Many enterprises on their journey to the cloud require consistent and highly secure connectivity between their existing data center and AWS footprints. In this session, we walk through the different architecture options for establishing this connectivity using AWS Direct Connect and VPN. With each option, we evaluate the considerations and discuss risk, performance, high availability, encryption, and cost. As we walk through these options, we discuss the associated best practices and answer some of the common questions that arise from enterprises that tackle design and implementation. Learn how to make connectivity decisions that are suitable for your workloads and how to best prepare against business impact in the event of failure.
Post-Production Media Delivery at Scale with AWS (STG391) - AWS re:Invent 2018Amazon Web Services
Netflix is using AWS Snowball Edge to deliver post-production content to our asset management system, called Content Hub, in the AWS Cloud. Production companies have been historically using LTO tapes to move data around, and that has well-known complications. In order to accelerate and secure our media workflows Netflix has shifted to using Snowball Edge devices for data migration. Please join us to learn how Netflix is using the Snowball Edge service at scale.
SPEKE-ing of Content Protection & DRM (MAE302) - AWS re:Invent 2018Amazon Web Services
Encrypting high-value content has long been a challenge for media customers. The number of digital rights management (DRM) schemes, transcoding and packaging vendors, and packaging formats created hundreds of potential integration points, each requiring extensive engineering resources and time. The Secure Packager and Encoder Key Exchange (SPEKE) is a single, open REST API specification for authentication and key exchange between DRM platforms and encryptors (transcoders and packagers) that reduces the number of integration points and accelerates time-to-market for customers for on-premises, hybrid, and cloud video workflows. In this session, learn about the SPEKE API and the Content Protection Information Exchange (CPIX) format, and how SPEKE establishes secure key exchange using Amazon API Gateway, document encryption, IAM roles, and Signature Version 4 signing for live and file-based video workflows.
Operationalizing Microsoft Workloads (WIN320) - AWS re:Invent 2018Amazon Web Services
In this session, we discuss best practices and approaches for managing your Microsoft Windows-based infrastructure on AWS. We describe the AWS services that can help you manage Windows servers at scale and realize the maximum benefit of the cloud. In addition, we show you how to build simple and effective solutions to manage logging, configuration drift, inventory, licensing, and more. Please join us for a speaker meet-and-greet following this session at the Speaker Lounge (ARIA East, Level 1, Willow Lounge). The meet-and-greet starts 15 minutes after the session and runs for half an hour.
Optimizing Costs as You Scale on AWS (ENT302) - AWS re:Invent 2018Amazon Web Services
The cloud offers a first-in-a-career opportunity to constantly optimize your costs as you grow and stay on the leading edge of innovation. By developing a cost-conscious culture and assigning the responsibility for efficiency to the appropriate business owners, you can deliver innovation efficiently and cost effectively. In this session, we share The Vanguard Group’s real-world experience of optimizing their costs, and we review a wide range of cost planning, monitoring, and optimization strategies.
Leadership Session: Using DevOps, Microservices, and Serverless to Accelerate...Amazon Web Services
In this session, learn how AWS can help you innovate faster with DevOps, microservices, and serverless. Join us for a rare and intimate discussion with AWS senior leaders: David Richardson, VP of Serverless, Ken Exner, director of AWS Developer Tools, and Deepak Singh, director of Compute Services, Containers, and Linux. Hear them share development best practices and discuss key learnings from building modern applications at Amazon.com. Also, learn how developers can leverage containers, AWS Lambda, and developer tools to build and run production applications in the cloud.
Inside AWS: Technology Choices for Modern Applications (SRV305-R1) - AWS re:I...Amazon Web Services
AWS offers a wide range of cloud computing services and technologies, but we rarely state opinions about which services and technologies customers should choose. When it comes to building our own services, our engineering groups have strong opinions, and they express them in the technologies they pick. Join Tim Bray, Senior Principal Engineer, to hear about the high-level choices that developers at AWS and our customers have to make. Here are a few: Are microservices always the way to go? Serverless, containers, or serverless containers? Is relational over? Is Java over? The talk is technical and based on our experience in building AWS services and working with customers on their cloud-native apps.
All About the Customer: GraphQL & Real-Time Subscriptions in Customer Service...Amazon Web Services
ALDO wanted to improve in-store customer experience by offering rapid personalized assistance. In this session, follow ALDO’s journey in adopting GraphQL and serverless technologies for their in-store modern apps. Learn how this global fashion brand is offering elevated real-time, personalized customer experiences while optimizing in-store retail operations. Hear how they integrated with their existing infrastructure, along with other challenges. They also share best practices that they are carrying forward for future apps.
AWS Snowball Edge and AWS Greengrass for Fun and Profit (STG388) - AWS re:Inv...Amazon Web Services
Are you curious about edge computing? Get hands-on training on AWS Greengrass, and learn how to create and deploy custom machine images for AWS Snowball Edge. In this workshop, we focus on a machine learning (ML) use case, and we dive deep into Snowball Edge and AWS Greengrass to process data at the edge. You ingest video as the input for an ML-based pose estimation solution to drive the actions of an augmented reality application in Amazon Sumerian.
Post-Production Media Delivery at Scale with AWS (STG391) - AWS re:Invent 2018Amazon Web Services
Netflix is using AWS Snowball Edge to deliver post-production content to our asset management system, called Content Hub, in the AWS Cloud. Production companies have been historically using LTO tapes to move data around, and that has well-known complications. In order to accelerate and secure our media workflows Netflix has shifted to using Snowball Edge devices for data migration. Please join us to learn how Netflix is using the Snowball Edge service at scale.
