Amazon Web Services (AWS)

Today, AWS Clean Rooms announces support for multiple collaboration members to receive analysis results from queries using Spark SQL. This streamlined capability enhances usability and transparency by eliminating the need for additional audit mechanisms outside of the collaboration. With this feature, multiple members can receive and validate analysis results from queries across collective datasets directly from the collaboration. You can designate multiple collaborators as result receivers when executing a Spark SQL query. Results are automatically delivered to all selected collaborators who are configured in both the collaboration settings and table controls. For exa…

Starting today, we're enhancing the AWS Migration Acceleration Program (MAP) with two key capabilities to help you accelerate your modernization efforts and drive customers' adoption of AI: New “Move to AI” Modernization Pathway, featuring Amazon Bedrock and Amazon SageMaker. This pathway enables you to help customers transform their existing applications and business processes with proven AI patterns that deliver measurable business value. Amazon Connect is now a qualifying service in the MAP Modernization Strategic Partner Incentive (SPI). This enables you to help customers transform their contact centers with AI-powered features that increase agent productivity …

We’re excited to announce the general availability of Amazon Nova Premier, our most capable multimodal foundation model for complex tasks such as processing long documents, videos, large codebases, and executing multistep agentic workflows. It is also our most capable teacher model and can be used with Amazon Bedrock Model Distillation to create custom distilled models for specific needs. Nova Premier extends the capabilities available from Amazon Nova understanding models with several key improvements, including: Superior intelligence: The model scores 87.4% in the Massive Multitask Language Understanding (MMLU) benchmark for undergraduate-level knowledge, 82.0% o…

Amazon Cognito now allows you to include additional contextual information in the OAuth 2.0 client credentials flow for M2M access token requests, enhancing your control over machine-based interactions. M2M authorization is commonly used for automated processes like data synchronization, event-driven workflows, and microservice communication. This capability enables customers to provide context-specific details (e.g., attributes of the machine such as IP address, location, environment; or business context like application name, tenant ID etc.) when requesting access tokens for machine-based interactions. For example, consider an organization's internal API service that ne…

Starting today, you can use AWS WAF Bot and Fraud Control RuleGroup in 2 additional AWS regions: AWS Canada West (Calgary) and AWS Asia Pacific (Malaysia) region. AWS WAF Bot Control and Fraud Control deliver comprehensive security for web applications, APIs, and mobile apps. Bot Control protects against automated bot traffic with easy deployment and configurable actions, ensuring scalable management. Fraud Control focuses on preventing account takeovers and fraudulent account creation, leveraging machine learning to reduce financial losses and enhance user trust. Both solutions integrate seamlessly with AWS WAF, providing real-time visibility and detailed metrics for …

AWS Config now supports 13 additional AWS resource types. This expansion provides greater coverage over your AWS environment, enabling you to more effectively discover, assess, audit, and remediate an even broader range of resources. With this launch, if you have enabled recording for all resource types, then AWS Config will automatically track these new additions. The newly supported resource types are also available in Config rules and Config aggregators. You can now use AWS Config to monitor the following newly supported resource types in all AWS Regions where the supported resources are available: Resource Types: AWS::AppIntegrations::App…

Today AWS Elemental MediaTailor launched recurring prefetch schedules, enhancing server-side ad prefetch capabilities for live streaming content. This feature helps content providers and broadcasters efficiently manage ad insertion for live events where exact ad break timing is unpredictable, while maintaining high-quality viewer experiences. Content providers can benefit from this during major sporting events, live concerts, or news broadcasts where ad break timing may vary. The new mode enables you to create a single schedule for an entire live event or linear channel. After every ad break, MediaTailor will automatically create the prefetch schedule for the next ad b…

Today, we are excited to announce the general availability of anonymous user access for Amazon Q Business. This feature allows customers to create Q Business applications for anonymous users using publicly accessible content. Q Business applications created in this anonymous mode are billed on a API consumption basis. Customers can now create anonymous Q Business applications to power use cases such as public web site Q&A, documentation portals, and customer self-service experiences, where user authentication is not required and content is publicly available. For example, AnyCompany wants to improve their website’s visitor support experience by providing a genAI as…

