This document provides an overview of AWS and discusses how AWS can help companies handle large scale events. It begins with an introduction to AWS regions, availability zones, and networking concepts. It then discusses AWS's wide range of services across compute, storage, databases, analytics, machine learning and more. The document also highlights AWS's pace of innovation, security capabilities, compliance certifications, and enterprise customers. It positions AWS as a leader in Gartner's Magic Quadrant for cloud infrastructure and operational database management systems. Finally, it defines what a large scale event is and notes that AWS can help companies address problems of unknown infrastructure requirements and short event durations for situations that require temporary increases in capacity.
Are you a Technology Partner that is looking to stay ahead to the curve? Wondering how to massively expand your product reach and shorten sales cycles? SaaS is quickly becoming a prevalent model for accelerating your sales efforts, enabling customer trials and delivering a highly available, scalable and dynamic solution to your customers. This session will explore how AWS and the SaaS Partner Program can assist your business with building and growing your SaaS application on AWS and teach you some AWS best practices for building your SaaS on AWS.
비즈니스 경쟁은 혁신 기술로 치열하게 격돌하는 승부처 이고 AI/ML은 가장 파급력이 높은 혁신 기술입니다. 여기서는 비즈니스 혁신을 만들 수 있는 AWS의 AI/ML 서비스를 소개하고, 사례를 기반으로 초개인화 서비스, 고객 경험 혁신, 문서 처리, 수요 예측 등을 살펴보겠습니다. 마지막으로 책임있는 AI를 제공하기 위한 고려 요소와 준비를 이야기하겠습니다.
The evolution of continuous cloud security and compliance - DEM05-S - New Yor...Amazon Web Services
With the ongoing expansion of cloud transformation, the different stages of cloud adoption become instrumental in achieving successful adoption of cloud infrastructure and services. When considering each stage, it’s important to overlay the proper security framework alongside continuous monitoring to provide the necessary security outcomes for an optimal security posture. In this session, we describe how to deliver outcomes of continuous security and compliance through a security wrapper delivered through infrastructure as code. This presentation is brought to you by AWS partner, Armor Cloud Security.
한국 정부는 지역거점을 중심으로 ICT 전략 산업 (5G MEC, 메타버스, AI, 스마트팩토리, 빅데이터, 클라우드 등) 을 설정하고 이를 육성하기 위한 다양한 사업을 추진하고 있습니다.
AWS가 정부의 거점 활성화 정책에 어떤 방식으로 기여하는지 보여주는 해외 사례와 함께 각 지역별로 진행되고 있는 사례들을 소개합니다.
판교, 구미, 강릉의 초광역 메타버스, 인천의 스타트업 파크, 제주의 데이타융합 사업을 만나보세요.
Aligning to the NIST Cybersecurity Framework in the AWS Cloud - SEC204 - Chic...Amazon Web Services
The NIST Cybersecurity Framework (CSF) is endorsed by government and industry as a recommended baseline for use by any organization, regardless of sector or size, to implement risk-management best practices and achieve desired security outcomes. In this session, we discuss how organizations can use AWS to align to the CSF by providing a detailed breakout of AWS services and associated customer responsibilities (security in the cloud) and AWS responsibilities (security of the cloud).
The AWS cloud infrastructure has been architected to be one of the most flexible and secure cloud computing environments available today. Security for AWS is about three related elements: visibility, auditability, and control. You have to know what you have and where it is before you can assess the environment against best practices, internal standards, and compliance standards. Controls enable you to place precise, well-understood limits on the access to your information. Did you know, for example, that you can define a rule that says that “Tom is the only person who can access this data object that I store with Amazon, and he can only do so from his corporate desktop on the corporate network, from Monday-Friday 9-5 and when he uses MFA?” That’s the level of granularity you can choose to implement if you wish. In this session, we’ll cover these topics to provide a practical understanding of the security programs, procedures, and best practices you can use to enhance your current security posture.
레벨스는 블록체인 기술과 아티스트 IP(지적재산권)를 결합한 서비스 플랫폼인 '모먼티카'를 글로벌로 서비스하고 있습니다. 모먼티카는 기존의 아티스트 굿즈 형태인 포토카드에서, 아티스트의 사진과 영상 콘텐츠를 디지털 형태로 소장 가능케 하여 K-pop 팬덤 문화를 확장하는 새로운 개념의 디지털 콜렉터블 플랫폼입니다. AWS의 다양한 관리형 서비스를 이용하여 팬덤 문화를 클라우드 형태로 녹여낸 레벨스의 여정을 알아봅니다.
Are you a Technology Partner that is looking to stay ahead to the curve? Wondering how to massively expand your product reach and shorten sales cycles? SaaS is quickly becoming a prevalent model for accelerating your sales efforts, enabling customer trials and delivering a highly available, scalable and dynamic solution to your customers. This session will explore how AWS and the SaaS Partner Program can assist your business with building and growing your SaaS application on AWS and teach you some AWS best practices for building your SaaS on AWS.
비즈니스 경쟁은 혁신 기술로 치열하게 격돌하는 승부처 이고 AI/ML은 가장 파급력이 높은 혁신 기술입니다. 여기서는 비즈니스 혁신을 만들 수 있는 AWS의 AI/ML 서비스를 소개하고, 사례를 기반으로 초개인화 서비스, 고객 경험 혁신, 문서 처리, 수요 예측 등을 살펴보겠습니다. 마지막으로 책임있는 AI를 제공하기 위한 고려 요소와 준비를 이야기하겠습니다.
The evolution of continuous cloud security and compliance - DEM05-S - New Yor...Amazon Web Services
With the ongoing expansion of cloud transformation, the different stages of cloud adoption become instrumental in achieving successful adoption of cloud infrastructure and services. When considering each stage, it’s important to overlay the proper security framework alongside continuous monitoring to provide the necessary security outcomes for an optimal security posture. In this session, we describe how to deliver outcomes of continuous security and compliance through a security wrapper delivered through infrastructure as code. This presentation is brought to you by AWS partner, Armor Cloud Security.
한국 정부는 지역거점을 중심으로 ICT 전략 산업 (5G MEC, 메타버스, AI, 스마트팩토리, 빅데이터, 클라우드 등) 을 설정하고 이를 육성하기 위한 다양한 사업을 추진하고 있습니다.
AWS가 정부의 거점 활성화 정책에 어떤 방식으로 기여하는지 보여주는 해외 사례와 함께 각 지역별로 진행되고 있는 사례들을 소개합니다.
판교, 구미, 강릉의 초광역 메타버스, 인천의 스타트업 파크, 제주의 데이타융합 사업을 만나보세요.
Aligning to the NIST Cybersecurity Framework in the AWS Cloud - SEC204 - Chic...Amazon Web Services
The NIST Cybersecurity Framework (CSF) is endorsed by government and industry as a recommended baseline for use by any organization, regardless of sector or size, to implement risk-management best practices and achieve desired security outcomes. In this session, we discuss how organizations can use AWS to align to the CSF by providing a detailed breakout of AWS services and associated customer responsibilities (security in the cloud) and AWS responsibilities (security of the cloud).
The AWS cloud infrastructure has been architected to be one of the most flexible and secure cloud computing environments available today. Security for AWS is about three related elements: visibility, auditability, and control. You have to know what you have and where it is before you can assess the environment against best practices, internal standards, and compliance standards. Controls enable you to place precise, well-understood limits on the access to your information. Did you know, for example, that you can define a rule that says that “Tom is the only person who can access this data object that I store with Amazon, and he can only do so from his corporate desktop on the corporate network, from Monday-Friday 9-5 and when he uses MFA?” That’s the level of granularity you can choose to implement if you wish. In this session, we’ll cover these topics to provide a practical understanding of the security programs, procedures, and best practices you can use to enhance your current security posture.
레벨스는 블록체인 기술과 아티스트 IP(지적재산권)를 결합한 서비스 플랫폼인 '모먼티카'를 글로벌로 서비스하고 있습니다. 모먼티카는 기존의 아티스트 굿즈 형태인 포토카드에서, 아티스트의 사진과 영상 콘텐츠를 디지털 형태로 소장 가능케 하여 K-pop 팬덤 문화를 확장하는 새로운 개념의 디지털 콜렉터블 플랫폼입니다. AWS의 다양한 관리형 서비스를 이용하여 팬덤 문화를 클라우드 형태로 녹여낸 레벨스의 여정을 알아봅니다.
Amazon WorkSpaces: Desktop Computing in the Cloud (ENT104) | AWS re:Invent 2013Amazon Web Services
Desktop virtualization has long held the promise of productivity and security benefits, but has been held back by large CapEx requirements and complicated installation and management. In this session, we provide a detailed introduction to Amazon WorkSpaces, a new AWS service that combines the benefits of desktop virtualization and a cloud-based, pay-as-you-go model. You learn about the key steps for setting up and delivering a secure cloud-based workspace accessed through purpose-built client applications.
This document discusses using the Cloud Adoption Framework (CAF) Terraform modules to create Azure landing zones. It begins with an introduction to Azure landing zones and their purpose. It then discusses everything-as-code and using Terraform to deploy environments. The remainder of the document focuses on the benefits of using the CAF Terraform modules, including consistency, maintainability, reusability, and delivering value. It provides an overview of the core principles and fundamental building blocks of the CAF modules. Finally, it demonstrates how to get started with the CAF Terraform landing zones.