SPEKE-ing of Content Protection & DRM (MAE302) - AWS re:Invent 2018Amazon Web Services
Encrypting high-value content has long been a challenge for media customers. The number of digital rights management (DRM) schemes, transcoding and packaging vendors, and packaging formats created hundreds of potential integration points, each requiring extensive engineering resources and time. The Secure Packager and Encoder Key Exchange (SPEKE) is a single, open REST API specification for authentication and key exchange between DRM platforms and encryptors (transcoders and packagers) that reduces the number of integration points and accelerates time-to-market for customers for on-premises, hybrid, and cloud video workflows. In this session, learn about the SPEKE API and the Content Protection Information Exchange (CPIX) format, and how SPEKE establishes secure key exchange using Amazon API Gateway, document encryption, IAM roles, and Signature Version 4 signing for live and file-based video workflows.
Operationalizing Microsoft Workloads (WIN320) - AWS re:Invent 2018Amazon Web Services
In this session, we discuss best practices and approaches for managing your Microsoft Windows-based infrastructure on AWS. We describe the AWS services that can help you manage Windows servers at scale and realize the maximum benefit of the cloud. In addition, we show you how to build simple and effective solutions to manage logging, configuration drift, inventory, licensing, and more. Please join us for a speaker meet-and-greet following this session at the Speaker Lounge (ARIA East, Level 1, Willow Lounge). The meet-and-greet starts 15 minutes after the session and runs for half an hour.
Optimizing Costs as You Scale on AWS (ENT302) - AWS re:Invent 2018Amazon Web Services
The cloud offers a first-in-a-career opportunity to constantly optimize your costs as you grow and stay on the leading edge of innovation. By developing a cost-conscious culture and assigning the responsibility for efficiency to the appropriate business owners, you can deliver innovation efficiently and cost effectively. In this session, we share The Vanguard Group’s real-world experience of optimizing their costs, and we review a wide range of cost planning, monitoring, and optimization strategies.
Leadership Session: Using DevOps, Microservices, and Serverless to Accelerate...Amazon Web Services
In this session, learn how AWS can help you innovate faster with DevOps, microservices, and serverless. Join us for a rare and intimate discussion with AWS senior leaders: David Richardson, VP of Serverless, Ken Exner, director of AWS Developer Tools, and Deepak Singh, director of Compute Services, Containers, and Linux. Hear them share development best practices and discuss key learnings from building modern applications at Amazon.com. Also, learn how developers can leverage containers, AWS Lambda, and developer tools to build and run production applications in the cloud.
Inside AWS: Technology Choices for Modern Applications (SRV305-R1) - AWS re:I...Amazon Web Services
AWS offers a wide range of cloud computing services and technologies, but we rarely state opinions about which services and technologies customers should choose. When it comes to building our own services, our engineering groups have strong opinions, and they express them in the technologies they pick. Join Tim Bray, Senior Principal Engineer, to hear about the high-level choices that developers at AWS and our customers have to make. Here are a few: Are microservices always the way to go? Serverless, containers, or serverless containers? Is relational over? Is Java over? The talk is technical and based on our experience in building AWS services and working with customers on their cloud-native apps.
All About the Customer: GraphQL & Real-Time Subscriptions in Customer Service...Amazon Web Services
ALDO wanted to improve in-store customer experience by offering rapid personalized assistance. In this session, follow ALDO’s journey in adopting GraphQL and serverless technologies for their in-store modern apps. Learn how this global fashion brand is offering elevated real-time, personalized customer experiences while optimizing in-store retail operations. Hear how they integrated with their existing infrastructure, along with other challenges. They also share best practices that they are carrying forward for future apps.
AWS Snowball Edge and AWS Greengrass for Fun and Profit (STG388) - AWS re:Inv...Amazon Web Services
Are you curious about edge computing? Get hands-on training on AWS Greengrass, and learn how to create and deploy custom machine images for AWS Snowball Edge. In this workshop, we focus on a machine learning (ML) use case, and we dive deep into Snowball Edge and AWS Greengrass to process data at the edge. You ingest video as the input for an ML-based pose estimation solution to drive the actions of an augmented reality application in Amazon Sumerian.
Get the Most out of Your Elastic Load Balancer for Different Workloads (NET31...Amazon Web Services
Bring your tricky questions and interesting use cases to this session, where we cover topics such as choosing the right load balancer, architectural best practices, load balancing principles, analyzing your application with Amazon CloudWatch metrics, and ELB access logs.
Amazon VPC: Security at the Speed Of Light (NET313) - AWS re:Invent 2018Amazon Web Services
With Amazon Virtual Private Cloud (Amazon VPC) you can build your own virtual data center networks in seconds. Every VPC is free, but it comes with enterprise-grade capabilities that would cost millions of dollars in a traditional data center. How is this possible? Come hear how Amazon VPC works under the hood. We uncover how we use Amazon-designed hardware to deliver high-assurance security and ultra-fast performance that makes the speed of light feel slow. Leave with insights and tips for how to optimize your own applications, and even whole organizations, to deliver faster than ever.
Centralizing DNS Management in a Multi-Account Environment (NET322-R2) - AWS ...Amazon Web Services
DNS management and consistent naming across multiple VPCs and multiple accounts can often be a challenge. In this session, we implement a solution that provides a unified namespace across on-premises and AWS environments. Bring your laptop.
Hands-On: Automating AWS Infrastructure with PowerShell (WIN308) - AWS re:Inv...Amazon Web Services
In this workshop, we discuss the fundamentals for automating infrastructure on AWS using PowerShell. After a short presentation, attendees have the opportunity to choose a hands-on walkthrough to leverage PowerShell to automate infrastructure on AWS in a variety of scenarios. Please bring a laptop for the hands-on exercises.
