Amazon RDS Update – Cross-Account Snapshot Sharing

Today I would like to tell you about a new cross-account snapshot sharing feature for Amazon Relational Database Service (RDS). You can share the snapshots with specific AWS accounts or you can make them public.

Cross-Account Snapshot Sharing
I often create snapshot backups as part of my RDS demos:

The snapshots are easy to create and can be restored to a fresh RDS database instance with a couple of clicks.

Today’s big news is that you can now share unencrypted MySQL, Oracle, SQL Server, and PostgreSQL snapshots with other AWS accounts. If you, like many sophisticated AWS customers, use separate AWS accounts for development, testing, and production, you can now share snapshots between AWS accounts in a controlled fashion. If a late-breaking bug is discovered in a production system, you can create a database snapshot and then share it with select developers so that they can diagnose the problem without having to have access to the production account or system.

Each snapshot can be shared with up to 20 other accounts (we can raise this limit for your account if necessary; just ask). You can also mark snapshots as public so that any RDS user can restore a database containing your data. This is a great way to share data sets and research results!

Here is how you share a snapshot with another AWS account using the RDS Console (you can also do this from the command line or the RDS API):

Here’s how a snapshot appears in the accounts that it is shared with (again, this functionality is also accessible from the command line and the RDS API):

Here is how you create a public snapshot:

Snapshot sharing works across regions, but does not apply to the China (Beijing) region or to AWS GovCloud (US).

— Jeff;

EC2 VPC VPN Update – NAT Traversal, Additional Encryption Options, and More

You can use Amazon Virtual Private Cloud to create a logically isolated section of the AWS Cloud. Within the VPC, you can define your desired IP address range, create subnets, configure route tables, and so forth. You can also use a network gateway to connect the VPC to your existing on-premises network using a hardware Virtual Private Network (VPN) connection. The VPN running in the AWS Cloud (also known as a VPN gateway or VGW) communicates with a customer gateway (CGW) on your network or in your data center (read about Your Customer Gateway to learn more).

Today we are adding several new features to the VPN. Here’s a summary:

• NAT Traversal
• Additional Encryption Options
• Reusable IP addresses for the CGW

In order to take advantage of any of these new features, you will need to create a new VGW and then create new VPN tunnels with the desired attributes.

NAT Traversal
Network Address Translation (NAT) maps one range of IP addresses to another. Let’s say that you have created a VPC and assigned it to a desired IP address range, and then split that range into a couple of subnets. Then you launch some EC2 instances within the VPC, each bound to one of those subnets. You can now use Network Address Translation to map the VPC’s IP address range to a different range when seen from your existing network. This mapping process takes places across the VPN connection and is known at NAT-T, or NAT Traversal. NAT-T allows you to create IP connections that originate on-premises and connect to an EC2 instance (or vice versa) using addresses that have been translated.

You can set this up when you create a new VPN connection in the AWS Management Console. You will need to open up UDP port 4500 in your firewall in order to make use of NAT-T.

Additional Encryption Options
You can now make use of several new encryption options.

When the VPC’s hardware VPN is in the process of establishing a connection with your on-premises VPN, it proposes several different encryption options, each with a different strength. You can now configure the VPN on the VPC to propose AES256 as an alternative to the older and weaker AES128. If you decide to make use of this new option, you should configure your device so that it no longer accepts a proposal to use AES128 encryption.

The two endpoints participate in a Diffie-Hellman key exchange in order to establish a shared secret. The Diffie-Hellman groups used in the exchange will determine the strength of the hash on the keys. You can now configure the use of a wider range of groups:

• Phase 1 can now use DH groups 2, 14-18, 22, 23, and 24.
• Phase 2 can now use DH groups 1, 2, 5, 14-18, 22, 23, and 24.

Packets that flow across the VPN connection are verified using a hash algorithm. A matching hash gives a very high-quality indicator that the packet has not been maliciously modified along the way. You can now configure the VPN on the VPC to use the SHA-2 hashing algorithm with a 256 bit digest (also known as SHA-256). Again, you should configure your device to disallow the use of the weaker hash algorithms.

Reusable CGW IP Addresses
You no longer need to specify a unique IP address for each customer gateway connection that you create. Instead, you can now reuse an existing IP address. Many VPC users have been asking for this feature and I expect it to be well-used.

