Blockchain is a distributed ledger-based technology that enables you to uniquely solve inefficiencies in business networks. However, like any exchange of value, it makes sense only when used by multiple parties. With the myriad of existing protocols and proposed applications, it can be difficult to decide on the right approach to implement a blockchain solution that best fits a given use case. In this talk, we dissect use cases and blockchain architectures built for multi-party consortiums in energy and financial services sectors. Our partners GuildOne and Kaleido highlight the architectural approaches to shared IT and consortium building using Corda and Ethereum protocols.
Understanding and Hardening the Attack Surface at the Edge (GPSTEC402) - AWS ...Amazon Web Services
The document discusses securing edge devices and describes Zymbit's security modules. Zymbit modules provide whole device security through hardware-based key storage, encryption, authentication, and tamper detection. They integrate easily with single board computers and support features like the AWS IoT Greengrass Hardware Security Integration. Zymbit aims to provide easy but robust security for edge devices through their plug-and-play modules.
Discuss How to Secure Your Virtual Data Center in the Cloud (NET210-R1) - AWS...Amazon Web Services
In this introductory chalk talk, we cover how to secure your resources in the cloud for common AWS workloads such as Amazon EC2 computing, database, and serverless. We cover security best practices recommended by AWS for each workload using simple and effective identity and networking techniques. Learn how and why these controls do what they do, and come away with the ability to interpret and apply AWS identity and network access controls.
Supercharge GuardDuty with Partners: Threat Detection and Response at Scale (...Amazon Web Services
Amazon GuardDuty has the ability to detect threats. However, threat detection is only the first step. In this session, we combine the high fidelity findings of GuardDuty with partner products, and we demonstrate how to quickly respond, remediate, and prevent security incidents in order to supercharge and centralize your cloud security operations center (SOC).
Application Portability with Kubernetes (CMP310-S) - AWS re:Invent 2018Amazon Web Services
The document discusses application portability with Kubernetes and VMware Cloud PKS. It provides an overview of Kubernetes and how it enables application portability across infrastructure providers. It then describes VMware Cloud PKS, a Kubernetes-as-a-Service offering that provides a simple and secure way to deploy and manage applications on AWS and vSphere. VMware Cloud PKS supports application portability, multi-cloud management, and integration with AWS services and the VMware ecosystem.
Red Team vs. Blue Team on AWS (DVC304) - AWS re:Invent 2018Amazon Web Services
The document describes a simulated red team vs blue team security exercise on AWS. The red team is able to compromise the target AWS account by stealing credentials, reconnoitering resources, exploiting vulnerabilities, and exfiltrating data due to weaknesses in the initial account configuration such as single sign-on, open network access controls, and secrets embedded in code. The blue team recommendations include restricting access, encrypting secrets, automating deployments, monitoring activities, and segmenting networks.
Capacity Management Made Easy with Amazon EC2 Auto Scaling (CMP377) - AWS re:...Amazon Web Services
This document discusses Amazon EC2 Auto Scaling and how it can be used to automatically scale Amazon EC2 capacity up or down based on user-defined policies. Auto Scaling helps maintain application availability and allows scaling capacity out across availability zones. It allows grouping instances by criteria like instance type and launch template and supports automatic provisioning of instances using templates that specify configuration details. Auto Scaling also supports replacing unhealthy instances, lifecycle hooks to perform actions during instance launch/termination, and dynamic scaling based on metrics, schedules or predictive scaling.
Enterprise DevOps: Patterns of Efficiency (ENT311-R1) - AWS re:Invent 2018Amazon Web Services
The document discusses enterprise DevOps patterns of efficiency. It notes that while DevOps can deliver speed and agility, only 13% of enterprises have fully implemented it. The document outlines challenges along the DevOps journey like legacy applications and existing processes. It advocates embracing ITIL and DevOps best practices and building a culture of inclusion. Case studies from NAB's cloud migration are presented, emphasizing the importance of executive support, cross-functional teams, empowering teams, and automating for successful DevOps. Security considerations for enterprise DevOps are also addressed.
Understanding and Hardening the Attack Surface at the Edge (GPSTEC402) - AWS ...Amazon Web Services
The document discusses securing edge devices and describes Zymbit's security modules. Zymbit modules provide whole device security through hardware-based key storage, encryption, authentication, and tamper detection. They integrate easily with single board computers and support features like the AWS IoT Greengrass Hardware Security Integration. Zymbit aims to provide easy but robust security for edge devices through their plug-and-play modules.
Discuss How to Secure Your Virtual Data Center in the Cloud (NET210-R1) - AWS...Amazon Web Services
In this introductory chalk talk, we cover how to secure your resources in the cloud for common AWS workloads such as Amazon EC2 computing, database, and serverless. We cover security best practices recommended by AWS for each workload using simple and effective identity and networking techniques. Learn how and why these controls do what they do, and come away with the ability to interpret and apply AWS identity and network access controls.
Supercharge GuardDuty with Partners: Threat Detection and Response at Scale (...Amazon Web Services
Amazon GuardDuty has the ability to detect threats. However, threat detection is only the first step. In this session, we combine the high fidelity findings of GuardDuty with partner products, and we demonstrate how to quickly respond, remediate, and prevent security incidents in order to supercharge and centralize your cloud security operations center (SOC).
Application Portability with Kubernetes (CMP310-S) - AWS re:Invent 2018Amazon Web Services
The document discusses application portability with Kubernetes and VMware Cloud PKS. It provides an overview of Kubernetes and how it enables application portability across infrastructure providers. It then describes VMware Cloud PKS, a Kubernetes-as-a-Service offering that provides a simple and secure way to deploy and manage applications on AWS and vSphere. VMware Cloud PKS supports application portability, multi-cloud management, and integration with AWS services and the VMware ecosystem.
Red Team vs. Blue Team on AWS (DVC304) - AWS re:Invent 2018Amazon Web Services
The document describes a simulated red team vs blue team security exercise on AWS. The red team is able to compromise the target AWS account by stealing credentials, reconnoitering resources, exploiting vulnerabilities, and exfiltrating data due to weaknesses in the initial account configuration such as single sign-on, open network access controls, and secrets embedded in code. The blue team recommendations include restricting access, encrypting secrets, automating deployments, monitoring activities, and segmenting networks.