Amazon VPC Lattice introduces dual stack support for management API, enabling you to connect using Internet Protocol Version 6 (IPv6), Internet Protocol Version 4 (IPv4), or dual stack clients. Dual stack support is also available when the Amazon VPC Lattice management API endpoint is privately accessed from your Amazon Virtual Private Cloud (VPC) using AWS PrivateLink. Dual stack endpoints are made available on a new AWS DNS domain name. The existing Amazon VPC Lattice management API endpoints are maintained for backwards compatibility reasons. Amazon VPC Lattice, an application networking service that simplifies connecting, securing, and monitoring service-to-service…

Today, Amazon Kinesis Data Streams introduces support for tagging and Attribute-Based Access Control (ABAC) for enhanced fan-out consumers. You can register enhanced fan-out consumers to have dedicated low latency read throughput per shard, up to 2MB/s. ABAC is an authorization strategy that defines access permissions based on tags that can be attached to IAM users, roles, and AWS resources for fine-grained access control. This new feature enables you to apply tags for allocating costs and simplifying permission management for your enhanced fan-out consumers. With this launch, you can now tag your enhanced fan-out consumers used by different business units to track and…

EC2 Image Builder now integrates with Systems Manager Parameter Store, offering customers a streamlined approach for referencing SSM parameters in their image recipes, components, and distribution configurations. This capability allows customers to dynamically select base images within their image recipes, easily use configuration data and sensitive information for components, and update their SSM parameters with output latest images. Prior to today, customers had to specify AMI IDs in their image recipes to use custom base images, leading to a constant maintenance cycle when these base images had to be updated. Furthermore, customers were required to create custom scr…

Among 1 million AWS certification preparation candidates, most of them start with AWS Cloud Practitioner (CLF-C02). And if you are wondering how to pass this certification in the first exam, you are at the right spot. Here is a complete guide to pass your CLF-C02 in the very first attempt. Why Choose the AWS Certified Cloud Practitioner Certification? To start with, why are most learners choosing the AWS Cloud Practitioner certification to enter the cloud and related job roles? – This is a very common question stumbled upon by many. To answer that 1. AWS Cloud Practitioner Certification – What is it? This is an entry-level certification credential for cloud learners…

This blog talks about the difficulty level of the AWS Solutions Architect Associate Exam and elaborates on the different ways to tackle the exam on your first attempt confidently. Read through to know more! Understanding the SAA-C03 Exam Difficulty Level The AWS Solutions Architect Associate exam enhances its relevance in the recent cloud computing scenario, with many reporting 10-20% salary increases. Understanding the exam’s difficulty is crucial for effective preparation. With a 65-70% pass rate and complex scenario-based questions, it demands hands-on AWS experience and time management. Recognizing this ensures candidates create structured study plans, use practice…

Amazon Relational Database Service (Amazon RDS) on AWS Outposts now supports generation 7i instances for Amazon RDS for MySQL on Outposts and amazon RDS for PostgreSQL on Outposts. Amazon RDS on Outposts allows you to deploy fully managed database instances in your on-premises environments. AWS Outposts is a fully managed service that extends AWS infrastructure, AWS services, APIs, and tools to virtually any datacenter, co-location space, or on-premises facility for a truly consistent hybrid experience. You can deploy Amazon RDS on Outposts to set up, operate, and scale MySQL, Microsoft SQL Server and PostgreSQL relational databases on-premises, just as you would in the c…

Topic was moved to forum Containerization & Orchestration

AWS Budgets now offers enhanced filtering capabilities and cost metrics, providing greater flexibility in how customers track and manage their cloud costs. Customers can now create budgets for new cost metrics such as net unblended costs and net amortized costs allowing monitoring for costs after discounts. Customers can also exclude dimension values when creating a budget and include existing Cost Explorer charge types such as reservation applied usage, Savings Plan Upfront Fee, and Savings Plan Covered Usage. These new capabilities enable customers to budget against the actual cost of their applications, teams, or cost centers with support for automated discounts and…

