Skip to content

trainer: "zero-trust" security / networking for training jobs #4234

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
Garvit-77 wants to merge 1 commit into
base: master
Choose a base branch
from
Open

trainer: "zero-trust" security / networking for training jobs #4234

Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
63 changes: 63 additions & 0 deletions content/en/docs/components/trainer/operator-guides/operator-security.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,63 @@
+++
title = "Operator Network Security"
description = "how to configure security of the Dataplane of Trainer Operator for Zero-Trust policy"
weight = 25
+++

This guide describes you how to configure your networking/security configuration for a Zero-Trust Network policy, which emphasizes
- Restriction of Pods Commnication(Blocking ingress)
- Ecnrypting/Securing Communication(mTLS)

## Restriction of Pods Communication
This emphasizes restricting pod-to-pod communications and blocking unauthorized ingress traffic to enhance isolation in multi-tenant environments. Coverage includes policy YAML examples, label selectors for Trainer Custom Resources (e.g., PyTorchJob or XGBoostJob), egress allowances for framework-specific inter-node sync (e.g., NCCL), ingress denial for external threats, and integration best practices with JobSet controller for resilient, secure training runtimes.

```YAML
apiVersion: networking.k8s.io/v1
kind: NetworkPolicy
metadata:
name: tfjob-internal-allow
namespace: default
spec:
podSelector:
matchLabels:
job-name: tf-dist-job # Label added by Kubeflow Training Operator
policyTypes:
- Ingress
- Egress
ingress:
- from:
- podSelector:
matchLabels:
job-name: tf-dist-job
egress:
- to:
- podSelector:
matchLabels:
job-name: tf-dist-job
```

## Encrypting Communication

The Kubeflow Trainer Operator doesn't directly implement or configure a mTLS,
but if your cluster has isto, kuma, or Linkerd,
it can inject sidecar proxies that handle mTLS.

- Enable Sidecar
```bash
kubectl label namespace default istio-injection=enabled
```

- Create Peer Auth policy

```YAML
apiVersion: security.istio.io/v1beta1
kind: PeerAuthentication
metadata:
name: mtls-strict
namespace: default
spec:
mtls:
mode: STRICT
```

## Troubleshooting