Capacity Management Made Easy with Amazon EC2 Auto Scaling (CMP377) - AWS re:...Amazon Web Services
This document discusses Amazon EC2 Auto Scaling and how it can be used to automatically scale Amazon EC2 capacity up or down based on user-defined policies. Auto Scaling helps maintain application availability and allows scaling capacity out across availability zones. It allows grouping instances by criteria like instance type and launch template and supports automatic provisioning of instances using templates that specify configuration details. Auto Scaling also supports replacing unhealthy instances, lifecycle hooks to perform actions during instance launch/termination, and dynamic scaling based on metrics, schedules or predictive scaling.
Enterprise DevOps: Patterns of Efficiency (ENT311-R1) - AWS re:Invent 2018Amazon Web Services
The document discusses enterprise DevOps patterns of efficiency. It notes that while DevOps can deliver speed and agility, only 13% of enterprises have fully implemented it. The document outlines challenges along the DevOps journey like legacy applications and existing processes. It advocates embracing ITIL and DevOps best practices and building a culture of inclusion. Case studies from NAB's cloud migration are presented, emphasizing the importance of executive support, cross-functional teams, empowering teams, and automating for successful DevOps. Security considerations for enterprise DevOps are also addressed.
Stephen Schmidt, Chief Information Security Officer at AWS, addresses the current state of security in the cloud, with a particular focus on feature updates, the AWS internal "secret sauce," and what's on horizon in terms of security, identity, and compliance tooling.
Enterprise Governance: Build Your AWS Landing Zone (ENT351-R1) - AWS re:Inven...Amazon Web Services
The document describes an AWS workshop about building a landing zone on AWS. It provides an agenda that covers why a landing zone is needed, demonstrates how to deploy and use an AWS landing zone, and shows how to create new AWS accounts and extend the landing zone. It also includes slides on the architecture and components of the AWS landing zone solution.
Inside AWS: Technology Choices for Modern Applications (SRV305-R1) - AWS re:I...Amazon Web Services
AWS offers a wide range of cloud computing services and technologies, but we rarely state opinions about which services and technologies customers should choose. When it comes to building our own services, our engineering groups have strong opinions, and they express them in the technologies they pick. Join Tim Bray, Senior Principal Engineer, to hear about the high-level choices that developers at AWS and our customers have to make. Here are a few: Are microservices always the way to go? Serverless, containers, or serverless containers? Is relational over? Is Java over? The talk is technical and based on our experience in building AWS services and working with customers on their cloud-native apps.
How to Get the Most Out of Amazon Rekognition Video, a deep learning based vi...Amazon Web Services
Learning Objectives:
-Provide an overview of Amazon Rekognition Video capabilities
-Describe use cases and benefits
-Showcase how you can use Amazon Rekognition Video to easily build video analysis applications
Behind the Scenes: Exploring the AWS Global Network (NET305) - AWS re:Invent ...Amazon Web Services
The AWS Global Network provides a secure, highly available, and high- performance infrastructure for customers. In this session, we walk through the architecture of various parts of the AWS network such as Availability Zones, AWS Regions, our Global Network connecting AWS Regions to each other and our Edge Network which provides Internet connectivity. We explain how AWS services such as AWS Direct Connect and Amazon CloudFront integrate with our Global Network to provide the best experience for our customers. We also dive into how the AWS Global Network connects to the rest of the Internet through peering at a global scale. If you are curious about how AWS network infrastructure can support large-scale cat photo distribution or how Internet routing works, this session answers those questions. Please join us for a speaker meet-and-greet following this session at the Speaker Lounge (ARIA East, Level 1, Willow Lounge). The meet-and-greet starts 15 minutes after the session and runs for half an hour.
ProTips for Scaling AWS Training to Accelerate Adoption (DVC203) - AWS re:Inv...Amazon Web Services
Learn the tips, techniques, and tricks for accelerating your team's cloud transformation with an education framework that scales. As director of cloud engineering at Capital One, Drew Firment founded a cloud engineering college that was integrated within a Cloud Center of Excellence. As the Dean of Cloud Computing, Drew earned a patent for measuring cloud maturity and demonstrated how cloud education program can accelerate adoption. Come to this session to hear key lessons from his experience, and learn how to apply the framework to your organization’s cloud transformation journey. This session is part of re:Invent Developer Community Day, a series led by AWS enthusiasts who share first-hand, technical insights on trending topics.
A Few Milliseconds in the Life of an HTTP Request (CTD416) - AWS re:Invent 2018Amazon Web Services
In Amazon CloudFront, a lot happens in just a few milliseconds. Join us for a dive deep into the infrastructure and architecture of the AWS edge services, including Amazon CloudFront, Amazon Route 53, AWS Shield, and AWS WAF. We break down the life of an HTTP request, and any request in general, and walk you through how each of the AWS edge services work together in just a few milliseconds to consistently deliver your application’s content with high availability, security, and performance. Learn how edge services intelligently route requests to the most ideal edge location, secure your content behind the scenes, and leverage the AWS private network for improved performance.
IoT at the Edge: Introduction to AWS Greengrass (IOT406-R1) - AWS re:Invent 2018Amazon Web Services
In this workshop, we provide an introduction to AWS Greengrass, discuss architectures for IoT solutions on AWS, and walk you through implementing specific architectures. You learn how to connect a “thing” to AWS IoT Core and AWS Greengrass, provision an AWS Greengrass group, configure the group, and deploy to an IoT device.
Five New Security Automations Using AWS Security Services & Open Source (SEC4...Amazon Web Services
The document discusses five new security automation projects using AWS security services and open source tools. It describes a notification hub that centrally manages alerts across accounts, a Lambda function that validates the existence and code of incident response functions in other accounts, a tool that enables and manages GuardDuty across multiple accounts and aggregates findings, an open source security monitoring platform called MozDef, and a key remediation program. Lessons learned around automation and open source adoption are also discussed.
Security Framework Shakedown: Chart Your Journey with AWS Best Practices (SEC...Amazon Web Services
As with everything in life there is an easy way and a hard way when it comes to adopting security framework recommendations. Featuring the AWS Well-Architected and Cloud Adoption Frameworks, we will walk you through a complete security journey. We'll start with identification of requirements, then move through a series of how-tos from classifying your data, automating controls, to running fun incident response game days. There will be code giveaways and more!
