This week at AWS
This week has also been quite busy for AWS. Tons of news, let’s go and see them:
Amazon Cognito now provides user pool deletion protection
You can now activate deletion protection for your Amazon Cognito user pools. When you configure a user pool with deletion protection, the pool cannot be deleted by any user. Deletion protection is now active by default for new user pools created through the AWS Console. You can activate or deactivate deletion protection for an existing user pool in the AWS Console, the AWS Command Line Interface, and API. Deletion protection prevents you from requesting the deletion of a user pool unless you first modify the pool and deactivate deletion protection.
Amazon EBS Snapshots Archive is now available in AWS GovCloud (US) Regions enabling customers to save up to 75% in snapshot storage costs
Amazon Elastic Block Store (EBS) Snapshots Archive helps customers save up to 75% on storage costs for Amazon EBS Snapshots that they rarely access and intend to retain for more than 90 days. Amazon EBS Snapshots are incremental in nature, storing only the changes since the last snapshot. This makes them cost-effective for daily and weekly backups that need to be accessed frequently. If you have snapshots that you access every few months or years, and would like to retain them long-term for legal or compliance reasons, you can use Amazon EBS Snapshots Archive to store full, point-in-time snapshots at a lower cost than what you would incur if stored in the standard tier. You can also use Amazon Data Lifecycle Manager to create snapshots and automatically move them to EBS Snapshots Archive based on your specific policies, further reducing the need to manage complex custom scripts and the risk of having unattended storage costs.
Amazon Aurora now supports T4g instances in AWS GovCloud (US) Regions
Amazon Aurora now supports AWS Graviton2-based T4g database instances in the AWS GovCloud (US) Regions. T4g database instances deliver a performance improvement of up to 49% over comparable current generation x86-based database instances. You can launch these database instances when using Amazon Aurora MySQL-Compatible Edition and Amazon Aurora PostgreSQL-Compatible Edition.
AWS Batch increases compute and memory resource configurations for Fargate type jobs by 4X
AWS Batch customers can now submit Fargate type jobs to use up to 16 vCPUs, an approximately 4x increase from before. vCPUs are the primary compute resource in Fargate type Batch job. Larger vCPUs enable compute-heavy applications like machine learning inference, scientific modeling, and distributed analytics to more easily run on Fargate. In addition, customers can now provision up to 120 GiB of memory for Fargate type jobs, also a 4x increase from before. This helps their batch jobs better perform memory-intensive operations on Fargate. Larger vCPU and memory options may also make migration to serverless container compute simpler for jobs that need more compute resources and cannot be easily re-architected into smaller sized containers.
Amazon S3 Replication now supports SSE-C encrypted objects
Amazon S3 Replication now supports objects encrypted with server-side encryption with customer-provided keys (SSE-C). SSE-C is an encryption option that allows you to store your own encryption keys to satisfy compliance or security requirements, rather than having AWS store the keys on your behalf using SSE-S3 or SSE-KMS. Now you can automatically replicate your SSE-C encrypted objects to a secondary bucket for your data protection or multi-region resiliency needs. S3 Replication will automatically replicate newly uploaded SSE-C encrypted objects if they are eligible, as per your S3 Replication configurations. To replicate existing SSE-C objects, you can use S3 Batch Replication. To retrieve a replicated SSE-C encrypted object from S3, you supply the same key used to encrypt that object when it was initially uploaded to S3.
AWS Global Accelerator announces AddEndpoints and RemoveEndpoints APIs
AWS Global Accelerator now offers two new APIs, AddEndpoints and RemoveEndpoints, that allow you to add and remove endpoints behind your accelerator. With these new APIs, you can now configure endpoints behind your accelerators without having to provide the full list of endpoints for adding or removing endpoints. Both AddEndpoints and RemoveEndpoints APIs can accommodate up to 10 endpoints in a single API call. The new APIs help increase scalability and reduce errors when you manage your endpoint workflows with Global Accelerator. You can continue to use the AddEndpointGroup and RemoveEndpointGroup APIs to add and remove endpoint groups, and the DescribeEndpointGroup API to describe all endpoints behind an accelerator.
