3/28/2025, 12:00:00 AM ~ 3/31/2025, 12:00:00 AM (UTC)

Recent Announcements

AWS Identity and Access Management now supports dual-stack (IPv4 and IPv6) environments

AWS Identity and Access Management (IAM) announces a new dual-stack public endpoint, enabling customers to connect to IAM over the public internet using IPv6, IPv4, or dual-stack clients. Dual-stack support is also available when customers access the new IAM endpoint privately from their Amazon Virtual Private Cloud (VPC) using AWS PrivateLink. With simultaneous support for both IPv4 and IPv6 clients on IAM endpoint, customers can gradually transition from IPv4 to IPv6-based systems and applications.\n Support for dual-stack IAM endpoint is available in all commercial AWS Regions, the AWS GovCloud (US) Regions, and the China Regions. For more information about IAM dual-stack public endpoint, please see the IAM User Guide.

Amazon Bedrock Guardrails announces the general availability of industry-leading image content filters

Amazon Bedrock Guardrails announces the general availability of image content filters - offering industry-leading text and image content safeguards that help customers block up to 88% of harmful multi modal content. This new capability removes the heavy lifting required by customers to build their own safeguards for image content or spend cycles with manual content moderation that can be error-prone and tedious. Bedrock Guardrails provides configurable safeguards to detect and block harmful content and prompt attacks, define topics to deny and disallow specific topics, redact personally identifiable information (PII) such as personal data, block specific words, along with contextual grounding checks to detect and block model hallucinations and to identify the relevance of model responses and claims, and identify, correct, and explain factual claims in model responses using Automated Reasoning checks. Guardrails can be applied across any foundation model including those hosted with Amazon Bedrock, self-hosted models, and third-party models outside Bedrock using the ApplyGuardrail API, providing a consistent user experience and helping to standardize safety and privacy controls.\n Image content filters can be applied to all categories within the content filter policy of Bedrock Guardrails including hate, insults, sexual, violence, misconduct, and prompt attack. With this new capability, customers have the flexibility to choose either image or text content, or both, and build safe generative AI applications adhering to their responsible AI policies. This new capability is generally available in US East (N. Virginia), US West (Oregon), Europe (Frankfurt), and Asia Pacific (Tokyo) AWS regions. To learn more, see the blog, technical documentation, and the Bedrock Guardrails product page.

Amazon EC2 now supports more bandwidth and jumbo frames to select destinations

Amazon EC2 now supports up to the full EC2 instance bandwidth for inter-region VPC peering traffic and to AWS Direct Connect. Additionally, EC2 supports jumbo frames up to 8500 Bytes for cross region VPC peering. Before today, the egress bandwidth for EC2 instances was limited to 50% of the aggregate bandwidth limit for instances with 32 or more vCPUs, and 5 Gbps for smaller instances. Cross region peering supported up to 1500 bytes. Now, customers can send bandwidth from EC2 between regions or towards AWS Direct Connect at the full instance baseline specification or 5Gbps, whichever is greater and customers can use jumbo frames across regions for peered VPCs.\n Customers transferring data between regions or from EC2 to their on-premises network via AWS Direct Connect now have access to the full instance bandwidth capabilities. Before today, customers sending traffic to any destination not in the same region had a lower bandwidth limit. With this change, the lower limit has been removed for destinations between AWS regions and to on-premises through AWS Direct Connect, allowing for faster transfers. Additionally, supporting jumbo frames for peering makes sending large volumes of data faster than before. This capability is available in all AWS commercial regions, the AWS GovCloud (US) Regions, and the Amazon Web Services China (Beijing) Region, operated by Sinnet and Amazon Web Services China (Ningxia) Region, operated by NWCD. Customers can take advantage of this capability without any additional changes. To learn more about EC2 bandwidth capabilities, please review our user guide.