Today, AWS Systems Manager announces the launch of just-in-time node access, which helps remove long-standing permissions to nodes while maintaining operational efficiency. Customers can create zero standing privileges to nodes by requiring operators to request access to nodes managed by AWS Systems Manager that are running on AWS, hybrid, and multi-cloud environments before remotely connecting using AWS Systems Manager Session Manager. As organizations grow, administrators need to track and control access to nodes. Just-in-time node access helps customers limit access to their systems and data to only when needed. Administrators can enable dynamic, time-bound access t…

Today, AWS announces the general availability of second-generation AWS Outposts racks, marking the latest innovation from AWS at the edge of the cloud for your workloads that require low latency, local data processing, and data residency. Second-generation Outposts racks support the latest generation of x86-powered Amazon Elastic Compute Cloud (Amazon EC2) instances, starting with general purpose M7i instances, compute-optimized C7i instances, and memory-optimized R7i instances. These instances deliver twice the virtual CPU, memory, and network bandwidth, and up to 40% better performance compared to C5, M5, and R5 instances on first-generation Outposts racks. Second-gen…

Amazon DynamoDB Accelerator (DAX) now supports R7i instances, powered by custom 4th Generation Intel Xeon Scalable processors. R7i instances provide instance sizes up to 24xlarge, feature an 8:1 ratio of memory to vCPU, and include the latest DDR5 memory. These instances are now available in the following AWS Regions: US East (N. Virginia, Ohio), US West (N. California, Oregon), Asia Pacific (Mumbai, Singapore, Sydney, Tokyo), Europe (Frankfurt, Ireland, London, Paris, Spain, Stockholm), and South America (Sao Paulo). DAX is a fully managed, highly available caching service built for Amazon DynamoDB that improves performance from milliseconds to microseconds - up to 10…

Topic was moved to forum Artificial Intelligence (AI)

Today, AWS End User Messaging introduces new features to help developers combat artificially inflated traffic (AIT), also known as SMS pumping. AIT occurs when bad actors use automated systems or bots to trigger large volumes of SMS messages, leading to unexpected charges that can cost businesses millions of dollars each year. End User Messaging SMS Protect now allows developers to configure AIT detections setting rules for entire countries or specific messaging use cases. The granular control helps developers more accurately identify potential abuse while allowing legitimate messages to be delivered. End User Messaging now identifies and block messages that have a pot…

Amazon ElastiCache now supports Global Datastore in the Asia Pacific (Hong Kong, Hyderabad, Jakarta, Malaysia, Melbourne, Thailand), Africa (Cape Town), Canada West (Calgary), Europe (Milan, Spain, Zurich), Israel (Tel Aviv), Mexico (Central), and Middle East (Bahrain, UAE) Regions. Global Datastore is a feature of ElastiCache that provides fully managed, fast, reliable, and secure cross-Region replication. Using Global Datastore, you can write to your ElastiCache cluster in one Region and have the data available for read in two other cross-Region replica clusters, thereby enabling low-latency reads and disaster recovery across Regions. Customers use Global Datastore f…

AWS Amplify now supports seeding data across Amazon Cognito, AWS AppSync, Amazon DynamoDB, and Amazon S3. Developers can programmatically create test users and associated resources through new APIs and a CLI command. This feature simplifies testing and development workflows by enabling quick population of auth-dependent resources. Create Cognito users, seed DynamoDB records via AppSync with user context, and upload S3 objects - all while maintaining proper authentication relationships. This eliminates manual user creation and authentication steps previously required for testing auth-protected resources. This feature is available in all regions where AWS Amplify is s…

You can now create Amazon S3 Access Grants in the AWS Asia Pacific (Malaysia) Region. Amazon S3 Access Grants map identities in directories such as Microsoft Entra ID, or AWS Identity and Access Management (IAM) principals, to datasets in S3. This helps you manage data permissions at scale by automatically granting S3 access to end users based on their corporate identity. Visit the AWS Region Table for complete regional availability information. To learn more about Amazon S3 Access Grants, visit our product page. View the full article

Topic was moved to forum Artificial Intelligence (AI)

