Data
Reader small image

You're reading from  Machine Learning Security with Azure

Product typeBook
Published inDec 2023
PublisherPackt
ISBN-139781805120483
Edition1st Edition
Tools
Azure
Concepts
Machine Learning
Right arrow
Author (1)
Georgia Kalyva
Georgia Kalyva
author image
Georgia Kalyva

Georgia Kalyva is a technical trainer at Microsoft. She was recognized as a Microsoft AI MVP, is a Microsoft Certified Trainer, and is an international speaker with more than 10 years of experience in Microsoft Cloud, AI, and developer technologies. Her career covers several areas, ranging from designing and implementing solutions to business and digital transformation. She holds a bachelor's degree in informatics from the University of Piraeus, a master's degree in business administration from the University of Derby, and multiple Microsoft certifications. Georgia's honors include several awards from international technology and business competitions, and her journey to excellence stems from a growth mindset and a passion for technology.
Read more about Georgia Kalyva

Right arrow

Setting a Security Baseline for Your Azure Machine Learning Workloads

In this chapter, we will summarize all the best practices outlined in this book for creating a security baseline for your machine learning workloads from start to finish to help you create a security strategy. We will mostly focus on Azure services, as we have in the rest of the book. Of course, there are always more things to consider, such as code or application security, but these are not the focus of this book.

We will review a couple of other services that, although not directly related to Azure Machine Learning, are useful to consider so that we can increase security in our Azure services overall. When it comes to security, we can use threat modeling to ensure that any practices we have identified and mitigated are continuously maintained and updated with any past and new security recommendations for as long as those services are up and running. Finally, we will review the cloud responsibility model so that...

Setting a baseline for Azure Machine Learning

Throughout this book, we have seen multiple services and explored several ways to secure the Azure Machine Learning workspace and its associated services in Azure. All those best practices are part of the suggested best practices. As we focus on securing our workloads, it’s essential to establish a security foundation to guide our efforts. A security baseline is a set of the minimum security controls we need to implement for a system. Let us again review what the minimum requirements are to protect workloads running in Azure Machine Learning, which we have already outlined previously in this book, and learn how to extend this functionality further by using other services.

Let us review the baseline Azure Machine Learning best practices organized by the Zero Trust model we reviewed in this book:

  • Securing identity (Chapter 6):
    • Use Microsoft Entra ID best practices:
      • Enable multi-factor authentication (MFA) in user accounts
      • Use...

Threat modeling for Azure Machine Learning

Threat modeling is a structured methodology for detecting and ranking potential threats to a system and evaluating the impact that potential mitigations might have in decreasing or eliminating those threats. It is commonly used in the field of information security and cybersecurity, and we can apply this process to Azure Machine Learning as well to proactively protect our systems. What we are trying to determine when working with threat modeling are answers to the following questions:

  • What are we working on?
  • What can go wrong with the system?
  • How are we going to deal with the issue?
  • Is that enough? Did we miss anything else?

The process often follows these general steps, and it is an iterative process:

Figure 10.2 – The threat modeling process

Figure 10.2 – The threat modeling process

Let us review each one:

  1. Define objectives and review the architecture: Here, we need to clarify what we are trying to protect by...

Reviewing the shared responsibility model for cloud security

When it comes to migrating to the cloud, some of our responsibilities transfer to the cloud provider, such as the responsibility to purchase and maintain hardware. This concept is vital for understanding who is responsible for what when it comes to securing data, applications, and infrastructure in the cloud. The exact division of responsibilities can vary depending on the type of cloud service model being used, including infrastructure as a service (IaaS), platform as a service (PaaS), software as a service (SaaS), and the specific cloud service provider.

The responsibility model according to Microsoft is as follows for each category of services:

Table 10.1 – Shared responsibility model

Table 10.1 – Shared responsibility model

The same division of responsibilities applies to security. It’s essential to clearly understand the shared responsibility model with Azure and take the necessary steps to fulfill our part of...

Summary

Securing our resources is an iterative process. Although we may have completed all necessary steps to protect our resources, every update or new addition to our project might affect the overall security of the system. The first step is to maintain a security baseline for the resources we are using and the second is to develop a strategy to stay up to date using threat modeling frameworks to be proactive in mitigating possible threats. We saw the STRIDE methodology and the Microsoft Threat Modeling Tool, but there are more frameworks available. For example, we can base the strategy on the MITRE framework and tailor the steps for our organization.

Remember, security in the cloud is a shared responsibility. While Azure provides the tools and infrastructure to secure the cloud environment, it’s up to us to secure our configurations and data.