Build a Multi-Region Serverless Application for Resilience & High Availabilit...Amazon Web Services
Do you have a mission-critical serverless app that requires maximum uptime? Come learn how to build and deploy a multi-region serverless application to maximize application availability and resilience. In this workshop, you enter a scenario in which you help a fictional unicorn ridesharing company, Wild Rydes (www.wildrydes.com), deploy a critical customer support application using a serverless architecture. When a passenger completes a ride, they can use the app to inform the company if they had any issues with their trip—perhaps a lost wallet or a misbehaving unicorn. Since Wild Rydes is global, this support application takes advantage of a multi-region, highly available architecture using services such as AWS Lambda, Amazon API Gateway, Amazon DynamoDB, Amazon Route 53, Amazon CloudFront, and Amazon S3 to maximize availability. It also uses Amazon Cognito federated identities for user authentication. Attendees should bring a laptop and be familiar with the AWS Management Console and the AWS CLI.
How to Move to Amazon WorkSpaces and Replace Your Legacy VDI (BAP305) - AWS r...Amazon Web Services
Learn why more customers than ever are leaving the complexity and costs of virtual desktop infrastructure (VDI) for cloud desktop solutions like Amazon WorkSpaces. In this session, we discuss how you can use Amazon WorkSpaces to give your employees a responsive, secure, and delightful desktop experience while simplifying your own processes. We demonstrate the flexibility of Amazon WorkSpaces and show how easy it is to get started. We also cover more advanced topics, including using Microsoft Active Directory for end-user management and authentication, and using Amazon WorkSpaces to implement a bring- your-own-device policy.
What's New with the AWS CLI (DEV322-R1) - AWS re:Invent 2018Amazon Web Services
We're working on a new major version of the AWS Command Line Interface (AWS CLI), a command-line tool for interacting with AWS services and managing your AWS resources. AWS CLI v2 will include features to improve workflows and make it even easier to manage AWS resources through the AWS CLI. Come hear from the core developers of the AWS CLI as we highlight some of the new features and major improvements in AWS CLI v2. Please join us for a speaker meet-and-greet following this session at the Speaker Lounge (ARIA East, Level 1, Willow Lounge). The meet-and-greet starts 15 minutes after the session and runs for half an hour.
Day Two Operations of Kubernetes on AWS (GPSTEC309) - AWS re:Invent 2018Amazon Web Services
You've spent the time designing, architecting, setting up, and configuring your Kubernetes cluster. Now, it's on to day two. "Day two" refers to the functions of scaling, optimizing, monitoring, securing, and in general keeping the lights on. In this talk, we discuss the tools that you have available to help you build a reliable and resilient Kubernetes cluster and run workloads in production. We discuss how to control the network, secure your environment using threat detection, scan your containers for vulnerabilities, use monitoring tools, and create scalable containers and clusters.
BP Takes a Quantum Leap Towards a Cloud-First Network (OIG301) - AWS re:Inven...Amazon Web Services
BP is a global energy company with a wide reach across the world's energy system. Its network spans 75 countries providing connectivity to >400 offices, thousands of retail sites, production facilities, remote exploration locations, and data centers. To become a cloud-first company supporting thousands of remote sites, BP had to re-architect and evolve its operating model for delivering network services. In this session, representatives from BP share best practices for delivering high-bandwidth low-latency interconnectivity between BP and AWS. They outline the benefits of using native AWS networking and security features, and they share the lessons they learned around security segmentation, access policies, trust boundaries, and connectivity to untrusted networks. Join BP to learn how to prepare for mass migration to the cloud and enable at-scale cloud-native application development.
[NEW LAUNCH!] Introduction to AWS Global Accelerator (NET330) - AWS re:Invent...Amazon Web Services
This session introduces AWS Global Accelerator, a new global service that enables you to optimally route traffic to your multi-regional endpoints via static Anycast IP addresses that are announced from the expansive AWS edge network. This session walks through the various features and customer use cases for Global Accelerator. Several example use cases demonstrate how you can use Ubiquity to achieve near-zero application downtime and reduce latency for your global applications. We will walk you through the architecture and will also include a demo of the workflow. Attend this session if you are looking at ways to accelerate performance of your global applications, achieve high availability for your mission critical applications or easily manage multiple IP addresses through a static Anycast IP that fronts your applications.
Architecture Patterns of Serverless Microservices (ARC304-R1) - AWS re:Invent...Amazon Web Services
In this chalk talk, we describe the architecture patterns you can use to deploy serverless microservices, the design considerations, and best practices.
Building the Technical Foundation for Your Security Practice (GPSCT205) - AWS...Amazon Web Services
Security is job zero at AWS. Come and learn how to build a modern security practice on AWS and supercharge it with AWS partners and serverless automation. Learn about the Security Perspectives found the AWS Well-Architected Framework, which equip your security program to not only keep your environment secure but also move fast. Learn advanced techniques to empower your teams with Amazon GuardDuty so you can elevate your team's ability to identify, protect, detect, respond, and recover from security events.
Deploying Your ONNX Deep Learning with Apache MXNet Model Server (AIM413) - A...Amazon Web Services
In this chalk talk, we discuss how you can use Apache MXNet Model Server to deploy ONNX models. We get into the nuts and bolts of deployments, and we discuss monitoring model performance using Amazon CloudWatch integration.
Network Foundations on AWS (GPSCT409) - AWS re:Invent 2018Amazon Web Services
Networking is the foundation upon which a great many things are built on AWS. As such, it is one of the first and most important things to consider when architecting with AWS. In this session, we review AWS networking architectures, covering both the basics on AWS networking to get you started as well as some of the most complex architectures you will encounter, including transit VPCs, building hybrid networking architectures, new AWS networking features, and how to integrate AWS network and security partner solutions.
Deploy Alexa for Business in Your Organization & Build Your First Private Ski...Amazon Web Services
Alexa for Business enables you to deploy and manage Alexa skills for your organization. You can use Alexa skills to create smart conference rooms, help employees be more productive, and even create a unique experience for your customers. In this workshop, you have a chance to get hands on with Alexa for Business. You create an Alexa for Business organization, set up a private skills catalog for your organization, build a private skill for a Tableau BI application, and publish skills to your catalog. You also set up personal device enrollment, configure access policies for employees, and turn on voice authentication. Finally, you set up a virtual Alexa-enabled conference room and configure default dial-in information so you can join meetings using your voice. Bring your laptop and an existing AWS account. No previous Alexa experience is required.