To learn more, read our FAQ and the VPC Network Adminstrator Guide.

— Jeff;

New AWS Public Data Set – Real-Time and Archived NEXRAD Weather Data

My colleague Ariel Gold wrote the guest post below to introduce the newest AWS Public Data Set.

— Jeff;

---

You can now access real-time and archival NEXRAD weather radar data as an AWS Public Data Set.

The Next Generation Weather Radar (NEXRAD) is a network of 160 high-resolution Doppler radar sites that detects precipitation and atmospheric movement and disseminates data in approximately 5 minute intervals from each site. NEXRAD enables severe storm prediction and is used by researchers and commercial enterprises to study and address the impact of weather across multiple sectors. As part of our research agreement with the US National Oceanic and Atmospheric Administration (NOAA), we are making NEXRAD data freely available on Amazon S3.

The real-time feed and full historical archive of NEXRAD Level II data, from June 1991 to present, is now available for anyone to use. Level II is original resolution, base data from the NEXRAD system.

This is the first time the full NEXRAD Level II archive has been accessible to the public on demand. A wide range of customers have expressed interest in this data, including insurance providers, climate researchers, logistics companies, and weather companies. We’re excited to see what you do with it!

You can learn more about the data and how to access it on our NEXRAD on AWS page.

How We’re Sharing the Data
We’ve been testing out new ways to make NEXRAD data easy to use in the cloud. Before I get into some of the details of our approach, here are a couple of radar data terms for the uninitiated. First, “volume scan” refers to the data collected by the Doppler radar site as it scans the atmosphere. The NEXRAD site breaks these volume scans into “chunks” – small packages of data that are quickly transmitted as a real-time feed. The NEXRAD network generates about 1,200 chunks per hour.

We are storing the real-time chunks and archive (volume scan files) Level II data in two public Amazon S3 buckets. Data flows into the chunks bucket via Unidata’s Local Data Manager (LDM) system with minimal latency from the NEXRAD sites. The chunks are then assembled into volume scan files and added to the archive bucket within seconds or minutes of production. This creates a continuously updated, near-real-time archive of volume scan files.

You can find information on the data structure on our NEXRAD on AWS page. You’ll see that the real-time data is hosted in the “unidata-nexrad-level2-chunks” Amazon S3 bucket. Unidata provides data services, tools, and cyberinfrastructure leadership for the earth science community and they have been fantastic collaborators on this project. You can read more about their experience setting up the NEXRAD real-time feed on AWS on their blog.

Getting Started with NEXRAD on AWS
Unidata, The Climate Corporation, and CartoDB have contributed tutorials to help you get started using NEXRAD on AWS. For example, this tutorial from The Climate Corporation shows you how to read and display the NEXRAD Level II archive data from your Python programs.

Unidata has also made the NEXRAD Level II archive data available via their THREDDS Data Server. You can also browse the archive contents via the AWS JavaScript S3 Explorer:

Learn more about ways to use the data on our NEXRAD on AWS page.

Thank You
We’d like to thank our collaborators at NOAA, CICS-NC, Unidata, and The Weather Company who helped us launch this public data set and continue to help make it available. Many others helped test and contribute tools to the data set and we welcome additional contributions. Tell us how you’re using the data via the NEXRAD on AWS page and sign up for updates on the NOAA Big Data Project here.

— Ariel Gold, Program Manager, AWS Open Data

New EC2 Run Command – Remote Instance Management at Scale

When you move from a relatively static and homogeneous computing environment where you have a small number of persistent, well-known servers (or instances, using Amazon Elastic Compute Cloud (EC2) terminology) to a larger and more dynamic and heterogeneous environment, you may need to think about managing and controlling those instances in a new way.

New EC2 Run Command
Today we are introducing EC2 Run Command. This new feature will help you to administer your instances (no matter how many you have) in a manner that is both easy and secure. This feature was designed to support a wide range of enterprise scenarios including installing software, running ad hoc scripts or Microsoft PowerShell commands, configuring Windows Update settings, and more. It is accessible from the AWS Management Console, the AWS Command Line Interface (CLI), the AWS Tools for Windows PowerShell, and the AWS SDKs. If you currently administer individual Windows instances by running PS1 scripts or individual PowerShell commands, you can now run them on one or more instances.