Amazon CloudWatch RUM now supports custom metadata attributes in RUM events for better troubleshooting
Amazon CloudWatch RUM (Real User Monitoring) adds the ability for customers to include additional customer-defined metadata attributes as key-value pairs to RUM events when instrumenting their web applications. Additionally, customers are now able to use these self defined attributes as an additional filter when slicing and dicing the data in the AWS Management Console. When combined with pre-defined metadata attributes (eg. browser, device, country) that RUM supports today, customers can see a better classification of different end user activities.
AWS Batch now supports Amazon Elastic Kubernetes Service (Amazon EKS)
Today, AWS Batch introduced support for Amazon Elastic Kubernetes Service (Amazon EKS), enabling customers to run their jobs on Amazon EKS clusters as Kubernetes pods. AWS Batch manages the scaling of Kubernetes nodes, placement of pods, and supports job execution using Amazon Compute Cloud (Amazon EC2) or Amazon EC2 Spot. Furthermore, Batch respects other workloads on these EKS clusters, and will not place jobs on non-Batch nodes.
AWS Organizations console now allows users to centrally manage primary contact information on AWS accounts
Today, we are enhancing the AWS Organizations console to enable you to centrally view and update the primary contact information for your AWS accounts. This follows the release of the Primary Contact Information API that enabled you to programmatically manage primary contact information for accounts in your organization. With this launch, you can now also use the console to easily perform this operation without logging into each account separately. We already launched API and Organizations console support for alternate contacts, and support for additional account settings will be available in future releases.
CDK For Kubernetes (CDK8s) announces general availability of CDK8s+ and manifest validation support
CDK For Kubernetes Plus (CDK8s+) is a multi-language class library for defining Kubernetes applications using high level intent based constructs. Customers defining Kubernetes application indicate that maintainability of Kubernetes manifests is challenging; CDK8s+ aims to lower the entry barrier and improve maintainability of Kubernetes manifests by offering a hand crafted construct for each core Kubernetes object, exposing a richer API with reduced complexity. With this launch, CDK8s+ is now generally available and stable for use. This means that the API will remain unchanged and fully supported (no breaking changes), at least until the next major version. CDK8s+ is vended as a separate library for each Kubernetes spec version, all those libraries are now generally available and stable to use.
AWS Resource Access Manager is now available in the Middle East (UAE) Region
You can now use AWS Resource Access Manager (AWS RAM) in the AWS Middle East (UAE) Region.
Amazon SageMaker now enables customers to cost effectively host 1000s of GPU models using Multi Model Endpoint
Amazon SageMaker Multi-Model Endpoint (MME) is fully managed capability of SageMaker Inference that allows customers to deploy thousands of models on a single endpoint and save costs by sharing instances on which the endpoints run across all the models. Until today, MME was only supported for machine learning (ML) models which run on CPU instances. Now, customers can use MME to deploy thousands of ML models on GPU based instances as well, and potentially save costs by 90%.
Announcing two new HERE map styles for Amazon Location Service
Amazon Location Service adds two new map styles for the base map service from our data provider HERE Technologies. HERE Imagery provides high quality satellite imagery with global coverage and HERE Hybrid displays the road network, street names and city labels over the satellite imagery. Amazon Location Service now has a total of 11 map styles to support a wide range of use cases for interactive maps in applications.
Amazon SageMaker adds eight new Graviton-based instances for model deployment
Amazon SageMaker expands access to eight new Graviton2 and Graviton3-based machine learning (ML) instance families so that customers have more options for optimizing their cost and performance when deploying their ML models on SageMaker. Now, customers can use ml.c7g, ml.m6g, ml.m6gd, ml.c6g, ml.c6gd, ml.c6gn, ml.r6g, and ml.r6gd for Real-time and Asynchronous Inference model deployment options.
