod owned keys for cluster storage encryption.
This capability allows customers to encrypt both root and secondary EBS volumes using their own KMS keys, delivering enhanced security controls, regulatory compliance capabilities, and integration with existing key management workflows. The feature uses a grants-based approach for secure cross-account access and supports independent key selection for root and secondary volumes. You can specify customer managed KMS keys when creating or updating clusters using the CreateCluster and UpdateCluster APIs for clusters in continuous provisioning mode.
Customer managed KMS key support is available in all AWS Regions where SageMaker HyperPod is available. To learn more about customer managed key encryption for SageMaker HyperPod, see the user guide.
Categories: general:products/amazon-sagemaker,marketing:marchitecture/storage,marketing:marchitecture/artificial-intelligence,marketing:marchitecture/compute
Source: Amazon Web Services
Latest Posts
- SageMaker HyperPod now supports customer managed KMS keys for EBS volumes
- Amazon SageMaker HyperPod now supports Amazon EBS CSI driver for persistent storage
- Custom Metrics now available in Amazon CloudWatch Application Signals
- Update: Microsoft 365 and Microsoft Teams: Unified management of Teams apps in Teams, Outlook, and the Microsoft 365 app [MC796790]