Interactive Zero-Touch Enterprise Networks: Nuage SD-WAN on AWS (TLC310) - AW...Amazon Web Services
In this session, learn how OrangeX in Spain is transforming enterprise networks with AWS and Nokia’s Nuage SD-WAN, which is delivered with management, control, and user plane in the AWS Cloud. It is powered by EC2 i3.metal and AWS hybrid IT services, via true multi-tenant, built-in multi-segment orchestrators, and multi-tier management spanning from operators to partners to direct enterprise portals. With SD-WAN becoming an essential function in vCPE deployments, Nuage’s SD-WAN has been established as the platform for simplifying delivery and deployment of virtual network functions such as security and agility, on premises and in the cloud. Learn factors to consider in using SD-WAN with AWS, agile implementation of the solution, and leveraging a cloud-ready operating model. We share references to continue learning.
The document is a presentation on the AWS Well-Architected Framework given by Bob Yeh, an AWS Solutions Architect. It introduces the five pillars of the Well-Architected Framework - operational excellence, security, reliability, performance efficiency, and cost optimization. For each pillar, it provides definitions and examples of design principles and best practices to consider to help ensure architectures are well-architected on AWS.
How to Perform Forensics on AWS Using Serverless Infrastructure (SEC416-R1) -...Amazon Web Services
Performing forensics on AWS resources is a new experience for many customers who might have older runbooks based on on-premises workflows using manual steps, or perhaps no processes in place at all. In this session, get a deeper insight into the various runbooks to perform practical forensic tasks on AWS resources like Amazon EC2 instances, using a combination of industry tooling, AWS serverless services like AWS Lambda and AWS Step Functions, and managed services like Amazon Athena.
Operational Excellence for Identity & Access Management (SEC334) - AWS re:Inv...Amazon Web Services
The document discusses operational excellence for identity and access management using an AWS Landing Zone solution, which automates the setup of new AWS multi-account environments based on best practices and recommendations and provides initial security, governance, and shared service controls. It describes the components of the AWS Landing Zone including AWS Organizations, AWS Config, and IAM and how labs can be used to demonstrate creating guardrails, applying governance, and handling drift across accounts to meet security and operational goals.
Use SD-WAN to Manage Your AWS Environment and Branch Office Connectivity (NET...Amazon Web Services
As customers put more workloads into AWS, the number of Virtual Private Clouds (VPCs) a customer needs to manage grows. Scaling out an AWS environment can create challenges in manageability, workload segmentation, and security. SD-WAN solutions offered by AWS Partners can enable organizations to scale up the number of VPCs as needed while segmenting and isolating workloads for easier management, application quality monitoring, and security. In this session, we walk through a customer example of how an SD-WAN implementation simplified the management of a multi-VPC footprint while also improving application performance to WAN-connected branch offices.
Operational Excellence with Containerized Workloads Using AWS Fargate (CON320...Amazon Web Services
The document discusses operational excellence with containerized workloads using AWS Fargate. It provides an overview of AWS Fargate and how it allows customers to run containerized applications without having to manage Amazon EC2 instances. It then discusses how Fargate provides an elastic and integrated service with the AWS ecosystem. Case studies are also presented of companies like Turner and Corteva Agriscience that have migrated workloads to AWS Fargate to reduce costs and improve agility.
Introduction to Amazon Route 53 Resolver for Hybrid Cloud (NET215) - AWS re:I...Amazon Web Services
Amazon Route 53 Resolver provides recursive DNS for your Amazon VPC and on-premises networks over VPN or AWS Direct Connect. This session will review common use cases for Route 53 Resolver and go in depth on how it works.
How Vanguard and Bloomberg Use AWS PrivateLink (NET323) - AWS re:Invent 2018Amazon Web Services
Vanguard and Bloomberg's use of AWS PrivateLink as they moved from a small number of large accounts to a large number of small accounts reduced blast radius at the management plane but introduced significant complexity at the network layer. In this session, we introduce the type of network segmentation that is required to implement a zero-trust network for a highly regulated financial investment company like Vanguard—one that adds additional complexity.
The Executive Security Simulation takes senior security management and IT/business executive teams through an experiential exercise that illuminates key decision points for a successful and secure cloud journey. During this team-based, game-like competitive simulation, participants leverage an industry case study to make strategic security, risk, and compliance time-based decisions and investments. Participants experience the impact of these investments and decisions on the critical aspects of their secure cloud adoption. Join this workshop to gain an understanding of the major success factors to lead security, risk, and compliance in the cloud, and learn applicable decision and investment approaches to specific secure cloud adoption journeys. AWS facilitators translate lessons learned in the simulation into real-life examples and practical advice for your team.
Amazon FreeRTOS is an IoT operating system for microcontrollers that makes small, low powered edge devices easy to program, deploy, secure, connect and maintain. It is based on the popular FreeRTOS kernel and includes libraries for local and cloud connectivity, security, and over-the-air firmware updates. Amazon FreeRTOS integrates with AWS IoT services like Greengrass, IoT Core, IoT Analytics and more to provide a full solution for IoT devices, edge computing and the cloud.
When it comes to blockchain or any other technology, business use cases always come first. However, once the need for a distributed ledger-based platform is clear, how do you design a decentralized platform that adheres to the required trust and throughput requirements? In this chalk talk, we whiteboard blockchain architectures, best practices, and antipatterns for top blockchain protocols like Ethereum, Hyperledger, and Corda.
Build Business-Ready Blockchains with Intelligence (GPSTEC315) - AWS re:Inven...Amazon Web Services
Blockchain continues to be called the next generation of technology, so why does it mystify so many? In this session, we discuss how AWS and its ecosystem will help deliver value beyond just infrastructure for blockchain. We include the blockchain competency announcement, the blockchain value proposition broken down, a customer story involving Intel and T-mobile, and a blockchain delivery kit featuring Accenture and AWS.
Stephen Schmidt, Chief Information Security Officer at AWS, addresses the current state of security in the cloud, with a particular focus on feature updates, the AWS internal "secret sauce," and what's on horizon in terms of security, identity, and compliance tooling.
Enterprise Governance: Build Your AWS Landing Zone (ENT351-R1) - AWS re:Inven...Amazon Web Services
The document describes an AWS workshop about building a landing zone on AWS. It provides an agenda that covers why a landing zone is needed, demonstrates how to deploy and use an AWS landing zone, and shows how to create new AWS accounts and extend the landing zone. It also includes slides on the architecture and components of the AWS landing zone solution.
