Hugging Face's logo

Buckets:
hf-doc-build
/
doc-dev

Files
xet
hf-doc-build/doc-dev / microsoft-azure /pr_39 /en /security.html
rtrm's picture
rtrm
download
raw
13.1 kB
<meta charset="utf-8" /><meta name="hf:doc:metadata" content="{&quot;title&quot;:&quot;Security &amp; Compliance&quot;,&quot;local&quot;:&quot;security--compliance&quot;,&quot;sections&quot;:[{&quot;title&quot;:&quot;Model Eligibility Requirements&quot;,&quot;local&quot;:&quot;model-eligibility-requirements&quot;,&quot;sections&quot;:[],&quot;depth&quot;:2},{&quot;title&quot;:&quot;Mandatory Security Scanning&quot;,&quot;local&quot;:&quot;mandatory-security-scanning&quot;,&quot;sections&quot;:[],&quot;depth&quot;:2},{&quot;title&quot;:&quot;Network Isolation and Compliance&quot;,&quot;local&quot;:&quot;network-isolation-and-compliance&quot;,&quot;sections&quot;:[],&quot;depth&quot;:2}],&quot;depth&quot;:1}">
 <link href="/docs/microsoft-azure/pr_39/en/_app/immutable/assets/0.e3b0c442.css" rel="modulepreload">
 <link rel="modulepreload" href="/docs/microsoft-azure/pr_39/en/_app/immutable/entry/start.d16ed975.js">
 <link rel="modulepreload" href="/docs/microsoft-azure/pr_39/en/_app/immutable/chunks/scheduler.35aab934.js">
 <link rel="modulepreload" href="/docs/microsoft-azure/pr_39/en/_app/immutable/chunks/singletons.69755a92.js">
 <link rel="modulepreload" href="/docs/microsoft-azure/pr_39/en/_app/immutable/chunks/paths.2d1ffef0.js">
 <link rel="modulepreload" href="/docs/microsoft-azure/pr_39/en/_app/immutable/entry/app.7655f7f9.js">
 <link rel="modulepreload" href="/docs/microsoft-azure/pr_39/en/_app/immutable/chunks/preload-helper.3b5fbb1a.js">
 <link rel="modulepreload" href="/docs/microsoft-azure/pr_39/en/_app/immutable/chunks/index.b7be2227.js">
 <link rel="modulepreload" href="/docs/microsoft-azure/pr_39/en/_app/immutable/nodes/0.25c66cff.js">
 <link rel="modulepreload" href="/docs/microsoft-azure/pr_39/en/_app/immutable/chunks/each.e59479a4.js">
 <link rel="modulepreload" href="/docs/microsoft-azure/pr_39/en/_app/immutable/nodes/19.523be51c.js">
 <link rel="modulepreload" href="/docs/microsoft-azure/pr_39/en/_app/immutable/chunks/MermaidChart.svelte_svelte_type_style_lang.696a7398.js"><!-- HEAD_svelte-u9bgzb_START --><meta name="hf:doc:metadata" content="{&quot;title&quot;:&quot;Security &amp; Compliance&quot;,&quot;local&quot;:&quot;security--compliance&quot;,&quot;sections&quot;:[{&quot;title&quot;:&quot;Model Eligibility Requirements&quot;,&quot;local&quot;:&quot;model-eligibility-requirements&quot;,&quot;sections&quot;:[],&quot;depth&quot;:2},{&quot;title&quot;:&quot;Mandatory Security Scanning&quot;,&quot;local&quot;:&quot;mandatory-security-scanning&quot;,&quot;sections&quot;:[],&quot;depth&quot;:2},{&quot;title&quot;:&quot;Network Isolation and Compliance&quot;,&quot;local&quot;:&quot;network-isolation-and-compliance&quot;,&quot;sections&quot;:[],&quot;depth&quot;:2}],&quot;depth&quot;:1}"><!