Securing the network
In the previous sections, we looked at the data encryption techniques. Another measure to safeguard the data from a network perspective is to use Amazon VPC for model customization and creating a secure, isolated environment for your workloads. By doing so, you gain granular control over network traffic, enabling you to monitor and regulate all incoming and outgoing data flows using VPC Flow Logs. The following figure shows the VPC settings that you can specify while creating the fine-tuning or continued pre-training job.
Figure 12.2 – VPC settings
Furthermore, Amazon Bedrock integrates with AWS PrivateLink, so you can establish a private connection between your VPC and the Amazon Bedrock service. This connection is facilitated through the creation of a VPC interface endpoint, essentially a private entry point for traffic destined for Amazon Bedrock. In addition, Amazon Bedrock does not use public IP addresses or internet gateways...
