2025 08 27

AWS – SageMaker HyperPod now supports customer managed KMS keys for EBS volumes

Amazon SageMaker HyperPod now supports customer managed AWS KMS keys (CMK) for encrypting EBS volumes, enabling enterprise customers to deploy machine learning clusters that meet their specific organizational security and compliance requirements. Customers training foundation models need full control over their encryption keys while maintaining high-performance computing capabilities, but previously could only rely on SageMaker HyperPod owned keys for cluster storage encryption.

This capability allows customers to encrypt both root and secondary EBS volumes using their own KMS keys, delivering enhanced security controls, regulatory compliance capabilities, and integration with existing key management workflows. The feature uses a grants-based approach for secure cross-account access and supports independent key selection for root and secondary volumes. You can specify customer managed KMS keys when creating or updating clusters using the CreateCluster and UpdateCluster APIs for clusters in continuous provisioning mode.

Customer managed KMS key support is available in all AWS Regions where SageMaker HyperPod is available. To learn more about customer managed key encryption for SageMaker HyperPod, see the user guide.

AWS – SageMaker HyperPod now supports customer managed KMS keys for EBS volumes

Related Posts

AWS – Amazon EKS introduces on-demand insights refresh

AWS – AWS Client VPN extends OS support to Windows Arm64 v5.3.0

AWS – AWS Transfer Family introduces Terraform support for deploying SFTP connectors