< ciso
brief />
Tag Banner

All news with #aws tag

2299 articles · page 32 of 115

Amazon Quick adds multi-account sign-in support for browsers

🔐 AWS introduced multi-session sign-in for Amazon Quick, allowing users to access up to five Quick accounts concurrently in the same browser. The update includes the account name in all URLs so agents, spaces, flows, reports, dashboards, and other assets open in the intended account. Users add accounts via the top-right menu or a pre-populated account input on global URLs, and can sign out per tab or from all sessions.
read more →

AWS Payment Cryptography Now Available in São Paulo

🔐 AWS Payment Cryptography is now available in South America (São Paulo), allowing latency-sensitive payment workloads to run closer to their applications. The fully managed service centralizes payment-specific cryptography and key management and is assessed as PCI PIN and PCI P2PE compliant. Organizations such as acquirers, payment facilitators, networks, switches, processors, and banks can reduce dependence on dedicated payment HSMs and auxiliary data centers. To start, update your AWS CLI/SDK and consult the service user guide for region-specific guidance.
read more →

Amazon QuickSight Introduces Sheet Tooltips for Dashboards

📊 Amazon QuickSight now supports sheet tooltips, enabling authors to surface rich, contextual detail when viewers hover over data points without disrupting their analysis flow. Authors can create dedicated tooltip sheets with visuals, text boxes, and images that inherit source visual filters and apply an additional filter for the hovered data point. The feature supports tables and pivot tables, allows assigning one tooltip sheet to multiple visuals, and is available on interactive sheets across all QuickSight regions.
read more →

Secure AI Agent Access Patterns Using MCP on AWS Guide

🔒 This post explains how AI agents and coding assistants access AWS resources via the Model Context Protocol (MCP) and why deterministic IAM controls are required. It outlines three security principles—assume all granted permissions could be used, enforce role governance, and differentiate AI-driven from human-initiated actions—and maps them to deployment patterns. It contrasts AWS-managed MCP servers (which inject context keys) with self-managed servers (which require session tags), and provides practical IAM policy examples, monitoring guidance, and operational controls.
read more →

Amazon EC2 P6-B300 Instances Now in GovCloud (US-East)

🚀 Amazon has added EC2 P6-B300 instances to the AWS GovCloud (US‑East) Region. The p6-b300.48xlarge configuration provides 8x NVIDIA Blackwell Ultra GPUs with 2.1 TB of high-bandwidth GPU memory, 6.4 Tbps EFA networking, 300 Gbps ENA throughput, and 4 TB of system memory. P6-B300 delivers ~2x networking, 1.5x GPU memory and 1.5x FP4 TFLOPS vs P6-B200, targeting training and deployment of large trillion-parameter foundation models and LLMs.
read more →

AWS Transform Adds Kiro & VS Code Integrations to IDEs

🚀 AWS Transform is now accessible from within Kiro and Visual Studio Code via an AWS Transform Power and an extension, enabling developers to start, run, and monitor agentic migration and modernization jobs directly from their IDEs. The platform offers custom transformations and AWS-managed playbooks for common upgrades — language version bumps and SDK migrations — and supports running agents across thousands of repositories. Job state and context are synchronized across the web console, CLI, and IDEs, and AWS Transform custom is currently available in US East (N. Virginia) and Europe (Frankfurt).
read more →

AWS Secrets Manager Adds Hybrid Post‑Quantum TLS Support

🔐 AWS Secrets Manager now supports hybrid post-quantum TLS key exchange using ML-KEM (a module-lattice-based KEM) to secure secret retrieval. The capability is automatically enabled in Secrets Manager Agent (v2.0.0+), Lambda Extension (v19+), and Secrets Manager CSI Driver (v2.0.0+); supported SDKs include Rust, Go, Node.js, Kotlin, Python (OpenSSL 3.5+), and Java v2 (v2.35.11+). No code or configuration changes are required for up-to-date clients except Java v2. You can verify hybrid key exchange in CloudTrail GetSecretValue events by checking the tlsDetails field for the X25519MLKEM768 algorithm.
read more →

AWS Data Exports Adds Direct Cross-Account Delivery

🚚 AWS now lets customers deliver AWS Data Exports — including Cost and Usage Report 2.0 (CUR 2.0), FOCUS, Cost Optimization Recommendations, and Carbon Emissions reports — directly into an authorized Amazon S3 bucket in another AWS account. This removes the need to replicate billing data across accounts and eliminates duplicate storage costs by allowing exports to target a destination bucket when created. The destination account owner controls which source accounts may deliver data via S3 bucket policies. The capability is available in all commercial AWS Regions except AWS GovCloud (US) and China Regions.
read more →

AWS doubles EBS performance for C8gn, M8gn, R8gn 48xlarge

🚀 AWS has increased Amazon EBS performance for EC2 C8gn, M8gn, and R8gn instances in 48xlarge and metal-48xl sizes. With enhancements to the AWS Nitro System, EBS bandwidth doubles from 60 Gbps to 120 Gbps and IOPS doubles from 240,000 to 480,000. New launches receive the upgrade at no extra cost; running instances can enable it by stopping and starting. The change is available in all regions where these instance types are generally available.
read more →

Amazon OpenSearch Serverless Adds Derived Source Support

🔧 Amazon OpenSearch Serverless now supports Derived Source, a feature that reconstructs the _source field on demand using indexed values instead of storing a separate copy. This reduces storage consumption for collections such as time-series and log analytics that contain many indexed fields. You can enable Derived Source at the index level when creating or updating mappings. The feature is available today in all AWS Regions where OpenSearch Serverless is supported.
read more →