We built this feature after talking to many users about their management needs. Here are some of the themes that came about as a result of these conversations:

• A need to implement configuration changes across their instances on a consistent yet ad hoc basis.
• A need for reliable and consistent results across multiple instances.
• Control over who can perform changes and what can be done.
• A clear audit path of what actions were taken.
• A desire to be able to do all of the above without the need for full remote desktop (RDP) access.

Command execution is secure, reliable, convenient, and scalable. You can create your own commands and exercise fine-grained control over execution privileges by using AWS Identity and Access Management (IAM). For example, you can specify that administrative commands can be run on a specific set of instances by a tightly controlled group of trusted users. All of the commands are centrally logged to AWS CloudTrail for easy auditing.

Run Command Benefits
The new Run Command feature was designed to provide you with the following benefits:

Control / Security – You can use IAM policies and roles to regulate access to commands and to instances. This allows you to reduce the number of users who have direct access to the instances.

Reliability – You can increase the reliability of your system by creating templates for your configuration changes. This will give you more control while also increasing predictability and reducing configuration drift over time.

Visibility – You will have more visibility into configuration changes because Run Command supports command tracking and is also integrated with CloudTrail.

Ease of Use – You can choose from a set of predefined commands, run them, and then track their progress using the Console, CLI, or API.

Customizability – You can create custom commands to tailor Run Command to the needs of your organization.

Exercising Run Command from the EC2 Console
Run Command works across all of your Windows instances and uses the existing EC2Config agent on the instances. Open the Console, select Commands, and review the prerequisites for using Run Command:

Click on Run a command to take you to the main Run Command screen. You’ll see your existing runs (if any) and the Run a command button:

Each row on the display represents a command that has been executed on an instance. Click on Run a command to start a new command:

The Command document menu contains seven predefined commands, along with any custom commands that you have created for your account:

Choose the appropriate document based on your use case and the change that you want to make to the target instance(s). Each document has a description and an explanation that will help you to make the right choice. For common administrative tasks, use the AWS-RunPowerShellScript document. This will allow you to run any PowerShell command or to call an existing PowerShell script.

After choosing the document, fill in the command (I used ipconfig), and choose the instances of interest (you can filter by attributes, tags, or keywords):

If you are running a command or script that will generate a lot of output on StdOut, you can specify an S3 bucket and a key prefix and the output will be routed there. If you don’t do this, Run Command will capture and display the first 2500 characters of console output.

When you are ready to proceed, click on Run. The Console will display a confirmation message:

Return to the command history and inspect it to find the results:

Select the desired command, and click on the Output tab:

Then click on View Output:

Using Run Command in Production
Here are some of the ways that you can make use of Run Command in your AWS environment:

• Install and configure third-party agents and software.
• Manage local groups and users.
• Check for installed software or patches, and act on the results.
• Restart a Windows service or service.
• Update a scheduled task.

Available Now
You can use Run Command today in the US East (Northern Virginia), US West (Oregon), and Europe (Ireland) regions. Simply open the Run Command Console or use the latest AWS Tools for Windows PowerShell, AWS Command Line Interface (CLI). There is no charge for this this feature; you pay only for the AWS resources that you consume.

— Jeff;

PS – We plan to provide similar functionality for instances that run Linux. Stay tuned to the blog for more info!

AWS Week in Review – October 12, 2015

Let’s take a quick look at what happened in AWS-land last week:

Monday October 12	The AWS Compute Blog published a Amazon EC2 Container Service at AWS re:Invent Wrap-up. I invited you to Learn About the Newest AWS Services and Attend our October Webinars. The Platform reported on The Custom Gear Inside Amazon’s Cloud. We updated the AWS Analyst Reports page with information on the Gartner Magic Quadrant for Operational Database Management Systems. A LinkedIn discussion talked about Should We Move to AWS and Keep Ourselves Cloud Agnostic?
Tuesday October 13	We published a new article: Deploying Scalable Oracle RAC on AWS. The AWS Mobile Development Blog published a three-part series on Getting Started with Android Testing on AWS Device Farm Using Espresso: Part 1 – Building a Sample Application. Part 2 – Setting up Espresso and Taking Screenshots. Part 3 – Uploading Your Android Application to AWS Device Farm. The CloudCheckr Blog published Part 2 of a series on Taking Steps to Secure Your AWS Environment. The Evident.io Blog showed how the Latest AWS Releases Drive Cloud Security Innovation. Cloud Technology Partners showed how AWS is Leading IT’s Reinvention in the Cloud. The Cloudability Blog published a AWS re:Invent 2015 Recap: Freedom From Constraints. Cloudonaut discussed CloudFormation vs. Engineers: How to Protect Your CloudFormation Managed AWS Account from Human Intervention. MitchyB reported on the AWS Certified Solutions Architect – Professional. CRN shared 14 Scenes From Amazon Web Services re:Invent Customer and Partner Conference. A Reddit discussion in /r/webdev talked about Scaling a Web Site with JAWS and Lambda. Another Reddit discussion, this one in /r/aws, talked about Why Use RDS Instead of Running Database in EC2?
Wednesday October 14	The Amazon Mobile App Distribution Blog announced New ASK Features Supporting Thousands of Developers Building for Alexa. The AWS Windows and .NET Developer Blog published a AWS re:Invent 2015 Recap. The AWS Enterprise Blog told you How Today’s IT Executive Can Merge Business with Technology. The AWS Startup Collection described Skopenow: People Search Made 8x Faster with AWS Lambda. The Evident.io Blog published an AWS re:Invent 2015 Event Recap. The Trend Micro Blog published an AWS re:Invent 2015 re:Cap. The We Kanban Blog published some AWS Certified Solutions Architect Professional Level Exam Tips. The Cloud Academy Blog discussed Managing Your Data Archive in the AWS Cloud. The Engineering at IFTTT Blog described the Data Infrastructure at IFTTT.
Thursday October 15	The AWS Big Data Blog showed you how to Persist Streaming Data to Amazon S3 Using Amazon Kinesis Firehose and AWS Lambda. We updated the AWS SDK for Java, AWS CLI, AWS SDK for Go, AWS SDK for JavaScript, AWS SDK for Ruby, and the AWS SDK for Unity. The AWS Partner Network Blog described some New AWS Test Drvies Added Across Solution Areas. The AWS Security Blog announced that AWS Key Management Service Now Supports Deletion of Encryption Keys. The AWS Security Blog listed the Videos and Slide Decks from the re:Invent 2015 Security and Compliance Track. The CloudCheckr Blog published AWS re:Invent re:Viewed. The Cloudability Blog talked about The Science of Saving with Reserved Instances at re:Invent 2015. The Cloudyn Blog reviewed AWS Spot Blocks: Predictable Behavior at a Low Price. The Runscope Blog reported on Cool Gadgets & Cloud Services Under the Desert Sun: On the Ground at AWS re:Invent.
Friday October 16	The AWS Big Data Blog announced Videos Now Available for AWS re:Invent 2015 Big Data Analytics Sessions. The AWS Security Blog announced that AWS Obtained ISO 27018 Privacy Certification. The AWS Security Blog invited you to Register to Attend an AWS Security Roadshow. Eric Hammond addressed some common issues with AWS Identity and Access Management (IAM): AWS IAM “ReadOnlyAccess” Managed Policy is Too Permissive (For Us). AWS IAM “ReadOnlyAccess” Managed Policy is Missing Features. The Fugue Blog showed you how to Vote for Pizza with Slack: Python in AWS Lambda. The Cloud Academy Blog compared AWS ELB vs. HA Proxy: Which Works Best for You.

New & Notable Open Source

• lambda-complex is a Node.js framework for applications that run entirely within Lambda, SQS, and other high-abstraction AWS services.
• aws-iot contains code for interacting with the AWS IoT platform.
• AWSnycast is a routing daemon for AWS route tables that simulates an Anycast-like service.
• votebot is a Slackbot that runs on AWS API Gateway and AWS Lambda to support voting for things.
• acli is an alternative CLI for AWS.
• kube-cluster launches a Kubernetes cluster on AWS with 3 types of nodes.
• wacalytics is a scalable analytics microservice for AWS using S3, Lambda, and DynamoDB.
• live-image-resize resizes images and stores them in S3.
• play-docker-aws-tutorial is a 101-level tutorial on the use of Docker to publish Play apps to AWS.
• sheepherding is a collection of scripts that implement AWS reporting driven by Lambda.