In an increasingly digital world, the demand for cloud computing and cybersecurity expertise continues to grow. To address this, the University of Virginia (UVA) and Commonwealth Cyber Initiative joined forces with AWS Skills Center Arlington to deliver an innovative Cyber & AWS Cloud Essentials Bootcamp. In this post, you’ll learn how this program prepared participants for tech careers through hands-on learning, industry connections, and AWS Certification preparation. You’ll also discover how similar opportunities are available to learners of all backgrounds at AWS Skills Centers, including free courses both in-person and online. A new approach to cloud learning …

AWS Amplify introduces two key improvements to its backend tooling: streamlined deployment output using the AWS CDK Toolkit and a new notice system for local development. These updates optimize how developers receive deployment status information and important messages directly in their terminal when executing Amplify commands. These enhancements improve the development experience by focusing on essential information while proactively surfacing critical notices. Frontend developers can now focus on relevant deployment information without the distraction of underlying infrastructure details. The notice system, similar to CDK's approach, delivers important messages about…

AWS Certificate Manager (ACM) announces automated public TLS certificates for Amazon CloudFront. CloudFront customers can now simply check a box to receive required public certificates to enable TLS when creating new CloudFront content delivery applications. ACM and CloudFront work together to automatically request, issue and associate the required public certificates with CloudFront. ACM will also automatically renew these certificates as long as the certificate is in use and traffic for the certificate domain is routed to CloudFront. Previously, to set up a similar secure CloudFront distribution, customers had to request a public certificate through ACM, validate the do…

Today, AWS announced support for VPC endpoints in Amazon Route 53 Profiles, allowing you to create, manage, and share private hosted zones (PHZs) for interface VPC endpoints across multiple VPCs and AWS accounts within your organization. With this enhancement, Amazon Route 53 Profiles simplifies the management of VPC endpoints by streamlining the process of creating and associating interface VPC endpoint managed PHZs with VPCs and AWS accounts, and without requiring you to manually associate them. Route 53 Profiles makes it easy for you to create one or more configurations for VPC-related DNS settings, such as private hosted zones and Route 53 Resolver rules, and share…

Today, AWS announces CloudFront SaaS Manager, a new Amazon CloudFront feature designed to efficiently manage content delivery across multiple websites for Software-as-a-Service (SaaS) providers, web development platforms, and companies with multiple brands/websites. CloudFront SaaS Manager provides a unified experience, alleviating the operational burden of managing multiple websites at scale, including TLS certificate management, DDoS protection, and observability. CloudFront SaaS Manager introduces reusable configuration settings, eliminating redundant configurations and allowing customers to maintain consistent settings across their websites. This not only saves tim…

Starting today, Amazon EC2 High Memory instances with 24TB of memory (u-24tb1.112xlarge) are available in the US East (Ohio) region. Customers can start using these new High Memory instances with On Demand and Savings Plan purchase options. Amazon EC2 High Memory instances are certified by SAP for running Business Suite on HANA, SAP S/4HANA, Data Mart Solutions on HANA, Business Warehouse on HANA, and SAP BW/4HANA in production environments. For details, see the Certified and Supported SAP HANA Hardware Directory. For information on how to get started with your SAP HANA migration to EC2 High Memory instances, view the Migrating SAP HANA on AWS to an EC2 High Memory …

Amazon Web Services is announcing the general availability of next generation high performance Storage Optimized Amazon EC2 I7i instances. Powered by 3rd generation AWS Nitro SSDs, I7i instances offer up to 45TB of NVMe storage with up to 50% better real-time storage performance, up to 50% lower storage I/O latency, and up to 60% lower storage I/O latency variability compared to I4i instances. Powered by 5th generation Intel Xeon Scalable processors with an all-core turbo frequency of 3.2 GHz, I7i instances offer the best compute and storage performance for x86-based storage optimized instances in Amazon EC2, delivering up to 23% better compute performance and more than 1…

Today, AWS announced a new AWS Client VPN feature that monitors device networking routes, prevents VPN traffic leaks, and strengthens remote access security. The feature continuously tracks your users' device routing tables to ensure outbound traffic flows through the VPN tunnel according to your configured settings. If the feature detects any modified networking route settings, it automatically restores the routes to your original configuration. AWS Client VPN allows admins to configure routes on users' devices to route traffic through the VPN. For example, an admin might configure end users' devices to connect to the 10.0.0.0/24 network using VPN connectivity while t…