AWS DataSync adds support for self-signed certificates
AWS DataSync now supports the use of self-signed certificates when connecting to object storage locations via HTTPS. When configuring an object storage location, you can specify a self-signed X.509 (.pem) certificate that the DataSync agent will use to secure the TLS connection to your self-managed object storage server. With this launch, you can now configure DataSync to use secure HTTPS connections with self-managed object storage systems that do not provide certificates from a trusted Certificate Authority (CA).
Amazon Aurora MySQL 2.11 with R6i instance support is generally available
Aurora MySQL 2.11, compatible with MySQL 5.7, is now generally available. Aurora MySQL 2.11 includes security updates and also supports R6i instances powered by 3rd generation Xeon Scalable processors.
EC2 High Memory instances with 18TiB and 24TiB of memory are now available with On-Demand and Savings Plan purchase options
Starting today, Amazon EC2 High Memory instances with 24TiB (u-24tb1.112xlarge) of memory are now available in Asia Pacific (Seoul) region and high Memory instances with 18TiB (u-18tb1.112xlarge) of memory are now available in US East (N. Virginia) and US West (Oregon) regions. These instances give customers greater flexibility for instance usage and procurement — customers can start using them with On Demand, Reserved Instance, and Savings Plan purchase options. With u-24tb1 and u-18tb1, customers have a choice of 24TiB and 18TiB of memory, respectively — both offering 448 vCPUs, 100Gbps network and 38Gbps EBS bandwidth.
Amazon MSK adds support for Apache Kafka version 3.3.1
Amazon Managed Streaming for Apache Kafka (Amazon MSK) now supports Apache Kafka version 3.3.1 for new and existing clusters. Apache Kafka 3.3.1 includes several bug fixes and new features that improve performance. Some of the key features include enhancements to metrics and partitioner. Amazon MSK will continue to use and manage Zookeeper for quorum management in this release for stability. For a complete list of improvements and bug fixes, see the Apache Kafka release notes for 3.3.1.
Amazon EC2 C6i, M6i instances are now available in additional regions
Starting today, Amazon EC2 C6i and M6i instances are available in the Asia Pacific (Osaka) and Africa (Cape Town) regions. C6i instances are an ideal fit for compute-intensive workloads such as batch processing, distributed analytics, high performance computing (HPC). M6i instances are SAP Certified and are ideal for workloads such as web and application servers, back-end servers supporting enterprise applications, gaming servers, caching fleets, as well as for application development environments.
Amazon SageMaker Canvas supports tags to track and allocate costs incurred by users
We are excited to announce the support of assigning tags to user-profiles created within Amazon SageMaker. This enables you to track Amazon SageMaker Canvas usage costs categorized by users, departments, lines of businesses, or cost centers.
Amazon WorkSpaces Web Access for WSP now includes 7 new features, including bi-directional audio/video
Amazon WorkSpaces now supports the following new features for WorkSpaces Web Access using the WorkSpaces Streaming Protocol (WSP): * Bi-directional audio/video — IT administrators can make video conferencing and other tools that use webcam and microphone available to their end users who use Web Access, to enhance the ability of teams to collaborate from anywhere.
* Clipboard redirection — Users can copy and paste from their local client to their remote WorkSpace, or vice versa. Clipboard permission can be enabled, disabled, or enabled unidirectionally.
* Time zone redirection — Administrators and users can now configure their Windows WorkSpace to use the web client’s local time zone. This enables administrators and users to improve productivity by making it easier to use applications, such as calendar apps, that utilize their local time.
* Streaming metrics — Customers can now view streaming metrics such as frame rate, network latency, and download bandwidth inside their WorkSpaces Web Access session.
* Display resolution — Web Access now offers the option to configure the display resolution of the remote WorkSpaces. Customers can set it to a fixed resolution or to adapt dynamically to the Web Access’ client window resolution.