New SlideShare Presentations

• AWS re:Invent 2015.

Upcoming Events

• AWS IoT Mega Contest.
• AWS Security Road Shows.
• October 21 – Webinar – Running MongoDB 3.0 on AWS.
• October 21 – Webinar – Securing Gene Sequencing Data on AWS for HIPAA Compliance – with APN Partner Alert Logic and customer GenomeNext.
• October 27 – Webinars:
  • Introducing Amazon QuickSight.
  • Getting Started with AWS IoT.
  • Introducing Amazon Kinesis Firehose.
• October 28 – Webinars:
  • Introducing Spot Blocks.
  • Introducing AWS WAF.
  • Introducing Amazon Elasticsearch Service.
• October 29 – Webinars:
  • AWS Lambda Best Practices: Python, Scheduled Jobs, and More.
  • Introducing AWS Mobile Hub.
  • Introducing AWS Import / Export Snowball.

Upcoming Events at the AWS Loft (San Francisco)

• October 19 – AWS Bootcamp: Getting Started with AWS (10 AM – 6 PM).
• October 19 – Transparency Across DevOps Culture, Process and Toolchain (7 – 9 PM).
• October 20 – AWS Bootcamp: Getting Started with AWS (10 AM – 6 PM).
• October 21 – Intro to Using AWS and the Alexa Skills Kit to Build Voice Driven Experiences + Open Hackathon (10 AM – 3 PM).
• October 22 – IoT Hack Day Sponsored by MediaTek Labs (10 AM – 6 PM).
• October 26 – A New Way to Use EC2 – At Up to 90% Less Than On Demand Prices (3 – 4 PM).
• October 29 – Building Serverless Microservices with AWS Lambda (Noon – 4 PM).
• October 29 – Startup Pitch Event and Halloween Party (6:30 PM – 9:30 PM).

Upcoming Events at the AWS Loft (New York)

• October 20 – Chef Cookbook Workflow (6:30 – 8:30 PM).
• October 22 – Programmatic Security on AWS (6:30 – 8:30 PM).
• October 26 – AWS Bootcamp: Getting Started on AWS (10 AM – 6 PM).
• October 27 – AWS Bootcamp: Getting Started on AWS (10 AM – 6 PM).
• October 27 – Startup Pitch Event and Halloween Party (6:30 – 9:30 PM).
• October 28 – Responsive Game Design (Noon – 1 PM).
• October 28 – A Prescription for Startup Financial Health – 8 Financial Best Practices for Startup Executives (6:30 PM – 8 PM).

Upcoming Events at the AWS Loft (Berlin) – Register Now

• October 19 – Building a global real-time discovery platform on AWS (6 PM).
• October 20 – Scaling Your Web Applications with AWS Elastic Beanstalk (10 AM).
• October 20 – Managing Infrastructure and Configuration with AWS OpsWorks (10 AM).
• October 20 – Deep Dive into Blue/Green Deployments on AWS (4 PM).
• October 20 – AWS OpsWorks Under the Hood (October 20th).
• October 21 – Cloud Gaming Architectures from Mobile to Social to MMO (10 AM).
• October 21 – re:Invent 2015 Revisited (10 AM).
• October 21 – Live Demo Day (2 PM).
• October 22 – AWS Pop-Up Loft Morning Shower: Microservices (8:30 AM).
• October 22 – Serverless Architecture on AWS (5 PM).
• October 22 – Berlin’s Godfather of Tech (6 PM).
• October 23 – Amazon Echo Hackathon (10 AM).
• October 23 – Convert Your Code into a Microservice using AWS Lambda (4 PM).
• October 23 – Why Load & Performance Test the Cloud? (5 PM).
• October 23 – Lessons Learned from 7 Accelerator Programs (6 PM).
• October 26 – re:Invent Recap (9 PM).
• October 26 – Funding Cycles and Term Sheets (5 PM).
• October 26 – Scaling synergy – How AWS works with VC’s (6 PM).
• October 27 – DevOps at Amazon: A Look at Our Tools and Processes (9 AM).
• October 27 – Taking Ops to the Next Level (10 AM).
• October 27 – Automating Software Deployments with AWS CodeDeploy (10 AM).
• October 27 – Releasing Software Quickly and Reliably with AWS CodePipeline (5 PM).
• October 28 – Cache is King (9 AM).
• October 28 – How to Save Costs and Mitigate Risks with Spot Instances (10 AM).
• October 28 – Running Lean & Mean on AWS: How to Optimize for Cost Efficiency (5 PM).
• October 29 – Simple Security for Startups (9 AM).
• October 29 – Encryption Options on AWS (10 AM).
• October 29 – Software to Services workshop – An intro to SaaS Business with AWS (2 PM).
• October 29 – Best Practice Tech Recruiting (4 PM).
• October 29 – Mapping Traditional Security Controls to AWS (5 PM).
• October 29 – Transparency and Audit on AWS (6 PM).
• October 30 – Mobile Identity Management and Data Synchronization Using Amazon Cognito (9 AM).
• October 30 – Analyze Mobile App Data and Build Predictive Applications (10 AM).
• October 30 – Software to Services workshop – An intro to SaaS Technology with AWS (2 PM).
• October 30 – The Data Pipeline Powering EyeEm (6 PM).