The document provides an overview of the main services available on the Azure cloud computing platform. It describes compute, networking, storage, mobile, database, web, Internet of Things (IoT), big data, artificial intelligence (AI), and DevOps services available and provides examples of specific services within each category. The services aim to provide scalable, secure, globally accessible options for hosting applications and data in the cloud.
Amazon WorkSpaces is a secure, managed, virtual desktop service running on the AWS cloud. The service helps organizations support a modern mobile workforce, improve information security, and save money with a pay-as-you-go model. In this session, we'll cover how cloud desktops can benefit your organization, what's new with Amazon WorkSpaces, and some of the top technical considerations like user identity and access management, VPC design, network traffic flow, and application delivery. This session is for IT professionals and business decision makers interested in learning how to simplify desktop management and productivity for their organizations.
Introducing AWS DataSync - Simplify, automate, and accelerate online data tra...Amazon Web Services
SFTP is used for the exchange of data across many industries, including financial services, healthcare, and retail. In this session, we will introduce you to AWS Transfer for SFTP, a service that helps you easily migrate file transfer workflows to AWS, without needing to modify applications or manage SFTP servers. We will demonstrate the product and talk about how to migrate your users so they continue to use their existing SFTP clients and credentials, while the data they access is stored in S3. You will also learn how FINRA is using this new service in conjunction with their Data Lake on AWS.N/A
WorkSpaces provides managed, secure virtual desktops hosted on AWS. It offers several benefits over traditional on-premises VDI including pay-as-you-go pricing, global scale and availability, and simplified management. WorkSpaces uses standard Windows management tools and supports multiple devices. Amazon WorkSpaces Application Manager (WAM) allows centralized deployment and management of applications to WorkSpaces desktops at scale.
은행, 투자, 부동산, 통신, 결제, 헬스케어 등 모든 서비스를 하나의 앱에서 내 맘대로 사용할 수 있다면? 비즈니스 경계를 허무는 혁신이 이제 슈퍼앱이라는 화두로 다가오고 있습니다. 슈퍼앱의 개념과 갖춰야 할 조건들을 살펴보고, 국내에서는 어떤 슈퍼앱들이 우리의 생활을 이롭게 하고 있는지를 KB와 컬리페이의 사례를 통해 알아봅니다.
AWS CloudFormation: Infrastructure as Code | AWS Public Sector Summit 2016Amazon Web Services
This session provides the attendee with an overview of our AWS CloudFormation service and helps the customer to realize the benefits of "infrastructure as code." A demo is part of this session.
In this session, AWS will present an overview of the AWS Landing Zone – an automated solution for setting up a robust and flexible AWS environment. Customers can expect to learn how AWS works with customers to accelerate their journey to AWS confidently and securely and how the AWS Landing Zone can be customized to meet each organization’s specific needs.
Presenter: Sadegh Nadimi, Senior Consultant, Global Migrations, AWS
This is based on the following publications:
Azure Strategy and Implementation Guide by Joachim Hafner, Simon Schwingel, Tyler Ayers, and Rolf Masuch. Introduction by Britt Johnston.
With reference to Enterprise Cloud Strategy, 2nd Edition by Eduardo Kassner and Barry Briggs.
All Links to resources are at the end of the presentation.
This document provides an overview of Microsoft Azure security features, including:
- Shared responsibility model where Microsoft secures the platform and customers secure their data and applications
- Identity and access management, encryption of data at rest and in transit, network security controls, and logging/monitoring capabilities
- Security Center provides visibility into threats and advanced analytics to detect attacks
- Operations Management Suite allows collecting logs from Azure, on-premises, and other clouds to analyze security events
- Microsoft works with partners to provide additional virtual network appliances and security solutions to customers
아직 많은 기업들이 상용 데이터베이스로 인해 발생하는 높은 비용으로 고통받고 있습니다. 이를 돕기 위해 AWS는 오픈 소스를 기반으로 한 다양한 워크로드의 특성에 맞는 데이터베이스 서비스를 제공하고 있습니다. 이번 세션에서는 AWS의 워크로드 특성에 따른 목적에 맞는 다양한 데이터베이스 서비스가 어떤 것이 있는지 알아보고, 기존 오라클 데이터베이스를 기반으로 구성된 서비스에 AWS의 데이터베이스를 도입하여 탈 오라클에 성공한 고객 사례를 소개합니다.
Cloud computing is a model for enabling ubiquitous, convenient, on-demand network access to a shared pool of configurable computing resources that can be rapidly provisioned and released with minimal management effort or service provider interaction. Key characteristics of cloud computing include broad network access, resource pooling, rapid elasticity, and measured service. Cloud services provide software, platforms, and infrastructure as services on demand over the Internet.
AWS Summit Singapore 2019 | Next Generation Audit & Compliance - Learn how RH...AWS Summits
Speaker: Alejandra Artiguez, FSI Compliance Program Manager, APAC, AWS Customer Speaker: Clara Lee Hui Theng, Head Technology & Operations, RHB Bank Berhad (Singapore)
Security and Compliance is a shared responsibility between AWS and the customer. In this session we will examine the AWS Shared responsibility model, and AWS compliance programs customers can use to gain assurance of security controls in the cloud. We will dive-deep into a number of cloud native security services that customers can use to protect their critical systems when migrating to AWS. Finally we will review a next-generation approach to audit and continuous compliance leveraging automation to identify mis-configurations and perform automatic remediatation to protect your AWS workloads.
This session provides IT pros and application owners an overview of AWS options for building hybrid storage architectures or even entirely migrating datacenter storage to the AWS cloud. The AWS Storage Gateway connects existing on-premises block, file or tape storage systems to AWS cloud storage over the WAN in a hybrid model. The AWS Snow family of physical devices can capture, pre-process and migrate data into and out of AWS without any network connection at all. Join us to learn how you can close down datacenters, reduce storage footprints, and build solutions for tiering, data lakes, backup, disaster recovery, and migration.
This document provides an overview of Azure Security Center, which is a service that helps secure hybrid cloud environments. It discusses how Azure Security Center provides improved security across Azure subscriptions by delivering security recommendations, dashboards to monitor security state, and APIs to integrate with other security tools. The presentation includes an agenda that covers why cloud security is needed, how Azure Security Center addresses security as a shared responsibility, and demonstrations of its key capabilities like threat detection, secure score assessments, and recommendations for configuring security controls.
This document provides an overview of database scaling strategies on AWS. It begins with a single EC2 instance hosting a full stack application and database. It then progresses through separating components, adding redundancy, implementing sharding and database federation to handle increasing user loads from 1 to over 1 million users. Key strategies discussed include moving to managed database services like RDS, adding read replicas, distributing load with services like S3, CloudFront, DynamoDB and SQS, and splitting databases by function or key using sharding or federation.
The document discusses AWS and Vizalytics technology for smart cities solutions. It provides an overview of AWS cloud capabilities for infrastructure, analytics, IoT, machine learning and other services. It also presents customer stories of how cities like Chicago and Transport for London have used AWS to power applications and platforms for open data, transportation, and other smart city initiatives. Finally, it outlines a logical architecture for a smart city platform leveraging AWS cloud services for data ingestion, processing, storage in a data lake, and analysis.
Introduction to AWS Cloud Computing | AWS Public Sector Summit 2016Amazon Web Services
Amazon Web Services (AWS) provides on-demand computing resources and services in the cloud, with pay-as-you-go pricing. This session provides an overview and describes how using AWS resources instead of your own is like purchasing electricity from a power company instead of running your own generator. Using AWS resources provides many of the same benefits as a public utility: Capacity exactly matches your need, you pay only for what you use, economies of scale result in lower costs, and the service is provided by a vendor experienced in running large-scale networks. A high-level overview of AWS’s infrastructure (such as AWS Regions and Availability Zones) and AWS services is provided as part of this session.
Amazon WorkSpaces: Desktop Computing in the Cloud (ENT104) | AWS re:Invent 2013Amazon Web Services
Desktop virtualization has long held the promise of productivity and security benefits, but has been held back by large CapEx requirements and complicated installation and management. In this session, we provide a detailed introduction to Amazon WorkSpaces, a new AWS service that combines the benefits of desktop virtualization and a cloud-based, pay-as-you-go model. You learn about the key steps for setting up and delivering a secure cloud-based workspace accessed through purpose-built client applications.
This document discusses using the Cloud Adoption Framework (CAF) Terraform modules to create Azure landing zones. It begins with an introduction to Azure landing zones and their purpose. It then discusses everything-as-code and using Terraform to deploy environments. The remainder of the document focuses on the benefits of using the CAF Terraform modules, including consistency, maintainability, reusability, and delivering value. It provides an overview of the core principles and fundamental building blocks of the CAF modules. Finally, it demonstrates how to get started with the CAF Terraform landing zones.
The document provides an overview of the main services available on the Azure cloud computing platform. It describes compute, networking, storage, mobile, database, web, Internet of Things (IoT), big data, artificial intelligence (AI), and DevOps services available and provides examples of specific services within each category. The services aim to provide scalable, secure, globally accessible options for hosting applications and data in the cloud.
Amazon WorkSpaces is a secure, managed, virtual desktop service running on the AWS cloud. The service helps organizations support a modern mobile workforce, improve information security, and save money with a pay-as-you-go model. In this session, we'll cover how cloud desktops can benefit your organization, what's new with Amazon WorkSpaces, and some of the top technical considerations like user identity and access management, VPC design, network traffic flow, and application delivery. This session is for IT professionals and business decision makers interested in learning how to simplify desktop management and productivity for their organizations.