Learn about the threat detection capabilities of Amazon GuardDuty and the available remediation options by walking through some real-world threat scenarios. First, explore a scenario where an Amazon EC2 instance is compromised, then one where IAM credentials are compromised. In each scenario, we explore a method to remediate the threat. We use the following services: AWS CloudFormation, AWS CloudTrail, Amazon VPC flow logs, Amazon CloudWatch events, Amazon SNS, Amazon S3, AWS Lambda, and, of course, Amazon GuardDuty. Be sure you have an AWS account. This should be your own personal account and not one through your company. We provide AWS credits to help cover any costs incurred during the lab.
Optimizing Storage for Enterprise Workloads and Migrations (STG202) - AWS re:...Amazon Web Services
In this session, we focus on best practices for AWS block and file storage when supporting enterprise workloads (like SAP, Oracle, Microsoft applications, and home directories). We discuss migrating mission-critical workload data, selecting volumes or file systems, optimizing performance, and designing for durability and availability. We also review optimizing for cost to ensure that your lift-and-shift project is a success.
Autonomous DevSecOps: Five Steps to a Self-Driving Cloud (ENT214-S) - AWS re:...Amazon Web Services
In this session, we outline the five levels of cloud operations automation, providing a clear path and maturity model for achieving security, compliance, and architecture best practices. Using real-world case studies from Fortune 100 enterprises, we demonstrate how secure AWS Landing Zones and policy-based, automated guardrails accelerate the safe migration and ongoing operation of hundreds of enterprise applications, putting your team on the road to DevSecOps maturity. This session is brought to you by AWS partner, Turbot HQ, Inc.
In these slides, you’ll learn to use AWS tools to secure your environment and maintain a high bar in cloud security. We'll deep dive into the features of AWS CloudTrail, AWS Guard Duty, AWS Inspector, AWS WAF and Shield, and more. We'll also cover how to keep your credentials safe in the cloud using AWS Secrets Manager.
Get the Most out of Your Elastic Load Balancer for Different Workloads (NET31...Amazon Web Services
Bring your tricky questions and interesting use cases to this session, where we cover topics such as choosing the right load balancer, architectural best practices, load balancing principles, analyzing your application with Amazon CloudWatch metrics, and ELB access logs.
Amazon VPC: Security at the Speed Of Light (NET313) - AWS re:Invent 2018Amazon Web Services
With Amazon Virtual Private Cloud (Amazon VPC) you can build your own virtual data center networks in seconds. Every VPC is free, but it comes with enterprise-grade capabilities that would cost millions of dollars in a traditional data center. How is this possible? Come hear how Amazon VPC works under the hood. We uncover how we use Amazon-designed hardware to deliver high-assurance security and ultra-fast performance that makes the speed of light feel slow. Leave with insights and tips for how to optimize your own applications, and even whole organizations, to deliver faster than ever.
Centralizing DNS Management in a Multi-Account Environment (NET322-R2) - AWS ...Amazon Web Services
DNS management and consistent naming across multiple VPCs and multiple accounts can often be a challenge. In this session, we implement a solution that provides a unified namespace across on-premises and AWS environments. Bring your laptop.
Hands-On: Automating AWS Infrastructure with PowerShell (WIN308) - AWS re:Inv...Amazon Web Services
In this workshop, we discuss the fundamentals for automating infrastructure on AWS using PowerShell. After a short presentation, attendees have the opportunity to choose a hands-on walkthrough to leverage PowerShell to automate infrastructure on AWS in a variety of scenarios. Please bring a laptop for the hands-on exercises.
Build a Multi-Region Serverless Application for Resilience & High Availabilit...Amazon Web Services
Do you have a mission-critical serverless app that requires maximum uptime? Come learn how to build and deploy a multi-region serverless application to maximize application availability and resilience. In this workshop, you enter a scenario in which you help a fictional unicorn ridesharing company, Wild Rydes (www.wildrydes.com), deploy a critical customer support application using a serverless architecture. When a passenger completes a ride, they can use the app to inform the company if they had any issues with their trip—perhaps a lost wallet or a misbehaving unicorn. Since Wild Rydes is global, this support application takes advantage of a multi-region, highly available architecture using services such as AWS Lambda, Amazon API Gateway, Amazon DynamoDB, Amazon Route 53, Amazon CloudFront, and Amazon S3 to maximize availability. It also uses Amazon Cognito federated identities for user authentication. Attendees should bring a laptop and be familiar with the AWS Management Console and the AWS CLI.
How to Move to Amazon WorkSpaces and Replace Your Legacy VDI (BAP305) - AWS r...Amazon Web Services
Learn why more customers than ever are leaving the complexity and costs of virtual desktop infrastructure (VDI) for cloud desktop solutions like Amazon WorkSpaces. In this session, we discuss how you can use Amazon WorkSpaces to give your employees a responsive, secure, and delightful desktop experience while simplifying your own processes. We demonstrate the flexibility of Amazon WorkSpaces and show how easy it is to get started. We also cover more advanced topics, including using Microsoft Active Directory for end-user management and authentication, and using Amazon WorkSpaces to implement a bring- your-own-device policy.
What's New with the AWS CLI (DEV322-R1) - AWS re:Invent 2018Amazon Web Services
We're working on a new major version of the AWS Command Line Interface (AWS CLI), a command-line tool for interacting with AWS services and managing your AWS resources. AWS CLI v2 will include features to improve workflows and make it even easier to manage AWS resources through the AWS CLI. Come hear from the core developers of the AWS CLI as we highlight some of the new features and major improvements in AWS CLI v2. Please join us for a speaker meet-and-greet following this session at the Speaker Lounge (ARIA East, Level 1, Willow Lounge). The meet-and-greet starts 15 minutes after the session and runs for half an hour.