Upcoming Events at the AWS Loft (London) – Register Now

• October 20 – An Introduction to Using Amazon Web Services and the Alexa Skills Kit to Build Voice Driven Experiences + Open Hackathon (10 AM).
• October 21 – Startup Showcase – B2C (10 AM).
• October 21 – Chef Cookbook Workflow (6 PM).
• October 22 – AWS Security Day (10 AM).
• October 22 – Working with Planetary-Scale Open Data Sets on AWS (4 PM).
• October 23 – AWS Booktamp: Taking AWS Operations to the Next Level (10 AM).
• October 26 – Hands-on Labs Drop In (1 PM).
• October 27 – IoT Hack Day: AWS Pop-up Loft Hack Series – Sponsored by Intel (10 AM).

Help Wanted

• AWS Careers.

Stay tuned for next week! In the meantime, follow me on Twitter and subscribe to the RSS feed.

— Jeff;

Learn About the newest AWS Services – Attend our October Webinars

If you attended AWS re:Invent, you were among the first to know about Amazon QuickSight, AWS IoT, Kinesis Firehose, and our other new offerings. Perhaps you had time to attend a session to learn more about the new service or services that were of interest to you. If you didn’t attend re:Invent or missed a session or two and are ready to learn more, I’ve got you covered. We will be running nine new-product webinars later this month. Each webinar is designed to provide you with the information that you need to have in order to be up and running as quickly as possible.

Here’s what we have for you! The webinars are free but “seating” is limited and you should definitely sign up ahead of time if you want to attend (all times are Pacific):

Tuesday, October 27
QuickSight is a fast, cloud-powered business intelligence tool. You can build visualizations, perform ad-hoc analysis, and get business insights from your data.

• Webinar: Introducing Amazon QuickSight (9 – 10 AM).
• Blog Post: Amazon QuickSight – Fast & Easy to Use Business Intelligence for Big Data at 1/10th the Cost of Traditional Solutions.

AWS IoT is a managed cloud platform that lets connected devices easily and securely interact with cloud applications and other devices.

• Webinar: Getting Started with AWS IoT (10:30 – 11:30 AM).
• Blog Post: AWS IoT – Cloud Services for Connected Devices.

Amazon Kinesis Firehose is the easiest way to load streaming data into AWS.

• Webinar: Introducing Amazon Kinesis Firehose (Noon – 1 PM).
• Blog Post: Amazon Kinesis Firehose – Simple & Highly Scalable Data Ingestion.

Wednesday, October 28
Spot Blocks allow you to launch Spot instances that will run for a finite duration (1 to 6 hours).

• Webinar: Introducing Spot Blocks (9 – 10 AM).
• Blog Post: New – EC2 Spot Blocks for Defined-Duration Workloads.

AWS WAF is a web application firewall that helps protect your web applications from common exploits.

• Webinar: Introducing AWS WAF (10:30 – 11:30 AM).
• Blog Post: New AWS WAF.

