5/22/2024, 12:00:00 AM ~ 5/23/2024, 12:00:00 AM (UTC)
Recent Announcements
Amazon SES launches Mail Manager to help manage complex inbound and outbound email workloads
Today, Amazon Simple Email Service (SES) announces the general availability of Mail Manager, a suite of email management features designed to streamline complex email operations for businesses of all sizes. With Mail Manager, companies can centralize their email infrastructure, applying unified policies and rules to manage both inbound and outbound email flows through a single interface. \n Mail Manager allows organizations to set up dedicated email ingress endpoints, enforce sophisticated email traffic filtering policies such as IP filters, and utilize a powerful rules engine to process and route emails to intended destinations. Mail Manager provides customers archiving capabilities to meet their compliance needs with records retention and data protection.
At launch, Mail Manager will offer three initial Email Add Ons, developed with Spamhaus, Abusix, and Trend Micro, to provide email security features. These add-ons offer additional layers of protection and control, enhancing the overall security posture of your email operations.
Mail Manager is generally available, and you can use it in the following AWS Regions: US East (N. Virginia), US West (Oregon), Europe (Ireland, Frankfurt), Asia Pacific (Tokyo, Sydney).
To learn more, see the documentation on Mail Manager in the Amazon SES Developer Guide and the blog post. To start using Mail Manager, visit the Amazon SES console.
Amazon MWAA supports FIPS 140-2 compliant endpoints in US and Canada Regions
Amazon Managed Workflows for Apache Airflow (MWAA) now offers Federal Information Processing Standard (FIPS) 140-2 validated endpoints to help you protect sensitive information. These endpoints terminate Transport Layer Security (TLS) sessions using a FIPS 140-2 validated cryptographic software module, making it easier for you to use Amazon MWAA for regulated workloads.\n Amazon MWAA is a managed orchestration service for Apache Airflow that makes it easier to set up and operate end-to-end data pipelines in the cloud. FIPS compliant endpoints on Amazon MWAA helps companies contracting with the US and Canadian federal governments meet the FIPS security requirement to encrypt sensitive data in supported Regions. FIPS 140-2 compliant endpoints for Amazon MWAA are available in US East (N. Virginia), US East (Ohio), US West (Oregon), US West (N. California), and Canada (Central) Regions. To learn more about Amazon MWAA visit the Amazon MWAA documentation. Apache, Apache Airflow, and Airflow are either registered trademarks or trademarks of the Apache Software Foundation in the United States and/or other countries.
AWS Lambda console now supports sharing test events between developers in additional regions
Developers can now share test events with other developers in their AWS account in Africa (Cape Town), Asia Pacific (Jakarta), Asia Pacific (Osaka), Europe (Milan), Europe (Spain), Europe (Zurich), Middle East (Bahrain), Middle East (UAE). Test events provide developers the ability to define a sample event in the Lambda console, and then invoke a Lambda function using that event to test their code. Previously in the above mentioned regions, test events were only available to the developers who created them. With this launch, developers can make test events available to other team members in their AWS account using granular IAM permissions. This capability makes it easier for developers to collaborate and streamline testing workflows. It also allows developers to use a consistent set of test events across their entire team.
Amazon RDS Extended Support APIs are now available
Amazon Aurora and Amazon Relational Database Service (RDS) announce the availability of Extended Support APIs for automated database management. You can use these APIs to create new databases or restore existing snapshots, and specify whether or not they will be in Extended Support. You can also use these APIs to view the Extended Support status of your existing databases. When your databases are in Extended Support, Amazon RDS will provide critical security and bug fixes for your MySQL and PostgreSQL databases after the community ends support for a major version, to give you time to upgrade to a newer community-supported version.\n Starting today, when you create or restore a database running MySQL 5.7, PostgreSQL 11, or higher major version on Aurora or RDS, it will be subject to Extended Support automatically. This ensures that your existing scripts and automation will work as expected. However, you can choose to override this behavior using the Amazon RDS Console, AWS CLI, and the Extended Support APIs. To learn more about opting out of Extended Support when creating or restoring databases, and viewing the Extended Support status via the Amazon API, AWS CLI or Amazon RDS Console, refer to the Amazon RDS User Guide. Amazon RDS Extended Support APIs are available for Aurora MySQL-Compatible version 2 and higher, Aurora PostgreSQL-Compatible version 11 and higher, RDS for MySQL major versions 5.7 and higher, and RDS for PostgreSQL major versions 11 and higher.
