This week at AWS
News, news news, also this week there are many news about services and features added by AWS, let’s see what they are:
AWS Glue now supports smaller instance types for streaming
AWS Glue launches G.025X, a new quarter DPU worker type for streaming extract, transform, and load (ETL) jobs. This smaller worker type is suitable to process low volume and sporadic data streams.
Amazon Timestream announces improved cost-effectiveness with updates to metadata metering
Amazon Timestream will no longer charge customers for the dimension names and measure names associated with ingesting, storing, and querying data written after July 8, 2022 00:00 UTC. Dimension names and measure names are metadata that is used to identify time series data. With this change, Amazon Timestream provides customers increased flexibility in dimension and measure naming, as well as improved cost-effectiveness of the service. Amazon Timestream will continue to charge for ingesting, storing, and querying the dimension values, measure values, and timestamps associated with time series data. To learn more about costs while using Amazon Timestream, visit our pricing page.
Porting Assistant for .NET adds support for assessment and porting of VB.NET applications to .NET Core
Porting Assistant for .NET now supports assessment and porting of legacy .NET Framework applications written in VB.NET language. With this release, Porting Assistant will translate VB.NET class libraries, web APIs, and console applications to .NET Core 3.1, .NET 5, or .NET 6 to simplify the modernization of legacy .NET Framework applications written in VB.NET . Developers can use the Porting Assistant for .NET standalone tool or Porting Assistant for .NET Visual Studio IDE extension to modernize their legacy VB.NET applications. Support for VB.NET is added in addition to existing support for assessment and porting of C# based .NET Framework applications.
Amazon Redshift announces open source ODBC driver with binary protocol support and enhanced performance
The Amazon Redshift ODBC driver is now open source and available for the user community under the Apache-2.0 license. With this release, customers will gain enhanced visibility to the driver implementation and can contribute to its development. Users can browse the code for the ODBC driver on the relevant AWS GitHub repository, submit driver functionality enhancements through Github pull requests, and report issues for review.
Amazon WorkSpaces Web is now available in Asia Pacific (Mumbai), Asia Pacific (Singapore), Asia Pacific (Sydney), and Asia Pacific (Tokyo) Regions
Amazon WorkSpaces Web is now generally available in AWS Asia Pacific (Mumbai), Asia Pacific (Singapore), Asia Pacific (Sydney), and Asia Pacific (Tokyo) Regions. Creating a WorkSpaces Web portal in a local region provides a more responsive experience for users when streaming web content. It also enables customers to meet local data residency obligations. WorkSpaces Web is now available in a total of 7 regions.
New Amazon EBS Elastic Volumes automated performance settings make it even easier to modify volumes and save costs
As your application needs change, Amazon EBS Elastic Volumes allows you to easily increase capacity, tune performance, and change the type of Amazon EBS volumes. Customers are using EBS Elastic Volumes to migrate to gp3 volumes and save up to 20% per GB compared to gp2 volumes.
Announcing Cloudscape Design System, an open source solution for building intuitive web applications
Today, we’re excited to announce Cloudscape Design System, an open source solution for building intuitive, engaging, and inclusive user experiences at scale. Cloudscape consists of an extensive set of guidelines to create web applications, along with the design resources and front-end components to streamline implementation.
AWS Snowball Edge Storage Optimized devices now supports high performance NFS data transfer in the AWS GovCloud (US) Regions
AWS Snowball Edge (SBE) Storage Optimized devices now support high performance Network File System (NFS) data-transfer operations in the AWS GovCloud (US) Regions. With this launch, AWS GovCloud (US) customers can now transfer up to 80-TBs of data onto Snowball Edge Storage Optimized devices through file or object interfaces. The file interface exposes a Network File System (NFS) mount point for each Amazon S3 bucket on your AWS Snowball Edge Storage Optimized device. After mounting the file share, you can drag and drop files from your computer into S3 buckets on the Snowball Edge device.
