2019 AWS re:Invent and DevOps News Week in Review

2019 AWS re:Invent and DevOps News Week in Review

By Flux7 Labs
December 9, 2019

Last week’s re:Invent ended with a keynote from Werner Vogels in which he took us behind the scenes of the AWS service, illustrating how AWS innovates for customer success. Building on the news we shared last week, today we’re sharing the last of many news announcements coming out of AWS. In case you missed Part 1 and 2 of our re:Invent news in review, you can check them out here: Flux7 Reviews AWS re:Invent Announcements and AWS re:Invent News Round-Up Continued.

The Amazon Builders’ Library
The culmination of Werner Vogels behind the scenes look at AWS was the announcement of the Amazon Builders’ Library, a collection of articles written by AWS technologists sharing how AWS builds and runs its systems. Organized by categories like architecture and software delivery, the library gives readers direct access to the theory and practices behind AWS approach. Launching with 15 articles, the Builders’ Library is now available. 

 

AWS Security Best Practices

Also shared in the CTO’s talk was AWS Nitro Enclaves, which were part of a series of security offerings announced by AWS last week. 

  • AWS Nitro Enclaves
    The new service makes it easier for operators to protect highly sensitive data by creating isolated compute environments within Amazon EC2 instances, with no persistent storage, no ability to login to the enclave, and no networking connectivity beyond a secure local channel. The service will be available in preview early next year.
  • Amazon Detective
    Amazon Detective analyzes trillions of data points to make it easier to visualize and conduct faster and more efficient security investigations. Pairing ML, statistical analysis and graph theory, the service distills and organizes data from AWS CloudTrail and Amazon VPC Flow Logs into a graph model that summarizes resource behaviors and interactions across your AWS environment. Amazon Detective is now available in preview.
  • AWS IAM Access Analyzer
    Continuously monitor and analyze resource policies to help protect resources from unintended access with IAM Access Analyzer. If you’re a frequent reader of this blog, you know that we appreciate IAM’s role in our AWS Security by Design approach and are happy to see a new AWS IAM capability that helps simplify the process of auditing resource policies. IAM Access Analyzer is available today.

EC2 Container Service Updates

Speaking of Nitro, the underlying platform for the latest generation of EC2 instances, Amazon unveiled that its EC2 Nitro System-based instances now support 36% faster Amazon EBS-optimized instance performance. 

Additional EC2 container service-related updates include:

  • AWS Compute Optimizer
    This new ML-based recommendation service makes it easy to ensure you are using optimal AWS Compute resources, helping avoid the over-provisioning of resources that can lead to unnecessary cost, or under-provisioning that can lead to poor application performance. The service is available now through AWS Management Console, AWS CLI, or AWS SDK.
  • AWS EC2 Image Builder
    Amazon bills EC2 Image Builder as making it easier and faster to build and maintain secure images. Simplifying the creation, patching, testing, distribution, and sharing of Linux or Windows Server images, it helps keep server images up-to-date and error-free. It’s currently available in all AWS regions.

When Amazon announced AWS Outposts last year, there were a lot of questions — and excitement — about the idea of a fully managed service that extends AWS infrastructure and services to an on-premises data center. At re:Invent last week, AWS happily shared that AWS Outposts are now in GA. Moreover, they unveiled that Amazon RDS on Outposts is now available in Preview. The new service will allow operators to deploy fully managed AWS RDS database instances in their on-premises environments. 

 

Continuing with Amazon’s AI and ML theme, the company also unveiled Amazon Augmented AI (Amazon A2I) which they hail as making it easy to build the workflows required for human review of ML predictions. Amazon A2I is now available in public preview in the US East (N. Virginia) AWS Region. Additionally, Amazon rolled out:

 

    • Amazon EventBridge Schema Registry
      Storing event structure in a shared central location and mapping the schemas to code for Java, Python, and Typescript, Amazon EventBridge makes it easier to use events as objects in your code. It can automatically add schemas from your event bus to the registry when you turn on the schema discovery feature. The Amazon EventBridge schema registry is now in preview.
    • The ability to run serverless Kubernetes pods with Amazon EKS and AWS Fargate. Operators can now use EKS to run Kubernetes pods on AWS Fargate, simplifying the process of building and running AWS Kubernetes apps in the AWS cloud.

 

  • AWS IoT SiteWise
    IoT SiteWise saw five new features added last week, with the new features providing additional capabilities to collect data from industrial equipment, add context to the data using asset models, use the data in custom applications, and view the data in near real-time through a fully-managed web application. IoT SiteWise is now available in preview.

 

  • New program for end of support Windows Server applications
    Last, but certainly not least, on our AWS announcements list is a new program from AWS that helps customers migrate legacy Windows Server applications to the latest, supported versions of Windows Server on AWS. While AWS addressed several migration challenges customers have over the course of the conference, this program is designed to help those who struggle with migrating legacy apps due to tight dependencies on older, unsupported operating systems, limited in-house expertise, and/or missing access to installation media or source code. 


Enjoy receiving a recap of the latest DevOps, Cloud and IT modernization news? Subscribe to our blog today and don’t miss an issue.

Technology is always changing. Stay in the loop with the Flux7 Blog

Written by Flux7 Labs

Flux7 is the only Sherpa on the DevOps journey that assesses, designs, and teaches while implementing a holistic solution for its enterprise customers, thus giving its clients the skills needed to manage and expand on the technology moving forward. Not a reseller or an MSP, Flux7 recommendations are 100% focused on customer requirements and creating the most efficient infrastructure possible that automates operations, streamlines and enhances development, and supports specific business goals.