AWS
re:invent recap 2017
Nov 27th - Dec 1st 2017 - Las Vegas, NV
Jason Poley Cloud Architect
Overview
over 1,000 breakout sessions (across 7 hotels)
Alexa Skill
You can now hear the latest launch announcements from AWS on your Alexa-enabled device with the AWS Alexa skill. The AWS skill augments the existing channels (Blog posts and What’s New posts) with a hands-free option for consuming information about new services and features from AWS. You can enable the skill on your Alexa-enabled device by filtering search results to Alexa Skills on amazon.com and searching for “AWS”. After enabled, you can customize the skill to only hear about your favorite services (e.g. EC2) or categories (e.g. Compute) from AWS.
Compute
Lambda Enhancements
EKS
Amazon Elastic Container Service for Kubernetes (Amazon EKS) is a managed service that makes it easy for you to run Kubernetes on AWS without needing to install, operate, and maintain your own Kubernetes clusters.
Fargate
AWS Fargate is a technology for deploying and managing containers without having to manage any of the underlying infrastructure. Fargate makes it easy to scale your applications. You no longer have to worry about provisioning enough compute resources for your container applications. You can launch tens or tens of thousands of containers in seconds.
Systems Manager
AWS Systems Manager provides a unified user interface that allows you to view operational data from multiple AWS services and automate operational tasks across your AWS resources.
Lambda
Cloud 9 IDE
AWS Cloud9 is a cloud-based integrated development environment (IDE) that lets you write, run, and debug your code with just a browser
nitro (KVM)
The aim of Nitro is to provide performance that is "indistinguishable from metal." It not only uses SR-IOV for hardware virtualization of network and storage I/O (provided by custom silicon cards by annapurnalabs), but it also has hardware virtualization support of interrupts: using posted interrupts and APICv to reduce the number of VM exits. Improving interrupt performance has been described as the last battleground for hardware virtualization performance
ec2 bare metal (preview)
Amazon EC2 Bare Metal instances provide your applications with direct access to the processor and memory of the underlying server. These instances are ideal for workloads that require access to hardware feature sets (such as Intel VT-x), or for applications that need to run in non-virtualized environments for licensing or support requirements.
ec2 M5 instances (KVM)
M5 Instances are the next generation of the Amazon EC2 General Purpose compute instances, powered by 2.5 GHz Intel® Xeon Platinum 8175 processors (formerly codenamed Skylake), and featuring Intel’s newest vector processing instruction set, Advanced Vector Extension 512 (AVX-512). M5 instances are based on the Nitro System, a combination of dedicated hardware and lightweight hypervisor, which delivers practically all of the compute and memory resources of the host hardware to your instances.
C5 Instances and the Evolution of Amazon EC2 Virtualization (CMP332)
Databases
Aurora RDS
Aurora Multi-Master (preview)
Amazon Aurora Multi-Master allows you to create multiple read/write master instances across multiple Availability Zones. This enables applications to read and write data to multiple database instances in a cluster, just as you can read across Read Replicas today.
Aurora Serverless (preview)
Aurora Serverless is an on-demand auto-scaling configuration for Aurora where the database will automatically start-up, shut down, and scale up or down capacity based on your application's needs. Aurora Serverless enables you to run your database in the cloud without managing any database instances or clusters. Aurora Serverless is a simple, cost-effective option for infrequent, intermittent, or unpredictable workloads, because it automatically starts up, scales capacity to match your application's usage, and shuts down when not in use.
Jeff Barr Blog Post
DynamoDb Global Tables
Global Tables builds upon DynamoDB’s global footprint to provide you with a fully managed, multi-region, and multi-master database that provides fast, local, read and write performance for massively scaled, global applications. Global Tables replicates your Amazon DynamoDB tables automatically across your choice of AWS regions.
DynamoDb backup/restore
On-Demand Backup allows you to create full backups of your DynamoDB tables data for data archival, helping you meet your corporate and governmental regulatory requirements. You can backup tables from a few megabytes to hundreds of terabytes of data, with no impact on performance and availability to your production applications.
Neptune
Amazon Neptune is a fast, reliable, fully-managed graph database service that makes it easy to build and run applications that work with highly connected datasets. The core of Amazon Neptune is a purpose-built, high-performance graph database engine optimized for storing billions of relationships and querying the graph with milliseconds latency. Amazon Neptune supports popular graph models Apache TinkerPop and W3C's RDF, and their associated query languages TinkerPop Gremlin and RDF SPARQL, allowing you to easily build queries that efficiently navigate highly connected datasets. Neptune powers graph use cases such as recommendation engines, fraud detection, knowledge graphs, drug discovery, and network security.
