How Does OCI Generative AI Services Provide Privacy and Security?

Roger Cornejo

The aim of my series on “GenAI Demystified” is to help a wide range of readers fill their AI tool boxes with not only tools but knowledge, approaches and a healthy dose of skepticism.  Equipped with such a “tool-kit” [“tool-kit” being a metaphor for a set of skills and knowledge], one can master the complex web of AI technologies.

With this overarching goal in mind, I’ve outlined for the readers how OCI Generative AI services provide data privacy and application security. 

In the rapidly evolving landscape of AI and cloud computing, the Oracle Cloud Infrastructure (OCI) Generative AI services stand out not only for their innovative capabilities but also for their robust security and privacy measures. Security and privacy of customer workloads and data are essential design tenets/design principles in today's digital world, especially when dealing with sensitive data and models. As such, OCI has implemented a comprehensive security architecture to ensure that customer workloads are protected at all times.

 

One of the key features of OCI's security architecture is the isolation of GPUs allocated for a customer's generative tasks. These GPUs are pooled within a dedicated RDMA network, ensuring that they are exclusively allocated to a single customer and not shared with others. This level of isolation guarantees that customer data remains secure and inaccessible to unauthorized parties.

 

Furthermore, OCI provides customers with dedicated GPU clusters that handle only the customer’s base models and fine-tuned models. This ensures that models and data are isolated from other customers, adding an extra layer of security. Additionally, customer data access is restricted within their tenancy, preventing access by other customers. This level of data isolation ensures that each customer's data remains confidential and secure.

 

OCI Generative AI services also leverage other OCI security services to enhance security. For example, OCI Identity and Access Management (IAM) service is used for authentication and authorization, allowing customers to control access to their models. Key Management securely stores all base model keys, while OCI Object Storage securely stores base model weights and fine-tuned model weights in encrypted object storage buckets. These measures ensure that customer data and models are protected from unauthorized access.

 

In conclusion, OCI Generative AI services offer not only cutting-edge AI capabilities but also robust security and privacy features. With dedicated GPU clusters, data isolation, and leveraging OCI security services, OCI ensures that customer workloads are protected at all times. These security measures underscore OCI's commitment to providing a secure and reliable platform for AI innovation.

Roger Cornejo
Roger Cornejo

Roger Cornejo has over 34 years’ experience with large/complex Oracle applications (versions 4.1.4 – 18c). Roger’s main focus is on DB performance analysis and tuning, and for the past 8 years, diving deep into AWR tuning data. He is often relied on to produce Oracle Database tuning results across 12c/11g/10g (and occasionally 9i) databases. As a thought leader, he has been sought out for his expertise in tuning (presenter at the past 8 East Coast Oracle Conferences, as well as COLLABORATE14 and COLLABORATE18, RMOUG16, and Hotsos 2017-2018). Additionally, Roger authored a book on his recent work, Dynamic Oracle Performance Analytics: Using Normalized Metrics to Improve Database Speed, The book is available through Amazon and Apress: http://www.apress.com/9781484241363

Linked in: https://www.linkedin.com/in/roger-cornejo-1805642/

Twitter: @OracleDBTuning

Website

Generative AI Inference in OCI:  On-Demand vs Dedicated AI Cluster

Studying for the OCI GenAI Certification? Consider The Power of a Taxonomy of Terms