The document provides an overview of Amazon Virtual Private Clouds (VPCs) and connectivity options. It begins with a basic walkthrough of setting up an internet-connected VPC, including choosing an IP address range, creating subnets, adding a route to the internet, and configuring security groups. It then discusses additional connectivity options such as private subnets, VPC peering, VPN connections, and VPC endpoints. The document is intended to help users understand fundamental VPC concepts and how to configure basic network connectivity and security.
AWS Certificate Manager (ACM) Private Certificate Authority (CA) is a managed private CA service that helps you easily and securely manage the lifecycle of your private certificates. In this session, learn how ACM Private CA extends ACM’s certificate management capabilities to private certificates and enables you to centrally manage public and private certificates. We also demonstrate how ACM Private CA enables you to create a Private CA and use it to create and deploy private certificates for your AWS resource and internal resources. We also discuss case studies demonstrating how customers use ACM Private CA to automate security and certificate management.
You’ve built an AWS Lambda function. But an application is more than just a single function; you need a lot of them. How do you orchestrate them? How do you know they’re performant? In this session, I’ll get you started with AWS Lambda, AWS Step Functions, and monitoring to get your application up and running. This session is brought to you by AWS Partner, Datadog.
Your Virtual Data Center: VPC Fundamentals and Connectivity Options (NET201) ...Amazon Web Services
This document provides an overview of Amazon Virtual Private Clouds (VPCs). It discusses VPC fundamentals like choosing IP address ranges and creating subnets. It also covers connectivity options for VPCs like creating internet gateways, VPC peering, and connecting to on-premises networks. The document lists additional topics like using security groups, VPC endpoints, DNS, and VPC flow logs. Related training sessions are also referenced.
The document outlines the agenda for a workshop on threat detection and remediation using AWS security services. The workshop includes modules on environment setup, an attack simulation, detecting and investigating the attack, and a review. Services discussed that can help with detection include GuardDuty, Macie, and Inspector, while services like Systems Manager, Lambda, and Inspector can assist with automation of remediation. The document provides information on the specific steps and activities involved in each module of the workshop.
SRV209 Monitor Cross-Account and Cross-Region Compliance Status with AWS ConfigAmazon Web Services
Do you want to understand governance across all of your AWS accounts? Are you struggling to get visibility into the compliance of your AWS resources? Join us in this session as we explore the new multi-account, multi-region data aggregation capability in AWS Config, which enables centralized governance and monitoring of compliance status across your AWS infrastructure. You learn how to use this exciting new capability to centrally monitor your compliance status across accounts, across regions, within your AWS Organization.
In this session, Tim Wagner, general manager of AWS Lambda and API Gateway, explores how developers can design, develop, deliver, and monitor cloud applications as they take advantage of the AWS serverless platform and developer toolset. He shares technical insights that developers can use to optimize their workflows and their use of cloud resources, which, in turn, can improve security, scalability, and availability. He also discusses common serverless patterns used by enterprises, and he dives into the operational and security features used by large and mature organizations. You will also hear from a Principal Architect of T-Mobile who will discuss how T-Mobile is driving adoption of serverless within the company.
This document discusses container management and scheduling using Amazon ECS. It describes the different types of schedulers in ECS including service, batch, event, and daemon schedulers. It explains how ECS handles scheduling tasks based on availability zones, instance types, and other constraints. The document also discusses using cluster constraints, custom constraints, and placement strategies to customize task scheduling. Additionally, it covers optimizing resource constraints for tasks and how to use load balancers to help with port allocation.
Best Practices for Centrally Monitoring Resource Configuration & Compliance (...Amazon Web Services
Do you want to have a strong understanding of governance across all of your AWS accounts? Are you struggling to get centralized visibility across your entire organization? Join us in this session as we explore AWS Config, a service that enables centralized governance and resource monitoring. Learn best practices for enabling governance policies through a central account across multiple accounts in your organization, and monitor their compliance status using the multi-account, multi-region data aggregation capability. Also learn about recent launches and how customers are using AWS Config in their enterprises today.
AWS Certificate Manager (ACM) Private Certificate Authority (CA) is a managed private CA service that helps you easily and securely manage the lifecycle of your private certificates. In this session, learn how ACM Private CA extends ACM’s certificate management capabilities to private certificates and enables you to centrally manage public and private certificates. We also demonstrate how ACM Private CA enables you to create a Private CA and use it to create and deploy private certificates for your AWS resource and internal resources. We also discuss case studies demonstrating how customers use ACM Private CA to automate security and certificate management.
You’ve built an AWS Lambda function. But an application is more than just a single function; you need a lot of them. How do you orchestrate them? How do you know they’re performant? In this session, I’ll get you started with AWS Lambda, AWS Step Functions, and monitoring to get your application up and running. This session is brought to you by AWS Partner, Datadog.
Your Virtual Data Center: VPC Fundamentals and Connectivity Options (NET201) ...Amazon Web Services
This document provides an overview of Amazon Virtual Private Clouds (VPCs). It discusses VPC fundamentals like choosing IP address ranges and creating subnets. It also covers connectivity options for VPCs like creating internet gateways, VPC peering, and connecting to on-premises networks. The document lists additional topics like using security groups, VPC endpoints, DNS, and VPC flow logs. Related training sessions are also referenced.
The document outlines the agenda for a workshop on threat detection and remediation using AWS security services. The workshop includes modules on environment setup, an attack simulation, detecting and investigating the attack, and a review. Services discussed that can help with detection include GuardDuty, Macie, and Inspector, while services like Systems Manager, Lambda, and Inspector can assist with automation of remediation. The document provides information on the specific steps and activities involved in each module of the workshop.
SRV209 Monitor Cross-Account and Cross-Region Compliance Status with AWS ConfigAmazon Web Services
Do you want to understand governance across all of your AWS accounts? Are you struggling to get visibility into the compliance of your AWS resources? Join us in this session as we explore the new multi-account, multi-region data aggregation capability in AWS Config, which enables centralized governance and monitoring of compliance status across your AWS infrastructure. You learn how to use this exciting new capability to centrally monitor your compliance status across accounts, across regions, within your AWS Organization.