Cybersecurity has a multi-faceted nature and adversaries are becoming more creative every day. As our cloud ecosystem evolves...

lock icon
The rest of the chapter is locked
Previous Chapter
Chapter 15 of 17
Next Chapter
You have been reading a chapter from
Machine Learning Security with Azure
Published in: Dec 2023Publisher: PacktISBN-13: 9781805120483
© 2023 Packt Publishing Limited All Rights Reserved
Register for a free Packt account to unlock a world of extra content!
A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.
Sign up now
undefined
Unlock this book and the full library FREE for 7 days
Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of
Start free trial
Renews at $15.99/month. Cancel anytime

Author (1)

author image
Georgia Kalyva

Georgia Kalyva is a technical trainer at Microsoft. She was recognized as a Microsoft AI MVP, is a Microsoft Certified Trainer, and is an international speaker with more than 10 years of experience in Microsoft Cloud, AI, and developer technologies. Her career covers several areas, ranging from designing and implementing solutions to business and digital transformation. She holds a bachelor's degree in informatics from the University of Piraeus, a master's degree in business administration from the University of Derby, and multiple Microsoft certifications. Georgia's honors include several awards from international technology and business competitions, and her journey to excellence stems from a growth mindset and a passion for technology.
Read more about Georgia Kalyva

Personalised recommendations for you

Based on your interests and search pattern

Et al.

Et al.

Ever wonder why speech recognition systems don't understand the Scottish accent, or what would happen if an astronaut only ate mac 'n' cheese, or other spurious reflections you'd have at a bar? We did, then collated those deliberations into absurd research articles with fake figures and methodologies inspired by even more fictionally absurd studies.

BookAug 2023230 pages5
Generative AI with LangChain

Generative AI with LangChain

This book is a comprehensive introduction to LLMs and LangChain, demystifying the basic mechanics of LangChain, its functionalities, and the myriad of applications it can be integrated into.

BookDec 2023360 pages4
Generative AI with LangChain

Generative AI with LangChain

This book is a comprehensive introduction to LLMs and LangChain, demystifying the basic mechanics of LangChain, its functionalities, and the myriad of applications it can be integrated into.

BookDec 2023360 pages5
Generative AI with LangChain

Generative AI with LangChain

This book is a comprehensive introduction to LLMs and LangChain, demystifying the basic mechanics of LangChain, its functionalities, and the myriad of applications it can be integrated into.

BookDec 2023360 pages1
Generative AI with LangChain

Generative AI with LangChain

This book is a comprehensive introduction to LLMs and LangChain, demystifying the basic mechanics of LangChain, its functionalities, and the myriad of applications it can be integrated into.

BookDec 2023360 pages5
Mastering Tableau 2023

Mastering Tableau 2023

This book is a comprehensive resource to mastering your Tableau skills and becoming a BI expert. As you progress, you will learn how to build advanced dashboards and improve your storytelling to derive key business insight, as well as make you well-versed with advanced functionalities of Tableau in the business intelligence domain.

BookAug 2023684 pages
Building AI Applications with ChatGPT APIs

Building AI Applications with ChatGPT APIs

This guide covers all ChatGPT API features for effortless creation of robust AI powered apps. With its help, you’ll be able to leverage ChatGPT’s cutting-edge NLP models to take your app development skills to the next level. You’ll also work on ten exciting projects that will give you the practical know-how that you can apply to your existing applications.

BookSep 2023258 pages5
Building AI Applications with ChatGPT APIs

Building AI Applications with ChatGPT APIs

This guide covers all ChatGPT API features for effortless creation of robust AI powered apps. With its help, you’ll be able to leverage ChatGPT’s cutting-edge NLP models to take your app development skills to the next level. You’ll also work on ten exciting projects that will give you the practical know-how that you can apply to your existing applications.

BookSep 2023258 pages2
Data Engineering with AWS

Data Engineering with AWS

Embark on a journey to master data engineering pipelines on AWS! Our book offers a hands-on experience of AWS services for ingesting, transforming, and consuming data. Whether you're an absolute beginner or someone with basic data engineering experience, this guide is an indispensable resource.

BookOct 2023636 pages5
Modern Data Architecture on AWS

Modern Data Architecture on AWS

Every organization wants an agile, performant, and cost-effective data platform that meets all their current and future business needs. Purpose-built AWS analytics services and their features play a big part in building such a modern data platform. This book brings to you all the design and architectural patterns that’ll help you achieve this goal.

BookAug 2023420 pages5
Practical Guide to Applied Conformal Prediction in Python

Practical Guide to Applied Conformal Prediction in Python

Discover the power of Conformal Prediction with the "Practical Guide to Applied Conformal Prediction in Python." Master the latest techniques to quantify uncertainty in machine learning and computer vision models, and seamlessly apply them to your industry applications.

BookDec 2023240 pages
TinyML Cookbook

TinyML Cookbook

With over 70 project-based recipes, the TinyML Cookbook is a practical guide that will help you to get the most out of your microcontrollers. It provides a comprehensive understanding of the theoretical foundations while giving you hands-on experience training ML models for deployment on Arduino Nano 33 BLE Sense, Raspberry Pi Pico, and SparkFun RedBoard Artemis Nano microcontrollers.

BookNov 2023664 pages