We plan to provide a machine learning algorithm via a [container image](https://docs.aws.amazon.com/sagemaker/latest/dg/model-monitor-byoc-containers.html) and are concerned about. Is it possible that other parties download the docker image for local inspection?

Inspection of algorithm containers for Sagemaker

We plan to provide a machine learning algorithm via a container image and are concerned about. Is it possible that other parties download the docker image for local inspection?

Durga_S
2 years ago
Can you clarify your question? Would you want members in your team to be able to download a custom image you have created? I'm assuming this question is specific to model monitoring.
Norbert
2 years ago
Thanks Durga_S, to clarify: is it possible for unrelated parties to get the source contained in the container image? That is, if the container contains for example Python code that is not open source, would it be possible for unrelated entities to obtain the Python sources?

Topics

Machine Learning & AI Containers

Tags

Amazon SageMaker Machine Learning & AI Containers

Language

English

Norbert

asked 2 years ago306 views

2 Answers

Newest
Most votes
Most comments

Are these answers helpful? Upvote the correct answer to help the community benefit from your knowledge.

As long as you have the image pushed to an ECR repository you should be fine, you will want to check access and control permissions to your repository and if you want it in a VPC or not.

AWS-User-7417937

answered 2 years ago

Norbert
2 years ago
Yes, we are pushing to an ECR repository. One more thing I would like to clarify: We want third parties to use the container in sagemaker, but not inspect the containers. Does this align with your understanding? Thanks a lot!

That is, if the container contains for example Python code that is not open source, would it be possible for unrelated entities to obtain the Python sources?

Third parties who can access or download the image will be able to access the internals, i.e. via docker run -it your_secret_image /bin/bash. If you are distributing your container for use, you are distributing the contents of the container for access as well.

jggoyder_CloudStrife

answered 2 years ago

Norbert
2 years ago
Thanks, and yes, I am aware of the fact that if the image is generally available for download, then it can be inspected.

The question is whether sagemaker algorithm containers can be used within sagemaker (that is on the AWS cloud servers) AND at the same time set to NOT be downloadable to unrelated computers.

My idea of how it "should" work is that Sagemaker algorithm containers can be deployed to cloud nodes via the Python API, but not pulled via docker pull etc. That would protect the content of the image and still make the functionality available in sagemaker.

Relevant content

ECS load container image from sagemaker built-in algorithm docker path
Accepted Answer
wookjae
asked 2 years ago
Download and access Sagemaker algorithm containers
NE
asked a year ago
Private Marketplace for SageMaker algorithms
Accepted Answer
EXPERT
Olivier_CR
asked 5 years ago
Provide a Random State for DeepAR Build-In Algorithm
Oliver
asked 6 months ago
How do I troubleshoot issues when I bring my custom container to Amazon SageMaker for training or inference?
AWS OFFICIALUpdated 2 years ago
How does my SageMaker container access Amazon S3 data and push logs to CloudWatch when I turn on network isolation?
AWS OFFICIALUpdated a year ago
How do I troubleshoot issues when bringing my custom container to Amazon SageMaker Studio?
AWS OFFICIALUpdated a year ago
How do I use AWS WAF to block HTTP requests that don't contain a User-Agent header?
AWS OFFICIALUpdated 2 years ago
A Brief Primer for Applying Deep Graph Learning to Molecular Graphs
EXPERT
Joshua_B
published 2 years ago
Access a private Amazon Redshift from a local machine via a private EC2 instance
EXPERT
Ziad
published 6 months ago