Writer's enterprise-grade foundation models, Palmyra X5 and X4, are now available as fully managed, serverless models in Amazon Bedrock. AWS is the first cloud provider to offer fully managed models from Writer, allowing organizations to leverage enterprise AI capabilities with serverless scalability and cost optimization. Palmyra X5 has a one million token context window, while Palmyra X4 features a 128,000 token context window, both designed for sophisticated business applications. These models, top-ranked on Stanford's HELM benchmark, excel at complex tasks including advanced reasoning, multi-step tool-calling, and built-in RAG (Retrieval-Augmented Generation). Both …

In this blog, let us know what Amazon Redshift is all about and also dive into its working mechanism in handling data efficiently, unlike traditional databases. Come on, let’s dive deep into the Amazon Redshift which plays a significant role in AWS Certified Data Engineer Associate Certification (DEA-C01). Introduction to Amazon Redshift Amazon Redshift is a data warehousing service designed for storing petabytes of data used for reporting and analytics. Unlike the traditional databases and data lakes excel at storing data, to turn raw data into insights, you need a data warehouse. Stored data doesn’t reveal anything; you need to analyze that data to make informed choi…

Topic was moved to forum Artificial Intelligence (AI)

Starting today, in the AWS GovCloud (US-East) and AWS GovCloud (US-West) Regions, you can now deliver events from an Amazon EventBridge Event Bus directly to AWS services in another account. Using multiple accounts can improve security and streamline business processes while reducing the overall cost and complexity of your architecture. Amazon EventBridge Event Bus is a serverless event broker that enables you to create scalable event-driven applications by routing events between your own applications, third-party SaaS applications, and other AWS services. This launch allows you to directly target services in another account, without the need for additional infrastruct…

Topic was moved to forum Artificial Intelligence (AI)

AWS Resource Explorer now supports AWS PrivateLink in all commercial AWS Regions, allowing you to search for and discover your AWS resources within your Amazon Virtual Private Cloud (VPC) without traversing the public internet. With AWS Resource Explorer you can search for and discover your AWS resources across AWS Regions and accounts in your organization, either using the AWS Resource Explorer console, the AWS Command Line Interface (AWS CLI), the AWS SDKs, or the unified search bar from wherever you are in the AWS Management Console. For more information about the AWS Regions where AWS Resource Explorer is available, see the AWS Region table. To turn on AWS Re…

Today, AWS Resource Groups is adding support for an additional 160 resource types for tag-based Resource Groups. Customers can now use Resource Groups to group and manage resources from services such as AWS Code Catalyst and AWS Chatbot. AWS Resource Groups enables you to model, manage and automate tasks on large numbers of AWS resources by using tags to logically group your resources. You can create logical collections of resources such as applications, projects, and cost centers, and manage them on dimensions such as cost, performance, and compliance in AWS services such as myApplications, AWS Systems Manager and Amazon CloudWatch. Resource Groups expanded resourc…

In this blog, we will discover the abilities of AWS to handle big data for ML. Maintaining high-quality data and records comes with a high level of challenges, but the AWS tools for processing and analysing big data come in handy. Let us explore how AWS achieves this! Major Challenges In Handling Big Data For Businesses Today, businesses are moving towards data-driven decision-making. From analysing customer interactions and transactions to IoT sensor data and Social media analysis, data is the starting point to extract meaningful insights. The main challenges faced in handling big data are Storing and retrieving data without performance issues that affect scalabili…

The Amazon Connect agent workspace now supports additional capabilities for third-party applications including the ability make outbound calls, accept, transfer, and clear contacts, and update agent status. These enhancements allow you to integrate applications that give agents more intuitive workflows. For example, agents can now initiate one-click outbound calls from a custom-built call history interface that presents their most recent customer interactions. Third-party applications are available in the following AWS Regions: US East (N. Virginia), US-West (Oregon), Africa (Cape Town), Asia Pacific (Seoul), Asia Pacific (Singapore), Asia Pacific (Sydney), Asia Pacifi…