AI & ML
Translate (preview)
Amazon Translate is a neural machine translation service that delivers fast, high-quality, and affordable language translation. Neural machine translation uses deep learning to deliver more accurate and more natural sounding translation than older statistical and rule-based translation algorithms. Amazon Translate enables translation at scale so that you can easily translate large volumes of text efficiently to handle tasks like localizing content for international users and facilitating real-time cross-lingual communication.
Transcribe (preview)
Amazon Transcribe is an automatic speech recognition (ASR) service that makes it easy for developers to add speech to text capability to their applications. Using the Amazon Transcribe API, you can analyze audio files stored in Amazon S3 and have the service return a text file of the transcribed speech.
Comprehend
Amazon Comprehend is a natural language processing (NLP) service that uses machine learning to find insights and relationships in text. Amazon Comprehend identifies the language of the text; extracts key phrases, places, people, brands, or events; understands how positive or negative the text is; and automatically organizes a collection of text files by topic.
Rekognition Video
Amazon Rekognition Video is a deep learning powered video analysis service that tracks people, detects activities, and recognizes objects, celebrities, and inappropriate content. Amazon Rekognition Video can detect and recognize faces in live streams. Rekognition Video analyzes existing video stored in Amazon S3 and returns specific labels of activities, people and faces, and objects with time stamps so you can easily locate the scene. It can also perform facial recognition on live video from Amazon Kinesis Video Steams. For people and faces, it also returns the bounding box, which is the specific location of the person or face in the frame
SageMaker
Amazon SageMaker is a fully-managed service that enables developers and data scientists to quickly and easily build, train, and deploy machine learning models at any scale. Amazon SageMaker removes all the barriers that typically slow down developers who want to use machine learning.
SageMaker Blog Post
DeepLens
AWS DeepLens is a deep learning enabled wireless video camera specifically designed to help developers of all skill levels grow their machine learning skills through hands-on computer vision tutorials, example code, and pre-built models. DeepLens includes an HD video camera with on-board compute optimized for deep learning, which is fully programmable using AWS Lambda. Developers are free to focus on their machine learning skills, while DeepLens automatically optimizes and deploys models to the device and connects to the cloud for more advanced capabilities. DeepLens integrates with Amazon SageMaker giving developers an end-to-end solution to learn, develop, and test machine learning applications both in the cloud and at the edge, for the very first time.
DeepLens specs
DeepLens
demo...
Security
Advanced Security Features for Amazon Cognito
Managed Rules for AWS WAF
GuardDuty
Amazon GuardDuty is a threat detection service that gives you a more accurate and easy way to continuously monitor and protect your AWS accounts and workloads. With a few clicks in the AWS Management Console, GuardDuty begins analyzing AWS data across all your AWS accounts integrated with threat intelligence feeds, anomaly detection, and machine learning for more actionable threat detection in an easy to use, pay as you go cloud security service
Advanced Security Features for Amazon Cognito
Advanced security features for Amazon Cognito enable you to secure access to your applications using risk-based adaptive authentication and compromised credentials protection. When Amazon Cognito detects unusual sign-in activity, such as sign-in attempts from new locations and devices, it prompts users for additional verification.
Managed Rules for AWS WAF
Managed Rules for AWS WAF are a set of rules written, curated and managed by AWS Marketplace Sellers that can be easily deployed in front of your web applications running on AWS Application Load Balancers or Amazon CloudFront
AWS SSO
AWS Single Sign-On (SSO) is a cloud SSO service that makes it easy to centrally manage SSO access to multiple AWS accounts and business applications. It enables users to sign in to a user portal with their existing corporate credentials and access all of their assigned accounts and applications from one place.
Networking
PrivateLink
Inter Region VPC Peering
API Gateway Private VPC Integrations
API Gateway Canary Release Deployments
PrivateLink
AWS PrivateLink can now access third party SaaS applications from their Virtual Private Cloud (VPC) without exposing their VPC to the public Internet. Customers can also use AWS PrivateLink to connect services across different accounts and VPCs within their own organizations, significantly simplifying their internal network architecture
Inter Region VPC Peering
Amazon EC2 now allows peering relationships to be established between Virtual Private Clouds (VPCs) across different AWS regions. Inter-Region VPC Peering allows VPC resources like EC2 instances, RDS databases and Lambda functions running in different AWS regions to communicate with each other using private IP addresses, without requiring gateways, VPN connections or separate network appliances.
API Gateway Private VPC Integrations
You can now provide access to HTTP(S) resources within your Amazon Virtual Private Cloud (VPC) without exposing them directly to the public Internet. You can use API Gateway to create an API endpoint that is integrated with your VPC.