Amazon Elasticsearch Service is a managed service that makes it easy to deploy, operate, and scale Elasticsearch in the AWS Cloud.

• Webinar: Introducing Amazon Elasticsearch Service (Noon – 1 PM).
• Blog Post: New – Amazon Elasticsearch Service.

Thursday, October 29
AWS Lambda lets you run code in the cloud without provisioning or managing servers.

• Webinar: AWS Lambda Best Practices: Python, Scheduled Jobs, and More (9 – 10 AM).
• Blog Post: AWS Lambda Update – Python, VPC, Increased Function Duration, Scheduling, and More.

AWS Mobile Hub provides an integrated console that helps you build, test, and monitor your mobile apps.

• Webinar: Introducing AWS Mobile Hub (10:30 – 11:30 AM).
• Blog Post: AWS Mobile Hub – Build, Test, and Monitor Mobile Applications.

AWS Import/Export Snowball is a petabyte-scale data transport solution that uses secure appliances to transfer large amounts of data into and out of AWS.

• Webinar: Introducing AWS Import/Export Snowball (Noon – 1 PM).
• Blog Post: AWS Import/Export Snowball – Transfer 1 Petabyte Per Week Using Amazon-Owned Storage Appliances.

— Jeff;

AWS Week in Review – October 5, 2015

Let’s take a quick look at what happened in AWS-land last week:

Monday October 5	The AWS Startup Collection announced the Internet of Beer: Introducing Simple Beer Service. The Cloudlytics Blog talked about Amazon EC2 Monitoring & Management to Increase Efficiency & Optimize Usage.
Tuesday October 6	We announced EC2 Spot Blocks for Defined Duration Workloads, and also announced that EC2 Dedicated Hosts are Coming Soon. We announced AWS WAF (web application firewall). We published the new AWS Financial Services Portal. The AWS Partner Network Blog introduced Five New All-in Technology Partners with AWS and also announced the 2016 APN Premier Consulting Partners. The Amazon Mobile App Distribution Blog shared some Tips for Using Login with Amazon in Alexa Connected Home (CoHo) Skills. The Evident.io Blog shared Best Practice #9: Do Not Allow 0.0.0.0/0 Unless You Mean It. The Cloudability Blog posed Four Questions to Ask About New AWS Announcements. The Cloud & Me Blog published a Step by Step Guide to Install SSL in AWS ELB.
Wednesday October 7	We made a bunch of announcements on day 1 of re:Invent: Amazon Inspector – Automated Security Assessment Service. AWS Config Rules – Dynamic Compliance Checking for Cloud Resources. Amazon RDS Update – MariaDB is Now Available. AWS Import/Export Snowball – Transfer 1 Petabyte Per Week Using Amazon-Owned Storage Appliances. Amazon Kinesis Firehose – Simple & Highly Scalable Data Ingestion. Amazon QuickSight – Fast & Easy to Use Business Intelligence for Big Data at 1/10th the Cost of Traditional Solutions. The AWS Security Blog reviewed New Security Services Launched at AWS re:Invent 2015—Amazon Inspector, AWS WAF, and AWS Config Rules. The Trend Micro Blog discussed Amazon Inspector and Deep Security, AWS Config Rules and Deep Security, and AWS WAF and Deep Security. Andreas Wittig (Cloudonaut) announced that his book, Amazon Web Services in Action, is available! The Segment Engineering Blog discussed Rebuilding Our Infrastructure with Docker, ECS, and Terraform.
Thursday October 8	We made even more announcements on day 2 of re:Invent: AWS Mobile Hub – Build, Test, and Monitor Mobile Applications. AWS IOT – Cloud Services for Mobile Devices. AWS Lambda Update – Python, VPC, Increased Function Duration, Scheduling, and More. CloudWatch Dashboards – Create & Use Customized Metric Views. EC2 Container Service Update – Container Registry, ECS CLI, AZ-Aware Scheduling, and More. EC2 Instance Update – X1 (SAP HANA) & T2.Nano (Websites). The AWS Partner Network Blog introduced the IoT Hardware Program and AWS on IoT. Eric Hammond announced that Unreliable Town Clock is Now Using AWS Lambda Scheduled Functions. Cloud Academy discussed AWS re:Invent 2015: Designing for IaaS, reviewed AWS Mobile Hub and Amazon QuickSight, and also talked about Real-World Smart Applications with Amazon Machine Learning. They also reviewed the AWS re:Invent Day One and Day Two Keynotes. The Cloudyn Blog announced that Saving Cloud Costs is Not Enough: Introducing SmartSizing. The Codeship Blog discussed Codeship, Docker, and Deployment to AWS EC2 Container Service.
Friday October 9	The AWS Big Data Blog discussed Automating Analytic Workflows on AWS. We updated the AWS SDK for Java, AWS CLI, AWS SDK for Go, AWS SDK for Ruby, AWS Mobile SDK, and the AWS SDK for JavaScript. The AWS Security Blog shared a Customer Update – AWS and EU Safe Harbor. The Barricade Blog introduced their New Amazon Web Application Firewall Integration. Cloud Technology Partners discussed Current Cloud Trends from AWS re:Invent 2015. The Cloud & Me Blog showed you How to Access S3 Bucket from Application on Amazon EC2 Without Access Credentials.

