All news with #aws tag

Amazon Web Grounding for Nova Models Now Generally Available

🌐 Web Grounding is now generally available as a built-in tool for Nova models, usable today with Nova Premier via the Amazon Bedrock tool use API. It retrieves and incorporates publicly available information with citations to support responses, enabling a turnkey RAG solution that reduces hallucinations and improves accuracy. Cross-region inference makes the tool available in US East (N. Virginia), US East (Ohio), and US West (Oregon). Support for additional Nova models will follow.

AWS Control Tower Now Available in Asia Pacific (NZ)

🚀 AWS Control Tower is now available in the AWS Asia Pacific (New Zealand) Region, bringing the service to 34 AWS Regions plus the AWS GovCloud (US) Regions. The service simplifies setup and governance of a secure, multi-account AWS environment, enabling a landing zone in 30 minutes or less and centralized visibility into compliance status. Existing customers can extend governance to the new region via the Control Tower settings by selecting regions and updating their landing zone; once applied, governed accounts, managed accounts, and registered organizational units (OUs) will be managed in the new region.

Notable Post-Quantum Cryptography Initiatives 2023

🔐 The article surveys major post‑quantum cryptography (PQC) initiatives from 2023–2025 that aim to prepare governments and industry for an eventual Q‑Day. It highlights NIST's standardization of ML‑KEM, ML‑DSA and SLH‑DSA (with HQC later selected) and vendor adoption by Google, AWS, Microsoft and others, including Chrome's default hybrid key exchange. Collaborative efforts such as the Linux Foundation's PQCA, the PQC Coalition and IETF's PQUIP are creating tooling, guidance and implementations, while agencies and standards bodies provide migration roadmaps and practical advice on crypto agility and hybrid strategies to mitigate "harvest now, decrypt later" risks.

Amazon ElastiCache Adds Dual-Stack IPv6 Service Endpoints

🌐 Amazon ElastiCache now provides dual-stack service endpoints, enabling management of resources over both IPv4 and IPv6. ElastiCache interface VPC endpoints powered by AWS PrivateLink also support dual-stack connectivity. The update, available in all AWS commercial, China, and GovCloud (US) Regions, helps simplify IPv6 migration and compliance without extra charges. This enables staged migrations and modernization while preserving existing IPv4 access.

AWS EC2 Im4gn Instances Available Now in Milan Region

🚀 Amazon EC2 Im4gn instances are now available in Europe (Milan). Built on the AWS Nitro System and powered by Graviton2 processors, these instances provide up to 30 TB of 2nd Generation Nitro SSD local instance storage for I/O‑intensive workloads. They deliver high compute performance, up to 100 Gbps networking, and Elastic Fabric Adapter (EFA) support for demanding database, search, and analytics use cases. Get started via the AWS Management Console, CLI, or SDKs.

AWS Offers EC2 I7i Storage-Optimized Instances in GovCloud

🚀 Amazon Web Services has made EC2 I7i storage-optimized instances available in the AWS GovCloud (US-East, US-West) Regions. These instances use 5th-generation Intel Xeon Scalable processors and 3rd-generation AWS Nitro SSDs to deliver up to 23% better compute performance and more than 10% better price performance versus prior I4i instances, along with up to 45 TB of NVMe local storage. I7i is offered in eleven sizes (nine virtual up to 48xlarge and two bare metal) with up to 100 Gbps network and 60 Gbps EBS bandwidth, and supports torn write prevention up to 16KB to reduce database bottlenecks for I/O-intensive, latency-sensitive workloads.

Amazon Kinesis Data Streams: Record Size Raised to 10MiB

📣 Amazon Web Services has increased the maximum record size for Kinesis Data Streams from 1MiB to 10MiB and doubled the maximum PutRecords request size to 10MiB. You can update a stream's maximum record size to 10MiB via the AWS Management Console or the UpdateMaxRecordSize API using the AWS SDK or CLI, and continue using existing Kinesis APIs to publish and consume larger records. AWS Lambda now supports Kinesis payloads up to 6MiB; there are no additional charges beyond standard Kinesis fees. The feature is available in supported regions and AWS provides documentation describing region coverage and downstream handling guidance.

AWS Resource Explorer Adds 47 New Resource Types in AWS

🔍 AWS has expanded Resource Explorer to support 47 additional resource types across services including Amazon Bedrock, AWS Shield, AWS Glue, VPC Lattice, WAFv2, SageMaker, and S3. With this update, customers can search for and discover these resources centrally, improving inventory accuracy and operational visibility. The change aims to streamline compliance, incident response, and cross-service troubleshooting by making more resource types queryable from a single interface.

Amazon EC2 R8i and R8i-flex Available in London Region

🚀 Amazon EC2 R8i and R8i-flex instances are now available in Europe (London), powered by custom Intel Xeon 6 processors exclusive to AWS. AWS reports up to 15% better price-performance and 2.5x more memory bandwidth versus previous Intel-based generations, and up to 20% higher performance compared to R7i for many workloads. R8i-flex introduces memory-optimized Flex sizing (large through 16xlarge) for applications that do not fully utilize compute, while R8i offers 13 sizes including two bare-metal options and a new 96xlarge and is SAP-certified. Instances can be purchased via On-Demand, Savings Plans or Spot.

Amazon Nova Multimodal Embeddings — Unified Cross-Modal

🚀 Amazon announces general availability of Amazon Nova Multimodal Embeddings, a unified embedding model designed for agentic RAG and semantic search across text, documents, images, video, and audio. The model handles inputs up to 8K tokens and video/audio segments up to 30 seconds, with segmentation for larger files and selectable embedding dimensions. Both synchronous and asynchronous APIs are supported to balance latency and throughput, and Nova is available in Amazon Bedrock in US East (N. Virginia).

