Opinionated re:Invent recap with AWS Heroes & Builders

re:Cap with AWS
Heroes & Builders:
Dzenan Dzevlan
Goran Opacic
Dzenana Dzevlan
Marin Radjenovic
Andrew Brown
• Dzenan Dzevlan - AWS Community Hero, AWS Authorized Instructor & AWS User
Group Bosnia leader
• Goran Opacic - AWS Data Hero, CEO @ Esteh & AWS User Group Belgrade leader
• Dzenana Dzevlan - AWS Community Builder, Production Engineer @ Yahoo & AWS
User Group Bosnia leader
• Marin Radjenovic - AWS Community Builder, Cloud Architect @ Crayon & AWS
User Group Montenegro leader
• Andrew Brown - AWS Community Hero, GCP Champion Innovator, CEO @
ExamPro & AWS Ontario Virtual User Group leader

Architects/IT Pros
Special Edition

AWS re:Invent is a learning conference hosted for the
global cloud computing community with in-person and
virtual content.
2000+ Technical
Sessions
50,000+ Attendees
100+
Announcements

Builder Experience

Preview
Amazon CodeCatalyst
SPARK A FASTER PLANNING, DEVELOPMENT, AND DELIVERY LIFECYCLE ON AWS

DevOps

GA
Amazon RDS Blue/Green Deployments
AMAZON RDS MYSQL, MARIADB AND AMAZON AURORA
A new fully-managed feature for Amazon Aurora with MySQL compatibility, Amazon RDS for MySQL
and MariaDB that enables you to make database updates safer, simpler, and faster.

GA
AWS Elastic Disaster Recovery Automated Failback
Automated in-AWS Failback
provides a simplified and
expedited experience to fail
back Amazon EC2 instances
to the original region

AWS Backup – New Features
• AWS Backup for Amazon S3 (Public Preview in US West)
• Support for VMware workloads (GA)
• Protect and Restore Your CloudFormation Stacks (GA)
• Support for Amazon Redshift (GA)
• Delegation of organization-wide backup administration (GA)

Preview
Amazon CloudWatch Internet Monitor
Provides visibility into how an internet
issue might impact the performance
and availability of your applications.

GA
Amazon CloudWatch Logs Data Protection
A new set of capabilities that leverage pattern matching and machine learning
capabilities to detect and protect sensitive log data-in-transit.
Amazon
CloudWatch
Instance
Date=20221201
SSN=123456789
Date=20221201
SSN=*********
CloudWatch
Logs

GA
Amazon S3 Multi-Region Access Points Failover Controls
• Multi-Region Access Point will automatically route all traffic to the closest bucket
(synchronized via S3 Replication) in another region
• Failover Controls let you shift S3 data access request traffic routed through an
Amazon S3 Multi-Region Access Point to an alternate AWS Region within minutes
to test and build highly available applications for business continuity

Preview
Amazon Route 53 ARC – Zonal Shift
RAPIDLY RECOVER FROM APPLICATION FAILURES IN A SINGLE AZ
• New capability built into ELBs
• Allows better end user experience for highly resilient multi-AZ applications
• Implementation of a “recovery-oriented” strategy
• Shift traffic away from an AZ to other healthy AZs with ease

Serverless

GA
AWS Lambda SnapStart
• Reduces Java “Cold Starts” by 90%
• Designed to reduce the ‘init’ phase of
function invocation
• Available for Corretto Java11 runtime.
• No extra charge

GA
AWS Lambda SnapStart Lifecycle

Compute

GA
Next Generation Nitro System - Nitro v5
CUSTOM SILICON BUILT BY ANNAPURNA LABS
AWS Nitro System
• 2x Transistors
• 50% Faster DRAM Speed
• 2x More PCIe Bandwidth
• 60% Higher PPS
• 30% Lower Latency
• 40% Better Performance per Watt

Preview
New Graviton3E instance - C7gn
LATEST-GENERATION EC2 INSTANCE WITH ENHANCED NETWORKING, POWERED BY GRAVITON AND NITRO V5
C7gn instance
C7gn
• 200Gbps Networking Bandwidth
• Up to 50% better Packet Processing
Performance (compared to C6gn)
• 2x Higher PPS/vCPU (compared to C6gn)
Sign up for the C7gn preview at https://aws.amazon.com/ec2/instance-types/c7g/

Coming Soon
New Graviton3E instance - HPC7g
THE BEST PRICE/PERFORMANCE FOR TIGHTLY COUPLED COMPUTE-INTENSIVE HPC
HPC7gn instance
HPC7gn
+35%
+30%
G3 G3E

GA
Amazon EC2 Hpc6id instances
• Optimised for High Performance Computing workloads
Efficiently run memory bandwidth-bound, data-intensive
high performance computing (HPC) workloads, such as
finite element analysis and seismic reservoir
simulations.
• 3rd Generation Intel Xeon Scalable processors
All-core turbo frequency of 3.5 GHz, 1,024 GB of
memory, and up to 15.2 TB of local NVMe solid state
drive (SSD) storage. 200Gbps Elastic Fabric Adapter
(EFA). Ice Lake cores.
• Available now in US regions
Available in US East (Ohio) and AWS GovCloud (US-West).

