3/3/2025, 12:00:00 AM ~ 3/4/2025, 12:00:00 AM (UTC)
Recent Announcements
Amazon API Gateway (APIGW) now supports all features of HTTP APIs as well as Mutual TLS and multi-level base path mappings on REST APIs in the following additional Regions: Middle East (UAE), Asia Pacific (Jakarta), Asia Pacific (Osaka), Asia Pacific (Hyderabad), Asia Pacific (Melbourne), Europe (Zurich), Europe (Spain), Israel (Tel Aviv), and Canada West (Calgary). AWS Web Application Firewall (WAF) for REST APIs is now available in two additional regions: Asia Pacific (Kuala Lumpur) and Canada West (Calgary).\n HTTP APIs simplify API development for serverless applications with a simpler user interface that includes support for OAuth2.0 and automatic deployments. Mutual TLS enhances security by authenticating x509 certificate based identities at the APIGW. Multi-level base path mappings enable routing requests based on segments in custom domain paths, supporting path-based versioning and traffic redirection. Integration of AWS WAF offers APIs protections against common web exploits through configurable rules that allow, block, or monitor web requests. To learn more, see API Gateway developer guide.
Amazon Bedrock Data Automation is now generally available
Today, we are announcing the general availability of Amazon Bedrock Data Automation (BDA), a feature of Amazon Bedrock that enables developers to automate the generation of valuable insights from unstructured multimodal content such as documents, images, video, and audio to build GenAI-based applications. By leveraging BDA, developers can reduce development time and effort, making it easier to build intelligent document processing, media analysis, and other multimodal data-centric automation solutions. BDA can be used as a standalone feature or as a parser in Amazon Knowledge Bases RAG workflows. Further, Amazon Q Business now uses BDA to process multimodal assets and deliver insights.\n In this GA release, we improved document accuracy across a variety of document types, enhanced scene-level and full video summarization accuracy, added support for detection of 35,000+ company logos in images and videos, and added support for AWS cross-region inference to optimize routing across regions within your geography to maximize throughput. BDA also added a number of security, governance, and manageability capabilities such as AWS Key Management Service (KMS) Customer Managed Keys (CMKs) support for encryption, AWS PrivateLink to connect directly to the BDA APIs in your virtual private cloud (VPC) instead of connecting over the internet, and tagging of BDA resources and jobs to track costs and enforce tag-based access policies in Amazon Identity and Access Management (IAM). Amazon Bedrock Data Automation is now generally available in the US West (Oregon) and US East (N. Virginia) AWS Regions. To learn more, visit the Bedrock Data Automation page.
Announcing managed integrations for AWS IoT Device Management (Preview)
Today, AWS IoT Device Management announces the preview of managed integrations, a new feature that enables you to simplify control and management of a diverse set of devices across multiple manufacturers and connectivity protocols. The new feature helps you streamline cloud onboarding of Internet of Things (IoT) devices and enables you to control both self-managed and third-party devices, including cloud-based devices, from a single application.\n Managed integrations provides cloud and device Software Development Kits (SDKs) for device connectivity and protocol support for ZigBee, Z-Wave, and Wi-Fi specifications, eliminating the need to handle dedicated connectivity protocols from different manufacturers separately. A unified API coupled with a catalog of cloud-to-cloud connectors and 80+ device data model templates enable you to control both proprietary and third-party devices from a single application. Additionally, you can easily process and integrate device data from those devices for building home security, energy management, and elderly care monitoring solutions. Managed integrations for AWS IoT Device Management also provides built-in capabilities for barcode scanning and direct pairing of devices, delivering additional mechanisms to simplify device onboarding and integration complexities. The managed integrations feature is available in Canada (Central) and Europe (Ireland) AWS Regions. To learn more, see technical documentation and read this blog. To get started, log in to the AWS IoT console or use the AWS Command Line Interface (AWS CLI).
Announcing AWS Outposts racks for high throughput, network-intensive workloads (Preview)
AWS announces the preview of new AWS Outposts racks designed specifically for on-premises high throughput, network-intensive workloads. With these new Outposts racks, telecom service providers (telcos) can extend AWS infrastructure and services to telco locations, enabling them to deploy on-premises network functions requiring low latency, high throughput, and real-time performance.\n The new Outposts racks feature new Amazon Elastic Compute Cloud (Amazon EC2) 4th Generation Intel Xeon Scalable-based (Sapphire Rapids) bare metal instances along with a high-performance bare metal network fabric. This architecture delivers the low latency and high throughput required for demanding 5G workloads, such as User Plane Function (UPF) and Radio Access Network (RAN) Central Unit (CU) network functions. Telcos can now use Amazon EKS (Elastic Kubernetes Service) and built-in EKS add-ons to automate deployment and scaling of micro-services based 5G network functions for high throughput and performance. Telcos can now use the same AWS infrastructure, AWS services, APIs, tools, and a common continuous integration and continuous delivery (CI/CD) pipeline wherever their workloads reside. This consistent cloud experience eases operational burden, reduces integration costs, and maximizes new feature development velocity for operators. The new AWS Outposts racks are currently available in preview in the following AWS Regions: US East (N. Virginia), US East (Ohio), US West (Oregon), Europe (Frankfurt), and Asia Pacific (Singapore).