Amazon DataZone now supports metadata rules for publishing

Amazon DataZone is a data management service that makes it faster and easier for customers to catalog, discover, share, and govern data stored across AWS, on premises, and third-party sources. Amazon DataZone now supports metadata rules for data publishing workflows, in addition to existing support for subscription workflows. This enhancement allows organizations to enforce metadata standards consistently across both producer and consumer workflows. By standardizing metadata practices, organizations can improve compliance, enhance audit readiness, and streamline workflows for greater efficiency and control.\n With metadata rules, domain owners can define mandatory metadata fields that data users must complete when publishing assets to the catalog or requesting access to data. For example, a financial services organization can require producers to classify data before publication, and consumers to provide project details and compliance evidence as part of an access request. Healthcare providers can use metadata rules to enforce metadata standards to align with patient data regulations. Metadata rules also enable the creation of custom approval workflows for subscriptions to assets, using collected metadata to facilitate access decisions or auto-fulfillment—outside of Amazon DataZone. To get started with metadata rules—

Read the user guide for creating rules in the publishing workflow

Read the user guide for creating rules in subscription requests

Amazon SageMaker introduces metadata rules to enforce standards and improve data governance

The next generation of SageMaker brings together widely adopted AWS machine learning and analytics capabilities, delivering an integrated experience with unified access to all data. Amazon SageMaker Lakehouse supports unified data access, and Amazon SageMaker Catalog, built on Amazon DataZone, offers catalog and governance features to meet enterprise security needs.\n Amazon SageMaker Catalog now supports metadata rules, allowing organizations to enforce metadata standards across data publishing and subscription workflows. By standardizing metadata practices, organizations can improve compliance, enhance audit readiness, and streamline access workflows for greater efficiency and control. With metadata rules, domain owners can define mandatory metadata fields that data users must complete when publishing assets to the catalog or requesting access to data. For example, a financial services organization can require producers to classify data before publication, and consumers to provide project details and compliance evidence as part of an access request. Healthcare providers can use metadata rules to enforce metadata standards to align with patient data regulations. Metadata rules also enable the creation of custom approval workflows for subscriptions to assets, using collected metadata to facilitate access decisions or auto-fulfillment—outside of Amazon SageMaker. To get started with metadata rules—

Read the user guide for creating rules in the publishing workflow

Read the user guide for creating rules in subscription requests

Amazon ElastiCache now supports AWS PrivateLink in AWS Asia Pacific (Jakarta) and Asia Pacific (Hyderabad) Regions

You can now use AWS PrivateLink to privately access Amazon ElastiCache from your Amazon Virtual Private Cloud (Amazon VPC). AWS PrivateLink provides private connectivity between VPCs, AWS services, and on-premises networks, without exposing traffic to the public internet and securing your network traffic. The Amazon ElastiCache API supports AWS PrivateLink in AWS Asia Pacific (Jakarta) and Asia Pacific (Hyderabad) Regions.\n To use AWS PrivateLink with Amazon ElastiCache, you create an interface VPC endpoint for Amazon ElastiCache in your VPC using the Amazon VPC console, AWS SDK, or AWS CLI. With an interface VPC endpoint, you can privately access the Amazon ElastiCache APIs from applications inside your Amazon VPC. You can also access the VPC endpoint from other VPCs using VPC Peering or your on-premises environments using AWS VPN or AWS Direct Connect. To learn more, read the documentation, or get started in the Amazon VPC Console.

AWS CodeBuild now supports custom cache keys for S3 caching

AWS CodeBuild now supports an enhanced S3 caching experience. You can now define custom cache keys for more granular cache management and improved cache persistence across your builds. You can also share the cache keys across projects to use a common dependency cache to speed up your builds. AWS CodeBuild is a fully managed continuous integration service that compiles source code, runs tests, and produces software packages ready for deployment.\n Additionally, CodeBuild added support for fallback keys, which allows partial matches when an exact cache key is not found. This capability enables efficient caching sharing between similar builds, such as builds with common dependencies, without needing to rebuild everything. You can also specify an optional action to skip the cache save or restore step for a more flexible cache management. These caching enhancements are available in all AWS Regions where CodeBuild is offered. To learn more, please visit our documentation. To get started with CodeBuild, visit the AWS CodeBuild product page.

Amazon EBS launches gp3 and io1 volumes for AWS Dedicated Local Zones

You can now use Amazon EBS gp3 and io1 volumes in AWS Dedicated Local Zones. Dedicated Local Zones are a type of AWS infrastructure that are fully managed by AWS, built for exclusive use by you or your community, and placed in a location or data center specified by you to help you comply with regulatory requirements. In Dedicated Local Zones, these volumes are purpose-built to store data in a specific data perimeter, helping to support your data isolation and data residency use cases.\n The latest generation of General Purpose SSD volumes (gp3) enable customers to provision performance independently of storage capacity, providing up to 20% lower price point per GB than existing gp2 volumes. Provisioned IOPS SSD (io1) volumes are designed to meet the needs of I/O-intensive and latency-sensitive transactional workloads like databases. You can manage gp3 and io1 volumes using the AWS Management Console, the AWS Command Line Interface (CLI), or the AWS SDKs. For more information on gp3 and io1 volumes, see the product overview page.