Day Two Operations of Kubernetes on AWS (GPSTEC309) - AWS re:Invent 2018Amazon Web Services
You've spent the time designing, architecting, setting up, and configuring your Kubernetes cluster. Now, it's on to day two. "Day two" refers to the functions of scaling, optimizing, monitoring, securing, and in general keeping the lights on. In this talk, we discuss the tools that you have available to help you build a reliable and resilient Kubernetes cluster and run workloads in production. We discuss how to control the network, secure your environment using threat detection, scan your containers for vulnerabilities, use monitoring tools, and create scalable containers and clusters.
BP Takes a Quantum Leap Towards a Cloud-First Network (OIG301) - AWS re:Inven...Amazon Web Services
BP is a global energy company with a wide reach across the world's energy system. Its network spans 75 countries providing connectivity to >400 offices, thousands of retail sites, production facilities, remote exploration locations, and data centers. To become a cloud-first company supporting thousands of remote sites, BP had to re-architect and evolve its operating model for delivering network services. In this session, representatives from BP share best practices for delivering high-bandwidth low-latency interconnectivity between BP and AWS. They outline the benefits of using native AWS networking and security features, and they share the lessons they learned around security segmentation, access policies, trust boundaries, and connectivity to untrusted networks. Join BP to learn how to prepare for mass migration to the cloud and enable at-scale cloud-native application development.
[NEW LAUNCH!] Introduction to AWS Global Accelerator (NET330) - AWS re:Invent...Amazon Web Services
This session introduces AWS Global Accelerator, a new global service that enables you to optimally route traffic to your multi-regional endpoints via static Anycast IP addresses that are announced from the expansive AWS edge network. This session walks through the various features and customer use cases for Global Accelerator. Several example use cases demonstrate how you can use Ubiquity to achieve near-zero application downtime and reduce latency for your global applications. We will walk you through the architecture and will also include a demo of the workflow. Attend this session if you are looking at ways to accelerate performance of your global applications, achieve high availability for your mission critical applications or easily manage multiple IP addresses through a static Anycast IP that fronts your applications.
Architecture Patterns of Serverless Microservices (ARC304-R1) - AWS re:Invent...Amazon Web Services
In this chalk talk, we describe the architecture patterns you can use to deploy serverless microservices, the design considerations, and best practices.
Building the Technical Foundation for Your Security Practice (GPSCT205) - AWS...Amazon Web Services
Security is job zero at AWS. Come and learn how to build a modern security practice on AWS and supercharge it with AWS partners and serverless automation. Learn about the Security Perspectives found the AWS Well-Architected Framework, which equip your security program to not only keep your environment secure but also move fast. Learn advanced techniques to empower your teams with Amazon GuardDuty so you can elevate your team's ability to identify, protect, detect, respond, and recover from security events.
Deploying Your ONNX Deep Learning with Apache MXNet Model Server (AIM413) - A...Amazon Web Services
In this chalk talk, we discuss how you can use Apache MXNet Model Server to deploy ONNX models. We get into the nuts and bolts of deployments, and we discuss monitoring model performance using Amazon CloudWatch integration.
Network Foundations on AWS (GPSCT409) - AWS re:Invent 2018Amazon Web Services
Networking is the foundation upon which a great many things are built on AWS. As such, it is one of the first and most important things to consider when architecting with AWS. In this session, we review AWS networking architectures, covering both the basics on AWS networking to get you started as well as some of the most complex architectures you will encounter, including transit VPCs, building hybrid networking architectures, new AWS networking features, and how to integrate AWS network and security partner solutions.
Deploy Alexa for Business in Your Organization & Build Your First Private Ski...Amazon Web Services
Alexa for Business enables you to deploy and manage Alexa skills for your organization. You can use Alexa skills to create smart conference rooms, help employees be more productive, and even create a unique experience for your customers. In this workshop, you have a chance to get hands on with Alexa for Business. You create an Alexa for Business organization, set up a private skills catalog for your organization, build a private skill for a Tableau BI application, and publish skills to your catalog. You also set up personal device enrollment, configure access policies for employees, and turn on voice authentication. Finally, you set up a virtual Alexa-enabled conference room and configure default dial-in information so you can join meetings using your voice. Bring your laptop and an existing AWS account. No previous Alexa experience is required.
Learn about the threat detection capabilities of Amazon GuardDuty and the available remediation options by walking through some real-world threat scenarios. First, explore a scenario where an Amazon EC2 instance is compromised, then one where IAM credentials are compromised. In each scenario, we explore a method to remediate the threat. We use the following services: AWS CloudFormation, AWS CloudTrail, Amazon VPC flow logs, Amazon CloudWatch events, Amazon SNS, Amazon S3, AWS Lambda, and, of course, Amazon GuardDuty. Be sure you have an AWS account. This should be your own personal account and not one through your company. We provide AWS credits to help cover any costs incurred during the lab.
Optimizing Storage for Enterprise Workloads and Migrations (STG202) - AWS re:...Amazon Web Services
In this session, we focus on best practices for AWS block and file storage when supporting enterprise workloads (like SAP, Oracle, Microsoft applications, and home directories). We discuss migrating mission-critical workload data, selecting volumes or file systems, optimizing performance, and designing for durability and availability. We also review optimizing for cost to ensure that your lift-and-shift project is a success.
Autonomous DevSecOps: Five Steps to a Self-Driving Cloud (ENT214-S) - AWS re:...Amazon Web Services
In this session, we outline the five levels of cloud operations automation, providing a clear path and maturity model for achieving security, compliance, and architecture best practices. Using real-world case studies from Fortune 100 enterprises, we demonstrate how secure AWS Landing Zones and policy-based, automated guardrails accelerate the safe migration and ongoing operation of hundreds of enterprise applications, putting your team on the road to DevSecOps maturity. This session is brought to you by AWS partner, Turbot HQ, Inc.
