November 10th, 2022

H2O Managed Cloud With AWS PrivateLink is Now Generally Available

RSS icon RSS Category: H2O AI Cloud

An essential part of responsibly practicing machine learning is understanding how you secure your data. H2O Managed Cloud offers a single-tenant cloud environment with multiple layers of security – but how do you get your data securely into the cloud for training, and how do you score sensitive information without exposing it to the internet?

To solve this, H2O.ai is thrilled to announce that H2O Managed Cloud with AWS PrivateLink connectivity is now generally available in all regions supported by H2O Managed Cloud. The announcement of general availability comes together with the designation of H2O.ai as an AWS PrivateLink Service Ready partner.

During the feature preview period, we received positive feedback from our customers in the insurance industry that connectivity to H2O Managed Cloud using AWS PrivateLink helps them adhere to regulatory and security requirements while enforcing private-only network connectivity. This motivated us to support AWS PrivateLink and achieve a stamp of approval from AWS by becoming an AWS PrivateLink Service Ready partner. This illustrates the strength of the collaboration between H2O and AWS.

Overview of the network connectivity –

In the above diagram, we use two PrivateLink connections to secure both inbound and outbound traffic from your H2O Managed Cloud environment. 

Each PrivateLink provides unidirectional connectivity only to the shared service, allowing the VPCs to exchange data without exposing traffic to the internet.

How is it done?

1. Inbound AWS PrivateLink connectivity (into the H2O Managed Cloud VPC) –

Inbound connectivity can be configured from one or more customer accounts.

The configuration is applied automatically to the customer’s account using an AWS CloudFormation that H2O will supply.

Behind the scenes, the AWS CloudFormation will configure VPC endpoints and Route53 records that allow the connection to the H2O Managed Cloud VPC.

This connectivity allows the customer to interact with the H2O Managed Cloud, either using the user interface or accessing programmatically to score data coming for the customer VPC using MLOps endpoints.

2. Outbound AWS PrivateLink connectivity (into the customer VPC) –

The customer supplies VPC service endpoints to H2O.

Setting up the connection to the endpoints will be created by automation maintained by the managed cloud DevOps team.

Outbound connectivity will enable data ingesting for various data sources that reside in the customer’s AWS environment or are accessible via the customer’s AWS network.

As part of the AWS PrivateLink configuration, the customer can choose whether to completely isolate the H2O Managed Cloud environment from the internet or configure it in a hybrid mode that still allows inbound and outbound internet connectivity. 

The user sets the network connectivity in a self-serve manner using the Managed Cloud Admin Center application, which is the customer’s admin console for the Managed Cloud platform.

What else does PrivateLink have to offer?

The benefits of having a PrivateLink connection don’t end with security. PrivateLink connectivity also simplifies the operational overhead of interconnecting multiple VPCs, allows elasticity, and offers low latency and high throughput network connectivity. These advantages help our customers train and score their data securely, reliably, and fast.

For additional details and more information, please refer to the links below:

About the Author

Ophir Zahavi

Ophir Zahavi manages the cloud engineering for the H2O AI Managed Cloud solution. He is passionate about cloud computing and has spent the better part of the last decade building cloud solutions.

Leave a Reply

+
H2O LLM DataStudio Part II: Convert Documents to QA Pairs for fine tuning of LLMs

Convert unstructured datasets to Question-answer pairs required for LLM fine-tuning and other downstream tasks with

September 22, 2023 - by Genevieve Richards, Tarique Hussain and Shivam Bansal
+
Building a Fraud Detection Model with H2O AI Cloud

In a previous article[1], we discussed how machine learning could be harnessed to mitigate fraud.

July 28, 2023 - by Asghar Ghorbani
+
A Look at the UniformRobust Method for Histogram Type

Tree-based algorithms, especially Gradient Boosting Machines (GBM's), are one of the most popular algorithms used.

July 25, 2023 - by Hannah Tillman and Megan Kurka
+
H2O LLM EvalGPT: A Comprehensive Tool for Evaluating Large Language Models

In an era where Large Language Models (LLMs) are rapidly gaining traction for diverse applications,

July 19, 2023 - by Srinivas Neppalli, Abhay Singhal and Michal Malohlava
+
Testing Large Language Model (LLM) Vulnerabilities Using Adversarial Attacks

Adversarial analysis seeks to explain a machine learning model by understanding locally what changes need

July 19, 2023 - by Kim Montgomery, Pramit Choudhary and Michal Malohlava
+
Reducing False Positives in Financial Transactions with AutoML

In an increasingly digital world, combating financial fraud is a high-stakes game. However, the systems

July 14, 2023 - by Asghar Ghorbani

Ready to see the H2O.ai platform in action?

Make data and AI deliver meaningful and significant value to your organization with our state-of-the-art AI platform.