Inside AWS: Technology Choices for Modern Applications (SRV305-R1) - AWS re:I...Amazon Web Services
AWS offers a wide range of cloud computing services and technologies, but we rarely state opinions about which services and technologies customers should choose. When it comes to building our own services, our engineering groups have strong opinions, and they express them in the technologies they pick. Join Tim Bray, Senior Principal Engineer, to hear about the high-level choices that developers at AWS and our customers have to make. Here are a few: Are microservices always the way to go? Serverless, containers, or serverless containers? Is relational over? Is Java over? The talk is technical and based on our experience in building AWS services and working with customers on their cloud-native apps.
How to Get the Most Out of Amazon Rekognition Video, a deep learning based vi...Amazon Web Services
Learning Objectives:
-Provide an overview of Amazon Rekognition Video capabilities
-Describe use cases and benefits
-Showcase how you can use Amazon Rekognition Video to easily build video analysis applications
Behind the Scenes: Exploring the AWS Global Network (NET305) - AWS re:Invent ...Amazon Web Services
The AWS Global Network provides a secure, highly available, and high- performance infrastructure for customers. In this session, we walk through the architecture of various parts of the AWS network such as Availability Zones, AWS Regions, our Global Network connecting AWS Regions to each other and our Edge Network which provides Internet connectivity. We explain how AWS services such as AWS Direct Connect and Amazon CloudFront integrate with our Global Network to provide the best experience for our customers. We also dive into how the AWS Global Network connects to the rest of the Internet through peering at a global scale. If you are curious about how AWS network infrastructure can support large-scale cat photo distribution or how Internet routing works, this session answers those questions. Please join us for a speaker meet-and-greet following this session at the Speaker Lounge (ARIA East, Level 1, Willow Lounge). The meet-and-greet starts 15 minutes after the session and runs for half an hour.
ProTips for Scaling AWS Training to Accelerate Adoption (DVC203) - AWS re:Inv...Amazon Web Services
Learn the tips, techniques, and tricks for accelerating your team's cloud transformation with an education framework that scales. As director of cloud engineering at Capital One, Drew Firment founded a cloud engineering college that was integrated within a Cloud Center of Excellence. As the Dean of Cloud Computing, Drew earned a patent for measuring cloud maturity and demonstrated how cloud education program can accelerate adoption. Come to this session to hear key lessons from his experience, and learn how to apply the framework to your organization’s cloud transformation journey. This session is part of re:Invent Developer Community Day, a series led by AWS enthusiasts who share first-hand, technical insights on trending topics.
A Few Milliseconds in the Life of an HTTP Request (CTD416) - AWS re:Invent 2018Amazon Web Services
In Amazon CloudFront, a lot happens in just a few milliseconds. Join us for a dive deep into the infrastructure and architecture of the AWS edge services, including Amazon CloudFront, Amazon Route 53, AWS Shield, and AWS WAF. We break down the life of an HTTP request, and any request in general, and walk you through how each of the AWS edge services work together in just a few milliseconds to consistently deliver your application’s content with high availability, security, and performance. Learn how edge services intelligently route requests to the most ideal edge location, secure your content behind the scenes, and leverage the AWS private network for improved performance.
IoT at the Edge: Introduction to AWS Greengrass (IOT406-R1) - AWS re:Invent 2018Amazon Web Services
In this workshop, we provide an introduction to AWS Greengrass, discuss architectures for IoT solutions on AWS, and walk you through implementing specific architectures. You learn how to connect a “thing” to AWS IoT Core and AWS Greengrass, provision an AWS Greengrass group, configure the group, and deploy to an IoT device.
Five New Security Automations Using AWS Security Services & Open Source (SEC4...Amazon Web Services
The document discusses five new security automation projects using AWS security services and open source tools. It describes a notification hub that centrally manages alerts across accounts, a Lambda function that validates the existence and code of incident response functions in other accounts, a tool that enables and manages GuardDuty across multiple accounts and aggregates findings, an open source security monitoring platform called MozDef, and a key remediation program. Lessons learned around automation and open source adoption are also discussed.
Security Framework Shakedown: Chart Your Journey with AWS Best Practices (SEC...Amazon Web Services
As with everything in life there is an easy way and a hard way when it comes to adopting security framework recommendations. Featuring the AWS Well-Architected and Cloud Adoption Frameworks, we will walk you through a complete security journey. We'll start with identification of requirements, then move through a series of how-tos from classifying your data, automating controls, to running fun incident response game days. There will be code giveaways and more!
Interactive Zero-Touch Enterprise Networks: Nuage SD-WAN on AWS (TLC310) - AW...Amazon Web Services
In this session, learn how OrangeX in Spain is transforming enterprise networks with AWS and Nokia’s Nuage SD-WAN, which is delivered with management, control, and user plane in the AWS Cloud. It is powered by EC2 i3.metal and AWS hybrid IT services, via true multi-tenant, built-in multi-segment orchestrators, and multi-tier management spanning from operators to partners to direct enterprise portals. With SD-WAN becoming an essential function in vCPE deployments, Nuage’s SD-WAN has been established as the platform for simplifying delivery and deployment of virtual network functions such as security and agility, on premises and in the cloud. Learn factors to consider in using SD-WAN with AWS, agile implementation of the solution, and leveraging a cloud-ready operating model. We share references to continue learning.
The document is a presentation on the AWS Well-Architected Framework given by Bob Yeh, an AWS Solutions Architect. It introduces the five pillars of the Well-Architected Framework - operational excellence, security, reliability, performance efficiency, and cost optimization. For each pillar, it provides definitions and examples of design principles and best practices to consider to help ensure architectures are well-architected on AWS.
How to Perform Forensics on AWS Using Serverless Infrastructure (SEC416-R1) -...Amazon Web Services
Performing forensics on AWS resources is a new experience for many customers who might have older runbooks based on on-premises workflows using manual steps, or perhaps no processes in place at all. In this session, get a deeper insight into the various runbooks to perform practical forensic tasks on AWS resources like Amazon EC2 instances, using a combination of industry tooling, AWS serverless services like AWS Lambda and AWS Step Functions, and managed services like Amazon Athena.