In these slides, you’ll learn to use AWS tools to secure your environment and maintain a high bar in cloud security. We'll deep dive into the features of AWS CloudTrail, AWS Guard Duty, AWS Inspector, AWS WAF and Shield, and more. We'll also cover how to keep your credentials safe in the cloud using AWS Secrets Manager.
Many enterprises on their journey to the cloud require consistent and highly secure connectivity among their existing data center, their staff, and AWS environments. In this session, we walk through the different architecture options for establishing this connectivity using AWS VPN solutions. With each option, we evaluate the considerations and discuss risk, performance, high availability, encryption, and cost.
AWS PrivateLink: Fundamentals - SRV211 - Atlanta AWS SummitAmazon Web Services
In this mid-level session, we explore the fundamentals of AWS PrivateLink, including VPC design, VPC endpoints, and Network Load Balancer. Discover the benefits and use cases for connecting your VPCs with services in AWS over AWS PrivateLink, and hear about related technologies such as AWS Direct Connect, Amazon Route 53, and other AWS services. This architecture discussion is designed for architects, network administrators, and technology decision makers interested in understanding how to connect their Amazon VPCs to SaaS services in a secure and scalable manner.
Deep Dive on New AWS Networking Features - AWS Online Tech TalksAmazon Web Services
Learning Objectives:
- Introduction to new AWS networking features - PrivateLink, Direct Connect gateway, and more
- How the new features, PrivateLink and Direct Connect gateways, work together
- Best practices for deploying these new features
Expanding Your AWS and On-premise Footprint to AWS GovCloud (US)Amazon Web Services
As customers progress through their cloud journeys, sensitive and regulated IT workloads, and data migrations could necessitate the use of AWS GovCloud (US). But how do you get started? What do you need to know before expanding your footprint to the AWS GovCloud (US) region? Is extending the footprint from standard AWS regions different than extending from on-premise environments and datacenters? Join us to learn the technical and operational considerations, approaches, best practices and tools to successfully extend your IT environments and technology footprint and migrate assets to the AWS GovCloud (US) Region.
Join us to learn about connectivity options to AWS and how they build the infrastructure foundation for hybrid, migration, and DR use cases. In this session, we will shed light on the recent changes with AWS Direct Connect to enable new GovCloud (US) and global regional access. We will also touch on networking integration options with AWS services and partners offering like VMware Cloud on AWS to enrich migration options to AWS cloud.
Designing Network Architectures with Direct Connect for Multiple Traffic Stre...Amazon Web Services
In this session, we discuss an AWS network design for multiple traffic streams, such as production, non-production, and PCI data (or regulated data) using AWS Direct Connect and Direct Connect gateway. We show you how to do this while keeping the traffic segregated at the network layer.
Plan Advanced AWS Networking Architectures - SRV323 - Chicago AWS SummitAmazon Web Services
Networking is the foundation supporting many applications and services on AWS. As such, it is one of the first and most important things to consider when architecting with AWS. In this session, we discuss planning for your advanced AWS networking architectures.
Your Virtual Data Center: VPC Fundamentals and Connectivity Options (NET201) ...Amazon Web Services
In this session, we walk through the fundamentals of Amazon VPC. First, we cover build-out and design fundamentals for VPCs, including picking your IP space, subnetting, routing, security, NAT, and much more. We then transition to different approaches and use cases for optionally connecting your VPC to your physical data center with VPN or AWS Direct Connect. This mid-level architecture discussion is aimed at architects, network administrators, and technology decision makers interested in understanding the building blocks that AWS makes available with Amazon VPC. Learn how you can connect VPCs with your offices and current data center footprint.
5 Best Practices for Building an AWS Global Transit NetworkAmazon Web Services
Learn why Epsilon leveraged Aviatrix to switch from a vRouter-based global transit to a next-generation transit hub, streamlining resource provisioning and security implementation in their hybrid network. We’ll also discuss best practices for scaling and securing connectivity for your Amazon VPCs, while achieving compliance and reducing costs.
Deploying Microservices using AWS Fargate (CON315-R1) - AWS re:Invent 2018Amazon Web Services
KPMG have built a customer due diligence solution for a high-profile banking client in AWS. The solution is made up of a number of microservices which are deployed to containers using AWS Fargate. This presentation will dive into the details of the architecture of the solution, how the infrastructure and applications are deployed using third party tools such as Hashicorp’s Terraform and Jenkins, and the best practices when running containers in production workloads. The presentation will cover details on the AWS resources used in the solution, including DynamoDB, ECS, Fargate and S3, CI/CD and automation, with a focus around security to meet banking regulatory requirements. We will look at how KPMG have configured for canary deployments to ECS Fargate, how we manage secrets management and encryption, and how we manage service discovery between the microservices using ECS Service Discovery and Route 53.
AWS PrivateLink enables you to securely access services hosted on AWS. Come to this session and learn the fundamentals of AWS PrivateLink, including VPC design, VPC endpoint, Network Load Balancer, and more. Discover the benefits and use cases for connecting your VPC with services based on AWS over AWS PrivateLink, and hear about the AWS services that are related to AWS PrivateLink, including AWS Direct Connect, Amazon Route 53, and others. This mid-level architecture discussion is aimed at architects, network administrators, and technology decision makers who want to understand how to connect their Amazon VPCs to SaaS services in a secure and scalable manner.
Design, Deploy, Optimize SQL Server Workloads on AWS - SRV209 - Anaheim AWS S...Amazon Web Services
In this session, dive deep into best practices and considerations for running Microsoft SQL Server on AWS. Learn how to choose between Amazon EC2 and Amazon RDS, and understand how to optimize the performance of your SQL Server deployment for different application types. We review in detail how to provision and monitor your SQL Server databases and how to manage scalability, performance, availability, security, and backup and recovery in both Amazon RDS and Amazon EC2.
