11/28/2022, 12:00:00 AM ~ 11/29/2022, 12:00:00 AM (UTC)

Recent Announcements

AWS CloudTrail Lake now supports configuration items from AWS Config

AWS CloudTrail Lake now integrates with AWS Config to support ingestion and query of configuration items. Now you can query and analyze both configuration items and CloudTrail activity logs in CloudTrail Lake, thereby simplifying and streamlining your security and compliance investigations. CloudTrail Lake enables security teams to perform retrospective investigations by helping answer who made what configuration changes to resources associated with security incidents such as data exfiltration or unauthorized access. CloudTrail Lake helps compliance engineers investigate noncompliant changes to their production environments by relating AWS Config rules with noncompliant status to who and what resource changes triggered them. IT teams can perform historical asset inventory analysis on configuration items using CloudTrail Lake’s default seven-year data retention period.

AWS Glue for Apache Spark Native support for Data Lake Frameworks (Apache Hudi, Apache Iceberg, Delta Lake)

AWS Glue for Apache Spark now supports three open source data lake storage frameworks: Apache Hudi, Apache Iceberg, and Linux Foundation Delta Lake. These frameworks allow you to read and write data in Amazon Simple Storage Service (Amazon S3) in a transactionally consistent manner. AWS Glue is a serverless, scalable data integration service that makes it easier to discover, prepare, move, and integrate data from multiple sources. This feature removes the need to install a separate connector and reduces the configuration steps required to use these frameworks in AWS Glue for Apache Spark jobs.

Announcing the general availability of AWS Wickr

AWS Wickr is an end-to-end encrypted, enterprise communications service that offers advanced security features and facilitates one-to-one chats, group messaging, calling, file sharing, screen sharing, and more. The service is now generally available. With AWS Wickr, organizations can collaborate more safely than with consumer-grade messaging applications. Advanced security and administrative controls help organizations meet data retention requirements and build custom solutions for data security challenges.

Introducing AWS Glue 4.0

We’re pleased to announce the launch of AWS Glue version 4.0, a new version of AWS Glue that accelerates data integration workloads in AWS. AWS Glue 4.0 upgrades the Spark engines to Apache Spark 3.3.0 and Python 3.10. Glue 4.0 gives customers the latest Spark and Python releases so they can develop, run, and scale their data integration workloads and get insights faster.

AWS Config rules now support proactive compliance

AWS Config announces the ability to proactively check for compliance with AWS Config rules prior to resource provisioning. Customers use AWS Config to track the configuration changes made to their cloud resources and check if those resources match their desired configurations through a feature known as AWS Config rules. Proactive compliance allows customers to evaluate the configurations of their cloud resources before they are created or updated.

Introducing Amazon EC2 R7iz instances

Starting today, memory-optimized, high-frequency Amazon EC2 R7iz instances are available in preview. R7iz instances are the first EC2 instances powered by 4th generation Intel Xeon Scalable processors (code named Sapphire Rapids) with an all core turbo frequency up to 3.9 GHz. These instances have the highest performance per vCPU among x86-based EC2 instances, and they deliver up to 20% higher performance than z1d instances. The instances are built on the AWS Nitro System, a combination of dedicated hardware and lightweight hypervisor that delivers practically all of the compute and memory resources of the host hardware to your instances for better overall performance and security. R7iz instances are ideal for front-end Electronic Design Automation (EDA), relational database with high per-core licensing fees, financial, actuarial, data analytics simulations, and other workloads requiring a combination of high compute performance and high memory footprint.

AWS Network Manager introduces real-time performance monitoring for the AWS Global Network

Using AWS Network Manager, you can now monitor the real-time and historical performance of the AWS Global Network for operational and planning purposes. AWS Network Manager provides aggregate network latency between AWS Regions, Availability Zones and within each Availability Zone, allowing you to better understand how your application performance relates to the performance of the underlying AWS network. You can monitor the network latency for the AWS Global Network in up to 5-minute intervals, as well as view the 45-day historical trend from AWS Network Manager. In addition, you can also publish these latency metrics to Amazon CloudWatch, to further monitor, analyze, and alert on them.