Introducing AWS DataSync - Simplify, automate, and accelerate online data tra...Amazon Web Services
SFTP is used for the exchange of data across many industries, including financial services, healthcare, and retail. In this session, we will introduce you to AWS Transfer for SFTP, a service that helps you easily migrate file transfer workflows to AWS, without needing to modify applications or manage SFTP servers. We will demonstrate the product and talk about how to migrate your users so they continue to use their existing SFTP clients and credentials, while the data they access is stored in S3. You will also learn how FINRA is using this new service in conjunction with their Data Lake on AWS.N/A
WorkSpaces provides managed, secure virtual desktops hosted on AWS. It offers several benefits over traditional on-premises VDI including pay-as-you-go pricing, global scale and availability, and simplified management. WorkSpaces uses standard Windows management tools and supports multiple devices. Amazon WorkSpaces Application Manager (WAM) allows centralized deployment and management of applications to WorkSpaces desktops at scale.
은행, 투자, 부동산, 통신, 결제, 헬스케어 등 모든 서비스를 하나의 앱에서 내 맘대로 사용할 수 있다면? 비즈니스 경계를 허무는 혁신이 이제 슈퍼앱이라는 화두로 다가오고 있습니다. 슈퍼앱의 개념과 갖춰야 할 조건들을 살펴보고, 국내에서는 어떤 슈퍼앱들이 우리의 생활을 이롭게 하고 있는지를 KB와 컬리페이의 사례를 통해 알아봅니다.
AWS CloudFormation: Infrastructure as Code | AWS Public Sector Summit 2016Amazon Web Services
This session provides the attendee with an overview of our AWS CloudFormation service and helps the customer to realize the benefits of "infrastructure as code." A demo is part of this session.
In this session, AWS will present an overview of the AWS Landing Zone – an automated solution for setting up a robust and flexible AWS environment. Customers can expect to learn how AWS works with customers to accelerate their journey to AWS confidently and securely and how the AWS Landing Zone can be customized to meet each organization’s specific needs.
Presenter: Sadegh Nadimi, Senior Consultant, Global Migrations, AWS
This is based on the following publications:
Azure Strategy and Implementation Guide by Joachim Hafner, Simon Schwingel, Tyler Ayers, and Rolf Masuch. Introduction by Britt Johnston.
With reference to Enterprise Cloud Strategy, 2nd Edition by Eduardo Kassner and Barry Briggs.
All Links to resources are at the end of the presentation.
This document provides an overview of Microsoft Azure security features, including:
- Shared responsibility model where Microsoft secures the platform and customers secure their data and applications
- Identity and access management, encryption of data at rest and in transit, network security controls, and logging/monitoring capabilities
- Security Center provides visibility into threats and advanced analytics to detect attacks
- Operations Management Suite allows collecting logs from Azure, on-premises, and other clouds to analyze security events
- Microsoft works with partners to provide additional virtual network appliances and security solutions to customers
아직 많은 기업들이 상용 데이터베이스로 인해 발생하는 높은 비용으로 고통받고 있습니다. 이를 돕기 위해 AWS는 오픈 소스를 기반으로 한 다양한 워크로드의 특성에 맞는 데이터베이스 서비스를 제공하고 있습니다. 이번 세션에서는 AWS의 워크로드 특성에 따른 목적에 맞는 다양한 데이터베이스 서비스가 어떤 것이 있는지 알아보고, 기존 오라클 데이터베이스를 기반으로 구성된 서비스에 AWS의 데이터베이스를 도입하여 탈 오라클에 성공한 고객 사례를 소개합니다.
Cloud computing is a model for enabling ubiquitous, convenient, on-demand network access to a shared pool of configurable computing resources that can be rapidly provisioned and released with minimal management effort or service provider interaction. Key characteristics of cloud computing include broad network access, resource pooling, rapid elasticity, and measured service. Cloud services provide software, platforms, and infrastructure as services on demand over the Internet.
AWS Summit Singapore 2019 | Next Generation Audit & Compliance - Learn how RH...AWS Summits
Speaker: Alejandra Artiguez, FSI Compliance Program Manager, APAC, AWS Customer Speaker: Clara Lee Hui Theng, Head Technology & Operations, RHB Bank Berhad (Singapore)
Security and Compliance is a shared responsibility between AWS and the customer. In this session we will examine the AWS Shared responsibility model, and AWS compliance programs customers can use to gain assurance of security controls in the cloud. We will dive-deep into a number of cloud native security services that customers can use to protect their critical systems when migrating to AWS. Finally we will review a next-generation approach to audit and continuous compliance leveraging automation to identify mis-configurations and perform automatic remediatation to protect your AWS workloads.
This session provides IT pros and application owners an overview of AWS options for building hybrid storage architectures or even entirely migrating datacenter storage to the AWS cloud. The AWS Storage Gateway connects existing on-premises block, file or tape storage systems to AWS cloud storage over the WAN in a hybrid model. The AWS Snow family of physical devices can capture, pre-process and migrate data into and out of AWS without any network connection at all. Join us to learn how you can close down datacenters, reduce storage footprints, and build solutions for tiering, data lakes, backup, disaster recovery, and migration.
This document provides an overview of Azure Security Center, which is a service that helps secure hybrid cloud environments. It discusses how Azure Security Center provides improved security across Azure subscriptions by delivering security recommendations, dashboards to monitor security state, and APIs to integrate with other security tools. The presentation includes an agenda that covers why cloud security is needed, how Azure Security Center addresses security as a shared responsibility, and demonstrations of its key capabilities like threat detection, secure score assessments, and recommendations for configuring security controls.
This document provides an overview of database scaling strategies on AWS. It begins with a single EC2 instance hosting a full stack application and database. It then progresses through separating components, adding redundancy, implementing sharding and database federation to handle increasing user loads from 1 to over 1 million users. Key strategies discussed include moving to managed database services like RDS, adding read replicas, distributing load with services like S3, CloudFront, DynamoDB and SQS, and splitting databases by function or key using sharding or federation.
The document discusses AWS and Vizalytics technology for smart cities solutions. It provides an overview of AWS cloud capabilities for infrastructure, analytics, IoT, machine learning and other services. It also presents customer stories of how cities like Chicago and Transport for London have used AWS to power applications and platforms for open data, transportation, and other smart city initiatives. Finally, it outlines a logical architecture for a smart city platform leveraging AWS cloud services for data ingestion, processing, storage in a data lake, and analysis.
Introduction to AWS Cloud Computing | AWS Public Sector Summit 2016Amazon Web Services
Amazon Web Services (AWS) provides on-demand computing resources and services in the cloud, with pay-as-you-go pricing. This session provides an overview and describes how using AWS resources instead of your own is like purchasing electricity from a power company instead of running your own generator. Using AWS resources provides many of the same benefits as a public utility: Capacity exactly matches your need, you pay only for what you use, economies of scale result in lower costs, and the service is provided by a vendor experienced in running large-scale networks. A high-level overview of AWS’s infrastructure (such as AWS Regions and Availability Zones) and AWS services is provided as part of this session.
This document summarizes a presentation given by Teresa Carlson at the AWS Government, Education and Nonprofits Symposium in Canberra, Australia. Carlson discussed how cloud computing has become the new normal for many organizations. She provided examples of successful government adoption models and how AWS addresses security, compliance, procurement and culture issues. Carlson also presented statistics on AWS's growing customer base and the rapid pace of innovation, with over 500 new features and services launched in 2014.
This document summarizes a presentation given by Teresa Carlson from Amazon Web Services at the AWS Government, Education and Nonprofits Symposium in Canberra, Australia. Carlson discussed how cloud computing has become the new normal for many organizations. She provided examples of successful government adoption models and addressed common issues around security, compliance, procurement and culture. Carlson also presented statistics on AWS's growing customer base and the rapid pace of innovation, with over 500 new features and services launched in 2014.
AWS Webcast - Emergency Preparedness and Interagency Collaboration Webinar Amazon Web Services
Learn how the AWS cloud can cost effectively provide the scalable computing resources, storage services, and analytic tools that enable running different kinds of Emergency Preparedness and Collaborative workloads.
This document discusses how AWS provides scalable infrastructure and services to power public safety applications in the cloud. It highlights Haystax's use of AWS to build a public safety cloud that provides situational awareness tools to various government agencies. The cloud enables collaborative data sharing across jurisdictions and devices to help agencies focus on their critical public safety missions. AWS offers scalable, secure, and cost-effective infrastructure that can rapidly scale up or down based on an agency's needs.
The document provides an overview of Amazon Web Services' (AWS) global infrastructure footprint and capabilities. It notes that AWS has 11 regions across the world with 4 more upcoming, along with 53 edge locations and over 29 availability zones. It highlights that AWS has over 1 million active customers, including 900+ government agencies, 3,400+ educational institutions, and 1,000+ financial services organizations operating in 190 countries. The document also emphasizes AWS' continual expansion of infrastructure and server capacity.
Demystifying Cloud Security: Lessons Learned for the Public SectorAmazon Web Services
As government agencies expand the use of cloud services, security continues to be a top priority for program managers, policymakers, and cloud service providers (CSPs). Governments and agencies worldwide are moving workloads with varying levels of sensitivity to the cloud. This session will feature agency-level security risk management practices and address common myths about security in the cloud. Participants will gain insight into how governments are leveraging cloud computing to improve their security posture and more quickly benefit from economies of scale.