Running more than one containerized application in production makes teams look for solutions to quickly deploy and orchestrate containers. One of the most popular options is the open-source project Kubernetes. With the release of the Amazon Elastic Container Service for Kubernetes (EKS), engineering teams now have access to a fully managed Kubernetes control plane and time to focus on building applications. This workshop will deliver hands-on labs to support you getting familiar with Amazon's EKS.
Use SD-WAN to Manage Your AWS Environment and Branch Office Connectivity (NET...Amazon Web Services
As customers put more workloads into AWS, the number of Virtual Private Clouds (VPCs) a customer needs to manage grows. Scaling out an AWS environment can create challenges in manageability, workload segmentation, and security. SD-WAN solutions offered by AWS Partners can enable organizations to scale up the number of VPCs as needed while segmenting and isolating workloads for easier management, application quality monitoring, and security. In this session, we walk through a customer example of how an SD-WAN implementation simplified the management of a multi-VPC footprint while also improving application performance to WAN-connected branch offices.
Design, Deploy, & Optimize SQL Server Workloads - SRV209 - Chicago AWS SummitAmazon Web Services
In this session, dive deep on best practices and considerations for running Microsoft SQL Server on AWS. Learn how to choose between Amazon EC2 and Amazon RDS, and understand how to optimize the performance of your SQL Server deployment for different application types. We review in detail how to provision and monitor your SQL Server databases and how to manage scalability, performance, availability, security, and backup and recovery in both Amazon RDS and Amazon EC2.
Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...Amazon Web Services
Il Forecasting è un processo importante per tantissime aziende e viene utilizzato in vari ambiti per cercare di prevedere in modo accurato la crescita e distribuzione di un prodotto, l’utilizzo delle risorse necessarie nelle linee produttive, presentazioni finanziarie e tanto altro. Amazon utilizza delle tecniche avanzate di forecasting, in parte questi servizi sono stati messi a disposizione di tutti i clienti AWS.
In questa sessione illustreremo come pre-processare i dati che contengono una componente temporale e successivamente utilizzare un algoritmo che a partire dal tipo di dato analizzato produce un forecasting accurato.
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...Amazon Web Services
La varietà e la quantità di dati che si crea ogni giorno accelera sempre più velocemente e rappresenta una opportunità irripetibile per innovare e creare nuove startup.
Tuttavia gestire grandi quantità di dati può apparire complesso: creare cluster Big Data su larga scala sembra essere un investimento accessibile solo ad aziende consolidate. Ma l’elasticità del Cloud e, in particolare, i servizi Serverless ci permettono di rompere questi limiti.
Vediamo quindi come è possibile sviluppare applicazioni Big Data rapidamente, senza preoccuparci dell’infrastruttura, ma dedicando tutte le risorse allo sviluppo delle nostre le nostre idee per creare prodotti innovativi.
Ora puoi utilizzare Amazon Elastic Kubernetes Service (EKS) per eseguire pod Kubernetes su AWS Fargate, il motore di elaborazione serverless creato per container su AWS. Questo rende più semplice che mai costruire ed eseguire le tue applicazioni Kubernetes nel cloud AWS.In questa sessione presenteremo le caratteristiche principali del servizio e come distribuire la tua applicazione in pochi passaggi
Vent'anni fa Amazon ha attraversato una trasformazione radicale con l'obiettivo di aumentare il ritmo dell'innovazione. In questo periodo abbiamo imparato come cambiare il nostro approccio allo sviluppo delle applicazioni ci ha permesso di aumentare notevolmente l'agilità, la velocità di rilascio e, in definitiva, ci ha consentito di creare applicazioni più affidabili e scalabili. In questa sessione illustreremo come definiamo le applicazioni moderne e come la creazione di app moderne influisce non solo sull'architettura dell'applicazione, ma sulla struttura organizzativa, sulle pipeline di rilascio dello sviluppo e persino sul modello operativo. Descriveremo anche approcci comuni alla modernizzazione, compreso l'approccio utilizzato dalla stessa Amazon.com.
Come spendere fino al 90% in meno con i container e le istanze spot Amazon Web Services
L’utilizzo dei container è in continua crescita.
Se correttamente disegnate, le applicazioni basate su Container sono molto spesso stateless e flessibili.
I servizi AWS ECS, EKS e Kubernetes su EC2 possono sfruttare le istanze Spot, portando ad un risparmio medio del 70% rispetto alle istanze On Demand. In questa sessione scopriremo insieme quali sono le caratteristiche delle istanze Spot e come possono essere utilizzate facilmente su AWS. Impareremo inoltre come Spreaker sfrutta le istanze spot per eseguire applicazioni di diverso tipo, in produzione, ad una frazione del costo on-demand!
In recent months, many customers have been asking us the question – how to monetise Open APIs, simplify Fintech integrations and accelerate adoption of various Open Banking business models. Therefore, AWS and FinConecta would like to invite you to Open Finance marketplace presentation on October 20th.
Event Agenda :
Open banking so far (short recap)
• PSD2, OB UK, OB Australia, OB LATAM, OB Israel
Intro to Open Finance marketplace
• Scope
• Features
• Tech overview and Demo
The role of the Cloud
The Future of APIs
• Complying with regulation
• Monetizing data / APIs
• Business models
• Time to market
One platform for all: a Strategic approach
Q&A
Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...Amazon Web Services
Per creare valore e costruire una propria offerta differenziante e riconoscibile, le startup di successo sanno come combinare tecnologie consolidate con componenti innovativi creati ad hoc.
AWS fornisce servizi pronti all'utilizzo e, allo stesso tempo, permette di personalizzare e creare gli elementi differenzianti della propria offerta.
Concentrandoci sulle tecnologie di Machine Learning, vedremo come selezionare i servizi di intelligenza artificiale offerti da AWS e, anche attraverso una demo, come costruire modelli di Machine Learning personalizzati utilizzando SageMaker Studio.