Starting today, AWS AppSync Events, a fully managed service for serverless WebSocket APIs with full connection management, now supports data source integrations for channel namespaces. This new feature enables developers to associate AWS Lambda functions, Amazon DynamoDB tables, Amazon Aurora databases, and other data sources with channel namespace handlers to process published events and subscription requests. Developers can now connect directly to Lambda functions without writing code and leverage both request/response and event modes for synchronous and asynchronous operations. With these new capabilities, developers can create sophisticated event processing workflo…

With this launch, VPC Reachability Analyzer and VPC Network Access Analyzer are now available in Europe (Spain) Region. VPC Reachability Analyzer allows you to diagnose network reachability between a source resource and a destination resource in your virtual private clouds (VPCs) by analyzing your network configurations.For example, Reachability Analyzer can help you identify a missing route table entry in your VPC route table that could be blocking network reachability between an EC2 instance in Account A that is not able to connect to another EC2 instance in Account B in your AWS Organization. VPC Network Access Analyzer allows you to identify unintended network a…

Amazon SageMaker Lakehouse now supports attribute-based access control (ABAC), using AWS Identity and Access Management (IAM) principal and session tags to simplify data access, grant creation, and maintenance. With ABAC, you can manage permissions using dynamic business attributes associated with user identities. Previously, SageMaker Lakehouse granted access to lakehouse databases and tables by directly assigning permissions to specific principals such as IAM users and IAM roles, a process that could quickly become unwieldy as the number of users grew. ABAC now allows administrators to grant permissions on a resource with conditions that specify user attribute keys a…

AWS AppConfig now supports dual-stack endpoints, facilitating connectivity through Internet Protocol Version 6. The existing AWS AppConfig endpoints supporting IPv4 will remain available for backwards compatibility. The continuous growth of the internet has created an urgent need for IPv6 adoption, as IPv4 address space reaches its limits. Through AWS AppConfig's implementation of dual-stack endpoints, organizations can execute a strategic transition to IPv6 architecture on their own timeline. This approach enables companies to satisfy IPv6 regulatory standards while preserving IPv4 connectivity for systems that have not yet moved to IPv6 capabilities. IPv6 support …

Amazon Redshift now supports history mode for zero-ETL integrations with eight third-party applications including Salesforce, ServiceNow, and SAP. This addition complements existing history mode support for Amazon Aurora PostgreSQL-compatible and MySQL-compatible, DynamoDB, and RDS for MySQL databases. The expansion enables you to track historical data changes without Extract, Transform, and Load (ETL) processes, simplifying data management across AWS and third-party applications. History Mode for zero-ETL integrations with third-party applications lets customers easily run advanced analytics on historical data from their applications, build comprehensive lookback repo…

In November 2024, we launched Prompt Optimization in Amazon Bedrock to accelerate prompt creation and engineering for foundation models (FMs). Today, we're announcing its general availability and pricing. Prompt engineering is the process of designing prompts to guide FMs to generate relevant responses. These prompts must be customized for each FM according to its best practices and guidelines, which is a time-consuming process that delays application development. With Prompt Optimization in Amazon Bedrock, you can now automatically rewrite prompts for better performance and more concise responses on Anthropic, Llama, Nova, DeepSeek, Mistral and Titan models. You can c…

AWS Database Migration Service Serverless (AWS DMS Serverless) now offers storage scaling. With this enhancement you never have to worry about exceeding the DMS Serverless 100GB default replication storage capacity limit when processing very large transaction volumes or using detailed logging. You can now use AWS DMS Serverless for replicating even the highest of transaction volumes since there is no longer any storage capacity limits. AWS DMS Severless will automatically increase the storage for your replications any time the existing capacity reaches it limits. To learn more, see the AWS DMS Serverless storage capacity documentation. For AWS DMS regional availa…

This blog was authored by Sascha Möllering, Principal Specialist Solutions Architect Containers and Yuriy Bezsonov, Senior Partner Solutions Architect. Introduction Container startup performance presents a significant challenge for Java applications running on Kubernetes, particularly during scaling events and recovery scenarios. Although Java remains a top choice for both legacy modernization and new microservices development, especially with frameworks such as Spring Boot or Quarkus, containerized Java applications often face unique challenges around startup times and runtime behavior. Performance profiling in containerized Java applications has long presented sign…