In this session, Tim Wagner, general manager of AWS Lambda and API Gateway, explores how developers can design, develop, deliver, and monitor cloud applications as they take advantage of the AWS serverless platform and developer toolset. He shares technical insights that developers can use to optimize their workflows and their use of cloud resources, which, in turn, can improve security, scalability, and availability. He also discusses common serverless patterns used by enterprises, and he dives into the operational and security features used by large and mature organizations. You will also hear from a Principal Architect of T-Mobile who will discuss how T-Mobile is driving adoption of serverless within the company.
This document discusses container management and scheduling using Amazon ECS. It describes the different types of schedulers in ECS including service, batch, event, and daemon schedulers. It explains how ECS handles scheduling tasks based on availability zones, instance types, and other constraints. The document also discusses using cluster constraints, custom constraints, and placement strategies to customize task scheduling. Additionally, it covers optimizing resource constraints for tasks and how to use load balancers to help with port allocation.
Best Practices for Centrally Monitoring Resource Configuration & Compliance (...Amazon Web Services
Do you want to have a strong understanding of governance across all of your AWS accounts? Are you struggling to get centralized visibility across your entire organization? Join us in this session as we explore AWS Config, a service that enables centralized governance and resource monitoring. Learn best practices for enabling governance policies through a central account across multiple accounts in your organization, and monitor their compliance status using the multi-account, multi-region data aggregation capability. Also learn about recent launches and how customers are using AWS Config in their enterprises today.
SRV316 Serverless Data Processing at Scale: An Amazon.com Case StudyAmazon Web Services
Come to this session, and learn how Amazon takes advantage of AWS Lambda with Amazon Kinesis, Amazon Kinesis Data Firehose, and Amazon Kinesis Data Analytics to run a highly scalable, high-throughput pipeline to support its data processing needs. We cover different example architectures that handle such use cases as in-line process and data manipulation. We also discuss the advantages of using the AWS platform to manage different streams for data processing.
Inside AWS: Technology Choices for Modern Applications (SRV305-R1) - AWS re:I...Amazon Web Services
AWS offers a wide range of cloud computing services and technologies, but we rarely state opinions about which services and technologies customers should choose. When it comes to building our own services, our engineering groups have strong opinions, and they express them in the technologies they pick. Join Tim Bray, Senior Principal Engineer, to hear about the high-level choices that developers at AWS and our customers have to make. Here are a few: Are microservices always the way to go? Serverless, containers, or serverless containers? Is relational over? Is Java over? The talk is technical and based on our experience in building AWS services and working with customers on their cloud-native apps.
Securing Your Virtual Data Center in the Cloud (NET202) - AWS re:Invent 2018Amazon Web Services
In this introductory session, we cover how to secure your resources in the cloud for common AWS workloads such as Amazon EC2 computing, database, and serverless. We cover security best practices recommended by AWS for each workload using simple and effective identity and networking techniques. Learn how and why these controls do what they do, and come away with the ability to interpret and apply AWS identity and network access controls.
Mastering Kubernetes on AWS (CON301-R1) - AWS re:Invent 2018Amazon Web Services
Kubernetes offers a powerful abstraction layer for managing containerized infrastructure. Amazon Elastic Container Service for Kubernetes (Amazon EKS) makes it easy to run Kubernetes on AWS without having to manage master nodes or the etcd operator. In this session, we cover what you need to know to get your application up and running with Kubernetes on AWS. We show how Amazon EKS makes deploying Kubernetes on AWS simple and scalable, including networking, security, monitoring, and logging.
Use SD-WAN to Manage Your AWS Environment and Branch Office Connectivity (NET...Amazon Web Services
As customers put more workloads into AWS, the number of Virtual Private Clouds (VPCs) a customer needs to manage grows. Scaling out an AWS environment can create challenges in manageability, workload segmentation, and security. SD-WAN solutions offered by AWS Partners can enable organizations to scale up the number of VPCs as needed while segmenting and isolating workloads for easier management, application quality monitoring, and security. In this session, we walk through a customer example of how an SD-WAN implementation simplified the management of a multi-VPC footprint while also improving application performance to WAN-connected branch offices.
The document discusses the journey of Centrica Hive in standardizing and optimizing their use of multiple AWS accounts. It started with over 100 accounts growing in an unorganized manner, which led to issues around access control, visibility, and cost attribution. Centrica Hive implemented solutions like AWS Organizations, consolidated billing and access tools, security tools, and configuration management to bring structure and governance to their growing AWS environment. The standardized approach helped address early challenges, and the organization is now focused on further optimizing across their accounts.
Do you want to ramp up your knowledge of AWS analytics services and launch your first big data application on the cloud? In this session, we walk you through simplifying big data processing as a data bus comprising of ingestion, storage, processing, and visualization. You build a big data application using AWS managed services, including Amazon Athena, Amazon Kinesis, Amazon EMR, AWS Glue, Amazon Redshift, Amazon QuickSight, and Amazon S3. Along the way, we review architecture design patterns for big data applications and give you access to a take-home lab so you can rebuild and customize the application yourself. To get the most from this session, bring your own laptop and have some familiarity with AWS services.
DEM18 How SendBird Built a Serverless Log-Processing Pipeline in a WeekAmazon Web Services
As a chat solution serving enterprise customers, SendBird load-tests for all its largest customers. In this session, the SendBird team demonstrates how they use Amazon Kinesis, Amazon S3, AWS Lambda, and Amazon Athena to build the processing pipeline to save and analyze the results of a massive-scale load test within just a few days. They share mistakes and lessons as they expand this pipeline into day-to-day operations, such as aggregating customer usage data for billing purposes and blocking malicious traffic with the help of AWS WAF. This session is brought to you by AWS Partner, SendBird.
In this session, we provide an overview of how AWS thinks about threat detection and remediation. We summarize the challenges of traditional threat detection efforts and explain how AWS helps address these challenges. We also provide an overview of key AWS services that can be used to detect and remediate threats to AWS. Finally, we conclude with examples of threat detection and remediation on AWS and an provide an opportunity for key service demos.
Amazon VPC: Security at the Speed Of Light (NET313) - AWS re:Invent 2018Amazon Web Services
With Amazon Virtual Private Cloud (Amazon VPC) you can build your own virtual data center networks in seconds. Every VPC is free, but it comes with enterprise-grade capabilities that would cost millions of dollars in a traditional data center. How is this possible? Come hear how Amazon VPC works under the hood. We uncover how we use Amazon-designed hardware to deliver high-assurance security and ultra-fast performance that makes the speed of light feel slow. Leave with insights and tips for how to optimize your own applications, and even whole organizations, to deliver faster than ever.