-- HEAD_svelte-u9bgzb_END --> <p></p> <div class="items-center shrink-0 min-w-[100px] max-sm:min-w-[50px] justify-end ml-auto flex" style="float: right; margin-left: 10px; display: inline-flex; position: relative; z-index: 10;"><div class="inline-flex rounded-md max-sm:rounded-sm"><button class="inline-flex items-center gap-1 max-sm:gap-0.5 h-6 max-sm:h-5 px-2 max-sm:px-1.5 text-[11px] max-sm:text-[9px] font-medium text-gray-800 border border-r-0 rounded-l-md max-sm:rounded-l-sm border-gray-200 bg-white hover:shadow-inner dark:border-gray-850 dark:bg-gray-950 dark:text-gray-200 dark:hover:bg-gray-800" aria-live="polite"><span class="inline-flex items-center justify-center rounded-md p-0.5 max-sm:p-0"><svg class="w-3 h-3 max-sm:w-2.5 max-sm:h-2.5" xmlns="http://www.w3.org/2000/svg" aria-hidden="true" fill="currentColor" focusable="false" role="img" width="1em" height="1em" preserveAspectRatio="xMidYMid meet" viewBox="0 0 32 32"><path d="M28,10V28H10V10H28m0-2H10a2,2,0,0,0-2,2V28a2,2,0,0,0,2,2H28a2,2,0,0,0,2-2V10a2,2,0,0,0-2-2Z" transform="translate(0)"></path><path d="M4,18H2V4A2,2,0,0,1,4,2H18V4H4Z" transform="translate(0)"></path><rect fill="none" width="32" height="32"></rect></svg></span> <span>Copy page</span></button> <button class="inline-flex items-center justify-center w-6 max-sm:w-5 h-6 max-sm:h-5 disabled:pointer-events-none text-sm text-gray-500 hover:text-gray-700 dark:hover:text-white rounded-r-md max-sm:rounded-r-sm border border-l transition border-gray-200 bg-white hover:shadow-inner dark:border-gray-850 dark:bg-gray-950 dark:text-gray-200 dark:hover:bg-gray-800" aria-haspopup="menu" aria-expanded="false" aria-label="Open copy menu"><svg class="transition-transform text-gray-400 overflow-visible w-3 h-3 max-sm:w-2.5 max-sm:h-2.5 rotate-0" width="1em" height="1em" viewBox="0 0 12 7" fill="none" xmlns="http://www.w3.org/2000/svg"><path d="M1 1L6 6L11 1" stroke="currentColor"></path></svg></button></div> </div> <h1 class="relative group"><a id="security--compliance" class="header-link block pr-1.5 text-lg no-hover:hidden with-hover:absolute with-hover:p-1.5 with-hover:opacity-0 with-hover:group-hover:opacity-100 with-hover:right-full" href="#security--compliance"><span><svg class="" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" aria-hidden="true" role="img" width="1em" height="1em" preserveAspectRatio="xMidYMid meet" viewBox="0 0 256 256"><path d="M167.594 88.393a8.001 8.001 0 0 1 0 11.314l-67.882 67.882a8 8 0 1 1-11.314-11.315l67.882-67.881a8.003 8.003 0 0 1 11.314 0zm-28.287 84.86l-28.284 28.284a40 40 0 0 1-56.567-56.567l28.284-28.284a8 8 0 0 0-11.315-11.315l-28.284 28.284a56 56 0 0 0 79.196 79.197l28.285-28.285a8 8 0 1 0-11.315-11.314zM212.852 43.14a56.002 56.002 0 0 0-79.196 0l-28.284 28.284a8 8 0 1 0 11.314 11.314l28.284-28.284a40 40 0 0 1 56.568 56.567l-28.285 28.285a8 8 0 0 0 11.315 11.314l28.284-28.284a56.065 56.065 0 0 0 0-79.196z" fill="currentColor"></path></svg></span></a> <span>Security &amp; Compliance</span></h1> <p data-svelte-h="svelte-1cjeujg">In addition to the enterprise-grade features available in Microsoft Azure services, the following security measures and requirements are enforced to safeguard the deployment and use of open models on Azure:</p> <h2 class="relative group"><a id="model-eligibility-requirements" class="header-link block pr-1.5 text-lg no-hover:hidden with-hover:absolute with-hover:p-1.5 with-hover:opacity-0 with-hover:group-hover:opacity-100 with-hover:right-full" href="#model-eligibility-requirements"><span><svg class="" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" aria-hidden="true" role="img" width="1em" height="1em" preserveAspectRatio="xMidYMid meet" viewBox="0 