AWS announces lower latencies for Amazon Elastic File System

Amazon Elastic File System (Amazon EFS) now delivers lower latencies enabling you to power an even broader set of applications with simple, scalable storage on AWS.

Announcing Amazon Braket Algorithm Library where you can now access pre-built quantum algorithms

Today we are announcing the Braket Algorithm Library, an open-source, GitHub repository that provides researchers ready-to-use Python implementations for a set of popular quantum algorithms, reducing the time it takes to get started on Amazon Braket. Amazon Braket, the quantum computing service from AWS, provides customers access to quantum computers and managed simulators. Researchers interested in contributing to the effort can start by viewing our open-source contribution guidelines.

Amazon Redshift announces integration with Informatica Data Loader tool to accelerate data uploads at no cost

AWS announces Informatica Data Loader for Amazon Redshift, allowing you to run high-speed and high-volume data loading to Amazon Redshift for free. This integration allows you to launch and operate Informatica Data Loader within your Amazon Redshift console and easily copy data without having to install additional components or write code. You can upload large volumes of data, across many data formats.

Announcing the availability of Microsoft Office Amazon Machine Images (AMIs) on Amazon EC2 with AWS provided licenses

AWS now offers fully-compliant, Amazon-provided licenses for Microsoft Office LTSC Professional Plus 2021 Amazon Machine Images (AMIs) on Amazon EC2. These AMIs are now available on the Amazon EC2 console and on AWS Marketplace to launch instances on-demand without any long-term licensing commitments. With this offering, customers have the flexibility to run Microsoft Office dependent applications on EC2. Amazon EC2 provides a broad choice of instances with the flexibility of paying only for the optimal capacity and hardware configuration Microsoft Office users need.

Introducing account customization within AWS Control Tower

AWS Control Tower now offers support for account factory customization, enabling you to customize your new and existing AWS accounts prior to provisioning them from within the AWS Control Tower console. With this release, you can now use AWS Control Tower to define account blueprints that scale your multi-account provisioning without starting from scratch with every account. An account blueprint describes the specific resources and configurations that are used when an account is provisioned. You may also use pre-defined blueprints, built and managed by AWS partners, to customize accounts for specific use cases.

AWS Marketplace for containers now supports direct deployment to EKS clusters

Amazon EKS customers can now find and deploy third-party operational software to their EKS clusters through the EKS console or using CLI, eksctl, AWS APIs, or infrastructure as code tools such as AWS CloudFormation and Terraform. Customers can choose between commercial, free, or packaged open source software that address use cases like monitoring, security, storage, and use the same simple commands they use today to deploy EKS add-ons to deploy these third party software. This helps EKS customers reduce time required to find, subscribe to, and deploy third party software, helping customers set up production-ready EKS clusters in minutes.

Amazon Macie introduces automated sensitive data discovery

We are pleased to announce automated sensitive data discovery, a new capability in Amazon Macie that provides continual, cost efficient, organization-wide visibility into where sensitive data resides across your Amazon Simple Storage Service (Amazon S3) estate. With this new capability, Macie automatically and intelligently samples and analyzes objects across your S3 buckets, inspecting them for sensitive data such as personally identifiable information (PII), financial data, and AWS credentials. Macie then builds and continuously maintains an interactive data map of where your sensitive data in S3 resides across all accounts and Regions where you’ve enabled Macie, and provides a sensitivity score for each bucket. Amazon Macie uses multiple automated techniques including resource clustering by attributes such as bucket name, file types, and prefixes to minimize the data scanning needed to uncover sensitive data in your S3 buckets. This helps you continuously identify and remediate data security risks without manual configuration and lowers the cost to monitor for and respond to data security risks.

Announcing comprehensive controls management with AWS Control Tower (Preview)

Today we are excited to announce the preview launch of comprehensive controls management in AWS Control Tower, a set of new features that enhances AWS Control Tower’s governance capabilities. You can now programmatically implement controls at scale across your multi-account AWS environments within minutes, so you can more quickly vet, allow-list, and begin using AWS services. With comprehensive controls management in AWS Control Tower, you can reduce the time it takes to define, map, and manage the controls required to meet your most common control objectives such as enforcing least privilege, restricting network access, and enforcing data encryption.