Amazon QuickSight now available in the AWS GovCloud (US-East) Region
Amazon QuickSight is now available in the AWS GovCloud (US-East) Region. AWS GovCloud (US) Regions are isolated AWS Regions designed to host sensitive data and regulated workloads in the cloud, assisting customers who have United States federal, state, or local government compliance requirements.\n Amazon QuickSight is a fast, scalable, and fully managed Business Intelligence service that lets you easily create and publish interactive dashboards across your organization. QuickSight dashboards can be authored on any modern web browser with no clients to install or manage; dashboards can be shared with 10s of 1000s of users without the need to provision or manage any infrastructure. QuickSight dashboards can also be seamlessly embedded into your applications, portals, and websites to provide rich, interactive analytics for end-users. With this launch, QuickSight expands to 22 regions, including: US East (Ohio and N. Virginia), US West (Oregon), Europe (Stockholm, Paris, Frankfurt, Ireland, London, Milan and Zurich), Asia Pacific (Mumbai, Seoul, Singapore, Sydney, Beijing, Tokyo and Jakarta), Canada (Central), South America (São Paulo), Africa (Cape Town) and AWS GovCloud (US-East, US-West). To learn more about Amazon QuickSight, please see our product page, documentation and available regions here.
AWS Amplify supports HttpOnly cookies for server-rendered Next.js applications
AWS Amplify now supports HttpOnly cookies for server-rendered Next.js applications when using Amazon Cognito’s Managed Login. This enhancement builds upon existing cookie functionality in server-rendered sites, opting in to the HttpOnly attribute strengthens your application’s security posture by blocking client-side JavaScript from accessing cookie contents.\n With HttpOnly cookies, your applications gain an additional layer of protection against cross-site scripting (XSS) attacks. This ensures that sensitive information remains secure and will only be transmitted between the browser and the server, and is particularly valuable when handling authentication tokens in your web applications. The contents of cookies with HttpOnly attributes can only be read by the server, requiring your requests to flow through the server before reaching other services. This feature is now available in all AWS regions where AWS Amplify and Amazon Cognito are supported. To learn more, visit the AWS Amplify documentation for Server-Side Rendering.
Amazon Connect outbound campaigns now supports Brazil
Amazon Connect now supports outbound campaign calling to Brazil in the US East (Virginia) and US West (Oregon) regions, making it easier to proactively communicate across voice, SMS, and email for use cases such as delivery notifications, marketing promotions, appointment reminders, or debt collection. Communication capabilities include features such as point-of-dial checks, calling controls for time of day, time zone, number of attempts per contact, and predictive dialing with integrated voicemail detection. A list management capability provided by Amazon Pinpoint can also be used to build customer journeys and multi-channel user contact experiences. Outbound campaigns can be enabled within the AWS Connect Console.\n With Amazon Connect outbound campaigns, you only pay-as-you-go for the high-volume outbound service usage, associated telephony charges and any monthly target audience charges via Amazon Pinpoint. To learn more, visit our webpage.
Amazon Bedrock now available in the Europe (Stockholm) region
Customers can use regional processing profiles for Amazon Nova understanding models (Amazon Nova Lite, Amazon Nova Micro, and Amazon Nova Pro) in Europe (Stockholm).\n Amazon Bedrock is a fully managed service that offers a choice of high-performing large language models (LLMs) and other FMs from leading AI companies via a single API. Amazon Bedrock also provides a broad set of capabilities customers need to build generative AI applications with security, privacy, and responsible AI built in. These capabilities help you build tailored applications for multiple use cases across different industries, helping organizations unlock sustained growth from generative AI while ensuring customer trust and data governance. To get started, visit the Amazon Bedrock page and see the Amazon Bedrock documentation for more details.