Mark Ryland, Chief Solutions Architect, Amazon Web Services, WWPS
How PagerDuty Achieved End-to-End Visibility with Splunk and AWS Webinar DeckAmazon Web Services
Splunk® offers a leading platform for Operational Intelligence, enabling AWS users to look closely at machine data and gain actionable insights that can help make your organization more productive, profitable, competitive, and secure. Join us to learn how Splunk and AWS together can provide the end-to-end visibility needed to respond proactively and as quickly as possible to rapidly evolving security environments.
Learn how Splunk and AWS together can provide the end-to-end visibility needed to respond proactively and as quickly as possible to rapidly evolving security environments.
Speakers:
David Wall, Country Manager ANZ & Head of Asia Pacific & Japan & Arup Chakrabarti, Director of Engineering - Pager Duty
Myles Hosford, Security Solution Architect - AWS
Richard Smith, Strategic Alliances - Splunk
The document provides an overview of AWSome Day and why customers use AWS. It discusses how AWS enables agility for customers (#1 reason for moving to AWS), provides a broad and deep platform (#2 reason), allows customers to innovate at scale (#3 reason), and offers cost savings and flexibility (#4 reason). It then gives examples of how different Nordic companies are using AWS for development and testing, new workloads, supplementing existing workloads, migrating applications, data center migration, and moving IT entirely to the cloud.
The document discusses Amazon Web Services (AWS) and why customers use AWS. It notes that the top reasons are: 1) Agility and scalability allowing customers to quickly scale resources, 2) The broad platform of services offered by AWS, and 3) AWS's ability to support innovation through frequent new feature and service launches. It provides examples of how customers from startups to large enterprises are using AWS across different industry domains.
This document provides an overview of Amazon Web Services (AWS) and why customers use AWS. It discusses how AWS enables agility for customers, allows them to avoid undifferentiated heavy lifting of managing infrastructure, provides a broad platform for innovation at scale, and offers cost savings and flexibility through various pricing models. The document then highlights how a variety of Nordic companies are using AWS across different use cases like development and testing, new workloads, supplementing existing workloads and infrastructure, migrating applications, data center migration, and moving entire IT operations to the cloud.
This keynote presentation from an Amazon Web Services solutions architect discusses how cloud computing is changing businesses across many industries and workloads. The architect highlights examples of startup and enterprise customers benefiting from AWS, including faster development times, reduced costs compared to data centers, and innovation opportunities. The presentation also outlines the security, management tools, and career opportunities available through AWS, emphasizing how cloud skills are in high demand.
How News Corp Secured Their Digital Transformation through Identity and Acces...Amazon Web Services
News Corp secured their digital transformation through identity and access management by migrating from their legacy on-premises solution to Okta on AWS. The migration provided a better user experience, simplified access to cloud applications, and aligned with global identity standards. Over 9,000 employees were enrolled in Okta within two weeks without business disruption. News Corp benefited from faster enrollment, increased mobile authentication, and automated user lifecycle management.
AWS provides a broad range of cloud computing services for financial services customers. It has experience building and managing infrastructure since 2006 and offers over 40 services that support any workload. AWS has a global footprint with regions and availability zones around the world and a history of rapid innovation and price reductions. Major financial institutions like Capital One and Simple Bank use AWS services to reduce costs, increase agility, and focus on their customers rather than managing infrastructure.
Establishing a Scalable, Resilient Web Architecture | AWS Public Sector Summi...Amazon Web Services
Amazon Web Services (AWS) provides an ideal platform for running web architectures. This session describes the foundational services required for deploying an example web architecture. It covers Amazon EC2, Amazon EBS, Elastic Load Balancing, Auto Scaling, Amazon S3, Amazon RDS, and Amazon Machine Images (AMIs) and relates overviews of the services back to the example web architecture. After the initial architecture discussion, we will describe the usage of Amazon S3 for scalable content, Elastic Load Balancing, and Auto Scaling to provide high availability.
What we've learn from 150+ azure deployments?
we will cover the following:
* Whats new in azure
* Know your portal
* Basic billing and subscription management
* From Servers to Services - IaaS to PaaS
* What we've learn from 150 azure deployments
* High Availability from the cost perspective - the SQL example
Module 1: AWS Introduction and History - AWSome Day Online Conference - APACAmazon Web Services
This module will cover cloud computing concepts and AWS global Infrastructure.
• Recognize terminology and concepts as they relate to the AWS platform and navigate the AWS Management Console.
• Understand the foundational services, including Amazon Elastic Compute Cloud (EC2), Amazon Virtual Private Cloud (VPC), Amazon Simple Storage Service (S3), and Amazon Elastic Block Store (EBS).
• Understand the security measures AWS provides and key concepts of AWS Identity and Access Management (IAM).
• Understand AWS database services, including Amazon DynamoDB and Amazon Relational Database Service (RDS). • Understand AWS management tools, including Auto Scaling, Amazon CloudWatch, Elastic Load Balancing (ELB), and AWS Trusted Advisor.
Presenters today:
• John Balsillie Senior Technical Trainer, AWS APAC
• Karthik Chandy Senior Technical Trainer, AWS APAC
Brad Coughlan discussed how more public sector customers are adopting cloud services due to the freedoms cloud provides, such as freedom to build, freedom to extract value from data, freedom to migrate systems, and freedom to innovate quickly while maintaining security and compliance. AWS provides services that help customers gain these freedoms, such as databases, analytics tools, migration assistance, and security and identity management services. Coughlan argued cloud adoption allows public sectors to better serve citizens.
Enabling the New IT Org
Today’s technology leaders recognize that the cloud is disrupting the way in which they collaborate and deliver technology solutions throughout their enterprise. In this session, experienced and emerging leadership teams will learn how companies are leveraging the cloud to reimagine the traditional people, process, and technology alignment model. Attendees will be presented with key considerations to better enable the alignment of executives, developers, system administrators, and end users with the objective of increasing business value, agility, and innovation.
Similar to Databases on AWS: Scaling Applications & Modern Data Architectures (20)
Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...Amazon Web Services
Il Forecasting è un processo importante per tantissime aziende e viene utilizzato in vari ambiti per cercare di prevedere in modo accurato la crescita e distribuzione di un prodotto, l’utilizzo delle risorse necessarie nelle linee produttive, presentazioni finanziarie e tanto altro. Amazon utilizza delle tecniche avanzate di forecasting, in parte questi servizi sono stati messi a disposizione di tutti i clienti AWS.
In questa sessione illustreremo come pre-processare i dati che contengono una componente temporale e successivamente utilizzare un algoritmo che a partire dal tipo di dato analizzato produce un forecasting accurato.
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...Amazon Web Services
La varietà e la quantità di dati che si crea ogni giorno accelera sempre più velocemente e rappresenta una opportunità irripetibile per innovare e creare nuove startup.
Tuttavia gestire grandi quantità di dati può apparire complesso: creare cluster Big Data su larga scala sembra essere un investimento accessibile solo ad aziende consolidate. Ma l’elasticità del Cloud e, in particolare, i servizi Serverless ci permettono di rompere questi limiti.
Vediamo quindi come è possibile sviluppare applicazioni Big Data rapidamente, senza preoccuparci dell’infrastruttura, ma dedicando tutte le risorse allo sviluppo delle nostre le nostre idee per creare prodotti innovativi.
Ora puoi utilizzare Amazon Elastic Kubernetes Service (EKS) per eseguire pod Kubernetes su AWS Fargate, il motore di elaborazione serverless creato per container su AWS. Questo rende più semplice che mai costruire ed eseguire le tue applicazioni Kubernetes nel cloud AWS.In questa sessione presenteremo le caratteristiche principali del servizio e come distribuire la tua applicazione in pochi passaggi
Vent'anni fa Amazon ha attraversato una trasformazione radicale con l'obiettivo di aumentare il ritmo dell'innovazione. In questo periodo abbiamo imparato come cambiare il nostro approccio allo sviluppo delle applicazioni ci ha permesso di aumentare notevolmente l'agilità, la velocità di rilascio e, in definitiva, ci ha consentito di creare applicazioni più affidabili e scalabili. In questa sessione illustreremo come definiamo le applicazioni moderne e come la creazione di app moderne influisce non solo sull'architettura dell'applicazione, ma sulla struttura organizzativa, sulle pipeline di rilascio dello sviluppo e persino sul modello operativo. Descriveremo anche approcci comuni alla modernizzazione, compreso l'approccio utilizzato dalla stessa Amazon.com.
Come spendere fino al 90% in meno con i container e le istanze spot Amazon Web Services
L’utilizzo dei container è in continua crescita.
Se correttamente disegnate, le applicazioni basate su Container sono molto spesso stateless e flessibili.
I servizi AWS ECS, EKS e Kubernetes su EC2 possono sfruttare le istanze Spot, portando ad un risparmio medio del 70% rispetto alle istanze On Demand. In questa sessione scopriremo insieme quali sono le caratteristiche delle istanze Spot e come possono essere utilizzate facilmente su AWS. Impareremo inoltre come Spreaker sfrutta le istanze spot per eseguire applicazioni di diverso tipo, in produzione, ad una frazione del costo on-demand!