New Amazon S3 Multi-Region Access Points failover controls enable active-passive configurations and customer-initiated failovers

Amazon S3 Multi-Region Access Points failover controls let you shift S3 data access request traffic routed through an Amazon S3 Multi-Region Access Point to an alternate AWS Region within minutes to test and build highly available applications. S3 Multi-Region Access Points provide a single global endpoint to access a data set that spans multiple S3 buckets in different AWS Regions. With S3 Multi-Region Access Points failover controls, you can operate S3 Multi-Region Access Points in an active-passive configuration where you can designate an active AWS Region to service all S3 requests and a passive AWS Region that will only be routed to when it is made active during a planned or unplanned failover. You easily shift S3 data access request traffic from an active AWS Region to a passive AWS Region typically within 2 minutes to test application resiliency and perform disaster recovery simulations.

Announcing AWS Glue for Ray (Preview)

AWS Glue for Ray is a new engine option on AWS Glue. Data engineers can use AWS Glue for Ray to process large datasets with Python and popular Python libraries. AWS Glue is a serverless, scalable data integration service used to discover, prepare, move, and integrate data from multiple sources. AWS Glue for Ray combines that serverless option for data integration with Ray (ray.io), a popular new open-source compute framework that helps you scale Python workloads.

AWS announces Amazon Verified Permissions (Preview)

Today, AWS is announcing the preview of Amazon Verified Permissions, a scalable, fine-grained permissions management and authorization service for custom applications. With Amazon Verified Permissions, application developers can let their end users manage permissions and share access to data. For example, application developers can use Amazon Verified Permissions to define and manage fine grained permissions to determine which Amazon Cognito users have access to which application resources.

Amazon Redshift extends SQL capabilities to simplify and speed up data warehouse migrations (preview)

Amazon Redshift now supports new SQL functionalities namely, MERGE, ROLLUP, CUBE, and GROUPING SETS, to simplify building multi-dimensional analytics applications and incorporating fast changing data in Redshift. In addition, Amazon Redshift now extends support for a larger, semi-structured data size (up to 16 MB) when ingesting nested data from JSON and PARQUET source files. Together, these enhancements reduce the code conversion effort if you are migrating to Amazon Redshift from other data warehouse systems and help improve performance.

AWS Glue introduces custom visual transforms

AWS Glue now offers custom visual transforms which let customers define, reuse, and share business-specific ETL logic among their teams. AWS Glue is a serverless, scalable data integration service that makes it easier to discover, prepare, move, and integrate data from multiple sources. With this new feature, data engineers can write reusable transforms for the AWS Glue visual job editor. Reusable transforms increase consistency between teams and help keep jobs up to date by minimizing duplicate effort and code.

Amazon VPC Reachability Analyzer now supports network reachability analysis across accounts in an AWS Organization

Amazon VPC Reachability Analyzer now supports network reachability analysis between AWS resources across different AWS accounts in your AWS Organization, allowing you to trace and troubleshoot the network reachability across your AWS Organization.

AWS Backup launches application-aware data protection for applications defined using AWS CloudFormation

Today, AWS Backup is announcing application-aware data protection that enables you to add AWS CloudFormation stacks to backup policies, making it easier for you to back up and restore your entire applications. AWS Backup automates the data protection of applications that are defined using AWS CloudFormation stacks to create immutable application-level backups using AWS Backup Vault Lock.

Announcing data protection in Amazon CloudWatch Logs, helping you detect, and protect sensitive data-in-transit

We are excited to announce data protection in Amazon CloudWatch Logs, a new set of capabilities that leverage pattern matching and machine learning capabilities to detect and protect sensitive log data-in-transit. Amazon CloudWatch Logs enables you to centralize the logs from all of your systems, applications, and AWS services, in a single, highly scalable service. With log data protection in Amazon CloudWatch Logs, you can now detect and protect sensitive log data-in-transit logged by your systems, and applications.