* Relative mouse positioning — Many 3D, design, or visual effects applications require relative mouse positioning for the best mouse performance. Users can now enable relative mouse positioning inside WorkSpaces Web Access.
* Mac keyboard preferences — Users can configure WorkSpaces Web Access to remap Option and Command keys.
AWS Private Certificate Authority introduces a mode for short-lived certificates
AWS Private Certificate Authority (AWS Private CA) now offers short-lived certificate mode, a lower cost mode of AWS Private CA designed for issuing short-lived certificates. With this new mode, public key infrastructure (PKI) administrators, builders, and developers can save money when issuing certificates with validity periods of 7 days or fewer. If you use certificates to convey privileged access, such as with IAM Roles Anywhere, short-lived certificates may offer better security because they expire quickly rather than relying on the need to revoke certificates with a longer validity period. With today’s launch of short-lived certificate mode, you can now use a private CA with a dedicated mode for issuing those short-lived certificates.
Introducing AWS Toolkit for .NET Refactoring, a new Visual Studio extension
The AWS Toolkit for .NET Refactoring is a new extension for Microsoft Visual Studio 2019 and Microsoft Visual Studio 2022. The extension helps transform your legacy .NET Framework applications to a modern, cloud-optimized architecture letting you fully leverage the benefits of reduced cost, increased up time, and improved scalability. It extends the functionality of Porting Assistant for .NET with new features, such as testing on AWS environments directly from Visual Studio IDE.
Amazon SageMaker Automatic Model Tuning now supports Grid Search
Amazon SageMaker Automatic Model Tuning now supports Grid Search to enable use cases that require reproducibility of hyperparameter tuning. Grid search will cover every combination of the specified hyperparameter values and yield reproducible tuning results.
Amazon Connect adds real-time schedule adherence
Amazon Connect now includes the ability to view agent schedule adherence in real-time as part of the forecasting, capacity planning, and scheduling capabilities (preview). Within the real-time metrics page, contact center supervisors can identify when agents deviate from their planned schedule, enabling supervisors to quickly take action to help improve agent productivity. For example, if agents are working but supposed to be in training, you can use Amazon Connect real-time schedule adherence to identify those agents and remind them to join the training to improve their long term performance and avoid overstaffing.
Amazon Neptune Serverless is now generally available
Amazon Neptune Serverless is a new deployment option that automatically scales capacity based on the needs of the application, making it easy and cost effective for developers to run graph databases without managing database capacity. Neptune is a fast, reliable, and fully managed graph database service for building and running applications with highly connected datasets, such as knowledge graphs, fraud graphs, identity graphs, and security graphs. With Neptune Serverless, you can run applications built using a graph database with a just few steps, and scale automatically to meet your application’s needs.
AWS Fault Injection Simulator now supports network connectivity disruption
AWS Fault Injection Simulator (FIS) now supports network connectivity disruption as a new FIS action type. Using the new disrupt connectivity action in AWS FIS, you can inject a variety of connectivity issues as part of an AWS FIS experiment. Supported connectivity issues include disrupting all traffic, or, limiting the disruption to traffic to/from a specific Availability Zone, VPC, custom prefix list, or service (including Amazon S3 and DynamoDB). This helps you validate that your applications are resilient to a total or partial loss of connectivity.
IAM Access Analyzer findings now support Amazon SNS topics and five other AWS resource types to help you identify public and cross-account access
AWS Identity and Access Management (IAM) Access Analyzer now supports six additional resource types to help you identify public and cross-account access from outside your AWS account and organization. These six resource types include Amazon SNS topics, Amazon EBS volume snapshots, Amazon RDS DB snapshots, Amazon RDS DB cluster snapshots, Amazon ECR repositories, and Amazon EFS file systems. IAM Access Analyzer now analyzes resource policies, access control lists, and other access controls for these resources to make it easier for you to identify public, cross-account, and cross-organization access. These findings can help you adhere to the security best practice of least privilege and reduce unintended external access to your resources.
