< ciso
brief />
Tag Banner

All news with #aws tag

2299 articles · page 25 of 115

Amazon Quick Extension Brings Generative AI to Outlook

📧 The Amazon Quick extension for Microsoft Outlook is now available in preview, embedding generative AI directly into email and calendar workflows. Using natural-language prompts, users can summarize unread messages, prioritize and organize mail, find specific discussions, schedule meetings, and draft contextual replies without leaving Outlook. The extension pulls relevant content from Amazon Quick spaces and knowledge bases and can trigger actions in external apps via configured integrations. Preview is available in several AWS regions; sign-up and documentation are provided on the Quick site.
read more →

Amazon SageMaker AI Adds Agentic Model Customization

🤖 Amazon SageMaker AI introduces an agentic experience that dramatically shortens model customization from months to days or hours. Using SageMaker AI model customization agent skills, developers interact via natural language coding agents to prepare data, fine-tune models, evaluate quality with LLM-as-a-judge metrics, and generate reusable code artifacts. Skills can be installed into IDEs via the sagemaker-ai agent plugin or used pre-installed in SageMaker Studio Notebooks, and support deployment to Amazon Bedrock or SageMaker AI endpoints.
read more →

AWS Payment Cryptography: Cross-Account Key Sharing

🔐 AWS announced support for cross-account key sharing in AWS Payment Cryptography using resource-based policies (RBP). Organizations can now maintain a single authoritative copy of cryptographic keys and grant per-resource access to other AWS accounts—internal or external—without import/export workflows. This reduces duplication, simplifies key lineage and access control, and helps teams scale cryptography operations in cloud-hosted payment applications. The feature is available in all Regions where the service runs; consult the user guide to get started.
read more →

RDS for SQL Server Adds M8i and R8i Intel Instances

Amazon RDS for SQL Server now supports the M8i and R8i instance families, powered by custom Intel Xeon 6 processors exclusive to AWS. These instances deliver up to 15% better price-performance and up to 2.5x more memory bandwidth versus equivalent 7th-generation Intel instances. You can modify existing RDS SQL Server instances or create new ones via the RDS Console, AWS SDK, or CLI. Review Amazon RDS for SQL Server Pricing for regional availability before migrating.
read more →

Amazon Bedrock AgentCore Launches in São Paulo Region

🚀 Amazon Bedrock AgentCore is now available in the AWS South America (São Paulo) Region. AgentCore provides a platform to build, connect, and optimize agents with runtime, identity, gateway, policy, observability, code interpreter, and browser tools available at launch. Customers can deploy agents closer to end users to reduce latency and meet data residency requirements, with security enforced at the infrastructure layer that agents cannot bypass.
read more →

Amazon CloudWatch RUM Adds Session Replay for Web Apps

🎥 Amazon Web Services announced CloudWatch RUM Session Replay, a video-like playback feature that records clicks, scrolls, page changes, and client-side errors for web applications. It extends CloudWatch RUM's client-side performance and error telemetry by letting developers visually diagnose broken navigation flows, unresponsive UI elements, and silent UX failures. Session Replay is opt-in, supports sensitive field masking, is included at no additional cost, and is available in all AWS Regions where CloudWatch RUM is supported.
read more →

Improving Security Posture for AI-era Cloud Workloads

🔒 AWS outlines the Security Health Improvement Program (SHIP) as a no-cost, data-driven engagement to assess and prioritize fixes across 10 core cloud security use cases. The program uses actual environment data and AWS guidance to establish baselines needed for safe AI adoption and faster response to AI-accelerated vulnerability discovery. Customers can start via their account team or hands-on Activation Days.
read more →

Amazon OpenSearch UI adds cross-region data access

🌐 Amazon OpenSearch Service now supports cross-region data access in OpenSearch UI, letting a single OpenSearch UI application query domains hosted in different AWS Regions without switching endpoints or replicating data. The capability works for domains in both public and VPC configurations and complements earlier cross-account data access so teams can combine accounts and Regions flexibly. It supports queries across primary and replica domains and uses both IAM and IAM Identity Center for authentication.
read more →

ISO 31000:2018 Risk Management on AWS — Practical Guide

🛡️ AWS Security Assurance Services has published a new compliance guide, ISO 31000:2018 Risk Management on AWS, offering practical guidance for building and operating risk management programs in AWS environments. The guide explains how to apply ISO 31000:2018 principles to establish context, perform risk assessments, implement treatments, and enable continuous monitoring. It highlights governance aligned with the AWS Shared Responsibility Model and recommends strategies for avoidance, mitigation, transfer, and acceptance to support scalable, automated security and compliance.
read more →

Amazon CloudFront Adds WebSockets Support for VPC Origins

🔒 Amazon CloudFront now supports WebSockets through VPC origins, allowing customers to host real-time, bidirectional applications entirely in private subnets. You can place Application Load Balancers, Network Load Balancers, and EC2 instances inside private subnets and expose them via a CloudFront distribution as the single entry point. This reduces attack surface, simplifies security management, and brings built-in DDoS protection to WebSockets workloads. WebSockets via VPC origins is available in all AWS Commercial Regions that support VPC origins at no additional cost.
read more →