AWS Backup introduces support for Amazon Redshift

AWS announces support for Amazon Redshift in AWS Backup, making it easier for you to centrally manage data protection of your Amazon Redshift data warehouse. You can now use AWS Backup to schedule and restore Redshift manual snapshots. Further, your backups can provide enhanced data protection with immutability, improved security with separate backup access policies, and better governance by centralizing backup and recovery.

AWS Elastic Disaster Recovery now supports cross-Region and cross-Availability Zone failback

AWS Elastic Disaster Recovery (AWS DRS) now allows you to initiate a scalable failback process for your applications running on AWS. This process helps simplify failing back recovered Amazon Elastic Compute Cloud (Amazon EC2) instances to your primary AWS Region or Availability Zone. It also allows you to perform frequent, non-disruptive recovery and failback drills for the AWS-based applications that you replicate using Elastic Disaster Recovery.

Announcing Amazon RDS Blue/Green Deployments for safer, simpler, and faster updates

Amazon Relational Database Service (Amazon RDS) now supports Amazon RDS Blue/Green Deployments to help you with safer, simpler, and faster updates to your Amazon Aurora and Amazon RDS databases. Blue/Green Deployments create a fully managed staging environment that allows you to deploy and test production changes, keeping your current production database safe. With a single click, you can promote the staging environment to be the new production system in as fast as a minute, with no changes to your application and no data loss.

AWS Backup launches delegation of organization-wide backup administration

AWS Backup now supports organization-wide delegation of backup administration to member accounts within AWS Organizations. This enables delegated backup administrators to create and manage backup policies and monitor backup activity across accounts within the organization.

Announcing real-time capabilities in Amazon Transcribe Call Analytics API to improve customer experience

We are excited to announce the general availability of real-time capabilities in Amazon Transcribe Call Analytics, a machine learning (ML) powered conversation insights API that enables developers to transcribe and analyze contact center audio calls for improving customer experience. Transcribe Call Analytics provides real-time insights into conversations to identify critical scenarios like a customer expressing dissatisfaction. Using these insights, developers can build a proactive system that assists agents with relevant information to solve customer issues, or alerts supervisors about emerging issues.

Amazon RDS Optimized Reads is now available for up to 50% faster queries on Amazon RDS for MySQL

Amazon Relational Database Service (Amazon RDS) for MySQL now supports Amazon RDS Optimized Reads for up to 50% faster query processing compared to previous generation instances. Optimized Read-enabled instances achieve faster query processing by placing temporary tables generated by MySQL on the local NVMe-based SSD block-level storage that’s physically connected to the host server. Complex queries that utilize temporary tables, such as queries involving sorts, hash aggregations, high-load joins, and Common Table Expressions (CTEs) can now execute up to 50% faster with Optimized Reads on RDS for MySQL.

AWS IoT announces general availability for version 5 of MQTT message broker (MQTT5)

AWS IoT Core, a managed cloud service that lets customers connect billions of IoT devices and routes trillions of messages to AWS services, and AWS IoT Core Device Advisor, a cloud-based fully-managed test capability to help developers validate their IoT devices for reliable and secure connectivity with AWS IoT Core, announces the General Availability of an upgraded message broker service that includes support for the MQTT version 5 protocol. MQTT5 is an updated device-to-device messaging communication standard that includes significant feature improvements over the previous MQTT version 3.1.1.

AWS IoT Device Management Jobs now supports scheduling configuration

Today, we are pleased to announce AWS IoT Device Management Jobs has added a new configuration option for scheduling, which gives customers the flexibility to deploy remote operations during pre-defined time windows so regular usage of their IoT devices is not disrupted. Using the scheduling feature, customers can define the start and end time of a job rollout, and also configure the end behavior to specify what happens to job executions at the end of the job schedule. This new scheduling feature helps customers to set up a rollout schedule in accordance with their standard operating procedures, or a deployment cadence for different types of updates based on their device software development CI/CD cycles.