What's New with the AWS CLI (DEV322-R1) - AWS re:Invent 2018Amazon Web Services
The document discusses the development of the AWS CLI version 2. It notes that the AWS CLI is a unified tool for managing AWS services that has grown significantly since its initial 1.0 release in 2013. Version 2 is being actively developed on GitHub with a focus on improved configuration, interactive wizards to help users complete tasks, and autocompletion features to make the CLI easier to use. Feedback from customers will help shape the future direction of the AWS CLI.
In this session, learn how AWS thinks about threat detection and remediation. We summarize the challenges of traditional threat detection efforts and explain how AWS helps address these challenges. We also provide an overview of key AWS services that detect and remediate threats to AWS. Finally, Terren Peterson, the VP of Software Engineering at Capital One, shares how his organization detects and remediates threats using Amazon GuardDuty and other AWS services.
Optimizing Costs as You Scale on AWS (ENT302) - AWS re:Invent 2018Amazon Web Services
The cloud offers a first-in-a-career opportunity to constantly optimize your costs as you grow and stay on the leading edge of innovation. By developing a cost-conscious culture and assigning the responsibility for efficiency to the appropriate business owners, you can deliver innovation efficiently and cost effectively. In this session, we share The Vanguard Group’s real-world experience of optimizing their costs, and we review a wide range of cost planning, monitoring, and optimization strategies.
Kubernetes offers a powerful abstraction layer for managing containerized infrastructure. Amazon Elastic Container Service for Kubernetes (Amazon EKS) makes it easy to run Kubernetes on AWS without having to manage master nodes or the etcd operator. In this session, we cover how Amazon EKS makes deploying Kubernetes on AWS simple and scalable, including networking, security, monitoring, and logging. We discuss the key contributions we’re making to make AWS an even better place to run Kubernetes, and show a live demonstration of how AWS customers are starting to use Amazon EKS.
Stream Video, Analyze It in Real Time, and Share It in Real Time (ANT357) - A...Amazon Web Services
This document provides an overview of a workshop on streaming video, analyzing it in real-time, and sharing it using Amazon Web Services. The workshop objectives are to work through the video ingestion pipeline, focus on capturing, playback, and machine learning-driven analytics of video, and demonstrate an end-to-end solution. Activities include capturing live video, playing video back using HTTP Live Streaming, analyzing video using Amazon SageMaker, and using services like Amazon Kinesis Video Streams, Amazon SageMaker, and Amazon Rekognition Video.
The document discusses Amazon Web Services (AWS) practices for continuous integration (CI) and continuous delivery (CD) for software development teams. It defines CI as integrating code changes regularly through automated builds and tests. It defines CD as extending CI to automatically deploy successful builds to staging and pre-production environments. The document covers benefits of CI/CD, example AWS tools for CI/CD including CodeCommit, CodeBuild, and CodeDeploy, and techniques for pull request checks and continuous service testing.
SID201 Overview of AWS Identity, Directory, and Access ServicesAmazon Web Services
Every journey to the AWS Cloud is unique. Some customers are migrating existing applications, while others are building new applications using cloud-native services. Along each of these journeys, identity and access management helps customers protect their applications and resources. In this session, you learn how AWS identity services provide you a secure, flexible, and easy solution for managing identities and access on the AWS Cloud. With AWS identity services, you do not have to adapt to AWS. Instead, you have a choice of services designed to meet you anywhere along your journey to the AWS Cloud.
[REPEAT 1] Elastic Load Balancing: Deep Dive and Best Practices (NET404-R1) -...Amazon Web Services
Elastic Load Balancing (ALB & NLB) automatically distributes incoming application traffic across multiple Amazon EC2 instances for fault tolerance and load distribution. In this session, we go into detail on ELB configuration and day-to-day management. We also discuss its use with Auto Scaling, and we explain how to make decisions about the service and share best practices and useful tips for success. Finally, Netflix joins this session to share how it leveraged the authentication functionality on Application Load Balancer to help solve its workforce identity management at scale.
Secure your AWS Account and your Organization's Accounts Amazon Web Services
The cloud enables users to run workloads more securely than they could in a traditional data center. However, customers are still not sure how to harden their AWS accounts and resources in order to enforce compliance. Consistency around governance can also be a concern when large customers have multiple accounts. In this session, we show you how to use automation, tools, and techniques to harden and audit your AWS account as well as how to leverage AWS Organizations to ensure compliance in your enterprise.
Deep Dive on Cloud File System Offerings: What to Use, Where, and Why (STG392...Amazon Web Services
The document summarizes Amazon Web Services' portfolio of file storage and data transfer services. It introduces Amazon Elastic File System (EFS), Amazon FSx for Lustre and Windows File Server, AWS Storage Gateway, AWS DataSync, and AWS Transfer for SFTP. The panel of AWS product managers discuss the different services and when each one is best suited for different use cases and workloads. The presentation also highlights some new related sessions at re:Invent that provide more in-depth information on the various services.
The document discusses network design and capabilities for Amazon VPC. It provides an overview of VPC functionality including creating an internet-connected VPC with subnets in different Availability Zones and assigning IP address ranges and routing. It also covers security groups, connecting VPCs through peering or to on-premises networks using VPN or AWS Direct Connect, and restricting internet access through routing or NAT gateways.
Creating Your Virtual Data Center - VPC Fundamentals and Connectivity Options...Amazon Web Services
In this session, we'll walk through the fundamentals of Amazon VPC, including: build-out, design details, picking your IP space, subnetting, routing, security and NAT. Then, we'll look at different approaches and use cases for optionally connecting your VPC to your physical data center with VPN or AWS Direct Connect. This session is aimed at architects, network administrators, and technology decision-makers interested in understanding the building blocks that AWS makes available with Amazon VPC.
SRV316 Serverless Data Processing at Scale: An Amazon.com Case StudyAmazon Web Services
Come to this session, and learn how Amazon takes advantage of AWS Lambda with Amazon Kinesis, Amazon Kinesis Data Firehose, and Amazon Kinesis Data Analytics to run a highly scalable, high-throughput pipeline to support its data processing needs. We cover different example architectures that handle such use cases as in-line process and data manipulation. We also discuss the advantages of using the AWS platform to manage different streams for data processing.