AWS re:Post introduces community-generated articles
re:Post now expands the capability for experts community members to share technical guidance and knowledge beyond answering questions through the Articles feature. Using this feature, community members can share best practices, troubleshooting processes, and address customer needs around AWS technology in greater depth. The Articles feature is unlocked for community members who have achieved Rising Star status on re:Post or subject matter experts who built their reputation in the community based on their contributions and certifications. Every article published on re:Post contributes to the growth of AWS public knowledge, improving self-service guidance for all customers and helps accelerate their cloud journey.
AWS Single Sign-On (AWS SSO) adds support for AWS Identity and Access Management (IAM) customer managed policies (CMPs)
AWS Single Sign-On (AWS SSO) now supports AWS Identity and Access Management (IAM) customer managed policies (CMPs) and permission boundary policies within AWS SSO permission sets. The new capability helps AWS SSO customers to improve their security posture by creating larger and finer-grained policies for least privilege access and by tailoring policies to reference the resources of the account to which they are applied. Using CMPs, AWS SSO customers can maintain the consistency of policies, as CMP changes apply automatically to all permission sets and roles that use the CMP. This enables customers to govern their CMPs and permissions boundaries centrally, and allows auditors to find, monitor, and review them. Customers, who have existing CMPs for roles they manage in AWS IAM, can reuse their CMPs without the need to create, review, and approve new in-line policies for permission sets.
AWS Glue Streaming ETL Auto Scaling is now generally available
Auto Scaling in AWS Glue Streaming ETL is now generally available. AWS Glue Streaming ETL jobs can now dynamically scale resources up and down based on the input stream. Auto Scaling helps customers reduce the cost and manual effort required to optimize resources by allocating the right resources necessary for Streaming ETL jobs.
Amazon Braket SDK adds support for near-real time cost tracking
Amazon Braket, the quantum computing service from AWS, makes it easier for customers to conduct scientific research and software development with quantum computers. Today, we are excited to announce the launch of a new cost tracking function in our Braket SDK, providing customers the ability to monitor their quantum computing costs more easily and quickly. Rather than waiting for an AWS bill, by adding only a few lines of code, estimated costs are now available immediately after each quantum task is processed, either on a quantum processing unit (QPU) or on-demand simulator.
Announcing Reseller contract in AWS Marketplace
Today, AWS Marketplace announced that Independent Software Vendors (ISVs) can now add a reseller contract and leverage standard Reseller Contract for AWS Marketplace (RCMP) template when authorizing channel partners to resell ISV products to AWS Marketplace buyers. This launch will help reduce redundancy in legal contract reviews when the two parties (ISVs and channel partners/consulting partners) onboard with each other. ISVs and channel partners can now further optimize their resell operations with this self-service feature of reseller contracts that defines a Consulting Partner Private Offer (CPPO) transaction.
The AI Use Case Explorer is now available
The AI Use Case Explorer is a business outcome centric web search tool that enables users to easily find the right artificial intelligence (AI) use cases, discover relevant customer success stories, and mobilize their teams towards AI deployments. The user friendly tool takes business problem descriptions as inputs and provides relevant, practical use cases and success stories as outputs.
Amazon QuickSight adds Bookmarks in dashboards
Amazon QuickSight now supports Bookmarks in dashboards. Bookmarks allow QuickSight readers to save customized dashboard preferences into a list of Bookmarks for easy one-click access to specific views of the dashboard without having to manually make multiple filter and parameter changes every time. Combined with QuickSight’s “Share this view” functionality, readers can also now share their Bookmark views with other readers for easy collaboration and discussion. Bookmarks are available to all users of the QuickSight console interface. For further details, visit here.
Amazon Corretto July, 2022 quarterly updates
On July 19th, 2022 Amazon announced quarterly security and critical updates for Amazon Corretto Long-Term Supported (LTS) versions of OpenJDK. Corretto 18.0.2, 17.0.4, 11.0.16, 8u342 are now available for download. Amazon Corretto is a no-cost, multi-platform, production-ready distribution of OpenJDK.