Announcing the general availability of AWS Local Zones in Hamburg and Warsaw
AWS Local Zones are now available in Hamburg and Warsaw — the first AWS Local Zones launch in Europe. You can now use AWS Local Zones in these metro areas to deliver applications that require single-digit millisecond latency or local data processing.
Announcing General Availability of Amazon EC2 i4i.metal instance for VMware Cloud on AWS
We are excited to announce the general availability of i4i.metal instance for VMware Cloud on AWS. Designed for storage I/O intensive workloads, i4i.metal instance is powered by 3rd generation Intel® Xeon® Ice Lake processor with an all-core turbo frequency of 3.5 GHz, offer up to 30% better compute price performance over i3 instances. This new instance is intended for VMware Cloud on AWS customers looking for an optimal balance of compute, memory, and storage configuration.
Amazon RDS for Oracle now supports memory optimized R5b instance types
Amazon RDS for Oracle now supports memory optimized R5b instance types for Bring Your Own License (BYOL) model, featuring up to 4x the RAM per vCPU of existing R5b instance classes to better fit your workloads. Many Oracle database workloads require high memory, storage, and I/O bandwidth but can safely reduce the number of vCPUs without impacting application performance. R5b memory optimized instances come in various configurations from 2 vCPU to 48 vCPU and memory from 32 GiB to 768 GiB and up to 32:1 memory-to-vCPU ratio. These configurations will allow you to right-size the Oracle workloads.
Announcing general availability of SQL Notebooks support in Amazon Redshift Query Editor
Amazon Redshift introduces a new way to work on multiple SQL queries by organizing them into a single Notebook with documentation, visualization, and collaboration capabilities. The new SQL Notebook interface available in Amazon Redshift Query Editor v2 allows users such as data analysts and data scientists to run data analytics more efficiently by keeping relevant queries and the information together for ease of use.
Announcing Amazon EMR Hive improvements: Metastore check (MSCK) command optimization and Parquet Modular Encryption
Hive users run Metastore check command with the repair table option (MSCK REPAIR table) to update the partition metadata in the Hive metastore for partitions that were directly added to or removed from the file system (S3 or HDFS). When run, MSCK repair command must make a file system call to check if the partition exists for each partition. This step could take a long time if the table has thousands of partitions. In EMR 6.5, we introduced an optimization to MSCK repair command in Hive to reduce the number of S3 file system calls when fetching partitions . This feature improves performance of MSCK command (~15–20x on 10k+ partitions) due to reduced number of file system calls especially when working on tables with large number of partitions. Previously, you had to enable this feature by explicitly setting a flag. Starting with Amazon EMR 6.8, we further reduced the number of S3 filesystem calls to make MSCK repair run faster and enabled this feature by default.
Amazon QuickSight launches Customer Managed Keys (CMK) for SPICE data encryption
Amazon QuickSight launches new capability for account administrators to use Customer Managed Keys (CMK) to encrypt and manage SPICE datasets. Previously, QuickSight fully manages the protection of customer-data stored inside of the QuickSight service. Using the new Customer Managed Keys (CMK) capability will benefit QuickSight users to 1/ be able to revoke access to SPICE datasets with one click, and 2/ maintain an auditable log that tracks how SPICE datasets are accessed. This feature increases level of security and transparency, gives customers more control over their SPICE datasets and satisfies security requirements by company and government agency policies. For further details, visit here.
AWS Cloud Control API is now available in the AWS Middle East (UAE) Region
AWS Cloud Control API has expanded its availability to the AWS Middle East (UAE) Region. Cloud Control API is a set of common application programming interfaces (APIs) that is designed to make it easy for developers to manage their cloud infrastructure in a consistent manner and leverage the latest AWS capabilities faster. Using Cloud Control API, developers can manage the lifecycle of hundreds of AWS resources and over a dozen third-party resources with five consistent APIs instead of using distinct service-specific APIs. With Cloud Control API, AWS Partner Network (APN) Partners can automate how their solutions integrate with existing and future AWS features and services through a one-time integration, instead of spending weeks of custom development work as new resources become available. Terraform by HashiCorp, Pulumi, and Red Hat Ansible have integrated their solutions with AWS Cloud Control API.
