This document discusses zero trust architecture and new AWS security services announced at re:Invent 2018. It mentions AWS Resource Access Manager (RAM) which provides sharing of AWS resources across VPCs securely. It also mentions AWS Control Tower which helps set up and govern multi-account AWS environments according to best practices.