Cloudera Model Key
Service Name: Cloudera Machine Learning
Service Description: Cloudera Machine Learning (CML) is an enterprise platform that accelerates the ML lifecycle and enables collaboration between data scientists, engineers, and analysts to build, train, deploy, and manage machine learning models.
Service Address: https://www.cloudera.com/products/machine-learning.html
Validation Type: API Auth
IP Allow list: IP restrictions can be configured at the Cloudera environment level through Cloudera Manager's security settings.
Secret Access Scope: Grants access to machine learning models, workspaces, and associated resources within the Cloudera Machine Learning platform. Allows for model deployment, monitoring, and management operations.
Secret Revokement URL: https://docs.cloudera.com/machine-learning/cloud/security/topics/ml-api-keys.html
Secret Example: cml-api-key-a1b2c3d4e5f6g7h8i9j0k1l2m3n4o5p6
Suspicious Activity Investigation Instructions:
- Review access logs in Cloudera Manager for unusual API calls or model access patterns
- Check for unauthorized model deployments or modifications
- Monitor for unusual data access or extraction activities
- Examine resource utilization for signs of cryptomining or other unauthorized workloads
- Review authentication logs for failed login attempts or unusual access times
- Check for changes in model configurations or unexpected model versions
Mitigation Instructions:
- Immediately revoke the compromised API key through the Cloudera Machine Learning web interface
- Generate a new API key with appropriate permissions if needed
- Review and update access control policies for affected models and resources
- Implement IP restrictions for API access if not already in place
- Enable multi-factor authentication for user accounts with API key generation privileges
- Audit all models and deployments for unauthorized changes
- Consider implementing shorter API key expiration periods
- Update monitoring and alerting for suspicious model access patterns