API Gateway Canary Release Deployments
You can now use canary release deployments to gradually roll out new APIs in Amazon API Gateway. This helps you more safely roll out API changes and limit the blast radius of new deployments
Media & AR
Elemental
Sumarian
Elemental
Video Services
Sumarian
Amazon Sumerian lets you create and run virtual reality (VR), augmented reality (AR), and 3D applications quickly and easily without requiring any specialized programming or 3D graphics expertise. With Sumerian, you can build highly immersive and interactive scenes that run on popular hardware such as Oculus Rift, HTC Vive, and iOS mobile devices (support for Android ARCore coming soon).
Internet of Things
FreeRTOS
Amazon FreeRTOS is an IoT operating system for microcontrollers that makes small, low-powered edge devices easy to program, deploy, secure, connect, and maintain. Amazon FreeRTOS extends the FreeRTOS kernel, a popular open source real-time operating system for microcontrollers, and includes software libraries for security, connectivity, and updateability. Amazon FreeRTOS provides everything you need to easily program connected microcontroller-based devices and collect data from them for IoT applications, and helps you scale those applications across millions of devices. Amazon FreeRTOS is free of charge, open source, and available to all today.
IoT One Click
AWS IoT 1-Click is a service that makes it easy for simple devices to trigger AWS Lambda functions that execute a specific action. With AWS IoT 1-Click, simple devices such as the AWS IoT Enterprise Button and the ATT LTE-M Button are ready to securely connect to AWS IoT right out of the box, making it easy to deploy these devices. You can activate devices by associating them to actions such as Lambda functions with a single click.
IoT Device Defender
AWS is pleased to announce AWS IoT Device Defender, a fully managed service that allows you to secure your fleet of IoT devices on an ongoing basis. AWS IoT Device Defender audits your fleet to ensure it adheres to security best practices, detects abnormal device behavior, alerts you to security issues, and recommends mitigation actions for these security issues. AWS IoT Device Defender is current not generally available
IoT Analytics
AWS IoT Analytics is a fully-managed service that makes it easy to run sophisticated analytics on massive volumes of IoT data without having to worry about all the cost and complexity typically required to build your own IoT analytics platform. It is the easiest way to run analytics on IoT data and get insights to make better and more accurate decisions for IoT applications and machine learning use cases.
IoT Device Management
AWS IoT Device Management makes it easy to securely onboard, organize, monitor, and remotely manage IoT devices at scale. IoT Device Management lets you register your devices individually or in bulk, and manage permissions so that devices remain secure. Then, you use the IoT Device Management console to organize your devices into groups, monitor and troubleshoot device functionality, and send remote updates to your devices. AWS IoT Device Management allows you to scale your device fleets and reduce the cost and effort of managing large IoT device deployments.
Other
Amazon MQ
Amazon MQ is a managed message broker service for Apache ActiveMQ that makes it easy to set up and operate message brokers in the cloud. Message brokers allow different software systems–often using different programming languages, and on different platforms–to communicate and exchange information
ActiveMQ Blog Post
Alexa for Business
Alexa for Business is now generally available for all customers. Alexa for Business makes it easy for you to introduce Alexa to your organization, providing the tools you need to set-up and manage Alexa-enabled devices, enroll users, and assign skills at scale.
AppSync
AWS AppSync is a new service in Public Preview that enables you to manage and update mobile app data in real-time between devices and the cloud, and allows apps to interact with the data on the mobile device when it is offline. With AWS AppSync, applications can easily access AWS services using a data language called GraphQL and an SDK that is optimized for mobile and web applications. GraphQL is an open standard that lets you request, change, and subscribe to the exact data you need in a single network request. This makes prototyping and building data intensive applications as simple as writing a few lines of code.
S3 Select (preview)
S3 Select is a new Amazon S3 capability designed to pull out only the data you need from an object, dramatically improving the performance and reducing the cost of applications that need to access data in S3
Glacier Select
Amazon Glacier Select is a new way to query archived data in Amazon Glacier. Glacier Select allows queries to run directly on data stored in Amazon Glacier, retrieving only the data you need out of your archives to use for analytics. This allows you to reduce total cost of ownership while massively extending your data lake into cost-effective archive storage.
Time Sync Services
The Amazon Time Sync Service provides a highly accurate and reliable time reference that is natively accessible from Amazon EC2 instances.
Kinesis Video Streams
Customers use Amazon Kinesis to run real-time analytics using data streams. Today, we are adding video streams to Kinesis. We are announcing Amazon Kinesis Video Streams, a fully managed video ingestion and storage service. Kinesis Video Streams makes it easy to securely stream video from connected devices to AWS for machine learning, analytics, and processing. You can also stream other time-encoded data like RADAR and LIDAR signals using Kinesis Video Streams.