0 256 256"><path d="M167.594 88.393a8.001 8.001 0 0 1 0 11.314l-67.882 67.882a8 8 0 1 1-11.314-11.315l67.882-67.881a8.003 8.003 0 0 1 11.314 0zm-28.287 84.86l-28.284 28.284a40 40 0 0 1-56.567-56.567l28.284-28.284a8 8 0 0 0-11.315-11.315l-28.284 28.284a56 56 0 0 0 79.196 79.197l28.285-28.285a8 8 0 1 0-11.315-11.314zM212.852 43.14a56.002 56.002 0 0 0-79.196 0l-28.284 28.284a8 8 0 1 0 11.314 11.314l28.284-28.284a40 40 0 0 1 56.568 56.567l-28.285 28.285a8 8 0 0 0 11.315 11.314l28.284-28.284a56.065 56.065 0 0 0 0-79.196z" fill="currentColor"></path></svg></span></a> <span>Model Eligibility Requirements</span></h2> <p data-svelte-h="svelte-uv3igf">Only models that meet strict security criteria are included in the Hugging Face collection on Microsoft Foundry and Azure Machine Learning:</p> <ul data-svelte-h="svelte-1e0ug9u"><li><p><strong>Public availability:</strong> Models must be public on the <a href="https://huggingface.co/models" rel="nofollow">Hugging Face Hub</a>, even if gated; private models are currently not eligible.</p></li> <li><p><strong><code>trust_remote_code</code> and <code>custom_code</code> not allowed:</strong> Models that require <code>trust_remote_code=True</code> are disallowed unless they are explicitly verified by Hugging Face or come from a trusted/verified organization e.g. <code>microsoft</code>.</p></li> <li><p><strong>Secure format:</strong> Model weights must be uploaded in the <a href="https://github.com/huggingface/safetensors" rel="nofollow">Safetensors</a> format to eliminate the risks associated with pickle-based formats.</p></li></ul> <h2 class="relative group"><a id="mandatory-security-scanning" class="header-link block pr-1.5 text-lg no-hover:hidden with-hover:absolute with-hover:p-1.5 with-hover:opacity-0 with-hover:group-hover:opacity-100 with-hover:right-full" href="#mandatory-security-scanning"><span><svg class="" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" aria-hidden="true" role="img" width="1em" height="1em" preserveAspectRatio="xMidYMid meet" viewBox="0 0 256 256"><path d="M167.594 88.393a8.001 8.001 0 0 1 0 11.314l-67.882 67.882a8 8 0 1 1-11.314-11.315l67.882-67.881a8.003 8.003 0 0 1 11.314 0zm-28.287 84.86l-28.284 28.284a40 40 0 0 1-56.567-56.567l28.284-28.284a8 8 0 0 0-11.315-11.315l-28.284 28.284a56 56 0 0 0 79.196 79.197l28.285-28.285a8 8 0 1 0-11.315-11.314zM212.852 43.14a56.002 56.002 0 0 0-79.196 0l-28.284 28.284a8 8 0 1 0 11.314 11.314l28.284-28.284a40 40 0 0 1 56.568 56.567l-28.285 28.285a8 8 0 0 0 11.315 11.314l28.284-28.284a56.065 56.065 0 0 0 0-79.196z" fill="currentColor"></path></svg></span></a> <span>Mandatory Security Scanning</span></h2> <p data-svelte-h="svelte-8zhpw4">All models made available via the Hugging Face collection on Microsoft Foundry and Azure Machine Learning undergo a robust set of security scans like <a href="https://huggingface.co/docs/hub/en/security-malware" rel="nofollow">ClamAV malware scanning</a>, including third-party scanners such as <a href="https://huggingface.co/docs/hub/en/security-protectai" rel="nofollow">Protect AI</a> and <a href="https://huggingface.co/docs/hub/en/security-jfrog" rel="nofollow">JFrog</a> solutions.</p> <p data-svelte-h="svelte-tozd4p">These checks help identify embedded malware or harmful binaries, unsafe deserialization, unintended external connections and security-sensitive content in model artifacts before being imported in customers’ tenancy.