Preview
Amazon EC2 Inf2
HIGHEST INFERENCE PERFORMANCE AT THE LOWEST COST IN AMAZON EC2
Second-generation AWS inferential
accelerator
3x higher computer performance, 4x
higher accelerator memory, up to 4x
higher throughput and up to 10x lower
latency compared to Inf1
Optimized for complex models such as
large language models and vision
transformers
Inf2
Gen2

GA
Amazon EC2 Microsoft Office AMI
Microsoft Office LTSC Professional Plus 2021 fully compliant AMI provided
Amazon EC2 License Included Windows Server instances: per vCPU
Microsoft Office and RDS Subscriber Access License (SAL): Monthly (non-daily) per user
Instance

GA
AWS Compute Optimizer external metrics support
AWS Compute Optimizer now leverages metrics
captured by partner solutions when calculating
sizing recommendations
Memory metrics can now be obtained from Datadog,
Dynatrace, Instana, and New Relic in addition to
CloudWatch
Enables more cost-optimized proposals in
combination with other factors such as CPU

Networking

Preview
Amazon VPC Lattice
Connectivity
• Cross-account, cross-VPC connections to services
• Application-aware routing
Consistency across compute services
• Integration with Amazon EC2, Amazon ECS, AWS Lambda,
and Amazon EKS/Kubernetes
Observability and traffic control
• Logs or metrics export to Amazon S3, Amazon CloudWatch,
and Amazon Kinesis Data Firehose
• Advanced layer 7 routing and resiliency controls
Security
• Access policy for Zero Trust architectures
• Centralized control of inbound and outbound traffic
Simplifies the way developers connect,
secure, and observe communication,
with application layer networking
between services
Service-aware networking

Preview
Amazon VPC Lattice benefits
Increased
developer
productivity
Simplified service
discovery and
connectivity
Enhanced
security posture
Granular access
control with IAM roles
Improved scale
and resilience
Fully managed control
plane and data plane
Reduced Day
2 operations
costs
Operate large
environments with
fewer resources
Optimized
compute choice
Support for EC2 Auto
Scaling groups, EKS,
Lambda
< >

Granular secure
access to services
for Zero Trust
Traffic
management at
scale
Streamlined
service-to-service
operations
Secure and simple
cross-VPC
connectivity
VPC 2
VPC 1
VPC 3
VPC N
Use cases for Amazon VPC Lattice

GA
Load Balancing Enhancements
• ALB now supports turning cross zone load balancing off
• NLB health check improvements
• Configure health-check intervals
• Specify HTTP response codes
• Configure consecutive health check responses
• ALB/NLB minimum healthy targets
• Route 53 ARC zonal shift for ALB/NLB [Preview]

GA
Networking Enhancements
• VPC Reachability Analyzer supports cross-account traces
• AWS Network Manager introduces real-time performance monitoring for the AWS
Global Network

Storage

GA
Amazon EFS Updates
• Elastic Throughput - Provides as much throughput as
needed for the application on a pay-as-you-go basis
• New Life Cycle Policy - 1 day can be set in addition
to the existing 7, 14, 30, 60, and 90 days
• Performance Improvements –
• Read: 60% delay improvement
• Writes: 40% delay improvement
(only for files 64 KB or smaller in size)

Coming Soon
Amazon EBS io2 SRD support in 2023
• By applying SRD, write latency is improved by up to
90%, especially in long-tail areas such as P99.999.
Throughput is also improved by 4X.

GA
Amazon FSx for OpenZFS Updates
Announcing a new generation of file systems with Amazon
FSx for OpenZFS. Maximum throughput and IOPS doubled,
with NVMe cache
Up to 10GB/s throughput and up to 350,000 IOPS
High-speed NVMe cache up to 2.5TB with read performance
exceeding 1,000,000 IOPS with latency in the hundreds of
microseconds

GA
Amazon FSx for NetApp ONTAP Updates
• Through put improvement - Doubles throughput capacity
and maximum IOPS per file system. Throughput increased
from 2GB/s to 4GB/s and SSD IOPS from 80,000 to
160,000
• Easier to access Multi-AZ file systems - you now have the
option to create Multi-AZ file systems with an IP address range
that’s within your VPC’s IP address range. This allows you to
access them from on premises without needing to create any
additional routes in your Transit Gateway.

Security

Preview
Amazon Verified Permissions
FINE-GRAINED PERMISSIONS AND AUTHORIZATION FOR YOUR CUSTOM APPLICATIONS
Externalize authorization
with policy and
schema management
Govern fine-grained permissions
within applications and data with policy
lifecycle management
Simplify compliance audits at
scale, identify overprovisioned
permissions, and connect to
monitoring workflows
Analyze millions of permissions
across applications with the power of
automated reasoning
Integrate your current identity
provider to sync user profiles,
attributes, and group
memberships
Build applications faster
and support Zero Trust
architectures with dynamic,
real-time authorization
decisions

GA
AWS Organizations – Delegation of Administrative accounts
In organizational units with different operational
policies.
Sub-administrators can be authorized and
easier to implement individual policies.

GA
AWS KMS external key store (XKS)
• Extends existing AWS KMS custom key store feature beyond AWS CloudHSM
(customer controlled, single-tenant HSM inside AWS datacenters) to keys in
on-premises HSM

GA
AWS Wickr Single product with full suite of
collaboration capabilities
Multi-device (mobile, desktop) access with ability
to function in low-bandwidth environments
Enterprise management administrative
control and IT integration
Data retention service supports archiving
and data privacy protection
Federated SaaS, self-hosted, and
air-gapped deployment options
Advanced end-to-end encryption (E2EE)
Enhanced security on personal devices without
the need for VPN or special software

Questions?

Thank you!

www.ServerlessToronto.org
Reducing the gap between IT and Business needs

Opinionated re:Invent recap with AWS Heroes & Builders

Related slideshows

More Related Content

Opinionated re:Invent recap with AWS Heroes & Builders