Operational Excellence for Identity & Access Management (SEC334) - AWS re:Inv...Amazon Web Services
The document discusses operational excellence for identity and access management using an AWS Landing Zone solution, which automates the setup of new AWS multi-account environments based on best practices and recommendations and provides initial security, governance, and shared service controls. It describes the components of the AWS Landing Zone including AWS Organizations, AWS Config, and IAM and how labs can be used to demonstrate creating guardrails, applying governance, and handling drift across accounts to meet security and operational goals.
Use SD-WAN to Manage Your AWS Environment and Branch Office Connectivity (NET...Amazon Web Services
As customers put more workloads into AWS, the number of Virtual Private Clouds (VPCs) a customer needs to manage grows. Scaling out an AWS environment can create challenges in manageability, workload segmentation, and security. SD-WAN solutions offered by AWS Partners can enable organizations to scale up the number of VPCs as needed while segmenting and isolating workloads for easier management, application quality monitoring, and security. In this session, we walk through a customer example of how an SD-WAN implementation simplified the management of a multi-VPC footprint while also improving application performance to WAN-connected branch offices.
Operational Excellence with Containerized Workloads Using AWS Fargate (CON320...Amazon Web Services
The document discusses operational excellence with containerized workloads using AWS Fargate. It provides an overview of AWS Fargate and how it allows customers to run containerized applications without having to manage Amazon EC2 instances. It then discusses how Fargate provides an elastic and integrated service with the AWS ecosystem. Case studies are also presented of companies like Turner and Corteva Agriscience that have migrated workloads to AWS Fargate to reduce costs and improve agility.
Introduction to Amazon Route 53 Resolver for Hybrid Cloud (NET215) - AWS re:I...Amazon Web Services
Amazon Route 53 Resolver provides recursive DNS for your Amazon VPC and on-premises networks over VPN or AWS Direct Connect. This session will review common use cases for Route 53 Resolver and go in depth on how it works.
How Vanguard and Bloomberg Use AWS PrivateLink (NET323) - AWS re:Invent 2018Amazon Web Services
Vanguard and Bloomberg's use of AWS PrivateLink as they moved from a small number of large accounts to a large number of small accounts reduced blast radius at the management plane but introduced significant complexity at the network layer. In this session, we introduce the type of network segmentation that is required to implement a zero-trust network for a highly regulated financial investment company like Vanguard—one that adds additional complexity.
The Executive Security Simulation takes senior security management and IT/business executive teams through an experiential exercise that illuminates key decision points for a successful and secure cloud journey. During this team-based, game-like competitive simulation, participants leverage an industry case study to make strategic security, risk, and compliance time-based decisions and investments. Participants experience the impact of these investments and decisions on the critical aspects of their secure cloud adoption. Join this workshop to gain an understanding of the major success factors to lead security, risk, and compliance in the cloud, and learn applicable decision and investment approaches to specific secure cloud adoption journeys. AWS facilitators translate lessons learned in the simulation into real-life examples and practical advice for your team.
Amazon FreeRTOS is an IoT operating system for microcontrollers that makes small, low powered edge devices easy to program, deploy, secure, connect and maintain. It is based on the popular FreeRTOS kernel and includes libraries for local and cloud connectivity, security, and over-the-air firmware updates. Amazon FreeRTOS integrates with AWS IoT services like Greengrass, IoT Core, IoT Analytics and more to provide a full solution for IoT devices, edge computing and the cloud.
When it comes to blockchain or any other technology, business use cases always come first. However, once the need for a distributed ledger-based platform is clear, how do you design a decentralized platform that adheres to the required trust and throughput requirements? In this chalk talk, we whiteboard blockchain architectures, best practices, and antipatterns for top blockchain protocols like Ethereum, Hyperledger, and Corda.
Build Business-Ready Blockchains with Intelligence (GPSTEC315) - AWS re:Inven...Amazon Web Services
Blockchain continues to be called the next generation of technology, so why does it mystify so many? In this session, we discuss how AWS and its ecosystem will help deliver value beyond just infrastructure for blockchain. We include the blockchain competency announcement, the blockchain value proposition broken down, a customer story involving Intel and T-mobile, and a blockchain delivery kit featuring Accenture and AWS.
Initial investigations into the use of blockchain often results in such questions as, “What can this technology do for us?” or “Can’t I just use a database?” rather than a more data-centric approach that can help define an effective blockchain strategy and help create a competitive advantage. In this chalk talk, we review a number of practical uses of blockchain within retail, from supply chain to inventory management, and from customer service conflict resolution to a customer maintaining virtual, transferable warranty wallets. The AWS Retail team presents some of the standard applications of blockchain with AWS in this interactive session. Bring your use cases to the whiteboard!
Mao Danrong, Solutions Architect, AWS China
Blockchain has become a hot topic for enterprises, start-ups, entrepreneurs, and regulatory bodies. Companies are now beginning to understand its disruptive potential and are experimenting with its most promising applications. But, few companies have asked the more fundamental question: Are we ready to adopt a shared public database and Microservice architecture for financial transactions? In this session, we cover the use cases and emerging trends. We also demonstrate blockchain in use and show how to implement it with demo showing using AWS services.
Blockchain is a technology that makes it possible to build applications where multiple parties can record transactions without the need for a trusted, central authority to ensure that transactions are verified and secure. In this session, you will learn about the fundamental concept of Blockchain technology and how AWS gives you access to flexible and cost-effective resources to quickly deploy and experiment with blockchain networks, including Ethereum and Hyperledger Fabric, in minutes, and pay only for what you use.
Running more than one containerized application in production makes teams look for solutions to quickly deploy and orchestrate containers. One of the most popular options is the open-source project Kubernetes. With the release of the Amazon Elastic Container Service for Kubernetes (EKS), engineering teams now have access to a fully managed Kubernetes control plane and time to focus on building applications. This workshop will deliver hands-on labs to support you getting familiar with Amazon's EKS.
Amazon Elastic Container Service for Kubernetes (Amazon EKS) I AWS Dev Day 2018AWS Germany
Containers are an increasingly important way for developers to package and deploy their applications and AWS offers multiple container products to help you deploy, manage, and scale containers in production. In this session we dive deep into Amazon Elastic Container Service for Kubernetes (Amazon EKS), a new managed service for running Kubernetes on AWS. Learn how Amazon EKS works, from provisioning nodes, launching pods, and integrations with AWS services such as Elastic Load Balancing and Auto Scaling.