Amazon Redshift speeds top-k queries by skipping blocks

🚀 Amazon Redshift now accelerates top-k queries (those using ORDER BY with LIMIT) by skipping irrelevant data blocks and keeping only the K best candidate rows in memory. The engine reorders and selectively reads blocks based on the ORDER BY column's min/max values so that when data is fully or partially sorted it reads only the minimal blocks needed rather than scanning entire tables. This optimization is available at no extra cost in patch release P199 and applies automatically to eligible queries without any rewrites or configuration changes.
read more →

Amazon Quick Adds Document-Level ACLs for Google Drive

🔐 Amazon Quick now supports document-level access controls for Google Drive knowledge bases, allowing organizations to retain native Google Drive permissions when indexing content. Quick combines indexed ACL replication for fast pre-retrieval filtering with a second layer of real-time permission checks against Google Drive at query time to prevent stale or mis-mapped access. When a user queries, Quick verifies their current Drive permissions before generating a response, ensuring answers reflect live access rights. This capability respects individual file and folder permissions and is available in all AWS Regions where Amazon Quick is offered. To enable it, create or update a Google Drive knowledge base in the Amazon Quick console and configure document-level access controls in the integration settings.
read more →

Aurora DSQL PDO_PGSQL Connector for PHP Released by AWS

🔒 The new Aurora DSQL Connector for PHP (PDO_PGSQL) simplifies building PHP applications on Aurora DSQL by automating IAM token generation, SSL configuration, and connection pooling. It removes the need for static user-managed passwords while maintaining full compatibility with existing PDO_PGSQL features. The connector also offers opt-in optimistic concurrency control (OCC) retries with exponential backoff and supports custom IAM credential providers and AWS profiles to streamline credential management and client retry logic.
read more →

AWS Adds EC2 M8i and M8i-flex to GovCloud (US-West)

🚀 Amazon Web Services has made EC2 M8i and M8i‑flex instances available in AWS GovCloud (US‑West). Powered by AWS‑exclusive Intel Xeon 6 processors, the instances deliver up to 15% better price‑performance and 2.5x memory bandwidth versus prior Intel‑based generations, and up to 20% higher performance than M7i variants. AWS cites workload gains of up to 30% for PostgreSQL, 60% for NGINX web workloads, and 40% for deep learning recommendation models. M8i‑flex targets common sizes for cost‑efficient general purpose use, while M8i supports large, SAP‑certified and bare‑metal options including a new 96xlarge.
read more →

CloudWatch Logs Insights: Saved Query Parameters Support

🔎 Amazon CloudWatch Logs Insights saved queries now accept parameters, enabling reusable query templates with placeholders for values such as log level, service name, or time interval. You can define up to 20 parameters with optional defaults and invoke parameterized queries by prefixing the saved query name with $ and supplying arguments. This reduces duplicate queries and simplifies complex analysis. Saved queries with parameters are available in all commercial AWS regions and can be created or executed via the Console, AWS CLI, AWS CDK, and AWS SDKs.
read more →

Amazon EC2 R8i and R8i-flex Now in GovCloud (US-West)

🚀 Amazon Web Services has made EC2 R8i and R8i-flex instances available in the AWS GovCloud (US‑West) Region. Powered by custom Intel Xeon 6 processors exclusive to AWS, these instances deliver up to 15% better price-performance and 2.5x more memory bandwidth compared with prior Intel-based generations. R8i offers 13 sizes including two bare-metal options and a new 96xlarge for the largest workloads, while R8i-flex provides common memory-optimized sizes from large to 16xlarge for applications that don’t fully utilize vCPUs. Both families are SAP-certified and targeted at memory-intensive databases, web services, analytics, and recommendation models.
read more →

AWS IoT Now Available in Israel (Tel Aviv) and Milan

🌍AWS has expanded AWS IoT Core and AWS IoT Device Management to the Israel (Tel Aviv) and Europe (Milan) Regions. This move enables local organizations to reduce latency, strengthen data residency controls, and lower cross-region transfer costs. The services support industry-standard protocols and scale to manage billions of devices. AWS IoT is now available in 27 Regions worldwide.
read more →

Amazon FSx: Copy Backups Into and Out of Opt-In Regions

🔁 Amazon FSx now supports copying file system backups into and out of opt-in Regions for Amazon FSx for Windows File Server, Amazon FSx for Lustre, and Amazon FSx for OpenZFS. This extends cross-Region, cross-account backup and recovery capabilities beyond Regions enabled by default, enabling broader resilience, disaster recovery, and compliance architectures. Backup copies can be managed via the Amazon FSx console, API, CLI, and across accounts in the same AWS Organization using AWS Backup.
read more →

AWS Elastic Disaster Recovery Adds IPv6 Support in Regions

🌐 AWS Elastic Disaster Recovery (AWS DRS) now supports IPv6 for both data replication and control plane connections, enabling replication in IPv6-only or dual-stack environments. Customers can set the internet protocol to IPv6 in replication configuration to use dual-stack endpoints for agent-to-service communication and data transfer, removing the requirement for IPv4 addresses. Existing replication configurations remain on IPv4 by default, and the capability is available in Regions where AWS DRS and Amazon EC2 support IPv6.
read more →

AWS Interconnect Multicloud: GA for Private High-Speed Links

🔗 AWS has made AWS Interconnect - multicloud generally available, providing private, resilient, high-speed connections between Amazon VPCs and other cloud providers. Google Cloud is the initial launch partner, with Microsoft Azure slated to join later in 2026. The service integrates with AWS Transit Gateway and AWS Cloud WAN to simplify scaling across VPCs and Regions, and introduces single-fee bandwidth pricing plus one free local 500 Mbps interconnect per Region starting in May.
read more →