Announcing Amazon CloudWatch Internet Monitor Preview

Amazon CloudWatch Internet Monitor is a new preview feature of Amazon CloudWatch that helps you, as application developers and network engineers, continually monitor internet availability and performance metrics between your AWS-hosted applications and application end users. InternetMonitor monitors your application through Amazon Virtual Private Clouds (VPCs), Amazon CloudFront distributions, and Amazon WorkSpaces directories.

Amazon Elastic File System introduces 1-Day Lifecycle Management Policy to help customers reduce costs for cold data sets

Amazon Elastic File System (Amazon EFS) now supports a 1-day Lifecycle Management Policy that allows you to automatically move files that haven’t been accessed in 1 day to the Amazon EFS Infrequent Access (EFS IA) storage class. You can configure this new policy option for your file system, or you can use one of the existing policy options: 7, 14, 30, 60, or 90 days.

Amazon CloudWatch launches cross-account observability across multiple AWS accounts

Amazon Web Services launches cross-account observability across Amazon CloudWatch to help you monitor and troubleshoot applications that span multiple AWS accounts within an AWS Region. With cross-account observability in CloudWatch, you can seamlessly search, visualize, and analyze your metrics, logs, and traces without any account boundaries. Centralized security, operations, platform teams, and service owners deploying applications across multiple accounts can aggregate and correlate cross-account telemetry data in Amazon CloudWatch. They can use resulting trends and insights to efficiently monitor and troubleshoot issues affecting the health of their applications. Cross-account observability is an addition to CloudWatch’s unified observability capability.

Amazon RDS Optimized Writes enables up to 2x higher write throughput at no additional cost

Amazon Relational Database Service (Amazon RDS) for MySQL now supports Amazon RDS Optimized Writes. With Optimized Writes you can improve write throughout by up to 2x at no additional cost. This is especially useful for RDS for MySQL customers with write-intensive database workloads, commonly found in applications such as digital payments, financial trading, and online gaming.

AWS Application Migration Service supports application-centric migrations, wave planning, and more

AWS Application Migration Service (AWS MGN) is announcing support for several new migration and modernization features, including application and wave management, custom modernization actions, and launch template configuration. Application Migration Service helps minimize time-intensive manual processes by automating the conversion of your source servers to run natively on AWS with optional modernization features.

Announcing Elastic Throughput for Amazon Elastic File System

Elastic Throughput is a new throughput mode for Amazon Elastic File System (Amazon EFS) that is designed to provide your applications with as much throughput as they need with pay-as-you-use pricing. Elastic Throughput is designed to further simplify running workloads and applications on AWS by providing file storage that doesn’t require any performance provisioning.

Amazon Textract launches Analyze Lending to accelerate loan document processing

Amazon Textract is a machine learning service that automatically extracts text, handwriting, and data from any document or image. Today, we’re excited to announce the availability of Textract’s Analyze Lending feature, an API that helps customers automate mortgage document processing to drive business efficiency, reduce costs, and scale quickly.

Amazon CodeWhisperer adds Enterprise administrative controls, simple sign-up, and support for new languages

Amazon CodeWhisperer now provides AWS administrators the ability to enable CodeWhisperer for their organization with Single Sign-On authentication. Administrators can easily integrate CodeWhisperer with their existing workforce identity solutions, provide access to users and groups, and configure organization-wide settings. Additionally, individual users who do not have AWS accounts can now use CodeWhisperer with their personal email using AWS Builder ID. The sign-up process takes only a few minutes and enables developers to start using CodeWhisperer immediately without any wait-list.

AWS Backup adds legal hold capability for extended data retention beyond lifecycle policies

AWS Backup now offers you the ability to create legal holds on your protected data beyond your defined retention policies, for legal and auditing purposes. Legal holds prevent your backups from being deleted after the expiration of their retention period, until your backups are explicitly released from legal hold. With this feature, AWS Backup allows you to manage legal hold requests at scale and help prove compliance to outside counsel, auditors, and related third-parties. Together with AWS Backup Vault Lock, this new capability helps you meet the key criteria for data storage and preservation of electronically stored information (ESI) set forth by SEC Rule 17a-4(f), FINRA Rule 4511, and CFTC Regulation 1.31.