In recent months, many customers have been asking us the question – how to monetise Open APIs, simplify Fintech integrations and accelerate adoption of various Open Banking business models. Therefore, AWS and FinConecta would like to invite you to Open Finance marketplace presentation on October 20th.
Event Agenda :
Open banking so far (short recap)
• PSD2, OB UK, OB Australia, OB LATAM, OB Israel
Intro to Open Finance marketplace
• Scope
• Features
• Tech overview and Demo
The role of the Cloud
The Future of APIs
• Complying with regulation
• Monetizing data / APIs
• Business models
• Time to market
One platform for all: a Strategic approach
Q&A
Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...Amazon Web Services
Per creare valore e costruire una propria offerta differenziante e riconoscibile, le startup di successo sanno come combinare tecnologie consolidate con componenti innovativi creati ad hoc.
AWS fornisce servizi pronti all'utilizzo e, allo stesso tempo, permette di personalizzare e creare gli elementi differenzianti della propria offerta.
Concentrandoci sulle tecnologie di Machine Learning, vedremo come selezionare i servizi di intelligenza artificiale offerti da AWS e, anche attraverso una demo, come costruire modelli di Machine Learning personalizzati utilizzando SageMaker Studio.
OpsWorks Configuration Management: automatizza la gestione e i deployment del...Amazon Web Services
Con l'approccio tradizionale al mondo IT per molti anni è stato difficile implementare tecniche di DevOps, che finora spesso hanno previsto attività manuali portando di tanto in tanto a dei downtime degli applicativi interrompendo l'operatività dell'utente. Con l'avvento del cloud, le tecniche di DevOps sono ormai a portata di tutti a basso costo per qualsiasi genere di workload, garantendo maggiore affidabilità del sistema e risultando in dei significativi miglioramenti della business continuity.
AWS mette a disposizione AWS OpsWork come strumento di Configuration Management che mira ad automatizzare e semplificare la gestione e i deployment delle istanze EC2 per mezzo di workload Chef e Puppet.
Scopri come sfruttare AWS OpsWork a garanzia e affidabilità del tuo applicativo installato su Instanze EC2.
Microsoft Active Directory su AWS per supportare i tuoi Windows WorkloadsAmazon Web Services
Vuoi conoscere le opzioni per eseguire Microsoft Active Directory su AWS? Quando si spostano carichi di lavoro Microsoft in AWS, è importante considerare come distribuire Microsoft Active Directory per supportare la gestione, l'autenticazione e l'autorizzazione dei criteri di gruppo. In questa sessione, discuteremo le opzioni per la distribuzione di Microsoft Active Directory su AWS, incluso AWS Directory Service per Microsoft Active Directory e la distribuzione di Active Directory su Windows su Amazon Elastic Compute Cloud (Amazon EC2). Trattiamo argomenti quali l'integrazione del tuo ambiente Microsoft Active Directory locale nel cloud e l'utilizzo di applicazioni SaaS, come Office 365, con AWS Single Sign-On.
Dal riconoscimento facciale al riconoscimento di frodi o difetti di fabbricazione, l'analisi di immagini e video che sfruttano tecniche di intelligenza artificiale, si stanno evolvendo e raffinando a ritmi elevati. In questo webinar esploreremo le possibilità messe a disposizione dai servizi AWS per applicare lo stato dell'arte delle tecniche di computer vision a scenari reali.
Amazon Web Services e VMware organizzano un evento virtuale gratuito il prossimo mercoledì 14 Ottobre dalle 12:00 alle 13:00 dedicato a VMware Cloud ™ on AWS, il servizio on demand che consente di eseguire applicazioni in ambienti cloud basati su VMware vSphere® e di accedere ad una vasta gamma di servizi AWS, sfruttando a pieno le potenzialità del cloud AWS e tutelando gli investimenti VMware esistenti.
Molte organizzazioni sfruttano i vantaggi del cloud migrando i propri carichi di lavoro Oracle e assicurandosi notevoli vantaggi in termini di agilità ed efficienza dei costi.
La migrazione di questi carichi di lavoro, può creare complessità durante la modernizzazione e il refactoring delle applicazioni e a questo si possono aggiungere rischi di prestazione che possono essere introdotti quando si spostano le applicazioni dai data center locali.
Crea la tua prima serverless ledger-based app con QLDB e NodeJSAmazon Web Services
Molte aziende oggi, costruiscono applicazioni con funzionalità di tipo ledger ad esempio per verificare lo storico di accrediti o addebiti nelle transazioni bancarie o ancora per tenere traccia del flusso supply chain dei propri prodotti.
Alla base di queste soluzioni ci sono i database ledger che permettono di avere un log delle transazioni trasparente, immutabile e crittograficamente verificabile, ma sono strumenti complessi e onerosi da gestire.
Amazon QLDB elimina la necessità di costruire sistemi personalizzati e complessi fornendo un database ledger serverless completamente gestito.
In questa sessione scopriremo come realizzare un'applicazione serverless completa che utilizzi le funzionalità di QLDB.
Con l’ascesa delle architetture di microservizi e delle ricche applicazioni mobili e Web, le API sono più importanti che mai per offrire agli utenti finali una user experience eccezionale. In questa sessione impareremo come affrontare le moderne sfide di progettazione delle API con GraphQL, un linguaggio di query API open source utilizzato da Facebook, Amazon e altro e come utilizzare AWS AppSync, un servizio GraphQL serverless gestito su AWS. Approfondiremo diversi scenari, comprendendo come AppSync può aiutare a risolvere questi casi d’uso creando API moderne con funzionalità di aggiornamento dati in tempo reale e offline.
Inoltre, impareremo come Sky Italia utilizza AWS AppSync per fornire aggiornamenti sportivi in tempo reale agli utenti del proprio portale web.
Database Oracle e VMware Cloud™ on AWS: i miti da sfatareAmazon Web Services
Molte organizzazioni sfruttano i vantaggi del cloud migrando i propri carichi di lavoro Oracle e assicurandosi notevoli vantaggi in termini di agilità ed efficienza dei costi.
La migrazione di questi carichi di lavoro, può creare complessità durante la modernizzazione e il refactoring delle applicazioni e a questo si possono aggiungere rischi di prestazione che possono essere introdotti quando si spostano le applicazioni dai data center locali.
In queste slide, gli esperti AWS e VMware presentano semplici e pratici accorgimenti per facilitare e semplificare la migrazione dei carichi di lavoro Oracle accelerando la trasformazione verso il cloud, approfondiranno l’architettura e dimostreranno come sfruttare a pieno le potenzialità di VMware Cloud ™ on AWS.
1) The document discusses building a minimum viable product (MVP) using Amazon Web Services (AWS).
2) It provides an example of an MVP for an omni-channel messenger platform that was built from 2017 to connect ecommerce stores to customers via web chat, Facebook Messenger, WhatsApp, and other channels.
3) The founder discusses how they started with an MVP in 2017 with 200 ecommerce stores in Hong Kong and Taiwan, and have since expanded to over 5000 clients across Southeast Asia using AWS for scaling.
This document discusses pitch decks and fundraising materials. It explains that venture capitalists will typically spend only 3 minutes and 44 seconds reviewing a pitch deck. Therefore, the deck needs to tell a compelling story to grab their attention. It also provides tips on tailoring different types of decks for different purposes, such as creating a concise 1-2 page teaser, a presentation deck for pitching in-person, and a more detailed read-only or fundraising deck. The document stresses the importance of including key information like the problem, solution, product, traction, market size, plans, team, and ask.
This document discusses building serverless web applications using AWS services like API Gateway, Lambda, DynamoDB, S3 and Amplify. It provides an overview of each service and how they can work together to create a scalable, secure and cost-effective serverless application stack without having to manage servers or infrastructure. Key services covered include API Gateway for hosting APIs, Lambda for backend logic, DynamoDB for database needs, S3 for static content, and Amplify for frontend hosting and continuous deployment.
This document provides tips for fundraising from startup founders Roland Yau and Sze Lok Chan. It discusses generating competition to create urgency for investors, fundraising in parallel rather than sequentially, having a clear fundraising narrative focused on what you do and why it's compelling, and prioritizing relationships with people over firms. It also notes how the pandemic has changed fundraising, with examples of deals done virtually during this time. The tips emphasize being fully prepared before fundraising and cultivating connections with investors in advance.
AWS_HK_StartupDay_Building Interactive websites while automating for efficien...Amazon Web Services
This document discusses Amazon's machine learning services for building conversational interfaces and extracting insights from unstructured text and audio. It describes Amazon Lex for creating chatbots, Amazon Comprehend for natural language processing tasks like entity extraction and sentiment analysis, and how they can be used together for applications like intelligent call centers and content analysis. Pre-trained APIs simplify adding machine learning to apps without requiring ML expertise.
Amazon Elastic Container Service (Amazon ECS) è un servizio di gestione dei container altamente scalabile, che semplifica la gestione dei contenitori Docker attraverso un layer di orchestrazione per il controllo del deployment e del relativo lifecycle. In questa sessione presenteremo le principali caratteristiche del servizio, le architetture di riferimento per i differenti carichi di lavoro e i semplici passi necessari per poter velocemente migrare uno o più dei tuo container.
Databases on AWS: Scaling Applications & Modern Data Architectures
1. Blair Layton, Business Development Manager,
AWS, APAC
September 14, 2017
AWS Workshop Series
Databases on AWS
Scaling Applications & Modern Data Architectures
7. Account Support
Support
Managed
Services
Professional
Services
Partner
Ecosystem
Training &
Certification
Solution
Architects
Account
Management
Security &
Pricing Reports
Technical Acct.