Amazon DocumentDB Planner V2.0 Improves Query Performance

🚀 Amazon DocumentDB (with MongoDB compatibility) introduces PlannerVersion 2.0 for DocumentDB 5.0, delivering advanced query optimization and up to 10x performance improvements for indexed find and update operations. The new planner improves cost estimation, selects more optimal index plans, and adds index-scan support for negation operators such as $neq and $nin, as well as nested $elementMatch. Enabling PlannerVersion 2.0 requires a simple parameter change in your cluster parameter group and does not require a restart or incur downtime; you can revert to the legacy planner if needed.

Amazon EC2 I7ie Instances Now in AWS GovCloud (US-West)

🚀 Amazon Web Services has made Amazon EC2 I7ie instances available in the AWS GovCloud (US-West) Region. I7ie instances, powered by 5th Gen Intel Xeon processors and 3rd-generation AWS Nitro SSDs, are designed for large storage I/O–intensive workloads and offer up to 120 TB of local NVMe, higher vCPU and memory densities, and up to 100 Gbps network bandwidth. AWS cites up to 40% better compute performance and 20% better price performance versus I3en, along with substantial improvements in storage throughput, latency, and latency variability for low-latency, high-random I/O use cases.

AWS Payment Cryptography Now Available in Three Regions

🔐 AWS Payment Cryptography is now available in Canada (Montreal), Africa (Cape Town) and Europe (London). The fully managed service centralizes payment-specific cryptographic operations and key management for cloud-hosted payment applications and scales elastically to meet changing workloads. It is assessed as compliant with PCI PIN and PCI P2PE, reducing the need for dedicated payment HSMs. Customers can position cryptographic operations closer to latency-sensitive applications and pursue multi-Region high availability.

Amazon Location Service adds granular API key restrictions

🔒 AWS has introduced enhanced API key restrictions for Amazon Location Service to help developers secure location-based applications. Keys can now be bound to specific Android applications using package names and SHA-1 certificate fingerprints, or to iOS apps using Bundle IDs, enabling separate keys for testing and production. The feature is available in multiple AWS Regions and is configurable via the console or APIs. This reduces the risk of key misuse and enforces app-level access control.

Amazon Cognito Adds Resource Indicators for OAuth 2.0

🔐 Amazon Cognito now accepts resource indicators in OAuth 2.0 access token requests, enabling app clients to request tokens targeted to a specific protected resource rather than a broad service audience. After authenticating the client, Cognito issues an access token with the aud claim set to that resource. This replaces prior workarounds that relied on non‑standard claims or custom scopes and simplifies issuing resource‑specific tokens for agents and other clients. The capability is available to Cognito Managed Login customers on Essentials and Plus tiers in Regions where Cognito is offered, including AWS GovCloud (US).

SageMaker Unified Studio adds searchable match context

🔍 Amazon SageMaker in Unified Studio now surfaces additional search context that clarifies why each result appears by showing which metadata fields matched a query. Inline highlighting emphasizes matched terms and an explanation panel details matches across name, description, glossary, schema, and other metadata. The enhancement reduces time spent evaluating irrelevant assets by presenting match evidence directly in search results, enabling quicker validation without opening individual assets. The capability is available in all AWS Regions where SageMaker is supported.

Amazon ECS Managed Instances Now in All Commercial Regions

🚀 Amazon ECS Managed Instances is now available in all commercial AWS Regions as a fully managed, EC2-based compute option that reduces infrastructure management overhead while retaining the full capabilities of Amazon EC2. Managed Instances dynamically scales EC2 capacity, continuously optimizes task placement, and applies security patching on a 14-day cadence. You specify task requirements such as vCPU, memory, and CPU architecture, and Amazon ECS provisions and operates optimal instances in your account. Management fees apply in addition to regular EC2 charges.

Amazon Redshift Serverless Now in Osaka and Malaysia

🚀 Amazon Redshift Serverless is now generally available in the AWS Asia Pacific (Osaka) and Asia Pacific (Malaysia) regions. It enables data analysts, developers, and data scientists to run and scale analytics without provisioning or managing clusters by automatically provisioning and intelligently scaling compute capacity. You pay per-second for compute and can query data in-place from Amazon S3 (including Apache Parquet), use Redshift data shares, restore provisioned snapshots, or work through the Query Editor V2 or existing BI tools.

Predictive Scaling Now Available in Six More AWS Regions

⚙️ AWS has expanded Predictive Scaling for EC2 Auto Scaling to six additional regions: Asia Pacific (Hyderabad), Asia Pacific (Melbourne), Israel (Tel Aviv), Canada West (Calgary), Europe (Spain), and Europe (Zurich). Predictive Scaling learns from historical patterns and launches instances ahead of anticipated demand to reduce over-provisioning, lower EC2 costs, and keep applications responsive. It complements real-time policies like Target Tracking and Simple Scaling and can be previewed using a "Forecast Only" mode. The feature is available via the console, AWS CLI, CloudFormation, and AWS SDKs.

Amazon Aurora DSQL Adds Resource-Based Policies Support

🔒 Amazon Web Services has added resource-based policies to Aurora DSQL, letting administrators define which IAM principals can perform specific IAM actions on Aurora DSQL resources. Policies also support Block Public Access (BPA) controls to restrict access to public or VPC endpoints. The capability is available now in a set of regions and the documentation provides guidance to get started.