Cloud - agent security

jedi · May 18, 2022, 6:40pm

We would like to use prefect cloud for orchestrating jobs. If prefect cloud is compromised by a bad actor, would it be possible for them to infiltrate or exfiltrate arbitrary code/data to run on agents that are hosted on-prem behind firewall. Are there any steps we can follow to test that assumption?

anna_geller · May 18, 2022, 9:52pm

Hi @jedi, welcome to Discourse!

I answered the same question you also asked via Slack but essentially:

Prefect Cloud operates purely on metadata and your entire code and data remain on your infrastructure,
this means that Prefect has no access to your infrastructure, code, or data – it operates purely on an outbound connection from your infrastructure to Prefect Cloud, never in the other direction.

Topic		Replies	Views
Comparison between SAAS model and Kubernetes open source Help prefect-1-0	3	298	May 4, 2022
Are there any infrastructure-specific limits when using Prefect Cloud? Archive organizational , prefect-1-0 , prefect-2-0 , cloud-1-0 , backend , infrastructure , getting-started , hybrid-execution-model	0	464	March 11, 2022
How can I use Prefect with OpenShift? Archive prefect-1-0 , prefect-2-0 , kubernetes , server , hybrid-execution-model , open-shift , execution-layer	0	766	May 4, 2022
Multi-cloud setup - data on GCP, agents on AWS EKS, or is it better to deploy one agent in each cloud provider? Archive prefect-1-0 , cloud-1-0 , aws , gcp , agent , infrastructure	0	456	March 3, 2022
How to get started with Prefect and Google Vertex agent? Archive prefect-1-0 , vertex , gcp , agent-setup	0	700	April 22, 2022

Cloud - agent security

Related Topics