Management
Marketplace
Business
Applications
DevOps Tools
Business
Intelligence
Security
Networking
Database &
Storage
SaaS
Subscriptions
Operating
Systems
Mobile
Build, Test,
Monitor Apps
Push
Notifications
Build, Deploy,
Manage APIs
Device Testing
Identity
Enterprise
Applications
Document
Sharing
Email &
Calendaring
Hosted
Desktops
Application
Streaming
Backup
Game
Development
3D Game
Engine
Multi-player
Backends
Mgmt. Tools
Monitoring
Auditing
Service Catalog
Server
Management
Configuration
Tracking
Optimization
Resource
Templates
Automation
Analytics
Query Large
Data Sets
Elasticsearch
Business
Analytics
Hadoop/Spark
Real-time Data
Streaming
Orchestration
Workflows
Managed
Search
Managed ETL
Artificial
Intelligence
Voice & Text
Chatbots
Machine
Learning
Text-to-Speech
Image Analysis
Deep Learning
IoT
Rules Engine
Local Compute
and Sync
Device
Shadows
Device
Gateway
Registry
Hybrid
Devices & Edge
Systems
Data
Integration
Integrated
Networking
Resource
Management
VMware on
AWS
Identity
Federation
Migration
Application
Discovery
Application
Migration
Database
Migration
Server
Migration
Data Migration
Infrastructure Regions
Availability
Zones
Points of
Presence
Compute Containers
Event-driven
Computing
Virtual
Machines
Simple Servers Auto Scaling Batch
Web
Applications
Storage Object Storage Archive Block Storage
Managed File
Storage
Exabyte-scale
Data Transport
Database MariaDB
Data
Warehousing
NoSQLAurora MySQL Oracle SQL ServerPostgreSQL
Application
Services
Transcoding Step Functions Messaging
Security
Certificate
Management
Web App.
Firewall
Identity &
Access
Key Storage &
Management
DDoS
Protection
Application
Analysis
Active
Directory
Dev Tools
Private Git
Repositories
Continuous
Delivery
Build, Test, and
Debug
Deployment
Networking
Isolated
Resources
Dedicated
Connections
Load Balancing Scalable DNSGlobal CDN
The AWS
Platform
8. * As of 1 September 2017
2010
61
516
1,017
159
2012 2014 2016
AWS has been continually expanding its services to support virtually any cloud workload, and it
now has more than 90 services that range from compute, storage, networking, database,
analytics, application services, deployment, management, developer, mobile, Internet of Things
(IoT), Artificial Intelligence (AI), security, hybrid and enterprise applications. AWS has launched a
total of 795 new features and/or services year to date* - for a total of 3,708 new features and/or
services since inception in 2006.
AWS Pace of Innovation
9. Strengthen your security posture
Leverage security
enhancements from 1M+
customer experiences
Benefit from AWS
industry leading
security teams 24/7,
365 days a year
Security infrastructure
built to satisfy military, global
banks, and other high-
sensitivity organizations
Over 50 global
compliance
certifications and
accreditations
“We work closely with AWS to
develop a security model, which we
believe enables us to operate more
securely in the public cloud than we
can in our own data centers.”
Rob Alexander - CIO, Capital One
10. Access a deep set of cloud security tools
Virtual Private Cloud
Isolated cloud resources
Web Application Firewall
Filter Malicious Web Traffic
Shield
DDoS protection
Certificate Manager
Provision, manage, and
deploy SSL/TSL certificates
Networking
Key Management Service
Manage creation and control
of encryption keys
CloudHSM
Hardware-based key storage
Server-Side Encryption
Flexible data encryption
options
Encryption
IAM
Manage user access and
encryption keys
SAML Federation
SAML 2.0 support to allow
on-prem identity integration
Directory Service
Host and manage Microsoft
Active Directory
Organizations
Manage settings for multiple
accounts
Identity & Management
Service Catalog
Create and use standardized
products
Config
Track resource inventory and
changes
CloudTrail
Track user activity and API
usage
CloudWatch
Monitor resources and
applications
Inspector
Analyze application security
Artifact
Self-service for AWS’
compliance reports
Compliance
11. More assurance programs than anyone
Certifications /
Attestations
C5 [Germany], Cyber Essentials Plus [UK], DoD SRG, FedRAMP, FIPS, IRAP [Australia],
ISO 27001, ISO 27017, ISO 27018, ISO 9001, MLPS Level 3 [China],
MTCS Tier 3 [Singapore], PCI DSS Level 1, SEC Rule 17a-4(f), SOC 1, SOC 2, SOC 3
Laws,
Regulations,
and Privacy
DNB [Netherlands], DPA – 1998 [U.K.], EAR, EU Data Protection Directive,
EU Model Clauses, FERPA, Gramm-Leach-Bliley Act (GLBA), HIPAA, HITECH, IRS 1075,
ITAR, My Number Act [Japan], PDPA – 2010 [Malaysia], PDPA – 2012 [Singapore],
PIPEDA [Canada], Privacy Act [Australia], Privacy Act [New Zealand],
Spanish DPA Authorization, VPAT / Section 508
Alignments and
Frameworks
CIS, CJIS, CLIA, CMS Edge, CMSR, CSA, EU-US Privacy Shield, FISC [Japan], FISMA,
G-Cloud [U.K.], GxP (FDA CFR 21 Part 11), ICREA, IT Grundschutz [Germany], MITA 3.0,
MPAA, NIST, PHR, UK Cloud Security Principles, Uptime Institute Tiers
12. Global Enterprise Customers
General Electric Capital One BMW
Johnson &
Johnson Merck Nordstrom
“There is no public cloud infrastructure provider
that has more robust enterprise capabilities.”
Marc Benioff, Chairman & CEO, Salesforce
13. AWS Positioned as a Leader in the Gartner Magic Quadrant for Cloud
Infrastructure as a Service, Worldwide*
AWS is positioned
highest in execution
and furthest in vision
within the Leaders
Quadrant
*Gartner, Magic Quadrant for Cloud Infrastructure as a Service, Worldwide, Leong, Lydia, Petri, Gregor, Gill, Bob, Dorosh, Mike, August 32016
This graphic was published by Gartner, Inc. as part of a larger research document and should be evaluated in the context of the entire document. The Gartner document is available upon request from AWS : http://www.gartner.com/doc/reprints?id=1-2G2O5FC&ct=150519&st=sb
Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner's research organization and should not be construed as
statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.
14. AWS Positioned as a Leader in the Gartner Magic Quadrant for
Operational Database Management Systems*
*Gartner, Magic Quadrant for Public Cloud Storage Services, Worldwide, Bala, Raj, Chandrasekran, 26 July 2016
This graphic was published by Gartner, Inc. as part of a larger research document and should be evaluated in the context of the entire document. The Gartner document is available upon request from AWS : http://www.gartner.com/doc/reprints?id=1-2IH2LGI&ct=150626&st=sb
Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner's research organization and should not be construed as
statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.
15. DBaaS report
“AWS not only has the
largest adoption of DBaaS, it also offers
the widest range of offerings to support
analytical, operational, and transactional
workloads.”
“AWS’s key strengths lay in its dynamic
scale, automated administration, flexibility
of database offerings, strong security,
and high-availability capabilities, which
make it a preferred choice for customers”
The Forrester Wave™ is copyrighted by Forrester Research, Inc. Forrester and Forrester Wave™ are trademarks of Forrester Research, Inc. The Forrester Wave™ is a graphical representation of
Forrester's call on a market and is plotted using a detailed spreadsheet with exposed scores, weightings, and comments. Forrester does not endorse any vendor, product, or service depicted in the
Forrester Wave. Information is based on best available resources. Opinions reflect judgment at the time and are subject to change.
16. The AWS Cloud
Eliminate costly technical debt and reallocate resources so
you can deliver high-value, revenue-generating projects faster.
Innovate faster and solidify your competitive advantage by
merging startup agility with enterprise experience and resources.
Reduce risk by focusing resources dedicated to security, compliance
and availability to the most important areas of your business.
"AWS is our trusted partner that is going to run our company for the next 140 years.”
Jim Fowler – CIO, General Electric
18. What is a Large Scale Event
An event where you need more capacity than normally
allocated for a period of time
Typically from minutes to days, but could be a couple of
weeks
Often associated with a sudden surge of users
Hard to architect and provision for at a reasonable cost
Consumers get angry when it all goes wrong!
19.
20.
21.
22.
23.
24. What is a Large Scale Event?
For you, it could be as simple as needing twice as much
capacity for a short promotion
Everyone’s Large Scale Event is different, but the
underlying concepts are the same
25. What Problems do you Face?
Unknown infrastructure requirements
• Cost?
Short duration of the event
• Massive investment in infrastructure that is otherwise idle or
underutilized
• Often tight deadlines to get the system live
Legacy system integration
Understanding system bahaviour, required metrics
Getting the right architecture
Finding the right talent
31. Day One, User One
A single EC2 Instance
• With full stack on this host
• Web app
• Database
• Management
• Etc.