Amazon SageMaker AI is now available in Asia Pacific (Thailand)

Starting today, you can build, train, and deploy machine learning (ML) models in Asia Pacific (Thailand).\n Amazon SageMaker AI is a fully managed platform that provides every developer and data scientist with the ability to build, train, and deploy machine learning (ML) models quickly. SageMaker AI removes the heavy lifting from each step of the machine learning process to make it easier to develop high quality models. To learn more and get started, see SageMaker AI documentation and pricing page.

Amazon SageMaker AI is now available in Mexico (Central)

Starting today, you can build, train, and deploy machine learning (ML) models in Mexico (Central).\n Amazon SageMaker AI is a fully managed platform that provides every developer and data scientist with the ability to build, train, and deploy machine learning (ML) models quickly. SageMaker AI removes the heavy lifting from each step of the machine learning process to make it easier to develop high quality models. To learn more and get started, see SageMaker AI documentation and pricing page.

Amazon EC2 C8g instances now available in AWS Asia Pacific (Tokyo)

Starting today, Amazon Elastic Compute Cloud (Amazon EC2) C8g instances are available in AWS Asia Pacific (Tokyo) region. These instances are powered by AWS Graviton4 processors and deliver up to 30% better performance compared to AWS Graviton3-based instances. Amazon EC2 C8g instances are built for compute-intensive workloads, such as high performance computing (HPC), batch processing, gaming, video encoding, scientific modeling, distributed analytics, CPU-based machine learning (ML) inference, and ad serving. These instances are built on the AWS Nitro System, which offloads CPU virtualization, storage, and networking functions to dedicated hardware and software to enhance the performance and security of your workloads.\n AWS Graviton4-based Amazon EC2 instances deliver the best performance and energy efficiency for a broad range of workloads running on Amazon EC2. These instances offer larger instance sizes with up to 3x more vCPUs and memory compared to Graviton3-based Amazon C7g instances. AWS Graviton4 processors are up to 40% faster for databases, 30% faster for web applications, and 45% faster for large Java applications than AWS Graviton3 processors. C8g instances are available in 12 different instance sizes, including two bare metal sizes. They offer up to 50 Gbps enhanced networking bandwidth and up to 40 Gbps of bandwidth to the Amazon Elastic Block Store (Amazon EBS). To learn more, see Amazon EC2 C8g Instances. To explore how to migrate your workloads to Graviton-based instances, see AWS Graviton Fast Start program and Porting Advisor for Graviton. To get started, see the AWS Management Console.

Amazon EC2 R8g instances now available in AWS US West (N. California)

Starting today, Amazon Elastic Compute Cloud (Amazon EC2) R8g instances are available in AWS US West (N. California) region. These instances are powered by AWS Graviton4 processors and deliver up to 30% better performance compared to AWS Graviton3-based instances. Amazon EC2 R8g instances are ideal for memory-intensive workloads such as databases, in-memory caches, and real-time big data analytics. These instances are built on the AWS Nitro System, which offloads CPU virtualization, storage, and networking functions to dedicated hardware and software to enhance the performance and security of your workloads.\n AWS Graviton4-based Amazon EC2 instances deliver the best performance and energy efficiency for a broad range of workloads running on Amazon EC2. AWS Graviton4-based R8g instances offer larger instance sizes with up to 3x more vCPU (up to 48xlarge) and memory (up to 1.5TB) than Graviton3-based R7g instances. These instances are up to 30% faster for web applications, 40% faster for databases, and 45% faster for large Java applications compared to AWS Graviton3-based R7g instances. R8g instances are available in 12 different instance sizes, including two bare metal sizes. They offer up to 50 Gbps enhanced networking bandwidth and up to 40 Gbps of bandwidth to the Amazon Elastic Block Store (Amazon EBS). To learn more, see Amazon EC2 R8g Instances. To explore how to migrate your workloads to Graviton-based instances, see AWS Graviton Fast Start program and Porting Advisor for Graviton. To get started, see the AWS Management Console.

AWS Blogs

AWS Japan Blog (Japanese)

AWS Cloud Financial Management

AWS Big Data Blog

AWS Machine Learning Blog

AWS Security Blog

Open Source Project

AWS CLI

Amplify for JavaScript

Amazon Chime SDK for iOS

Amazon Chime SDK for Android