OpsWorks Configuration Management: automatizza la gestione e i deployment del...Amazon Web Services
Con l'approccio tradizionale al mondo IT per molti anni è stato difficile implementare tecniche di DevOps, che finora spesso hanno previsto attività manuali portando di tanto in tanto a dei downtime degli applicativi interrompendo l'operatività dell'utente. Con l'avvento del cloud, le tecniche di DevOps sono ormai a portata di tutti a basso costo per qualsiasi genere di workload, garantendo maggiore affidabilità del sistema e risultando in dei significativi miglioramenti della business continuity.
AWS mette a disposizione AWS OpsWork come strumento di Configuration Management che mira ad automatizzare e semplificare la gestione e i deployment delle istanze EC2 per mezzo di workload Chef e Puppet.
Scopri come sfruttare AWS OpsWork a garanzia e affidabilità del tuo applicativo installato su Instanze EC2.
Microsoft Active Directory su AWS per supportare i tuoi Windows WorkloadsAmazon Web Services
Vuoi conoscere le opzioni per eseguire Microsoft Active Directory su AWS? Quando si spostano carichi di lavoro Microsoft in AWS, è importante considerare come distribuire Microsoft Active Directory per supportare la gestione, l'autenticazione e l'autorizzazione dei criteri di gruppo. In questa sessione, discuteremo le opzioni per la distribuzione di Microsoft Active Directory su AWS, incluso AWS Directory Service per Microsoft Active Directory e la distribuzione di Active Directory su Windows su Amazon Elastic Compute Cloud (Amazon EC2). Trattiamo argomenti quali l'integrazione del tuo ambiente Microsoft Active Directory locale nel cloud e l'utilizzo di applicazioni SaaS, come Office 365, con AWS Single Sign-On.
Dal riconoscimento facciale al riconoscimento di frodi o difetti di fabbricazione, l'analisi di immagini e video che sfruttano tecniche di intelligenza artificiale, si stanno evolvendo e raffinando a ritmi elevati. In questo webinar esploreremo le possibilità messe a disposizione dai servizi AWS per applicare lo stato dell'arte delle tecniche di computer vision a scenari reali.
Amazon Web Services e VMware organizzano un evento virtuale gratuito il prossimo mercoledì 14 Ottobre dalle 12:00 alle 13:00 dedicato a VMware Cloud ™ on AWS, il servizio on demand che consente di eseguire applicazioni in ambienti cloud basati su VMware vSphere® e di accedere ad una vasta gamma di servizi AWS, sfruttando a pieno le potenzialità del cloud AWS e tutelando gli investimenti VMware esistenti.
Molte organizzazioni sfruttano i vantaggi del cloud migrando i propri carichi di lavoro Oracle e assicurandosi notevoli vantaggi in termini di agilità ed efficienza dei costi.
La migrazione di questi carichi di lavoro, può creare complessità durante la modernizzazione e il refactoring delle applicazioni e a questo si possono aggiungere rischi di prestazione che possono essere introdotti quando si spostano le applicazioni dai data center locali.
Crea la tua prima serverless ledger-based app con QLDB e NodeJSAmazon Web Services
Molte aziende oggi, costruiscono applicazioni con funzionalità di tipo ledger ad esempio per verificare lo storico di accrediti o addebiti nelle transazioni bancarie o ancora per tenere traccia del flusso supply chain dei propri prodotti.
Alla base di queste soluzioni ci sono i database ledger che permettono di avere un log delle transazioni trasparente, immutabile e crittograficamente verificabile, ma sono strumenti complessi e onerosi da gestire.
Amazon QLDB elimina la necessità di costruire sistemi personalizzati e complessi fornendo un database ledger serverless completamente gestito.
In questa sessione scopriremo come realizzare un'applicazione serverless completa che utilizzi le funzionalità di QLDB.
Con l’ascesa delle architetture di microservizi e delle ricche applicazioni mobili e Web, le API sono più importanti che mai per offrire agli utenti finali una user experience eccezionale. In questa sessione impareremo come affrontare le moderne sfide di progettazione delle API con GraphQL, un linguaggio di query API open source utilizzato da Facebook, Amazon e altro e come utilizzare AWS AppSync, un servizio GraphQL serverless gestito su AWS. Approfondiremo diversi scenari, comprendendo come AppSync può aiutare a risolvere questi casi d’uso creando API moderne con funzionalità di aggiornamento dati in tempo reale e offline.
Inoltre, impareremo come Sky Italia utilizza AWS AppSync per fornire aggiornamenti sportivi in tempo reale agli utenti del proprio portale web.
Database Oracle e VMware Cloud™ on AWS: i miti da sfatareAmazon Web Services
Molte organizzazioni sfruttano i vantaggi del cloud migrando i propri carichi di lavoro Oracle e assicurandosi notevoli vantaggi in termini di agilità ed efficienza dei costi.
La migrazione di questi carichi di lavoro, può creare complessità durante la modernizzazione e il refactoring delle applicazioni e a questo si possono aggiungere rischi di prestazione che possono essere introdotti quando si spostano le applicazioni dai data center locali.
In queste slide, gli esperti AWS e VMware presentano semplici e pratici accorgimenti per facilitare e semplificare la migrazione dei carichi di lavoro Oracle accelerando la trasformazione verso il cloud, approfondiranno l’architettura e dimostreranno come sfruttare a pieno le potenzialità di VMware Cloud ™ on AWS.
Amazon Elastic Container Service (Amazon ECS) è un servizio di gestione dei container altamente scalabile, che semplifica la gestione dei contenitori Docker attraverso un layer di orchestrazione per il controllo del deployment e del relativo lifecycle. In questa sessione presenteremo le principali caratteristiche del servizio, le architetture di riferimento per i differenti carichi di lavoro e i semplici passi necessari per poter velocemente migrare uno o più dei tuo container.