Inside AWS: Technology Choices for Modern Applications (SRV305-R1) - AWS re:I...Amazon Web Services
AWS offers a wide range of cloud computing services and technologies, but we rarely state opinions about which services and technologies customers should choose. When it comes to building our own services, our engineering groups have strong opinions, and they express them in the technologies they pick. Join Tim Bray, Senior Principal Engineer, to hear about the high-level choices that developers at AWS and our customers have to make. Here are a few: Are microservices always the way to go? Serverless, containers, or serverless containers? Is relational over? Is Java over? The talk is technical and based on our experience in building AWS services and working with customers on their cloud-native apps.
Securing Your Virtual Data Center in the Cloud (NET202) - AWS re:Invent 2018Amazon Web Services
In this introductory session, we cover how to secure your resources in the cloud for common AWS workloads such as Amazon EC2 computing, database, and serverless. We cover security best practices recommended by AWS for each workload using simple and effective identity and networking techniques. Learn how and why these controls do what they do, and come away with the ability to interpret and apply AWS identity and network access controls.
Mastering Kubernetes on AWS (CON301-R1) - AWS re:Invent 2018Amazon Web Services
Kubernetes offers a powerful abstraction layer for managing containerized infrastructure. Amazon Elastic Container Service for Kubernetes (Amazon EKS) makes it easy to run Kubernetes on AWS without having to manage master nodes or the etcd operator. In this session, we cover what you need to know to get your application up and running with Kubernetes on AWS. We show how Amazon EKS makes deploying Kubernetes on AWS simple and scalable, including networking, security, monitoring, and logging.
Use SD-WAN to Manage Your AWS Environment and Branch Office Connectivity (NET...Amazon Web Services
As customers put more workloads into AWS, the number of Virtual Private Clouds (VPCs) a customer needs to manage grows. Scaling out an AWS environment can create challenges in manageability, workload segmentation, and security. SD-WAN solutions offered by AWS Partners can enable organizations to scale up the number of VPCs as needed while segmenting and isolating workloads for easier management, application quality monitoring, and security. In this session, we walk through a customer example of how an SD-WAN implementation simplified the management of a multi-VPC footprint while also improving application performance to WAN-connected branch offices.
The document discusses the journey of Centrica Hive in standardizing and optimizing their use of multiple AWS accounts. It started with over 100 accounts growing in an unorganized manner, which led to issues around access control, visibility, and cost attribution. Centrica Hive implemented solutions like AWS Organizations, consolidated billing and access tools, security tools, and configuration management to bring structure and governance to their growing AWS environment. The standardized approach helped address early challenges, and the organization is now focused on further optimizing across their accounts.
Do you want to ramp up your knowledge of AWS analytics services and launch your first big data application on the cloud? In this session, we walk you through simplifying big data processing as a data bus comprising of ingestion, storage, processing, and visualization. You build a big data application using AWS managed services, including Amazon Athena, Amazon Kinesis, Amazon EMR, AWS Glue, Amazon Redshift, Amazon QuickSight, and Amazon S3. Along the way, we review architecture design patterns for big data applications and give you access to a take-home lab so you can rebuild and customize the application yourself. To get the most from this session, bring your own laptop and have some familiarity with AWS services.
DEM18 How SendBird Built a Serverless Log-Processing Pipeline in a WeekAmazon Web Services
As a chat solution serving enterprise customers, SendBird load-tests for all its largest customers. In this session, the SendBird team demonstrates how they use Amazon Kinesis, Amazon S3, AWS Lambda, and Amazon Athena to build the processing pipeline to save and analyze the results of a massive-scale load test within just a few days. They share mistakes and lessons as they expand this pipeline into day-to-day operations, such as aggregating customer usage data for billing purposes and blocking malicious traffic with the help of AWS WAF. This session is brought to you by AWS Partner, SendBird.
In this session, we provide an overview of how AWS thinks about threat detection and remediation. We summarize the challenges of traditional threat detection efforts and explain how AWS helps address these challenges. We also provide an overview of key AWS services that can be used to detect and remediate threats to AWS. Finally, we conclude with examples of threat detection and remediation on AWS and an provide an opportunity for key service demos.
Amazon VPC: Security at the Speed Of Light (NET313) - AWS re:Invent 2018Amazon Web Services
With Amazon Virtual Private Cloud (Amazon VPC) you can build your own virtual data center networks in seconds. Every VPC is free, but it comes with enterprise-grade capabilities that would cost millions of dollars in a traditional data center. How is this possible? Come hear how Amazon VPC works under the hood. We uncover how we use Amazon-designed hardware to deliver high-assurance security and ultra-fast performance that makes the speed of light feel slow. Leave with insights and tips for how to optimize your own applications, and even whole organizations, to deliver faster than ever.
What's New with the AWS CLI (DEV322-R1) - AWS re:Invent 2018Amazon Web Services
The document discusses the development of the AWS CLI version 2. It notes that the AWS CLI is a unified tool for managing AWS services that has grown significantly since its initial 1.0 release in 2013. Version 2 is being actively developed on GitHub with a focus on improved configuration, interactive wizards to help users complete tasks, and autocompletion features to make the CLI easier to use. Feedback from customers will help shape the future direction of the AWS CLI.
In this session, learn how AWS thinks about threat detection and remediation. We summarize the challenges of traditional threat detection efforts and explain how AWS helps address these challenges. We also provide an overview of key AWS services that detect and remediate threats to AWS. Finally, Terren Peterson, the VP of Software Engineering at Capital One, shares how his organization detects and remediates threats using Amazon GuardDuty and other AWS services.
Optimizing Costs as You Scale on AWS (ENT302) - AWS re:Invent 2018Amazon Web Services
The cloud offers a first-in-a-career opportunity to constantly optimize your costs as you grow and stay on the leading edge of innovation. By developing a cost-conscious culture and assigning the responsibility for efficiency to the appropriate business owners, you can deliver innovation efficiently and cost effectively. In this session, we share The Vanguard Group’s real-world experience of optimizing their costs, and we review a wide range of cost planning, monitoring, and optimization strategies.