AWS Migration Hub Refactor Spaces adds support for AWS PrivateLink
You can now use AWS PrivateLink to privately access the AWS Migration Hub Refactor Spaces APIs from your virtual private cloud (Amazon VPC). AWS PrivateLink provides private connectivity between VPCs, AWS services, and your on-premises networks. Starting today, you can manage your Refactor Spaces resources using AWS PrivateLink and meet your organization’s security and compliance requirements. To use AWS PrivateLink, create an interface VPC endpoint for Refactor Spaces in your VPC using the Amazon VPC console, SDK, or CLI. You can also access the VPC endpoint from on-premises environments or from other VPCs using AWS VPN, AWS Direct Connect, or VPC Peering.
AWS Lambda announces support for Attribute-Based Access Control (ABAC)
AWS Lambda announces support for attribute-based access control (ABAC) for API actions that use Lambda function as the required resource. ABAC is an authorization strategy that defines access permissions based on tags which can be attached to IAM resources, such as IAM users and roles, and to AWS resources, like Lambda functions, to simplify permission management.
Introducing Amazon EC2 R6a instances
AWS announces the general availability of Amazon EC2 R6a instances. Designed for memory-intensive workloads, R6a instances are built on the AWS Nitro System, which delivers almost all the compute and memory resources of the host hardware to your instances. R6a instances are powered by third-generation AMD EPYC processors with an all-core turbo frequency of up to 3.6 GHz. These memory-optimized instances, which are SAP certified, deliver up to 35% better compute price performance compared to R5a instances for a wide variety of workloads and offer 10% lower cost than comparable x86-based EC2 instances.
AWS CodeBuild supports Arm-based workloads in South America (São Paulo) and Europe (Stockholm).
AWS CodeBuild’s support for Arm using Graviton2 is now available in: South America (São Paulo) and Europe (Stockholm).
AWS CloudFormation event notifications with Amazon EventBridge help you create event-driven applications
Changes to AWS CloudFormation-based stacks and resources are now available as event notifications in Amazon EventBridge. Customers can use these event notifications to build and scale loosely-coupled event-driven applications. With this feature, customers can trigger actions in real-time after they create, update, or delete either their CloudFormation stacks or resources in their CloudFormation stacks without having to write single-use custom code or develop new software.
AWS Backup adds support for Amazon RDS Multi-AZ clusters
AWS Backup now allows you to protect your Amazon Relational Database Service (Amazon RDS) Multi-AZ clusters with two readable standbys. Amazon RDS Multi-AZ clusters with one primary and two readable standby database (DB) instances across three Availability Zones (AZs) is designed to provide you up to 2x faster transaction commit latency, automated failovers, and readable standby instances. Now, all of the data protection capabilities in AWS Backup including automated lifecycle management, separate backup access policies, immutable backups with AWS Backup Vault Lock, and compliance monitoring with AWS Backup Audit Manager are available for Amazon RDS Multi-AZ clusters.
AWS IoT Device Management Fleet Indexing now supports two additional data sources
AWS IoT Device Management Fleet Indexing now provides integration with two additional data sources, AWS IoT Core named shadows and AWS IoT Device Defender detect violations. Customers can now select specific named shadows to index only the data that is required for search queries. Also, detected violations can be indexed to target devices for troubleshooting or monitor the fleet-level anomalies trends with Fleet Metrics. These two additional data sources will help IoT customers who store IoT fleet data across different services and systems and regularly access the data for fleet monitoring, health checks, over-the-air (OTA) updates, and troubleshooting. With this release, supported data sources for Fleet Indexing increased to 5 from 3 (AWS IoT Core registry, shadows, and connectivity lifecycle events).
AWS IoT Device Client v1.7 now available with enhanced functionality and security features
The AWS IoT Device Client is a free, open-source, and modular device-side reference implementation written in C++ that you can compile and install on IoT devices. It allows device developers to access AWS IoT Core, AWS IoT Device Management, and AWS IoT Device Defender features with minimal device side code. The Device Client works on devices with common microprocessors (x86_64 and ARM architectures), and common Embedded Linux software environments (e.g. Debian, Ubuntu, and RHEL).
AWS Transfer Family now supports ED25519 and ECDSA keys for user authentication
AWS Transfer Family customers can now use ED25519 and ECDSA keys to authenticate users connecting to an AWS Transfer Family server. Previously, Transfer Family only supported RSA keys for user authentication.
