All news with #aws tag

🔔 AWS has opened the public preview of AWS Interconnect - multicloud with Oracle Cloud Infrastructure (OCI), enabling customers to provision resilient, private connections between AWS and OCI from the us-east-1 (N. Virginia) Region. The service implements an open specification already used for Google Cloud (GA) and planned for Microsoft Azure in 2026. Customers can create preview connections via the AWS Management Console, CLI, or API, simplifying multicloud networking and reducing the need for DIY global network architectures.

🔔 AWS Organizations now supports higher quotas for service control policies (SCPs): the maximum number of SCPs that can be attached to a single node (root, OU, or account) has increased from 5 to 10, and the maximum SCP size has increased from 5,120 to 10,240 characters. These higher quotas let you write SCPs with finer-grained permissions and conditions and attach more SCPs per node to build more comprehensive security controls across your organization. The changes are available automatically in all commercial AWS Regions, the AWS GovCloud (US) Regions, and the China Regions with no action required.

🔐 Amazon CloudFront now supports Online Certificate Status Protocol (OCSP) for viewer mutual TLS (mTLS), allowing real-time validation of client certificate revocation during connection establishment. Previously, revocation was handled via CloudFront Functions and KeyValueStore with static lists. CloudFront now queries the OCSP responder embedded in certificates and caches responses up to 30 minutes. The OCSP result is exposed to connection functions for custom logic.

🌐 AWS outlines how to present a single, brand-aligned vanity entry point (for example, aws.mycompany.com) in front of IAM Identity Center multi-Region access portals. The approach uses Amazon Route 53 latency-based routing, Application Load Balancer 302 redirects, and optional Amazon ARC Region switches for automated failover while TLS is managed through AWS Certificate Manager. Traffic is directed to the nearest healthy regional portal and the vanity domain does not persist in the browser address bar.

🚀 Amazon Web Services has launched EC2 High Memory U7i instances in the AWS Europe (Paris) region, adding u7i-12tb.224xlarge and u7in-16tb.224xlarge. These 7th-generation instances use custom 4th-generation Intel Xeon Scalable (Sapphire Rapids) processors and provide 12 TiB or 16 TiB of DDR5 memory with 896 vCPUs. They offer up to 100 Gbps of Amazon EBS bandwidth, ENA Express, and up to 200 Gbps network bandwidth on the 16 TiB variant, delivering up to 45% better price performance versus prior U-1 instances. Ideal for mission-critical in-memory databases like SAP HANA, Oracle, and SQL Server.

🚀 Amazon SageMaker AI now supports serverless customization for the Qwen3.6 27B parameter model using supervised fine-tuning (SFT) and reinforcement fine-tuning (RFT). This extends SageMaker's existing fine-tuning support for Qwen3.5 and other open-weight models. Serverless customization removes infrastructure management—SageMaker handles provisioning and orchestration—so teams pay only for what they use. The feature is available in US East (N. Virginia), US West (Oregon), Asia Pacific (Tokyo), and EU (Ireland).

🛠️ AWS announced general availability of the agent builder toolkit Kiro Power for AWS Transform, enabling partners and customers to create customized transformation agents tailored to modernization projects. The toolkit supports the full agent lifecycle—build with Kiro Power, share across teams and partner networks, and register agents with AWS Transform for discovery. It's available in the Kiro Power marketplace and targets Migration and Modernization Competency Partners, ISVs, and customers.

🛠️ AWS has made its AWS Transform agents available through an agent plugin, a Kiro Power in the Kiro marketplace, and the AWS Transform MCP server. Developers can now invoke transformation capabilities from their IDE, the web console, or programmatically, maintaining consistent job state across surfaces. IAM role authentication is supported, enabling use of existing AWS credentials for environments, workspaces, and jobs.

🔁 Amazon Aurora DSQL now supports change data capture (CDC) in preview, enabling real-time streaming of database changes directly to Amazon Kinesis Data Streams. The fully managed capability captures insert, update, and delete operations as discrete change events and removes the need to build and maintain custom streaming pipelines. It is designed for zero impact on database throughput and latency, requires no infrastructure setup, and integrates with AWS Lambda and Data Firehose for downstream delivery. CDC streaming in preview is available in all Regions where Aurora DSQL is offered and is billed using Distributed Processing Units (DPUs); standard Amazon Kinesis pricing applies separately.

🔔 AWS has added GLM-5.1-FP8 (from Z.ai) and Phi-4-mini-instruct (from Microsoft) to Amazon SageMaker JumpStart, expanding foundation model choices for enterprise workloads. GLM-5.1-FP8 targets agentic software engineering and multi-round optimization for repository-level code, debugging, and long-horizon automation. Phi-4-mini-instruct provides compact, low-latency reasoning across 24 languages and supports function calling for edge and latency-sensitive use cases. Customers can deploy these models via SageMaker Studio or the SageMaker Python SDK in a few clicks.