Kubernetes offers a powerful abstraction layer for managing containerized infrastructure. Amazon Elastic Container Service for Kubernetes (Amazon EKS) makes it easy to run Kubernetes on AWS without having to manage master nodes or the etcd operator. In this session, we cover how Amazon EKS makes deploying Kubernetes on AWS simple and scalable, including networking, security, monitoring, and logging. We discuss the key contributions we’re making to make AWS an even better place to run Kubernetes, and show a live demonstration of how AWS customers are starting to use Amazon EKS.
Stream Video, Analyze It in Real Time, and Share It in Real Time (ANT357) - A...Amazon Web Services
This document provides an overview of a workshop on streaming video, analyzing it in real-time, and sharing it using Amazon Web Services. The workshop objectives are to work through the video ingestion pipeline, focus on capturing, playback, and machine learning-driven analytics of video, and demonstrate an end-to-end solution. Activities include capturing live video, playing video back using HTTP Live Streaming, analyzing video using Amazon SageMaker, and using services like Amazon Kinesis Video Streams, Amazon SageMaker, and Amazon Rekognition Video.
The document discusses Amazon Web Services (AWS) practices for continuous integration (CI) and continuous delivery (CD) for software development teams. It defines CI as integrating code changes regularly through automated builds and tests. It defines CD as extending CI to automatically deploy successful builds to staging and pre-production environments. The document covers benefits of CI/CD, example AWS tools for CI/CD including CodeCommit, CodeBuild, and CodeDeploy, and techniques for pull request checks and continuous service testing.
SID201 Overview of AWS Identity, Directory, and Access ServicesAmazon Web Services
Every journey to the AWS Cloud is unique. Some customers are migrating existing applications, while others are building new applications using cloud-native services. Along each of these journeys, identity and access management helps customers protect their applications and resources. In this session, you learn how AWS identity services provide you a secure, flexible, and easy solution for managing identities and access on the AWS Cloud. With AWS identity services, you do not have to adapt to AWS. Instead, you have a choice of services designed to meet you anywhere along your journey to the AWS Cloud.
[REPEAT 1] Elastic Load Balancing: Deep Dive and Best Practices (NET404-R1) -...Amazon Web Services
Elastic Load Balancing (ALB & NLB) automatically distributes incoming application traffic across multiple Amazon EC2 instances for fault tolerance and load distribution. In this session, we go into detail on ELB configuration and day-to-day management. We also discuss its use with Auto Scaling, and we explain how to make decisions about the service and share best practices and useful tips for success. Finally, Netflix joins this session to share how it leveraged the authentication functionality on Application Load Balancer to help solve its workforce identity management at scale.
Secure your AWS Account and your Organization's Accounts Amazon Web Services
The cloud enables users to run workloads more securely than they could in a traditional data center. However, customers are still not sure how to harden their AWS accounts and resources in order to enforce compliance. Consistency around governance can also be a concern when large customers have multiple accounts. In this session, we show you how to use automation, tools, and techniques to harden and audit your AWS account as well as how to leverage AWS Organizations to ensure compliance in your enterprise.
Deep Dive on Cloud File System Offerings: What to Use, Where, and Why (STG392...Amazon Web Services
The document summarizes Amazon Web Services' portfolio of file storage and data transfer services. It introduces Amazon Elastic File System (EFS), Amazon FSx for Lustre and Windows File Server, AWS Storage Gateway, AWS DataSync, and AWS Transfer for SFTP. The panel of AWS product managers discuss the different services and when each one is best suited for different use cases and workloads. The presentation also highlights some new related sessions at re:Invent that provide more in-depth information on the various services.
The document discusses network design and capabilities for Amazon VPC. It provides an overview of VPC functionality including creating an internet-connected VPC with subnets in different Availability Zones and assigning IP address ranges and routing. It also covers security groups, connecting VPCs through peering or to on-premises networks using VPN or AWS Direct Connect, and restricting internet access through routing or NAT gateways.
Creating Your Virtual Data Center - VPC Fundamentals and Connectivity Options...Amazon Web Services
In this session, we'll walk through the fundamentals of Amazon VPC, including: build-out, design details, picking your IP space, subnetting, routing, security and NAT. Then, we'll look at different approaches and use cases for optionally connecting your VPC to your physical data center with VPN or AWS Direct Connect. This session is aimed at architects, network administrators, and technology decision-makers interested in understanding the building blocks that AWS makes available with Amazon VPC.
Getting Started with Amazon VPC (NET208) - AWS re:Invent 2018Amazon Web Services
In this introductory workshop, we focus on the basic principles behind building scalable, secure, performant VPC infrastructures for those who are new to AWS. We build on the breakout session, "Creating Your Virtual Data Center: VPC Fundamentals and Connectivity Options," and we give you the opportunity to get hands on and follow through on the implementation of this type of infrastructure. We recommend you bring your own laptop.
AWS PrivateLink: Fundamentals - SRV211 - Chicago AWS SummitAmazon Web Services
Securely access services hosted on AWS using AWS PrivateLink. Come to this session and learn the fundamentals of AWS PrivateLink, including VPC design, VPC endpoint, Network Load Balancer, and more. Discover the benefits and use cases for connecting your VPC with AWS-based services over AWS PrivateLink, and hear about the technologies that are related to AWS PrivateLink, such as AWS Direct Connect, Amazon Route 53, and other AWS services. This mid-level architecture discussion is aimed at architects, network administrators, and technology decision makers interested in understanding how to connect their Amazon VPCs to SaaS services in a secure and scalable manner.
Securely access services hosted on AWS using AWS PrivateLink. Come to this session and learn the fundamentals of AWS PrivateLink, including VPC design, VPC endpoint, Network Load Balancer, and more. Discover the benefits and use cases for connecting your VPC with AWS-based services over AWS PrivateLink, and hear about the technologies that are related to AWS PrivateLink, such as AWS Direct Connect, Amazon Route 53, and other AWS services. This mid-level architecture discussion is aimed at architects, network administrators, and technology decision makers interested in understanding how to connect their Amazon VPCs to SaaS services in a secure and scalable manner.