Learn more about containers here: https://aws.amazon.com/containers/
5 Best Practices for Building an AWS Global Transit NetworkAmazon Web Services
Learn why Epsilon leveraged Aviatrix to switch from a vRouter-based global transit to a next-generation transit hub, streamlining resource provisioning and security implementation in their hybrid network. We’ll also discuss best practices for scaling and securing connectivity for your Amazon VPCs, while achieving compliance and reducing costs.
Connected Product Development - Secure Cloud & Local Connectivity for Microco...Amazon Web Services
Learning Objectives:
- Configure and download Amazon FreeRTOS on supported hardware to quickly develop a POC
- Deploy a connected product running Amazon FreeRTOS and connect to AWS cloud services
- Connect a device running Amazon FreeRTOS to a local AWS Greengrass Core device
Transforming Enterprise IT- Transformation Day Philadelphia 2018Amazon Web Services
As more and more enterprises start down the path of their digital transformation, the pressure on their IT organizations to support innovation across the business couldn’t be higher. In this session, we will outline a number of cutting edge technologies as well as an operating model that will allow IT to position itself as a business enabler and not a blocker. We will be sharing some mechanisms that will enable the IT organization to meet the pace of innovation that is being set by the business while giving them the flexibility to leverage existing assets.
AWS IoT for Frictionless Consumer Experiences in Retail (RET201) - AWS re:Inv...Amazon Web Services
Gaining key real-time insights is a key differentiator in retail decision making. Traditional or legacy retail processes are often batch-based or delayed in data processing systems that offer post insights to events. Placing a best practice messaging substrate into stores and other environments can provide an over-the-top real-time channel for insights into multiple use cases. Similarly, actions can be pushed in real-time back to the store to action responses to those insights gained. In this session, we demonstrate how AWS Greengrass and AWS IoT services continue gathering data from devices in a store, such as point of sales for analysis, even when connectivity to the cloud is not constant. We dive into how you can leverage Lambda functions on local AWS Greengrass devices to stream in-store events in real time to a data lake in Amazon S3. This data can then be used to derive business insights to drive appropriate action.
Enabling a Digital Platform with Microservices Architecture (ARC218-S) - AWS ...Amazon Web Services
Bajaj Finserv Direct Limited (BFDL) serves millions of customers with its comprehensive portfolio and innovative offerings in financing, general insurance, life and health insurance and retirement and savings. BFDL envisioned building a cloud-native digital platform to offer an unmatched experience to its customers. In this session, hear from BDFL how they built a robust digital backbone on AWS with a scalable microservices architecture deployed using Docker containers. The session also focuses on how a scalable microservices-based architecture can be developed using various AWS services. This session is brought to you by AWS partner, Cognizant Technology Solutions US Corp.
Build your first blockchain application with Amazon Managed Blockchain - SVC2...Amazon Web Services
Learn how to set up a blockchain network and deploy your first application using Amazon Managed Blockchain. In this hands-on workshop, attendees build a blockchain network for a nonprofit organization to enable it to distribute funds without an intermediary, ensuring immutable transactions and full transparency to a donor about how the donation is being used. In addition donors can view all of the donations received by the organization and how these donations have been spent. You must have an active AWS account to participate in this workshop.
This document discusses identity federation with AWS Cognito. It aims to share knowledge and learnings about single sign-on, IAM policies, and securing tokens. It outlines challenges like securing temporary credentials and attaching resource policies to authenticated identities. It then describes solutions like adding Auth0 as an IAM identity provider and creating a Cognito identity pool mapped to IAM roles. Temporary credentials from Cognito are passed to the front-end via Lambda to access AWS resources securely. Auto renewal of tokens ensures credentials do not expire while the user is active.
The AWS Cloud Development Kit is a new open-source framework from AWS which allows developers to harness the full power of modern programming languages to define reusable cloud components and applications , and provision them through CloudFormation. This workshop will help you get started with the AWS CDK using TypeScript. We will build and deploy a CDK app that uses API Gateway, AWS Lambda, DynamoDB, Containers and Step Functions. We will also define reusable CDK components (called “constructs”) that can be shared with your team/company or with the whole wide world.
This document discusses Amazon Web Services (AWS) Internet of Things (IoT) services. It begins with an overview of how customers use AWS IoT services across various industries. It then discusses specific AWS IoT services such as AWS IoT Core for connecting devices securely at scale, AWS IoT Greengrass for extending AWS IoT capabilities to edge devices, and AWS IoT Device Management for managing large fleets of devices. The document provides examples of how companies like VIZIO and an unnamed industrial customer have used AWS IoT services. It focuses on how AWS IoT services can help customers extract value from IoT data and build IoT applications more quickly.
Architect Your Legacy Microsoft Apps into Modern Cloud WorkloadsAmazon Web Services
Join our upcoming webinar with AWS, Six Nines, and NRC Health to learn how NRC Health migrated their 20-year-old Microsoft application to the cloud, reducing the risk of downtime and long change management windows.
Ensuring Your Windows Server Workloads Are Well-Architected - AWS Online Tech...Amazon Web Services
Learning Objectives:
- Learn about common architecture patterns for network design, Microsoft Active Directory, and business productivity solutions like Dynamics AX, CRM, and Microsoft SharePoint
- Explore common scenarios for legacy and custom .NET, .NET Core with Microsoft SQL deployments and migrations
- Gain insights on simplifying your IT infrastructure and managing your Microsoft workloads in a familiar environment
Transforming Enterprise IT - Transformation Day Montreal 2018Amazon Web Services
AWS Transformation Day is designed for enterprise organizations looking to make the move to the cloud in order to become more responsive, agile and innovative, while still staying secure and compliant.
IoT Compute at the Edge with AWS Greengrass - GOTO AmsterdamBoaz Ziniman
The document discusses AWS Greengrass and edge computing. It begins with an overview of AWS IoT architecture and how AWS Greengrass extends AWS IoT capabilities to the edge by running Lambda functions, messaging, and device state synchronization locally on gateway devices. It then describes several key AWS Greengrass features like local actions and triggers, data synchronization with the cloud, security capabilities, accessing local resources for functions, machine learning inference, and protocol adapters. It provides examples of how AWS Greengrass can be used for applications in various industries.