🔊 AWS has added three Qwen speech foundation models—Qwen3-TTS-12Hz-1.7B-CustomVoice, Qwen3-TTS-12Hz-1.7B-Base, and Qwen3-ASR-1.7B—to Amazon SageMaker JumpStart. The models deliver multilingual text-to-speech and automatic speech recognition capabilities across more than 10 languages and 52 languages/dialects. CustomVoice offers instruction-driven control over timbre, emotion, and prosody while Base enables 3-second rapid voice cloning. SageMaker JumpStart lets customers deploy these models from SageMaker Studio or via the SageMaker Python SDK with a few clicks.

🆕 AWS added FLUX.2-klein-base-4B and Qwen3-Embedding-0.6B to Amazon SageMaker JumpStart. FLUX.2 targets real-time image generation and multi-reference editing in a compact architecture that can run on consumer GPUs with about 13GB VRAM. Qwen3-Embedding delivers instruction-aware, multilingual text embeddings across 100+ languages for retrieval, RAG, and semantic search. Customers can deploy these models via SageMaker Studio or the SageMaker Python SDK.

🛡️ Amazon Connect Customer now offers a permission that lets agents access only their own performance evaluations directly in the Connect UI. Agents can search for contacts where they received evaluations, view evaluations alongside call recordings and transcripts, and submit an acknowledgment after review. Administrators can grant department-level contact visibility for investigations while preventing access to peers' evaluation data. The feature is available in all AWS regions where Amazon Connect Customer is offered.

🖥️ Amazon EC2 X8aedz instances are now available in Europe (Ireland), powered by 5th Gen AMD EPYC processors delivering up to 5 GHz single-thread performance. Built on sixth generation AWS Nitro Cards, these instances are optimized for EDA workloads and relational databases that need high CPU frequency and large memory. They provide a 32:1 memory-to-vCPU ratio, sizes from 2–96 vCPUs with up to 3,072 GiB memory and up to 8 TB local NVMe, and are offered via Savings Plans, On-Demand, and Spot.

🔒 The PQC Readiness Scanner automates inventory and continuous monitoring of AWS-terminated TLS endpoints — Application Load Balancer (ALB), Network Load Balancer (NLB), and Amazon API Gateway — to evaluate TLS policies for Post-Quantum Cryptography (PQC) readiness. It classifies endpoints into a three-tier framework (Tier 1: PQ-ready, Tier 2: PQ-ready with backward compatibility, Tier 3: not PQ-ready) and returns COMPLIANT/NON_COMPLIANT results with policy recommendations. Built as an AWS Config conformance pack with custom rules and Lambda functions, it supports organization-wide deployment via CloudFormation StackSets and S3-hosted artifacts. The scanner reduces manual review, tracks migration progress across accounts, and helps prioritize upgrades to TLS 1.3 with PQC key exchange.

🛠️ The AWS Transform agentic AI assistant is integrated into the AWS Toolkit for Visual Studio, giving .NET developers an in‑IDE, conversational workflow to assess, plan, and execute application modernization. It provides visibility, checkpointing, interactive diffs, automatic build-fix attempts, detailed worklogs, and downloadable HTML reports while preserving context between the web console and Visual Studio. Agents are also accessible via Kiro and other AI coding environments and are available in multiple AWS Regions.

🔗AWS announced that RTB Fabric now supports custom domains for real-time bidding transactions received through external links. This enables AdTech companies to preserve existing public endpoints (for example, bid.company.com/path) by using their own DNS and CNAME records without forcing partners to reconfigure endpoints. Customers can create routing rules to map URL patterns to specific RTB Fabric links so demand- and supply-side platforms can route partner traffic seamlessly. The capability is available in all AWS Regions that support RTB Fabric and maintains low latency while reducing standard cloud networking costs.

🔒 The updated AWS User Guide to Governance, Risk, and Compliance for Responsible AI Adoption provides Financial Services customers practical GRC guidance for deploying AI responsibly. It covers governance, risk management, compliance, data and model management, and AI agent oversight, and maps these considerations to AWS capabilities. The guide highlights services such as Amazon Bedrock AgentCore, Bedrock Guardrails, Bedrock Agents, SageMaker Autopilot, and SageMaker Model Monitor. It complements existing AWS responsible AI and Well-Architected resources and is available on the AWS Whitepaper portal.

🗄️Amazon announced that Amazon FSx for OpenZFS now supports creating Multi-AZ file systems from participant accounts in shared VPCs, enabling organizations to decentralize storage administration while keeping network control centralized. Previously, participant accounts could only create Single-AZ file systems in shared VPCs and needed to own the VPC for Multi-AZ deployments. This change allows participant accounts to create any FSx for OpenZFS file system in a shared VPC across all Regions where the service is available, improving high availability and operational flexibility.

🔒 AWS announced the completion of PCI PIN and PCI P2PE assessments for AWS Payment Cryptography, expanding validations to include Key Management (KMCP) and Key Loading (KLCP) alongside the existing Decryption Management (DMCP). The coverage is extended to South America (São Paulo) and Asia Pacific (Sydney) Regions. These attestations allow customers to use PCI PTS HSM-certified, AWS-managed HSMs with compliant key management to simplify regulated deployments.