AWS PrivateLink enables you to securely access services hosted on AWS. Come to this session and learn the fundamentals of AWS PrivateLink, including VPC design, VPC endpoint, Network Load Balancer, and more. Discover the benefits and use cases for connecting your VPC with services based on AWS over AWS PrivateLink, and hear about the AWS services that are related to AWS PrivateLink, including AWS Direct Connect, Amazon Route 53, and others. This mid-level architecture discussion is aimed at architects, network administrators, and technology decision makers who want to understand how to connect their Amazon VPCs to SaaS services in a secure and scalable manner.
Many enterprises on their journey to the cloud require consistent and highly secure connectivity among their existing data center, their staff, and AWS environments. In this session, we walk through the different architecture options for establishing this connectivity using AWS VPN solutions. With each option, we evaluate the considerations and discuss risk, performance, high availability, encryption, and cost.
AWS PrivateLink: Fundamentals - SRV211 - Toronto AWS SummitAmazon Web Services
In this mid-level session, we explore the fundamentals of AWS PrivateLink, including VPC design, VPC endpoints, and Network Load Balancer. Discover the benefits and use cases for connecting your VPCs with services in AWS over AWS PrivateLink, and hear about related technologies such as AWS Direct Connect, Amazon Route 53, and other AWS services. This architecture discussion is designed for architects, network administrators, and technology decision makers interested in understanding how to connect their Amazon VPCs to SaaS services in a secure and scalable manner.
Introduction to Amazon Route 53 Resolver for Hybrid Cloud (NET215) - AWS re:I...Amazon Web Services
Amazon Route 53 Resolver provides recursive DNS for your Amazon VPC and on-premises networks over VPN or AWS Direct Connect. This session will review common use cases for Route 53 Resolver and go in depth on how it works.
Advanced VPC Design and New Capabilities for Amazon VPC (NET303) - AWS re:Inv...Amazon Web Services
This document provides an overview of new and advanced capabilities for Amazon VPC including AWS PrivateLink, VPC sharing, Global Accelerator, Client VPN, and BYOIP. Key points include:
- AWS PrivateLink allows access to additional AWS services privately from a VPC without an internet gateway. It now supports 18 services.
- VPC sharing allows multiple AWS accounts to share a single VPC configuration with separate resource ownership and billing.
- Global Accelerator improves application availability and performance by routing traffic to optimal endpoints across AWS regions.
- Client VPN allows client-based access to VPC resources through OpenVPN clients instead of just site-to-site VPN.
- BYOIP allows use of existing IP addresses on AWS
AWS PrivateLink: Fundamentals - SRV211 - Atlanta AWS SummitAmazon Web Services
In this mid-level session, we explore the fundamentals of AWS PrivateLink, including VPC design, VPC endpoints, and Network Load Balancer. Discover the benefits and use cases for connecting your VPCs with services in AWS over AWS PrivateLink, and hear about related technologies such as AWS Direct Connect, Amazon Route 53, and other AWS services. This architecture discussion is designed for architects, network administrators, and technology decision makers interested in understanding how to connect their Amazon VPCs to SaaS services in a secure and scalable manner.
Learning Objectives:
- Access AWS services such as Amazon Kinesis Streams, Service Catalog, Systems Manager, EC2 APIs, and the ELB APIs by way of VPC Endpoints
- How to set up and use VPC Endpoints to access your own services and those made available by others
- Create services and offer them for sale to other AWS customers, for access via a private connection
Plan Advanced AWS Networking Architectures - SRV323 - Chicago AWS SummitAmazon Web Services
Networking is the foundation supporting many applications and services on AWS. As such, it is one of the first and most important things to consider when architecting with AWS. In this session, we discuss planning for your advanced AWS networking architectures.
Expanding Your AWS and On-premise Footprint to AWS GovCloud (US)Amazon Web Services
As customers progress through their cloud journeys, sensitive and regulated IT workloads, and data migrations could necessitate the use of AWS GovCloud (US). But how do you get started? What do you need to know before expanding your footprint to the AWS GovCloud (US) region? Is extending the footprint from standard AWS regions different than extending from on-premise environments and datacenters? Join us to learn the technical and operational considerations, approaches, best practices and tools to successfully extend your IT environments and technology footprint and migrate assets to the AWS GovCloud (US) Region.
In this session, we walk through the fundamentals of Amazon VPC. First, we cover build-out and design fundamentals for VPCs, including picking your IP space, subnetting, routing, security, NAT, and much more. We then transition to different approaches and use cases for optionally connecting your VPC to your physical data center with VPN or AWS Direct Connect. This mid-level architecture discussion is aimed at architects, network administrators, and technology decision makers interested in understanding the building blocks that AWS makes available with Amazon VPC. Learn how you can connect VPCs with your offices and current data center footprint.
Deep Dive on New AWS Networking Features - AWS Online Tech TalksAmazon Web Services
Learning Objectives:
- Introduction to new AWS networking features - PrivateLink, Direct Connect gateway, and more
- How the new features, PrivateLink and Direct Connect gateways, work together
- Best practices for deploying these new features
Running more than one containerized application in production makes teams look for solutions to quickly deploy and orchestrate containers. One of the most popular options is the open-source project Kubernetes. With the release of the Amazon Elastic Container Service for Kubernetes (EKS), engineering teams now have access to a fully managed Kubernetes control plane and time to focus on building applications. This workshop will deliver hands-on labs to support you getting familiar with Amazon's EKS.
Connectivity Options: VPC Peering, Transit VPC, AWS PrivateLink, AWS Direct C...Amazon Web Services
In this interactive talk, we try to make the decision-making process of each of these options known. We do this by using a decision tree-like method while still capturing the do's and donts of VPC peering, transit VPC, AWS PrivateLink, AWS Direct Connect, and so on.
Architecting Remote Connectivity (NET309-R1) - AWS re:Invent 2018Amazon Web Services
Bring all your questions about AWS Direct Connect, VPN, and any other remote access solutions for us to dive into. Topics can include public VIFs, Direct Connect gateway, transit solutions, overlays—anything goes!
To deliver your applications to millions of users you need to scale your network across thousands of VPCs. AWS Transit Gateway helps scale your workloads and vastly simplifies how you connect your AWS networks. AWS Transit Gateway also makes it easier to connect your on-premises networks across those VPCs. Using secure operational controls, you can implement and maintain centralized policies to connect Amazon VPCs with each other and with your on-premises networks. This session will enable you to get started quickly and get an insight into the various capabilities that AWS Transit Gateway introduces.
