Amazon SageMaker Now Supports More Refined Access Control using Amazon SageMaker-specific Condition Keys

You can use Amazon SageMaker-specific condition keys to enforce best practices and compliance requirements. This includes encryption of data, encryption of storage volumes, network isolation, and controlled access to Amazon SageMaker resources. You can also enforce SageMaker resources to a specific Virtual Private Cloud (VPC) and disable Notebook Instance root access and internet access. Additionally, you can restrict the instance types that users can select when using SageMaker to manage costs.



https://aws.amazon.com/about-aws/whats-new/2019/09/amazon-sagemaker-now-supports-more-refined-access-control-using-amazon-sagemaker-specific-condition-keys/