Introducing the Amazon EKS Delivery Program
Amazon Web Services (AWS) is thrilled to announce the new Amazon EKS Service Delivery specialization to highlight AWS Partners with consulting offerings that have demonstrated proven capabilities to architect, run, and operate containerized workloads on Amazon EKS. Amazon EKS Delivery partners play a crucial role in the customer journey as customers navigate modernization of legacy applications, operations, and infrastructure. Recognizing the complexity of Kubernetes, customers seek proven methodologies, tools, and best practices for accelerating EKS modernization on AWS.
Introducing the Amazon OpenSearch Service delivery program
Amazon Web Services (AWS) is pleased to announce the new Amazon OpenSearch Service Delivery specialization for AWS Partners that help customers perform interactive log analytics, real-time application monitoring, website search, and more. Amazon OpenSearch Service manages software installation, upgrades, patching, scaling (up to 3 PB), and cross-region replication with no downtime. Amazon OpenSearch Service is also bundled with a dashboard visualization tool, OpenSearch Dashboards. This tool helps visualize not only log and trace data, but also machine-learning powered results for anomaly detection and search relevance ranking.
Introducing the AWS Control Tower delivery and AWS Control Tower ready program
AWS Control Tower provides the easiest way to set up and govern a secure, multi-account AWS environment, and reduces the complexity and time required to establish governance supporting multiple AWS accounts. We are excited to introduce AWS Control Tower Delivery Partners offering consulting services on AWS Control Tower, and AWS Control Tower Ready Partners offering software products that support AWS Control Tower. AWS Control Tower Partners receive prescriptive guidance to build solutions on Control Tower, and their offerings are vetted by AWS Solutions Architects.
AWS Console Mobile Application adds support for AWS CloudShell
AWS Console Mobile Application users can now access AWS CloudShell in the iOS and Android applications. The Console Mobile App provides AWS CloudShell in a mobile-friendly interface that enables users to run scripts with the AWS command-line interface (AWS CLI) to interact with 250+ AWS services while on-the-go. Users also have access to an extended mobile keyboard when using AWS CloudShell in the Console Mobile App. The extended mobile keyboard provides users with key inputs (e.g. tab, ctrl, alt, esc) that are available in the AWS CloudShell console on desktop. The Console Mobile App currently offers AWS CloudShell in the following AWS Regions: US East (N. Virginia), US East (Ohio), US West (Oregon), Asia Pacific (Mumbai), Asia Pacific (Sydney), Asia Pacific (Tokyo), Canada (Central), Europe (Frankfurt), Europe (Ireland), Europe (London), and South America (São Paulo).
Avoid runaway queries and improve query resiliency to spot interruptions with PrestoDB and Trino on EMR 6.8
Amazon EMR supports PrestoDB and Trino for running interactive SQL analytics over large datasets across multiple data sources. Today, we’re excited to announce the latest PrestoDB and Trino updates included in EMR release 6.8.
Amazon MSK Connect now supports private DNS hostnames for enhanced security
Amazon MSK Connect now supports Private DNS hostnames for enhanced security. With Private DNS hostname support in MSK Connect, you can configure connectors to reference public or private domain names. Connectors will use the DNS servers configured in your VPC’s DHCP option set to resolve domain names. You can now use MSK Connect to privately connect with databases, data warehouses and other resources in your VPC to comply with your security needs.