IAM Roles Anywhere adds VPC endpoint policy control

🔒 IAM Roles Anywhere now lets you include the CreateSession API in VPC endpoint policies, enabling explicit allow or deny controls for session creation through endpoints. If CreateSession isn't explicitly allowed (or you don't permit all operations, e.g., "rolesanywhere:*"), requests made via the VPC endpoint will not return temporary AWS credentials. This closes a prior gap and delivers consistent, fine‑grained access control across all IAM Roles Anywhere API operations, available in all regions including GovCloud, European Sovereign Cloud, and China.
read more →

Amazon Redshift Adds Concurrency Scaling for Auto-Copy

📈 Amazon Redshift now supports concurrency scaling for auto-copy and zero-ETL, improving ingestion throughput for both S3-based loads and near real-time replication from operational databases. Enabled for Amazon Redshift Serverless and RA3 provisioned warehouses across all commercial and GovCloud regions, this feature automatically adds compute to handle spikes in reads and writes. Organizations can immediately enable it to maintain faster, consistent ingestion during peak loads.
read more →

AWS Transform BI agents migrate Power BI and Tableau

🔁 AWS Transform customers can now use BI migration agents to convert Power BI and Tableau dashboards into Amazon QuickSight assets, reducing migration effort from months to days. Built by Wavicle Data Solutions and delivered through AWS Marketplace, the new offering includes Analyzer and Converter agents for each source and operates entirely within your AWS account so no data leaves your environment. After conversion, administrators assign dashboards to BI authors for validation and publishing.
read more →

Spatial Data Management on AWS: Connectors and Installer

🔧SDMA on AWS now supports custom transformation connectors and a unified desktop installer. Custom connectors enable submission of compute‑intensive jobs—such as format conversion, 3D rendering, image tiling, and metadata extraction—to AWS Deadline Cloud using Open Job Description templates, and can extend SDMA's built-in content analysis with bespoke verification or transformation logic. Connectors run in isolated compute environments and automatically ingest declared outputs back into SDMA's governed asset repository, allowing automated, chained processing across spatial data pipelines. The SDMA desktop application now offers a standalone installer that bundles required dependencies, removing the need to install the CLI or other components separately.
read more →

Amazon EKS Adds Dynamic Resource Allocation for EFA

🚀Amazon EKS now supports Dynamic Resource Allocation (DRA) for Elastic Fabric Adapter (EFA), simplifying RDMA and high-performance inter-node communication for AI/ML and HPC workloads. The EFA DRA driver, based on the upstream DRANET project, enables topology-aware allocation and EFA interface sharing so network traffic uses the closest NIC to GPUs, Trainium, or Inferentia. It’s recommended for new EKS deployments on Kubernetes 1.34+ and is available in all AWS Regions; the existing EFA device plugin remains supported and is still recommended for use with Karpenter and Amazon EKS Auto Mode.
read more →

Amazon MQ for RabbitMQ Adds Native Prometheus Metrics

📈 Amazon MQ for RabbitMQ now includes the Prometheus plugin on RabbitMQ 4.2 brokers, providing a native Prometheus-compatible metrics endpoint. You can scrape broker, queue, and connection metrics from the /metrics, /metrics/detailed, and /metrics/memory-breakdown endpoints in Prometheus text format. AWS also publishes a curated subset of these metrics to CloudWatch. The plugin is enabled by default in all Regions where Amazon MQ is available.
read more →

AWS Neuron: Agentic Development for Trainium Kernels

🔧 AWS announced Neuron Agentic Development, an open-source set of agents and skills that bring agentic coding capabilities to development on AWS Trainium and AWS Inferentia. The initial release focuses on Neuron Kernel Interface (NKI) kernel development, enabling an agentic IDE to author, debug, profile, and analyze custom kernels. Developers can request kernels from natural-language descriptions, get automated fixes for compilation errors, and receive performance reports identifying bottleneck lines of code.
read more →

Amazon OpenSearch Adds Index-Level Encryption with KMS

🔒 Amazon OpenSearch Service now supports index-level encryption using AWS Key Management Service (KMS) customer managed keys. This allows you to assign different customer managed keys to individual indexes on the same domain, enabling more granular, tenant-specific encryption policies and isolating encrypted data across indexes. The capability builds on existing domain-level encryption and is available at no additional cost for domains running OpenSearch 3.3 or later in select AWS Regions.
read more →

Amazon RDS for MySQL adds MySQL 9.6 Preview support

🚀 Amazon RDS for MySQL now supports the community MySQL 9.6 Innovation Release in the Amazon RDS Database Preview Environment. You can deploy MySQL 9.6 as fully managed Single‑AZ or Multi‑AZ instances on the latest-generation instance classes to evaluate new features, bug fixes, and security patches. Preview instances are retained for a maximum of 60 days and snapshots created there can only be used within the Preview Environment. Pricing for preview instances aligns with production RDS in the US East (Ohio) Region.
read more →

Designing Trust and Safety for Amazon Bedrock Apps

🛡️ This article outlines AWS guidance for integrating trust, safety, and responsible-AI practices into applications built on Amazon Bedrock. It defines core responsible AI dimensions—such as safety, controllability, fairness, explainability, security and privacy, robustness, governance, and transparency—and maps them to lifecycle stages: design, deployment, and operations. It recommends observability and guardrail tools like Amazon CloudWatch and Bedrock Guardrails for monitoring, abuse detection, configurable content filters, and hallucination controls, and describes an abuse response process for coordination with AWS Trust & Safety.
read more →