AWS bedrock documentation change
Summary
Restructured documentation to cover all model customization types. Added detailed permissions requirements for model copying across regions and cross-region inference profiles. Removed redundant section headings and updated navigation links.
Security assessment
The changes add significant documentation about security features including KMS encryption policies for model copying and cross-region access controls. The added IAM policies and KMS key requirements enhance security documentation but don't address a specific vulnerability. The removal of section headings is organizational and not security-related.
Diff
diff --git a/bedrock/latest/userguide/custom-model-job-access-security.md b/bedrock/latest/userguide/custom-model-job-access-security.md index 84203583d..ce6f67db7 100644 --- a//bedrock/latest/userguide/custom-model-job-access-security.md +++ b//bedrock/latest/userguide/custom-model-job-access-security.md @@ -5,2 +4,0 @@ -Create an IAM service role for model customization(Optional) Permissions to create a Distillation job with a cross-region inference profile(Optional) Encrypt model customization jobs and artifacts(Optional) Protect your model customization jobs using a VPC - @@ -9 +7,5 @@ Create an IAM service role for model customization(Optional) Permissions to crea -Before you begin customizing a model, make sure that you understand what kind of access Amazon Bedrock needs and consider some options for securing your customization jobs and artifacts. +This page provides comprehensive security and permissions information for all Amazon Bedrock model customization types including fine-tuning, reinforcement fine-tuning, distillation, and model operations. Before you begin customizing a model, make sure that you understand what kind of access Amazon Bedrock needs and consider some options for securing your customization jobs and artifacts. + +The following sections contain the permissions required for different customization scenarios. Choose the appropriate permissions based on your specific use case: + +All model customization jobs require these basic permissions. These apply to fine-tuning, distillation, and other customization types. @@ -11 +13 @@ Before you begin customizing a model, make sure that you understand what kind of -## Create an IAM service role for model customization +### Create an IAM service role for model customization @@ -37,9 +38,0 @@ For the manual option, create an IAM role and attach the following permissions b -###### Topics - - * Trust relationship - - * Permissions to access training and validation files and to write output files in S3 - - - - @@ -133 +126,70 @@ JSON -## (Optional) Permissions to create a Distillation job with a cross-region inference profile +To copy a model to another Region, you need specific permissions depending on your role's current permissions and the model's configuration. + + 1. If your role doesn't have the [AmazonBedrockFullAccess](./security-iam-awsmanpol.html#security-iam-awsmanpol-AmazonBedrockFullAccess) policy attached, attach the following identity-based policy to the role to allow the minimal permissions to copy models and to track copy jobs. + +JSON + + +**** + + + { + "Version":"2012-10-17", + "Statement": [ + { + "Sid": "CopyModels", + "Effect": "Allow", + "Action": [ + "bedrock:CreateModelCopyJob", + "bedrock:GetModelCopyJob", + "bedrock:ListModelCopyJobs" + ], + "Resource": [ + "arn:aws:bedrock:us-east-1::foundation-model/model-id" + ], + "Condition": { + "StringEquals": { + "aws:RequestedRegion": [ + "us-east-1" + ] + } + } + } + ] + } + + + 2. (Optional) If the model to be copied is encrypted with a KMS key, attach a [key policy to the KMS key that encrypted the model](./encryption-custom-job.html#encryption-key-policy-decrypt) to allow a role to decrypt it. + + 3. (Optional) If you plan to encrypt the model copy with a KMS key, attach a [key policy to the KMS key that will be used to encrypt the model](./encryption-custom-job.html#encryption-key-policy-encrypt) to allow a role to encrypt the model with the key. + + + + +To use a cross-region inference profile for a teacher model in a distillation job, the service role must have permissions to invoke the inference profile in an AWS Region, in addition to the model in each Region in the inference profile. + +JSON + + +**** + + + + { + "Version":"2012-10-17", + "Statement": [ + { + "Sid": "CrossRegionInference", + "Effect": "Allow", + "Action": [ + "bedrock:InvokeModel" + ], + "Resource": [ + "arn:aws:bedrock:us-east-1:123456789012:inference-profile/${InferenceProfileId}", + "arn:aws:bedrock:us-east-1::foundation-model/${ModelId}", + "arn:aws:bedrock:us-east-1::foundation-model/${ModelId}" + ] + } + ] + } + @@ -165,2 +226,0 @@ JSON -## (Optional) Encrypt model customization jobs and artifacts - @@ -169,2 +228,0 @@ Encrypt the input and output data, customization jobs, or inference requests mad -## (Optional) Protect your model customization jobs using a VPC - @@ -309 +367 @@ Console -For the Amazon Bedrock console, you specify VPC subnets and security groups in the optional **VPC settings** section when you create the model customization job. For more information about configuring jobs, see [Submit a model customization job for fine-tuning or continued pre-training](./model-customization-submit.html). +For the Amazon Bedrock console, you specify VPC subnets and security groups in the optional **VPC settings** section when you create the model customization job. For more information about configuring jobs, see [Submit a model customization job for fine-tuning](./model-customization-submit.html). @@ -338 +396 @@ To use the Amazon Web Services Documentation, Javascript must be enabled. Please -Manage customized models +Model customization @@ -340 +398 @@ Manage customized models -Monitor your model customization job +Supervised fine-tuning