Announcing LlamaIndex support for Amazon Neptune to build GraphRAG applications
Starting today, you can build Graph Retrieval-Augmented Generation (GraphRAG) applications by combining knowledge graphs stored in Amazon Neptune and LlamaIndex, a popular open-source framework for building applications with Large Language Models (LLM) such as those available in Amazon Bedrock.\n Customers looking to build Generative AI applications often use Retrieval-Augmented Generation (RAG) to improve LLM output so it remains relevant, accurate, and useful in various contexts. RAG extends the already powerful capabilities of LLMs to specific domains or an organization’s internal knowledge base, without the need to retrain the model. Knowledge graphs explicitly consolidate and integrate an organization’s information assets. GraphRAG uses knowledge graphs, existing graphs or ones generated from source data, to relate concepts and entities across the underlying content, further improving RAG applications. For example, if asked, “Tell me about news events that impact companies in my trading portfolio,” a GraphRAG app could respond by also identifying news articles for upstream and downstream dependencies in the supply chain, which in turn might have an impact on those companies. With today’s announcement , you can use LlamaIndex to create GraphRAG applications with knowledge graphs stored in Amazon Neptune. To get started visit the Amazon Neptune GraphStore documentation.
Amazon Redshift announces Snapshot Isolation as the default for Provisioned clusters
Starting today, Amazon Redshift is making snapshot isolation as the default for provisioned clusters when you create a new cluster or restore a cluster from a snapshot. The database isolation level will remain unchanged on your existing provisioned clusters unless explicitly changed. You can switch to serializable at any time if it is your preferred database isolation level. This change makes the product experience consistent for both Provisioned and Serverless which already uses snapshot isolation as default.\n Amazon Redshift offers two database isolation levels — serializable and snapshot — to handle concurrent transactions within your data warehouse. Serializable isolation provides strict correctness guarantees equivalent to running your operations serially. Most data warehousing applications do not need these strict guarantees that limit concurrency on operations. Unlike serializable, snapshot isolation gives you better performance by allowing for more concurrency of operations on the same table when processing large volumes of data. You can change the isolation level for your database using CREATE DATABASE or ALTER DATABASE commands.
Amazon OpenSearch Service zero-ETL integration with Amazon S3 now available
Today, AWS announces the general availability of Amazon OpenSearch Service zero-ETL integration with Amazon S3, a new efficient way for customers to query operational logs in Amazon S3 data lakes eliminating the need to switch between tools to analyze data. Customers can quickly get started by installing out-of-the-box dashboards for AWS log types such as VPC Flow, WAF, and Elastic Load Balancer.\n Customers who use OpenSearch Service also use Amazon S3 as a cost-effective way to store infrequently-accessed operational log data. To perform analysis on Amazon S3 data and correlate data across multiple sources, customers previously had to copy that data into OpenSearch Service to take advantage of its rich analytics and visualization features that help them understand data, identify anomalies, and detect potential threats. However, continuously replicating data between services can be time consuming, expensive, and hard to maintain. With OpenSearch Service zero-ETL integration with Amazon S3, customers can access operational log data stored in Amazon S3 using OpenSearch Service, making it easier to perform complex queries and visualizations on their data without any data movement. Amazon OpenSearch Service zero-ETL integration with Amazon S3 is generally available using OpenSearch Service 2.13 in Asia Pacific (Hong Kong), Asia Pacific (Mumbai), Asia Pacific (Seoul), Asia Pacific (Singapore), Asia Pacific (Sydney), Asia Pacific (Tokyo), Canada (Central), Europe (Frankfurt), Europe (Ireland), Europe (Stockholm), US East (Ohio), US East (N. Virginia), and US West (Oregon). To learn more, see the Amazon OpenSearch Service Integration page and the Amazon OpenSearch Service Developer Guide .
Amazon Security Lake now supports logs from AWS WAF
Today, AWS announces the expansion in the log coverage support for Amazon Security Lake, now including AWS Web Application Firewall Logs (AWS WAF). This enhancement allows you to automatically centralize and normalize your AWS WAF web ACL logs in Security Lake. You can easily analyze your log data to determine if a suspicious IP address is interacting with your environment, monitor trends in denied requests to identify new exploitation campaigns, or conduct analytics to determine anomalous successful access by previously blocked hosts. This enables you to monitor and investigate potential suspicious activities in your web applications.\n Security Lake automatically centralizes security data from AWS environments, SaaS providers, on premises, and cloud sources into a purpose-built data lake stored in your account. AWS WAF is a web application firewall that enables you to monitor the HTTP(S) requests that are made to your protected web application resource. Today’s announcement of AWS WAF logs coverage further streamlines the collection and management of your security data across accounts and AWS Regions, freeing up time for analyzing security data and improving the protection of your workloads, applications, and data.