Similar to SRV204 Creating Your Virtual Data Center: VPC Fundamentals and Connectivity Options (20)
Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...Amazon Web Services
Il Forecasting è un processo importante per tantissime aziende e viene utilizzato in vari ambiti per cercare di prevedere in modo accurato la crescita e distribuzione di un prodotto, l’utilizzo delle risorse necessarie nelle linee produttive, presentazioni finanziarie e tanto altro. Amazon utilizza delle tecniche avanzate di forecasting, in parte questi servizi sono stati messi a disposizione di tutti i clienti AWS.
In questa sessione illustreremo come pre-processare i dati che contengono una componente temporale e successivamente utilizzare un algoritmo che a partire dal tipo di dato analizzato produce un forecasting accurato.
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...Amazon Web Services
La varietà e la quantità di dati che si crea ogni giorno accelera sempre più velocemente e rappresenta una opportunità irripetibile per innovare e creare nuove startup.
Tuttavia gestire grandi quantità di dati può apparire complesso: creare cluster Big Data su larga scala sembra essere un investimento accessibile solo ad aziende consolidate. Ma l’elasticità del Cloud e, in particolare, i servizi Serverless ci permettono di rompere questi limiti.
Vediamo quindi come è possibile sviluppare applicazioni Big Data rapidamente, senza preoccuparci dell’infrastruttura, ma dedicando tutte le risorse allo sviluppo delle nostre le nostre idee per creare prodotti innovativi.
Ora puoi utilizzare Amazon Elastic Kubernetes Service (EKS) per eseguire pod Kubernetes su AWS Fargate, il motore di elaborazione serverless creato per container su AWS. Questo rende più semplice che mai costruire ed eseguire le tue applicazioni Kubernetes nel cloud AWS.In questa sessione presenteremo le caratteristiche principali del servizio e come distribuire la tua applicazione in pochi passaggi
Vent'anni fa Amazon ha attraversato una trasformazione radicale con l'obiettivo di aumentare il ritmo dell'innovazione. In questo periodo abbiamo imparato come cambiare il nostro approccio allo sviluppo delle applicazioni ci ha permesso di aumentare notevolmente l'agilità, la velocità di rilascio e, in definitiva, ci ha consentito di creare applicazioni più affidabili e scalabili. In questa sessione illustreremo come definiamo le applicazioni moderne e come la creazione di app moderne influisce non solo sull'architettura dell'applicazione, ma sulla struttura organizzativa, sulle pipeline di rilascio dello sviluppo e persino sul modello operativo. Descriveremo anche approcci comuni alla modernizzazione, compreso l'approccio utilizzato dalla stessa Amazon.com.
Come spendere fino al 90% in meno con i container e le istanze spot Amazon Web Services
L’utilizzo dei container è in continua crescita.
Se correttamente disegnate, le applicazioni basate su Container sono molto spesso stateless e flessibili.
I servizi AWS ECS, EKS e Kubernetes su EC2 possono sfruttare le istanze Spot, portando ad un risparmio medio del 70% rispetto alle istanze On Demand. In questa sessione scopriremo insieme quali sono le caratteristiche delle istanze Spot e come possono essere utilizzate facilmente su AWS. Impareremo inoltre come Spreaker sfrutta le istanze spot per eseguire applicazioni di diverso tipo, in produzione, ad una frazione del costo on-demand!
In recent months, many customers have been asking us the question – how to monetise Open APIs, simplify Fintech integrations and accelerate adoption of various Open Banking business models. Therefore, AWS and FinConecta would like to invite you to Open Finance marketplace presentation on October 20th.
Event Agenda :
Open banking so far (short recap)
• PSD2, OB UK, OB Australia, OB LATAM, OB Israel
Intro to Open Finance marketplace
• Scope
• Features
• Tech overview and Demo
The role of the Cloud
The Future of APIs
• Complying with regulation
• Monetizing data / APIs
• Business models
• Time to market
One platform for all: a Strategic approach
Q&A
Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...Amazon Web Services
Per creare valore e costruire una propria offerta differenziante e riconoscibile, le startup di successo sanno come combinare tecnologie consolidate con componenti innovativi creati ad hoc.
AWS fornisce servizi pronti all'utilizzo e, allo stesso tempo, permette di personalizzare e creare gli elementi differenzianti della propria offerta.
Concentrandoci sulle tecnologie di Machine Learning, vedremo come selezionare i servizi di intelligenza artificiale offerti da AWS e, anche attraverso una demo, come costruire modelli di Machine Learning personalizzati utilizzando SageMaker Studio.
OpsWorks Configuration Management: automatizza la gestione e i deployment del...Amazon Web Services
Con l'approccio tradizionale al mondo IT per molti anni è stato difficile implementare tecniche di DevOps, che finora spesso hanno previsto attività manuali portando di tanto in tanto a dei downtime degli applicativi interrompendo l'operatività dell'utente. Con l'avvento del cloud, le tecniche di DevOps sono ormai a portata di tutti a basso costo per qualsiasi genere di workload, garantendo maggiore affidabilità del sistema e risultando in dei significativi miglioramenti della business continuity.
AWS mette a disposizione AWS OpsWork come strumento di Configuration Management che mira ad automatizzare e semplificare la gestione e i deployment delle istanze EC2 per mezzo di workload Chef e Puppet.
Scopri come sfruttare AWS OpsWork a garanzia e affidabilità del tuo applicativo installato su Instanze EC2.
Microsoft Active Directory su AWS per supportare i tuoi Windows WorkloadsAmazon Web Services
Vuoi conoscere le opzioni per eseguire Microsoft Active Directory su AWS? Quando si spostano carichi di lavoro Microsoft in AWS, è importante considerare come distribuire Microsoft Active Directory per supportare la gestione, l'autenticazione e l'autorizzazione dei criteri di gruppo. In questa sessione, discuteremo le opzioni per la distribuzione di Microsoft Active Directory su AWS, incluso AWS Directory Service per Microsoft Active Directory e la distribuzione di Active Directory su Windows su Amazon Elastic Compute Cloud (Amazon EC2). Trattiamo argomenti quali l'integrazione del tuo ambiente Microsoft Active Directory locale nel cloud e l'utilizzo di applicazioni SaaS, come Office 365, con AWS Single Sign-On.