AWS Managed Services is now available in Asia Pacific (Hong Kong) and Middle East (Bahrain) Regions
AWS Managed Services (AMS) Accelerate Operations Plan is now available in Asia Pacific (Hong Kong) and Middle East (Bahrain) Regions. AMS helps you operate AWS efficiently and securely. It provides proactive, preventative, and detective capabilities that raise the operational bar and help reduce risk without constraining agility, allowing you to focus on innovation. AMS extends your team with operational capabilities including monitoring, incident detection and management, security, patch, backup, and cost optimization.
Introducing Fine-grained access controls with job-scoped IAM Roles and Integration with AWS Lake Formation for Apache Spark and Apache Hive on Amazon EMR on EC2 Clusters
We are excited to launch two new features that help enforce access controls with Amazon EMR on EC2 clusters (EMR Clusters). These features are supported with jobs that are submitted to the cluster using the EMR Steps API. First is Runtime Role with EMR Steps. A Runtime Role is an AWS Identity and Access Management (IAM) role that you associate with an EMR Step. An EMR Step uses this role to access AWS resources. The second is integration with AWS Lake Formation to apply table and column-level access controls for Apache Spark and Apache Hive jobs with EMR Steps.
Amazon Athena adds visual query analysis and tuning tools
Amazon Athena users can now analyze and tune their queries using interactive, visual tools. Optimizing queries and debugging failures are challenging tasks that often require knowledge of query behavior and a careful approach to tuning query logic. With today’s launch, you can now use the Athena console to analyze your queries with tools that make it simpler to debug errors and improve performance.
AWS Network Firewall now supports VPC prefix lists
AWS Network Firewall now supports Amazon Virtual Private Cloud (VPC) prefix lists to simplify management of your firewall rules and policies across your VPCs. Prefix lists enable you to group one or more CIDR blocks into a single object. You can group IP addresses that you frequently use in a prefix list, and reference this list in AWS Network Firewall rule groups. Previously you needed to update individual firewall rules when scaling your network to add new IP addresses, which can be time-consuming and error-prone. Now you can update the relevant prefix list and all AWS Network Firewall rule groups that reference the prefix list are automatically updated. As you scale your network, you can use prefix lists to simplify management of your firewall rule groups and policies across multiple VPCs and accounts in the same AWS Region. You can use AWS-managed prefix lists or you can create and manage your own prefix lists.
Amazon RDS Performance Insights now available in the Asia Pacific (Jakarta) Region
Amazon Relational Database Service (Amazon RDS) Performance Insights is now available in the Asia Pacific (Jakarta) Region. Amazon RDS Performance Insights is a database performance tuning and monitoring feature of RDS and Aurora that helps you quickly assess the load on your database and determine when and where to take action.
Amazon EC2 C6i, M6i and R6i Instances are now available in additional regions
Starting today, Amazon EC2 C6i, M6i and R6i instances are available in the Europe (Stockholm, Milan), and Asia Pacific (Hong Kong). Additionally, the Amazon EC2 C6i and M6i instances are now available in Middle East (Bahrain) and R6i instance is now available in Europe (Frankfurt). These instances are powered by 3rd Gen Intel Xeon Scalable processors (code named Ice Lake) with an all-core turbo frequency of 3.5 GHz, offering up to 15% better compute price performance over comparable Gen5 instances for a wide variety of workloads, and always-on memory encryption using Intel Total Memory Encryption (TME).
Amazon Fraud Detector launches Account Takeover Insights (ATI)
Today, we are excited to announce that Amazon Fraud Detector (AFD) now supports Account Takeover Insights (ATI) model, a low-latency fraud detection machine learning (ML) model specifically designed to detect accounts that have been compromised through stolen credentials, phishing, social engineering, or other forms of account takeover. The ATI model is designed to detect up to 4 times more ATI fraud than traditional rules-based account takeover solutions while minimizing the level of friction for legitimate users.
Amazon Interactive Video Service now includes web broadcast SDK
Amazon Interactive Video Service (Amazon IVS) web broadcast SDK gives you the ability to capture live video from web browsers and send as an input to an Amazon IVS channel. You can include it on new and existing websites, with support for both desktop and mobile web browsers.