A single Elastic IP
Route53 for DNS
EC2
Instance
Elastic IP
Amazon
Route 53
User
32. “We’re gonna need a bigger box”
Simplest approach
Can now leverage PIOPs
High I/O instances
High memory instances
High CPU instances
High storage instances
Easy to change instance sizes
Will hit an endpoint eventually
x1.32xlarge
m4.large
t2.micro
33. Day One, User One:
We could potentially get to a
few hundred to a few
thousand depending on
application complexity and
traffic
No failover
No redundancy
Too many eggs in one
basket
EC2
Instance
Elastic IP
Amazon
Route 53
User
34. Day Two, User >1
First let’s separate out our
single host into more than one.
Web
Database
• Make use of a database
service?
Web
Instance
Database
Instance
Elastic IP
Amazon
Route 53
User
37. User >100
First let’s separate out our
single host into more than one.
Web
Database
• Use RDS to make your life
easier
Web
Instance
Elastic IP
RDS DB
Instance
Amazon
Route 53
User
38. User > 1000
Next let’s address our lack of
failover and redundancy issues
Elastic Load Balancing
Another web instance
• In another Availability Zone
Enable Amazon RDS multi-AZ
Web
Instance
RDS DB Instance
Active (Multi-AZ)
Availability Zone Availability Zone
Web
Instance
RDS DB Instance
Standby (Multi-AZ)
Elastic Load
Balancing
Amazon
Route 53
User
39. User >10 ks–100 ks
RDS DB Instance
Active (Multi-AZ)
Availability Zone Availability Zone
RDS DB Instance
Standby (Multi-AZ)
Elastic Load
Balancing
RDS DB Instance
Read Replica
RDS DB Instance
Read Replica
RDS DB Instance
Read Replica
RDS DB Instance
Read Replica
Web
Instance
Web
Instance
Web
Instance
Web
Instance
Web
Instance
Web
Instance
Web
Instance
Web
Instance
Amazon
Route 53
User
40. This will take us pretty far
honestly, but we care about
performance and efficiency,
so let’s clean this up a bit
41. Shift Some Load Around
Let’s lighten the load on our
web and database instances
Move static content from the web
instance to Amazon S3 and
CloudFront
Move dynamic content from the
Elastic Load Balancing to
CloudFront
Move session/state and DB
caching to ElastiCache or
DynamoDB
Web
Instance
RDS DB Instance
Active (Multi-AZ)
Availability Zone
Elastic Load
Balancing
Amazon S3
Amazon
CloudFront
Amazon
Route 53
User
ElastiCache
Amazon
DynamoDB
42. User >500k+
Availability Zone
Amazon
Route 53
User
Amazon S3
Amazon
Cloudfront
Availability Zone
Elastic Load
Balancing
DynamoDB
RDS DB Instance
Read Replica
Web
Instance
Web
Instance
Web
Instance
ElastiCache RDS DB Instance
Read Replica
Web
Instance
Web
Instance
Web
Instance
ElastiCacheRDS DB Instance
Standby (Multi-AZ)
RDS DB Instance
Active (Multi-AZ)
43. Time to make some
radical improvements at
the web & app layers
44. SOAing
Move services into their own tiers
or modules. Treat each of these
as 100% separate pieces of your
infrastructure and scale them
independently.
Amazon.com and AWS do this
extensively! It offers flexibility and
greater understanding of each
component.
45. Loose Coupling Sets You Free!
The looser they're coupled, the bigger they scale
• Use independent components
• Design everything as a black box
• Decouple interactions
• Favor services with built in redundancy and scalability than
building your own
Controller A Controller B
Controller A Controller B
Q Q
Tight Coupling
Use Amazon SQS as Buffers
Loose Coupling
46. Users > 1 Million
RDS DB Instance
Active (Multi-AZ)
Availability Zone
Elastic Load
Balancer
RDS DB Instance
Read Replica
RDS DB Instance
Read Replica
Web
Instance
Web
Instance
Web
Instance
Web
Instance
Amazon
Route 53
User
Amazon S3
Amazon
Cloudfront
Amazon
DynamoDB
Amazon SQS
ElastiCache
Worker
Instance
Worker
Instance
Amazon
CloudWatch
Internal App
Instance
Internal App
Instance
Amazon SES
48. From 5 to 10 Million Users
You may start to run into issues with your database around
contention on the write master.
How can you solve it?
Federation (splitting into multiple DBs based on function)
Sharding (splitting one data set up across multiple hosts)
Moving some functionality to other types of DBs (NoSQL)
49. Database Federation
• Split up databases by function or
purpose
• Harder to do cross-function
queries
• Essentially delays the need for
something like sharding or
NoSQL until much further down
the line
• Won’t help with single huge
functions or tables
ForumsDB
UsersDB
ProductsDB
50. Sharded Horizontal Scaling
• More complex at the
application layer
• ORM support can help
• No practical limit on
scalability
• Operational complexity and
sophistication
• Shard by function or key
space
• RDBMS or NoSQL
User ShardID
002345 A
002346 B
002347 C
002348 B
002349 A
A
B
C
51. Shifting Functionality to NoSQL
Similar in a sense to federation
Again, think about the earlier points for when you need NoSQL
vs SQL
Leverage hosted services like Amazon DynamoDB
Consider these use cases:
• Leaderboards and scoring
• Rapid ingest of clickstream or log data
• Temporary data needs (cart data)
• “Hot” tables
• Metadata or lookup tables
Amazon
DynamoDB
52. From 5 to 10 Million Users
You may start to run into issues with speed and performance of
your applications
Make sure you have monitoring, metrics, & logging in place
• If you can’t build it internally, outsource it! (third-party SaaS)
Pay attention to what customers are saying works well vs.
what doesn’t, and use this as direction
Try to work on squeezing as much performance out of each
service or component
55. Sizing for Peak Loads
Promotions cause huge spikes in user activity
Auto-scaling works for the web and middle tier
RDS instances have to be sized for peak loads
Adopted our recommendations in a staged approach
56. Amazon
Route 53
CloudFront
Availability Zone #1
Amazon S3
Availability Zone #2
Amazon EC2Amazon EC2
Auto Scaling
Geo Routing
US East
Amazon
CloudWatch
RDS DB Instance
Active (Multi-AZ)
RDS DB Instance
Standby (Multi-AZ)
User
57. Amazon
Route 53
CloudFront
Availability Zone #1
Amazon S3
Availability Zone #2
Amazon EC2Amazon EC2
Auto Scaling
Geo Routing
US East
User
Amazon
CloudWatch
RDS DB Instance
Active (Multi-AZ)
RDS DB Instance
Standby (Multi-AZ)
RDS DB
instance read
replica
58. Amazon
Route 53
CloudFront
Availability Zone #1
Amazon S3
DynamoDB
Availability Zone #2
Amazon EC2Amazon EC2
Auto Scaling
Geo Routing
US East
User
Amazon
CloudWatch
RDS DB Instance
Active (Multi-AZ)
RDS DB Instance
Standby (Multi-AZ)
RDS DB
instance read
replica
59. Amazon
Route 53
CloudFront
Availability Zone #1
Amazon S3
DynamoDB
Availability Zone #2
Amazon EC2
ElastiCache
Memcached
Amazon EC2
Auto Scaling
Geo Routing
US East
User
Amazon
CloudWatch
RDS DB Instance
Active (Multi-AZ)
RDS DB Instance
Standby (Multi-AZ)
RDS DB
instance read
replica
60. Amazon
Route 53
CloudFront
Availability Zone #1
Amazon S3
DynamoDB
Availability Zone #2
Amazon EC2
ElastiCache
(Redis Master)
ElastiCache
Memcached
Amazon EC2
Redis Slave
Auto Scaling
Geo Routing
US East
User
Amazon
CloudWatch
RDS DB Instance
Active (Multi-AZ)
RDS DB Instance
Standby (Multi-AZ)
RDS DB
instance read
replica
Amazon Redshift
61. Lessons Learned
Listen to AWS Business Development and Solution
Architects ;)
Gaming promotions much easier to handle
Unpredicted loads also easier to handle
Senior operations person moving to a new game
Customers get a much better gaming experience!
63. Customer Success Stories
Telecommunications Company
iPhone 5s/5c, 6/6+, 7 and Samsung Note 3-8 and S4-8
Needed a system to handle a huge number of concurrent
requests
Failed previously at the iPhone5 launch
Management directive to succeed at all costs!
65. Great Success!
Tested with 150,000 concurrent users
All phones gone within 2 minutes
No phones misallocated or unallocated
Management said the system was too fast!