Similar to Building Blockchain Platforms Beyond a Proof of Concept (GPSTEC317) - AWS re:Invent 2018 (20)
Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...Amazon Web Services
Il Forecasting è un processo importante per tantissime aziende e viene utilizzato in vari ambiti per cercare di prevedere in modo accurato la crescita e distribuzione di un prodotto, l’utilizzo delle risorse necessarie nelle linee produttive, presentazioni finanziarie e tanto altro. Amazon utilizza delle tecniche avanzate di forecasting, in parte questi servizi sono stati messi a disposizione di tutti i clienti AWS.
In questa sessione illustreremo come pre-processare i dati che contengono una componente temporale e successivamente utilizzare un algoritmo che a partire dal tipo di dato analizzato produce un forecasting accurato.
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...Amazon Web Services
La varietà e la quantità di dati che si crea ogni giorno accelera sempre più velocemente e rappresenta una opportunità irripetibile per innovare e creare nuove startup.
Tuttavia gestire grandi quantità di dati può apparire complesso: creare cluster Big Data su larga scala sembra essere un investimento accessibile solo ad aziende consolidate. Ma l’elasticità del Cloud e, in particolare, i servizi Serverless ci permettono di rompere questi limiti.
Vediamo quindi come è possibile sviluppare applicazioni Big Data rapidamente, senza preoccuparci dell’infrastruttura, ma dedicando tutte le risorse allo sviluppo delle nostre le nostre idee per creare prodotti innovativi.
Ora puoi utilizzare Amazon Elastic Kubernetes Service (EKS) per eseguire pod Kubernetes su AWS Fargate, il motore di elaborazione serverless creato per container su AWS. Questo rende più semplice che mai costruire ed eseguire le tue applicazioni Kubernetes nel cloud AWS.In questa sessione presenteremo le caratteristiche principali del servizio e come distribuire la tua applicazione in pochi passaggi
Vent'anni fa Amazon ha attraversato una trasformazione radicale con l'obiettivo di aumentare il ritmo dell'innovazione. In questo periodo abbiamo imparato come cambiare il nostro approccio allo sviluppo delle applicazioni ci ha permesso di aumentare notevolmente l'agilità, la velocità di rilascio e, in definitiva, ci ha consentito di creare applicazioni più affidabili e scalabili. In questa sessione illustreremo come definiamo le applicazioni moderne e come la creazione di app moderne influisce non solo sull'architettura dell'applicazione, ma sulla struttura organizzativa, sulle pipeline di rilascio dello sviluppo e persino sul modello operativo. Descriveremo anche approcci comuni alla modernizzazione, compreso l'approccio utilizzato dalla stessa Amazon.com.
Come spendere fino al 90% in meno con i container e le istanze spot Amazon Web Services
L’utilizzo dei container è in continua crescita.
Se correttamente disegnate, le applicazioni basate su Container sono molto spesso stateless e flessibili.
I servizi AWS ECS, EKS e Kubernetes su EC2 possono sfruttare le istanze Spot, portando ad un risparmio medio del 70% rispetto alle istanze On Demand. In questa sessione scopriremo insieme quali sono le caratteristiche delle istanze Spot e come possono essere utilizzate facilmente su AWS. Impareremo inoltre come Spreaker sfrutta le istanze spot per eseguire applicazioni di diverso tipo, in produzione, ad una frazione del costo on-demand!
In recent months, many customers have been asking us the question – how to monetise Open APIs, simplify Fintech integrations and accelerate adoption of various Open Banking business models. Therefore, AWS and FinConecta would like to invite you to Open Finance marketplace presentation on October 20th.
Event Agenda :
Open banking so far (short recap)
• PSD2, OB UK, OB Australia, OB LATAM, OB Israel
Intro to Open Finance marketplace
• Scope
• Features
• Tech overview and Demo
The role of the Cloud
The Future of APIs
• Complying with regulation
• Monetizing data / APIs
• Business models
• Time to market
One platform for all: a Strategic approach
Q&A
Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...Amazon Web Services
Per creare valore e costruire una propria offerta differenziante e riconoscibile, le startup di successo sanno come combinare tecnologie consolidate con componenti innovativi creati ad hoc.
AWS fornisce servizi pronti all'utilizzo e, allo stesso tempo, permette di personalizzare e creare gli elementi differenzianti della propria offerta.
Concentrandoci sulle tecnologie di Machine Learning, vedremo come selezionare i servizi di intelligenza artificiale offerti da AWS e, anche attraverso una demo, come costruire modelli di Machine Learning personalizzati utilizzando SageMaker Studio.
OpsWorks Configuration Management: automatizza la gestione e i deployment del...Amazon Web Services
Con l'approccio tradizionale al mondo IT per molti anni è stato difficile implementare tecniche di DevOps, che finora spesso hanno previsto attività manuali portando di tanto in tanto a dei downtime degli applicativi interrompendo l'operatività dell'utente. Con l'avvento del cloud, le tecniche di DevOps sono ormai a portata di tutti a basso costo per qualsiasi genere di workload, garantendo maggiore affidabilità del sistema e risultando in dei significativi miglioramenti della business continuity.
AWS mette a disposizione AWS OpsWork come strumento di Configuration Management che mira ad automatizzare e semplificare la gestione e i deployment delle istanze EC2 per mezzo di workload Chef e Puppet.
Scopri come sfruttare AWS OpsWork a garanzia e affidabilità del tuo applicativo installato su Instanze EC2.
Microsoft Active Directory su AWS per supportare i tuoi Windows WorkloadsAmazon Web Services
Vuoi conoscere le opzioni per eseguire Microsoft Active Directory su AWS? Quando si spostano carichi di lavoro Microsoft in AWS, è importante considerare come distribuire Microsoft Active Directory per supportare la gestione, l'autenticazione e l'autorizzazione dei criteri di gruppo. In questa sessione, discuteremo le opzioni per la distribuzione di Microsoft Active Directory su AWS, incluso AWS Directory Service per Microsoft Active Directory e la distribuzione di Active Directory su Windows su Amazon Elastic Compute Cloud (Amazon EC2). Trattiamo argomenti quali l'integrazione del tuo ambiente Microsoft Active Directory locale nel cloud e l'utilizzo di applicazioni SaaS, come Office 365, con AWS Single Sign-On.
Dal riconoscimento facciale al riconoscimento di frodi o difetti di fabbricazione, l'analisi di immagini e video che sfruttano tecniche di intelligenza artificiale, si stanno evolvendo e raffinando a ritmi elevati. In questo webinar esploreremo le possibilità messe a disposizione dai servizi AWS per applicare lo stato dell'arte delle tecniche di computer vision a scenari reali.