AWS CodeBuild adds support for Node 22, Python 3.13, and Go 1.23
AWS CodeBuild managed images now support Node 22, Python 3.13, and Go 1.23. These new runtime versions are available in Linux x86, Arm, Windows and macOS platforms. AWS CodeBuild is a fully managed continuous integration service that compiles source code, runs tests, and produces software packages ready for deployment.\n For CodeBuild managed images based on Linux, you can specify a runtime of your choice in the runtime-versions section of your buildspec file. You can select specific major and minor versions supported by CodeBuild, or define a custom runtime version. Additionally with this release, we added commonly used tools that are available in GitHub Actions environments to better support customers using CodeBuild as a self-hosted runner option. The updated images are available in all regions where CodeBuild is offered. For more information about the AWS Regions where CodeBuild is available, see the AWS Regions page. To learn more about docker images and runtime versions provided by CodeBuild, please visit our documentation or our image repository. To learn more about how to get started with CodeBuild, visit the AWS CodeBuild product page.
Amazon CloudWatch RUM introduces resource-based policy support for data ingestion access
CloudWatch RUM, which provides real-time monitoring into web application performance by tracking user interactions, now supports resource based policies that simplify access for data ingestion to RUM. With resource-based policies, you can specify which Identity and Access Management (IAM) principals have access to ingest data to your RUM app monitors— effectively which clients can write data to RUM. This would also allow you to ingest data at higher volume and gives you greater control over data ingress in RUM.\n Using resource based policies allows you to manage ingestion access to your app monitor without using Amazon Cognito to assume an IAM role, and AWS Security Token Service (STS) to obtain security credentials to write data to CloudWatch RUM. This is beneficial for high throughput use cases where a high volume of requests may be subject to Cognito’s quota limits leading to throttling and potentially failure in ingesting data to RUM. With a public resource policy, no such limits apply. Anyone can send data to CloudWatch RUM including unauthenticated users and clients. In addition, you can use AWS Global context keys to use these policies to block certain IPs or disable clients sending data to RUM. You can configure these policies on the AWS console or via code using AWS CloudFormation. These enhancements are available in all regions where CloudWatch RUM is available at no additional cost to users. See documentation to know more about the feature, or see user guide to learn how to configure resource based policies for CloudWatch RUM.
Amazon Cognito now allows customers to customize access tokens for M2M flows, enabling you to implement fine-grained authorization in your applications, APIs, and workloads. M2M authorization is commonly used for automated processes such as scheduled data synchronization tasks, event-driven workflows, microservices communication, or real-time data streaming between systems. In M2M authorization flows, an app client can represent a software system or service that can request access tokens to interact with resources, such as a reporting system or a data processing service. With this launch, customers can now customize their access tokens with custom claims (attributes about the app client) and scopes (level of access that an app client can request to a resource), making it easier to control and manage how their automated systems interact with each other.\n Customers can now add custom attributes directly in access tokens, reducing the complexity of authorization logic needed in their application code. For example, customers can customize access tokens with claims that allow an app client for a reporting system to only read data while allowing an app client for a data processing service to both read and modify data. This allows customers to streamline authentication by embedding custom authorization attributes directly into access tokens during the token issuance process. Access token customization for M2M authorization is available to Amazon Cognito customers using Essentials or Plus tiers in all AWS Regions where Cognito is available, except the AWS GovCloud (US) Regions. To learn more, refer to the developer guide.
AWS Blogs
AWS Japan Blog (Japanese)
- Weekly Generative AI with AWS — 2025/2/24
- Introducing the new AWS Marketplace Consumer Goods Solutions Hub
- Cloud CoE (CCoE) Crossing Borders - Co-Creation of Innovation Expanding Across Organizations (Part 2) -
- Cloud CoE (CCoE) Crossing Borders - Co-Creation of Innovation Expanding Across Organizations (Part 1)
- AWS Weekly — 2025/2/24
- Experience the future of industrial AI at Hannover Messe 2025
AWS News Blog
- Get insights from multimodal content with Amazon Bedrock Data Automation, now generally available
- AWS Weekly Roundup: Anthropic Claude 3.7, JAWS Days, cross-account access, and more (March 3, 2025)
AWS Big Data Blog
Containers
AWS Database Blog
- Automate Amazon RDS credential rotation with AWS Secrets Manager for primary instances with read replicas
- Customer-managed process for configuring Kerberos authentication on an Amazon RDS for SQL Server DB instance, joined to a self-managed Active Directory
AWS Developer Tools Blog
AWS DevOps & Developer Productivity Blog
AWS for Industries
The Internet of Things on AWS – Official Blog
AWS Machine Learning Blog
- Customize DeepSeek-R1 distilled models using Amazon SageMaker HyperPod recipes – Part 1
- Reduce conversational AI response time through inference at the edge with AWS Local Zones
- Pixtral-12B-2409 is now available on Amazon Bedrock Marketplace