Actual launch went smoothly
66. Lessons
AWS can provide infrastructure for applications to scale to
very high concurrent users
Managed services allow for quick deployment and changes
to infrastructure
Impossible for the customer to execute internally
Massive cost savings, even with huge over provisioning
New, improved system now developed for iPhone 8
67. “With our systems on AWS, we
can scale our resources more
than 130-fold in 30 minutes,
enabling us to support more
than 2,500 orders per second”
KT Chiu
Founder and Chief Executive Officer
TixCraft
69. What to Expect from the Session
• Microservices at Amazon
• Overview and Challenges
• Key Elements and Benefits
• Two Pizza Teams
• Data Architecture Challenges
• Transactions and Rollbacks
• Streams
• Master Data Management
• Choosing a Data Store
• Aggregation
72. Monolithic vs. SOA vs. Microservices
Microservices:
Many very small components
Business logic lives inside of
single service domain
Simple wire protocols(HTTP
with XML/JSON)
API driven with SDKs/Clients
SOA:
Fewer more sophisticated
components
Business logic can live across
domains
Enterprise Service Bus like
layers between services
Middleware
73. Monolithic vs. SOA vs. Microservices
SOA
Coarse-grained
Microservices
Fine-grained
Monolithic
Single Unit
74. Microservice Challenges
Distributed computing is hard
Transactions
• Multiple Databases across multiple services
Eventual Consistency
Lots of moving parts
Service discovery
Increase coordination
Increase message routing
75. Key Elements of Microservices…
Some core concepts are common to all services
• Service registration, discovery, wiring, administration
• State management
• Service metadata
• Service versioning
• Caching
Low Friction Deployment
Automated Management and Monitoring
76. Key Elements of Microservices…
Eliminates any long-term commitment to a technology stack
Polyglot ecosystem
Polyglot persistence
• Decompose Databases
• Database per microservice pattern
Allows easy use of Canary and Blue-Green deployments
77. Key Elements of Microservices…
Each microservice is:
• Elastic: scales up or down independently of other services
• Resilient: services provide fault isolation boundaries
• Composable: uniform APIs for each service
• Minimal: highly cohesive set of entities
• Complete: loosely coupled with other services
Controller A Controller B
Controller A Controller B
Q Q
Tight Coupling
Loose Coupling
78. Microservices Benefits
Fast to develop
Rapid deployment
Parallel development & deployment
Closely integrated with DevOps
• Now ”DevSecOps”
Improved scalability, availability & fault tolerance
More closely aligned to business domain
80. How do Two Pizza Teams work?
We call them “Service teams”
Own the “primitives” they build:
• Product planning (roadmap)
• Development work
• Operational/Client support work
“You build it, you run it”
Part of a larger concentrated org (Amazon.com, AWS,
Prime, etc)
82. Challenge: Centralized Database
user-svc account-svccart-svc
DB
Applications often have a
monolithic data store
• Difficult to make schema changes
• Technology lock-in
• Vertical scaling
• Single point of failure
83. Centralized Database – Anti-pattern
Applications often have a
monolithic data store
• Difficult to make schema changes
• Technology lock-in
• Vertical scaling
• Single point of failure
user-svc account-svccart-svc
DB
84. Decentralized Data Stores
account-svccart-svc
DynamoDB RDS
user-svc
ElastiCache RDS
Polyglot Persistence
Each service chooses it’s data
store technology
Low impact schema changes
Independent scalability
Data is gated through the
service API
85. Challenge: Transactional Integrity
Polyglot persistence generally translates into
eventual consistency
Asynchronous calls allow non-blocking, but
returns need to be handled properly
How about transactional integrity?
• Event-sourcing – Capture changes as
sequence of events
• Staged commit
• Rollback on failure
ERROR
STATE?
ROLLBACK?
86. Best Practice: Use Correlation IDs
09-02-2015 15:03:24 ui-svc INFO [uuid-123] ……
09-02-2015 15:03:25 catalog-svc INFO [uuid-123] ……
09-02-2015 15:03:26 checkout-svc ERROR [uuid-123] ……
09-02-2015 15:03:27 payment-svc INFO [uuid-123] ……
09-02-2015 15:03:27 shipping-svc INFO [uuid-123] ……
ui-svc
catalog-
svc
checkout-
svc
shipping-
svc
payment-
svc
request correlation id:
“uuid-123”
correlation id:
“uuid-123”
87. Best Practice: Microservice owns Rollback
Every microservice should expose
it’s own “rollback” method
This method could just rollback
changes, or trigger subsequent
actions
• Could send a notification
If you implement staged commit,
also expose a commit function
Microservice
Function 1
Rollback
Commit
(optional)
88. Event-Driven: DynamoDB Streams
If async, consider event-driven
approach with DynamoDB Streams
Don’t need to manage function
execution failure, DDB Streams
automatically retries until successful
“Attach” yourself to the data of interest
Microservice
89. Challenge: Report Errors / Rollback
What if functions fail? (business logic failure,
not code failure)
Create a “Transaction Manager”
microservice that notifies all relevant
microservices to rollback or take action
DynamoDB is the trigger for the clean-up
function (could be SQS, Kinesis etc.)
Use Correlation ID to identify relations
mm-svc
Transaction
Manager
Function
DDB Streams
API Call
Error Table
91. Challenge: Code Error
Lambda Execution Error because of
faulty code
Leverage Cloudwatch Logs to
process error message and call
Transaction Manager
Set Cloudwatch Logs Metric Filter to
look for Error/Exception and call
Lambda Handler upon Alarm state
ui-svc
Cloudwatch
Logs
Cloudwatch
Alarm
Transaction
Manager
Function
92. Beware: Stream Model with AWS Lambda
DynamoDB Streams and Kinesis streams directly work
with AWS Lambda, however AWS Lambda needs to
acknowledge processing the message correctly
If Lambda fails to process the message, the stream
horizon will not be moved forward, creating a “jam”
Solution: Monitor AWS Lambda Error Cloudwatch
Metric and react when error rate of same “Correlation ID”
keeps increasing
93. MDM – Keep Data Consistent
Databases
AWS Lambda
“Cleanup”
Function
Cloudwatch
Scheduled Event
Perform Master Data Management
(MDM) to keep data consistent
Create AWS Lambda function to
check consistencies across
microservices and “cleanup”
Create Cloudwatch Event
to schedule the function
(e.g. hourly basis)
97. Challenge: What Service to Use?
Many problems can be solved with NoSQL, RDBMS or
even in-memory cache technologies
Non-functional requirements can help identify appropriate
services
Solution: Classify your organizations non-functional
requirements and map them to service capabilities
98. Determine Your Non-Functional Requirements
Requirement
Latency > 1s 200 ms -1s 20 ms – 200 ms < 20 ms
Durability 99.99 99.999 99.9999 > 99.9999
Storage Scale < 256 GB 256 GB – 1 TB 1 TB – 16 TB > 16 TB
Availability 99 99.9 99.95 > 99.95
Data Class Public Important Secret Top Secret
Recoverability 12 – 24 hours 1 – 12 hours 5 mins – 1 hour < 5 mins
Skills None Average Good Expert
This is only an example. Your company’s classifications will be different
There will be other requirements such as regulatory compliance too.
99. Map Non-Functional Requirements to Services
Service Latency Durability Storage Availability Recoverability from AZ Failure
(RPO, RTO)
RDS
< 100 ms > 99.8 (EBS) 6 TB (SQL
Server 16 TB)
99.95 0s and 90s (MAZ)
Aurora < 100 ms > 99.9 64 TB > 99.95 0s and < 30s (MAZ)
Aurora + ElastiCache < 1 ms > 99.9 64 TB > 99.95 0s and < 30s (MAZ)
DynamoDB < 10 ms > 99.9 No Limit > 99.99 0s and 0s
DynamoDB / DAX < 1 ms > 99.9 No Limit > 99.99 0s and 0s
ElastiCache Redis < 1 ms N/A 3.5 TiB 99.95 0s and < 30s (MAZ)
Elasticsearch < 200 ms > 99.9 150 TB 99.95 0s and < 30s (Zone Aware)
S3 < 500 ms 99.999999999 No Limit 99.99 0s and 0s
The information below is not exact and does not represent SLAs
100. Finalizing Your Data Store Choices
After mapping your non-functional requirements to services you
should have a short list to choose from
Functional requirements such as geospatial data and query support
will refine the list further
You may institute standards to make data store selection simpler and
also make it easier for people to move between teams, e.g Redis over
Memcached and PostgreSQL over MySQL. These can still be
overridden, but require justification to senior management
101. Challenge: Reporting and Analytics
Data is now spread across a number of isolated polyglot
data stores
Consolidation and aggregation required
Solution: Pull data from required microservices, push
data to data aggregation service, use pub/sub, or use a
composite service (anti-pattern).
103. Aggregation
usr svc
Pull model Push model
Data Aggregation
Application
account svc cart svc
usr svc
account svc
cart svc
Data
Aggregation
Application
Push
Pull
104. Aggregation
usr svc
Pull model Push model
Data Aggregation
Application
usr svc
Data
Aggregation
Application
Pub/Sub
account svc cart svc
account svc
cart svc
Pub Sub
usr svc
account svc
cart svc
Data
Aggregation
Application
Push
Pull
105. Aggregation
usr svc
Pull model Push model
Data Aggregation
Application
usr svc
Data
Aggregation
Application
Pub/Sub Composite
Composite Data Service
usr account cart
account svc cart svc
account svc
cart svc
Pub Sub
usr svc
account svc
cart svc
Data
Aggregation
Application
Push
Pull
106. A Few Thoughts
Use Non-Functional Requirements to help identify the
right data store(s) for each microservice
Use polyglot persistence to avoid bottlenecks, schema
issues and allow independent scalability (and cache)
Embrace eventual consistency and design fault-tolerant
business processes which can recover
Think ahead and plan your analytics requirements as
part of the overall architecture
108. Beware of Costs
Many microservices with redundant, isolated data stores
can blow out costs
One customer in India with 300 microservices is now
looking at costs reduction
Primary, standby, read replicas and cache per microservice
with databases using PIOPs storage
Great performance, scale and resilience, but expensive
109. Invest in Governance and Architecture
Giving each team independence is empowering
However, architects still need to understand the core
components of the distributed system and enforce
standards
An Indonesian customer is changing to microservices now,
but doesn’t have governance, architecture or standards in
place
Debugging distributed system is already proving complex
Standard logging, error handing and oversight will help