Dal riconoscimento facciale al riconoscimento di frodi o difetti di fabbricazione, l'analisi di immagini e video che sfruttano tecniche di intelligenza artificiale, si stanno evolvendo e raffinando a ritmi elevati. In questo webinar esploreremo le possibilità messe a disposizione dai servizi AWS per applicare lo stato dell'arte delle tecniche di computer vision a scenari reali.
Amazon Web Services e VMware organizzano un evento virtuale gratuito il prossimo mercoledì 14 Ottobre dalle 12:00 alle 13:00 dedicato a VMware Cloud ™ on AWS, il servizio on demand che consente di eseguire applicazioni in ambienti cloud basati su VMware vSphere® e di accedere ad una vasta gamma di servizi AWS, sfruttando a pieno le potenzialità del cloud AWS e tutelando gli investimenti VMware esistenti.
Molte organizzazioni sfruttano i vantaggi del cloud migrando i propri carichi di lavoro Oracle e assicurandosi notevoli vantaggi in termini di agilità ed efficienza dei costi.
La migrazione di questi carichi di lavoro, può creare complessità durante la modernizzazione e il refactoring delle applicazioni e a questo si possono aggiungere rischi di prestazione che possono essere introdotti quando si spostano le applicazioni dai data center locali.
Crea la tua prima serverless ledger-based app con QLDB e NodeJSAmazon Web Services
Molte aziende oggi, costruiscono applicazioni con funzionalità di tipo ledger ad esempio per verificare lo storico di accrediti o addebiti nelle transazioni bancarie o ancora per tenere traccia del flusso supply chain dei propri prodotti.
Alla base di queste soluzioni ci sono i database ledger che permettono di avere un log delle transazioni trasparente, immutabile e crittograficamente verificabile, ma sono strumenti complessi e onerosi da gestire.
Amazon QLDB elimina la necessità di costruire sistemi personalizzati e complessi fornendo un database ledger serverless completamente gestito.
In questa sessione scopriremo come realizzare un'applicazione serverless completa che utilizzi le funzionalità di QLDB.
Con l’ascesa delle architetture di microservizi e delle ricche applicazioni mobili e Web, le API sono più importanti che mai per offrire agli utenti finali una user experience eccezionale. In questa sessione impareremo come affrontare le moderne sfide di progettazione delle API con GraphQL, un linguaggio di query API open source utilizzato da Facebook, Amazon e altro e come utilizzare AWS AppSync, un servizio GraphQL serverless gestito su AWS. Approfondiremo diversi scenari, comprendendo come AppSync può aiutare a risolvere questi casi d’uso creando API moderne con funzionalità di aggiornamento dati in tempo reale e offline.
Inoltre, impareremo come Sky Italia utilizza AWS AppSync per fornire aggiornamenti sportivi in tempo reale agli utenti del proprio portale web.
Database Oracle e VMware Cloud™ on AWS: i miti da sfatareAmazon Web Services
Molte organizzazioni sfruttano i vantaggi del cloud migrando i propri carichi di lavoro Oracle e assicurandosi notevoli vantaggi in termini di agilità ed efficienza dei costi.
La migrazione di questi carichi di lavoro, può creare complessità durante la modernizzazione e il refactoring delle applicazioni e a questo si possono aggiungere rischi di prestazione che possono essere introdotti quando si spostano le applicazioni dai data center locali.
In queste slide, gli esperti AWS e VMware presentano semplici e pratici accorgimenti per facilitare e semplificare la migrazione dei carichi di lavoro Oracle accelerando la trasformazione verso il cloud, approfondiranno l’architettura e dimostreranno come sfruttare a pieno le potenzialità di VMware Cloud ™ on AWS.
1) The document discusses building a minimum viable product (MVP) using Amazon Web Services (AWS).
2) It provides an example of an MVP for an omni-channel messenger platform that was built from 2017 to connect ecommerce stores to customers via web chat, Facebook Messenger, WhatsApp, and other channels.
3) The founder discusses how they started with an MVP in 2017 with 200 ecommerce stores in Hong Kong and Taiwan, and have since expanded to over 5000 clients across Southeast Asia using AWS for scaling.
This document discusses pitch decks and fundraising materials. It explains that venture capitalists will typically spend only 3 minutes and 44 seconds reviewing a pitch deck. Therefore, the deck needs to tell a compelling story to grab their attention. It also provides tips on tailoring different types of decks for different purposes, such as creating a concise 1-2 page teaser, a presentation deck for pitching in-person, and a more detailed read-only or fundraising deck. The document stresses the importance of including key information like the problem, solution, product, traction, market size, plans, team, and ask.
This document discusses building serverless web applications using AWS services like API Gateway, Lambda, DynamoDB, S3 and Amplify. It provides an overview of each service and how they can work together to create a scalable, secure and cost-effective serverless application stack without having to manage servers or infrastructure. Key services covered include API Gateway for hosting APIs, Lambda for backend logic, DynamoDB for database needs, S3 for static content, and Amplify for frontend hosting and continuous deployment.
This document provides tips for fundraising from startup founders Roland Yau and Sze Lok Chan. It discusses generating competition to create urgency for investors, fundraising in parallel rather than sequentially, having a clear fundraising narrative focused on what you do and why it's compelling, and prioritizing relationships with people over firms. It also notes how the pandemic has changed fundraising, with examples of deals done virtually during this time. The tips emphasize being fully prepared before fundraising and cultivating connections with investors in advance.
AWS_HK_StartupDay_Building Interactive websites while automating for efficien...Amazon Web Services
This document discusses Amazon's machine learning services for building conversational interfaces and extracting insights from unstructured text and audio. It describes Amazon Lex for creating chatbots, Amazon Comprehend for natural language processing tasks like entity extraction and sentiment analysis, and how they can be used together for applications like intelligent call centers and content analysis. Pre-trained APIs simplify adding machine learning to apps without requiring ML expertise.
Amazon Elastic Container Service (Amazon ECS) è un servizio di gestione dei container altamente scalabile, che semplifica la gestione dei contenitori Docker attraverso un layer di orchestrazione per il controllo del deployment e del relativo lifecycle. In questa sessione presenteremo le principali caratteristiche del servizio, le architetture di riferimento per i differenti carichi di lavoro e i semplici passi necessari per poter velocemente migrare uno o più dei tuo container.