Amazon Web Services e VMware organizzano un evento virtuale gratuito il prossimo mercoledì 14 Ottobre dalle 12:00 alle 13:00 dedicato a VMware Cloud ™ on AWS, il servizio on demand che consente di eseguire applicazioni in ambienti cloud basati su VMware vSphere® e di accedere ad una vasta gamma di servizi AWS, sfruttando a pieno le potenzialità del cloud AWS e tutelando gli investimenti VMware esistenti.
Molte organizzazioni sfruttano i vantaggi del cloud migrando i propri carichi di lavoro Oracle e assicurandosi notevoli vantaggi in termini di agilità ed efficienza dei costi.
La migrazione di questi carichi di lavoro, può creare complessità durante la modernizzazione e il refactoring delle applicazioni e a questo si possono aggiungere rischi di prestazione che possono essere introdotti quando si spostano le applicazioni dai data center locali.
Crea la tua prima serverless ledger-based app con QLDB e NodeJSAmazon Web Services
Molte aziende oggi, costruiscono applicazioni con funzionalità di tipo ledger ad esempio per verificare lo storico di accrediti o addebiti nelle transazioni bancarie o ancora per tenere traccia del flusso supply chain dei propri prodotti.
Alla base di queste soluzioni ci sono i database ledger che permettono di avere un log delle transazioni trasparente, immutabile e crittograficamente verificabile, ma sono strumenti complessi e onerosi da gestire.
Amazon QLDB elimina la necessità di costruire sistemi personalizzati e complessi fornendo un database ledger serverless completamente gestito.
In questa sessione scopriremo come realizzare un'applicazione serverless completa che utilizzi le funzionalità di QLDB.
Con l’ascesa delle architetture di microservizi e delle ricche applicazioni mobili e Web, le API sono più importanti che mai per offrire agli utenti finali una user experience eccezionale. In questa sessione impareremo come affrontare le moderne sfide di progettazione delle API con GraphQL, un linguaggio di query API open source utilizzato da Facebook, Amazon e altro e come utilizzare AWS AppSync, un servizio GraphQL serverless gestito su AWS. Approfondiremo diversi scenari, comprendendo come AppSync può aiutare a risolvere questi casi d’uso creando API moderne con funzionalità di aggiornamento dati in tempo reale e offline.
Inoltre, impareremo come Sky Italia utilizza AWS AppSync per fornire aggiornamenti sportivi in tempo reale agli utenti del proprio portale web.
Database Oracle e VMware Cloud™ on AWS: i miti da sfatareAmazon Web Services
Molte organizzazioni sfruttano i vantaggi del cloud migrando i propri carichi di lavoro Oracle e assicurandosi notevoli vantaggi in termini di agilità ed efficienza dei costi.
La migrazione di questi carichi di lavoro, può creare complessità durante la modernizzazione e il refactoring delle applicazioni e a questo si possono aggiungere rischi di prestazione che possono essere introdotti quando si spostano le applicazioni dai data center locali.
In queste slide, gli esperti AWS e VMware presentano semplici e pratici accorgimenti per facilitare e semplificare la migrazione dei carichi di lavoro Oracle accelerando la trasformazione verso il cloud, approfondiranno l’architettura e dimostreranno come sfruttare a pieno le potenzialità di VMware Cloud ™ on AWS.
1) The document discusses building a minimum viable product (MVP) using Amazon Web Services (AWS).
2) It provides an example of an MVP for an omni-channel messenger platform that was built from 2017 to connect ecommerce stores to customers via web chat, Facebook Messenger, WhatsApp, and other channels.
3) The founder discusses how they started with an MVP in 2017 with 200 ecommerce stores in Hong Kong and Taiwan, and have since expanded to over 5000 clients across Southeast Asia using AWS for scaling.
This document discusses pitch decks and fundraising materials. It explains that venture capitalists will typically spend only 3 minutes and 44 seconds reviewing a pitch deck. Therefore, the deck needs to tell a compelling story to grab their attention. It also provides tips on tailoring different types of decks for different purposes, such as creating a concise 1-2 page teaser, a presentation deck for pitching in-person, and a more detailed read-only or fundraising deck. The document stresses the importance of including key information like the problem, solution, product, traction, market size, plans, team, and ask.
This document discusses building serverless web applications using AWS services like API Gateway, Lambda, DynamoDB, S3 and Amplify. It provides an overview of each service and how they can work together to create a scalable, secure and cost-effective serverless application stack without having to manage servers or infrastructure. Key services covered include API Gateway for hosting APIs, Lambda for backend logic, DynamoDB for database needs, S3 for static content, and Amplify for frontend hosting and continuous deployment.
This document provides tips for fundraising from startup founders Roland Yau and Sze Lok Chan. It discusses generating competition to create urgency for investors, fundraising in parallel rather than sequentially, having a clear fundraising narrative focused on what you do and why it's compelling, and prioritizing relationships with people over firms. It also notes how the pandemic has changed fundraising, with examples of deals done virtually during this time. The tips emphasize being fully prepared before fundraising and cultivating connections with investors in advance.
AWS_HK_StartupDay_Building Interactive websites while automating for efficien...Amazon Web Services
This document discusses Amazon's machine learning services for building conversational interfaces and extracting insights from unstructured text and audio. It describes Amazon Lex for creating chatbots, Amazon Comprehend for natural language processing tasks like entity extraction and sentiment analysis, and how they can be used together for applications like intelligent call centers and content analysis. Pre-trained APIs simplify adding machine learning to apps without requiring ML expertise.
Amazon Elastic Container Service (Amazon ECS) è un servizio di gestione dei container altamente scalabile, che semplifica la gestione dei contenitori Docker attraverso un layer di orchestrazione per il controllo del deployment e del relativo lifecycle. In questa sessione presenteremo le principali caratteristiche del servizio, le architetture di riferimento per i differenti carichi di lavoro e i semplici passi necessari per poter velocemente migrare uno o più dei tuo container.
35. Kaleido Blockchain
Marketplace
Instant Blockchain
Network Creation
Full-stack Kaleido
Blockchain Services
Native Support into
Multiple AWS Services
Industry Solution
Accelerators
Introducing the Full-stack
Blockchain Business Cloud
only on Amazon Web Services (AWS)