AWS Backup Audit Manager adds centralized reporting for AWS Organizations

Today, AWS Backup adds centralized, multi-account reporting for AWS Organizations, making it easier for you to demonstrate compliance and meet regulatory auditing needs across your accounts and Regions. Now, you can use your organization’s management account to generate aggregated reports on your data protection policies and retrieve operational data about your backup and recovery activities from multiple accounts and AWS Regions using AWS Backup Audit Manager. AWS Backup enables you to centralize and automate data protection across AWS services based on organizational best practices and regulatory standards. With AWS Backup Audit Manager, you can generate auditor-ready reports to help prove compliance of your backup policies with your defined industry-specific regulatory requirements.

Amazon Kendra launches expanded language support for semantic search

Amazon Kendra is an intelligent search service powered by machine learning, that enables organizations to provide more relevant information to customers and employees, when they need it.

Amazon ECS introduces Service Connect

Amazon Elastic Container Services (Amazon ECS) launches new networking capability called Service Connect that simplifies service discovery, connectivity and traffic observability for Amazon ECS. Service Connect helps you build applications faster by letting you focus on the application code and not on your networking infrastructure. Amazon ECS is a fully managed container orchestration service that makes it easier for you to deploy, manage, and scale containerized applications.

Amazon Kendra launches tabular search for HTML documents

Amazon Kendra is an intelligent search service powered by machine learning, that enables organizations to provide more relevant information to customers and employees, when they need it.

Announcing Schema Conversion feature in AWS DMS

AWS Database Migration Service (AWS DMS), which helps enterprise customers migrate their databases quickly and securely to AWS, just launched a new feature called Schema Conversion. DMS Schema Conversion is a fully managed feature of AWS DMS that automatically assesses and converts the database schema to a format compatible with the target database service in AWS, enabling you to modernize your database and analytics workloads. DMS Schema Conversion is intended for customers who plan to migrate their database and analytics workloads to AWS to help reduce licensing costs and improve performance, agility, and resilience by embracing cloud and database modernization.

Announcing delegated administrator for AWS Organizations

We are excited to launch delegated administrator for AWS Organizations to help you delegate the management of your Organizations policies, enabling you to govern your AWS organization and member accounts with increased agility and decentralization. You can now allow individual lines of business, operating in member accounts, to manage policies specific to their needs. By specifying fine-grained permissions, you can balance flexibility with limiting access to your highly privileged management accounts.

AWS IoT Core announces new Device Location feature

AWS IoT Core, a managed cloud service that lets customers connect billions of IoT devices and routes trillions of messages to AWS services, announces AWS IoT Core Device Location, a new feature that makes it possible for customers to track and manage IoT devices using their location data, such as latitude and longitude coordinates. Using AWS IoT Core Device Location, customers can optimize business processes, simplify and automate maintenance efforts, and unlock new business use cases. For example, customers’ field service team can stay informed and quickly identify the location of devices that require maintenance action. In an IoT application, Global Positioning Service (GPS) is a commonly applied standard to locate an IoT device. But, not all IoT things, especially battery powered IoT devices, can be equipped with GPS hardware because of its high-power consumption. Therefore, new technologies such as cloud-assisted Global Navigation Satellite System (GNSS), WiFi, and cellular network have become popular alternatives to obtain location data for IoT devices.

AWS Blogs

AWS Japan Blog (Japanese)

AWS Japan Startup Blog (Japanese)

AWS News Blog

AWS Cloud Operations & Migrations Blog

AWS Big Data Blog

Desktop and Application Streaming

AWS DevOps Blog

The Internet of Things on AWS – Official Blog

AWS Machine Learning Blog

Networking & Content Delivery

AWS Quantum Technologies Blog

AWS Robotics Blog

AWS Storage Blog

Open Source Project

AWS CLI

AWS Copilot CLI