Amazon RDS Proxy is now available in 6 additional AWS regions
Amazon Relational Database Service (RDS) Proxy is now available in Middle East (UAE), Asia Pacific (Hyderabad), Asia Pacific (Melbourne), Israel (Tel Aviv), Europe (Zurich), and Canada (Central) AWS Regions. RDS Proxy is a fully managed and a highly available database proxy for RDS and Amazon Aurora databases. RDS Proxy helps improve application scalability, resiliency, and security.\n Many applications, including those built on modern architectures capable of horizontal scaling based on ebb and flow of active users, can open a large number of database connections or open and close connections frequently. This can stress the database’s memory and compute, leading to slower performance and limited application scalability. Amazon RDS Proxy sits between your application and database to pool and share established database connections, improving database efficiency and application scalability. In case of a failure, Amazon RDS Proxy automatically connects to a standby database instance within a region. With Amazon RDS Proxy, database credentials and access can be managed through AWS Secrets Manager and AWS Identity and Access Management (IAM), eliminating the need to embed database credentials in application code. For information on supported database engine versions and regional availability of RDS Proxy, refer to our RDS and Aurora documentations.
Amazon EventBridge Event Bus now supports improved filtering capabilities for event matching
Amazon EventBridge event matching on Event Bus now supports an array of values when combining anything-but filtering (matching anything except for the value) with prefix filtering (matching against characters at the beginning of a value), suffix filtering (matching against characters at the end of a value), and wildcard filtering (matching against patterns in string values). For example, you can now match against values that do not end with specific file types such as .png and .jpg. Or you can match against values that do not have a specific filename path such as /lib/ and /bin/.\n Amazon EventBridge Event Bus is a serverless event router that enables you to create scalable event-driven applications by routing events between your own applications, third-party SaaS applications, and AWS services. You can set up rules to determine where to send your data, allowing applications to react to changes in your data as they occur.
AWS announces new edge location in Egypt
Amazon Web Services (AWS) announces expansion in Egypt by launching a new Amazon CloudFront edge location in Cairo, Egypt. Customers in Egypt can expect up to 30% improvement in latency, on average, for data delivered through the new edge location. The new AWS edge location brings the full suite of benefits provided by Amazon CloudFront, a secure, highly distributed, and scalable content delivery network (CDN) that delivers static and dynamic content, APIs, and live and on-demand video with low latency and high performance.\n All Amazon CloudFront edge locations are protected against infrastructure-level DDoS threats with AWS Shield that uses always-on network flow monitoring and in-line mitigation to minimize application latency and downtime. You also have the ability to add additional layers of security for applications to protect them against common web exploits and bot attacks by enabling AWS Web Application Firewall (WAF). Traffic delivered from this edge location is included within the Middle East region pricing. To learn more about AWS edge locations, see CloudFront edge locations.
AWS Blogs
AWS Japan Blog (Japanese)
- AWS Weekly Roundup — Application Load Balancer IPv6, Amazon S3 Pricing Updates, Amazon EC2 Flex Instances, etc. (May 20, 2024)
- Enhance SAP BTP app functionality with SAP Private Link and AWS services
AWS Open Source Blog
AWS Big Data Blog
- Introducing blueprint discovery and other UI enhancements for Amazon OpenSearch Ingestion
- Use AWS Data Exchange to seamlessly share Apache Hudi datasets
AWS Database Blog
- How Agnostic Engineering improved storage latency for running Polygon nodes on AWS
- A generative AI use case using Amazon RDS for SQL Server as a vector data store
AWS for Industries
AWS Machine Learning Blog
AWS for M&E Blog
AWS Messaging & Targeting Blog
Networking & Content Delivery
- How to use Amazon Athena queries to analyze AWS WAF logs and provide the visibility needed for threat detection
- IPv6 deployment models for AWS Network Firewall
- How to seamlessly migrate traffic between Direct Connect gateways