</p> <p data-svelte-h="svelte-1k9of38">For more details on Hugging Face Hub’s security practices and tooling, refer to <a href="https://huggingface.co/docs/hub/en/security" rel="nofollow">Hugging Face Hub Security</a>.</p> <h2 class="relative group"><a id="network-isolation-and-compliance" class="header-link block pr-1.5 text-lg no-hover:hidden with-hover:absolute with-hover:p-1.5 with-hover:opacity-0 with-hover:group-hover:opacity-100 with-hover:right-full" href="#network-isolation-and-compliance"><span><svg class="" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" aria-hidden="true" role="img" width="1em" height="1em" preserveAspectRatio="xMidYMid meet" viewBox="0 0 256 256"><path d="M167.594 88.393a8.001 8.001 0 0 1 0 11.314l-67.882 67.882a8 8 0 1 1-11.314-11.315l67.882-67.881a8.003 8.003 0 0 1 11.314 0zm-28.287 84.86l-28.284 28.284a40 40 0 0 1-56.567-56.567l28.284-28.284a8 8 0 0 0-11.315-11.315l-28.284 28.284a56 56 0 0 0 79.196 79.197l28.285-28.285a8 8 0 1 0-11.315-11.314zM212.852 43.14a56.002 56.002 0 0 0-79.196 0l-28.284 28.284a8 8 0 1 0 11.314 11.314l28.284-28.284a40 40 0 0 1 56.568 56.567l-28.285 28.285a8 8 0 0 0 11.315 11.314l28.284-28.284a56.065 56.065 0 0 0 0-79.196z" fill="currentColor"></path></svg></span></a> <span>Network Isolation and Compliance</span></h2> <p data-svelte-h="svelte-vkkif6">For enhanced protection and compliance, model hosting and serving can be configured to run in isolated compute environments on Microsoft Foundry and Azure Machine Learning, aligned with regulatory or internal policy requirements. Azure Foundry and Azure ML comes with enterprise-grade audit, logging, and access control frameworks that ensures full traceability and governance.</p> <a class="!text-gray-400 !no-underline text-sm flex items-center not-prose mt-4" href="https://github.com/huggingface/Microsoft-Azure/blob/main/docs/source/security.mdx" target="_blank"><svg class="mr-1" xmlns="http://www.w3.org/2000/svg" aria-hidden="true" fill="currentColor" focusable="false" role="img" width="1em" height="1em" preserveAspectRatio="xMidYMid meet" viewBox="0 0 32 32"><path d="M31,16l-7,7l-1.41-1.41L28.17,16l-5.58-5.59L24,9l7,7z"></path><path d="M1,16l7-7l1.41,1.41L3.83,16l5.58,5.59L8,23l-7-7z"></path><path d="M12.419,25.484L17.639,6.552l1.932,0.518L14.351,26.002z"></path></svg> <span data-svelte-h="svelte-zjs2n5"><span class="underline">Update</span> on GitHub</span></a> <p></p>
<script>
 {
 __sveltekit_17ttbw8 = {
 assets: "/docs/microsoft-azure/pr_39/en",
 base: "/docs/microsoft-azure/pr_39/en",
 env: {}
 };
 const element = document.currentScript.parentElement;
 const data = [null,null];
 Promise.all([
 import("/docs/microsoft-azure/pr_39/en/_app/immutable/entry/start.d16ed975.js"),
 import("/docs/microsoft-azure/pr_39/en/_app/immutable/entry/app.7655f7f9.js")
 ]).then(([kit, app]) => {
 kit.start(app, element, {
 node_ids: [0, 19],
 data,
 form: null,
 error: null
 });
 });
 }
 </script>

Xet Storage Details

Size:
13.1 kB
·
Xet hash:
31cde811bd499acc465b90982d422ad11b285d738e2ae6bc143943d8bd9d0e7c

Xet efficiently stores files, intelligently splitting them into unique chunks and accelerating uploads and downloads. More info.