[Core] RBAC + auditability

ray-project / ray

Ray is an AI compute engine. Ray consists of a core distributed runtime and a set of AI Libraries for accelerating ML workloads.

https://ray.io

Apache License 2.0

34.24k stars 5.81k forks source link

[Core] RBAC + auditability #25845

Open Nintorac opened 2 years ago

Nintorac commented 2 years ago

Description

RBAC allow restricting functions/actors using RBAC, ideally integrating with OIDC or other identity providers. With RBAC + a proper logging strategy auditability is ensured.

Use case

We are running experiments on medical data, part of this work involves access to PII and HIPAA protected information. In order to meet requirements there needs to be complete transparency on function calls and data use and flow.

scv119 commented 2 years ago

This looks like very advanced feature; could this be done in your application?