Amazon EC2 Is4gen and Im4gn Instances are now available in Asia Pacific (Singapore) Region
Starting today, Amazon EC2 Is4gen and Im4gn instances, the latest generation storage-optimized instances, are available in Asia Pacific (Singapore) Region. Based on the AWS Nitro System, Im4gn and Is4gen instances are powered by Arm-based AWS Graviton2 processors and are build using AWS Nitro SSDs which enable up to 60% lower latency and up to 75% reduced latency variability in Im4gn and Is4gen instances compared to the third generation of storage optimized instances. Im4gn instances deliver up to 40% better price-performance and up to 44% lower cost per TB versus comparable current generation x86-based storage optimized instances for applications requiring dense local SSD storage and higher compute performance such as MySQL, NoSQL, and file systems. The Is4gen instances provide the lowest cost per TB and highest density per vCPU of SSD storage in Amazon EC2 for applications such as stream processing and monitoring, real-time databases, and log analytics, that require high random I/O access to large amounts of local SSD data. These instances enable 15% lower cost per TB of storage and up to 48% better compute performance compared to I3en instances.
Amazon EC2 enables easier patching of guest operating system and applications with Replace Root Volume
Starting today, Amazon EC2 supports the replacement of instance root volume using an updated AMI without requiring customers to stop their instance. This allows customers to easily update their applications and guest operating system, while retaining the instance store data, networking and IAM configuration.
Amazon Aurora supports cluster export to S3
Amazon Aurora now supports exporting database clusters directly to S3 in Apache Parquet format without creating a snapshot first. Customers can also initiate an export to S3 directly from the Aurora database cluster, saving them time, cost and the extra overhead of creating/retaining snapshots to export data to S3.
AWS Graviton2-based Amazon EC2 C6gd instances now available in Europe (Paris) region
Starting today, Amazon EC2 C6gd instances powered by AWS Graviton2 processors are available in Europe (Paris) region. C6gd instances are ideal for compute-intensive workloads such as high performance computing (HPC), batch processing, ad serving, video encoding, gaming, scientific modelling, distributed analytics, and CPU-based machine learning inference. The local SSD storage provided on these instances benefit applications that need access to high-speed, low latency storage such as high-speed caches and scratch files, and temporary data storage like batch and log processing.
Amazon EC2 G5 instances now available in Stockholm region
Starting today, the Amazon Elastic Compute Cloud (Amazon EC2) G5 instances powered by NVIDIA A10G Tensor Core GPUs are available in Stockholm. G5 instances can be used for a wide range of graphics intensive and machine learning use cases. They deliver up to 3x higher performance for graphics-intensive applications and machine learning inference, and up to 3.3x higher performance for training simple to moderately complex machine learning models when compared to Amazon EC2 G4dn instances.
AWS WAF launches Challenge rule action and Bot Control for Targeted Bots
AWS WAF announces AWS Bot Control for Targeted Bots, a new feature of AWS Bot Control that provides protection against bots that attempt to evade detection and target applications such as e-commerce, retail, and financial services websites. Traffic from targeted bots can result in a poor user experience by competing against legitimate user traffic for website access to high-demand inventory, increasing business risk through chargebacks from fraudulent transactions, and increasing infrastructure costs.
Amazon EC2 X2idn instances now available in Asia Pacific (Osaka) region
Starting today, memory optimized Amazon EC2 X2idn instances are available in Asia-Pacific(Osaka) region. X2idn instance, powered by 3rd generation Intel Xeon Scalable Processors (code named Ice Lake), are designed for memory-intensive workloads and deliver improvements in performance, price performance, and cost per GiB of memory compared to previous generation X1 instances. X2idn has a 16:1 ratio of memory to vCPU making this instance a great fit for workloads such as in-memory databases and analytics, and big data processing engines. X2idn deliver up to 45% more SAPS than comparable X1 instances and are SAP-Certified for running Business Suite on HANA, SAP S/4HANA, Data Mart Solutions on HANA, Business Warehouse on HANA, SAP BW/4HANA, and SAP NetWeaver workloads on any database. You can view the certification data for X2idn on the Certified and Supported SAP HANA Hardware Directory.