New & Notable Open Source

• awesome-aws is a curated list of awesome AWS libraries, open source repos, guides, blogs, and other resources.
• awsm is a specification for AWS Service Modules for JAWS.
• SimpleDynamo is a simple way yo use DynamoDB from PHP.
• aws-scripts contains some scripts for launching environments in AWS.
• hyperion is a Scala library and abstractions for AWS Data Pipeline.
• spark-appliance creates a distributed Spark standalone cluster appliance for the AWS/STUPS environment.
• troposphere is a Python library to create AWS CloudFormation descriptions.
• awful is a Ruby gem for simple AWS command line tasks and YAML persistence.
• JustSaying is a lightweight message bus on top of SNS and SQS.
• simple-aws-captcha is a simple serverless CAPTCHA for AWS Lambda.

New SlideShare Presentations

• AWS re:Invent 2015 (232 presentations and counting).
• Defining VPC Based Web Applications in AWS CloudFormation.
• Amazon DynamoDB Workshop.
• Build and Manage Your APIs with Amazon API Gateway.
• Amazon ML – Machine Learning for Developers.

New Customer Success Stories

• AWS re:Invent 2015 – Netflix and AWS.
• GE and Capital One Endorse AWS at re:Invent.
• Amazon Urges Proprietary Database Customers to Migrate.

New YouTube Videos

• re:Invent 2015 Playlist – Keynotes.
• re:Invent 2015 Playlist – Short Videos.
• re:Invent 2015 Playlist – Mobile Developer & IoT.
• re:Invent 2015 Playlist – Storage & Content Delivery.
• re:Invent 2015 Playlist – Security & Compliance.
• re:Invent 2015 Playlist – Networking.
• re:Invent 2015 Playlist – IT Strategy & Migration.
• re:Invent 2015 Playlist –Gaming.
• re:Invent 2015 Playlist –DevOps.
• re:Invent 2015 Playlist –Developer Tools.
• re:Invent 2015 Playlist –Databases.
• re:Invent 2015 Playlist –Compute.
• re:Invent 2015 Playlist – Big Data & Analytics.
• re:Invent 2015 Playlist – Architecture.
• Fabio Silva – AWS IoT Demo.

Upcoming Events

• AWS IoT Mega Contest.
• October 21 – Webinar – Running MongoDB 3.0 on AWS.
• October 21 – Webinar – Securing Gene Sequencing Data on AWS for HIPAA Compliance – with APN Partner Alert Logic and customer GenomeNext.
• October 27 – Webinars:
  • Introducing Amazon QuickSight.
  • Getting Started with AWS IoT.
  • Introducing Amazon Kinesis Firehose.
• October 28 – Webinars:
  • Introducing Spot Blocks.
  • Introducing AWS WAF.
  • Introducing Amazon Elasticsearch Service.
• October 29 – Webinars:
  • AWS Lambda Best Practices: Python, Scheduled Jobs, and More.
  • Introducing AWS Mobile Hub.
  • Introducing AWS Import / Export Snowball.

Upcoming Events at the AWS Loft (San Francisco)

• October 13 – Behind the Scenes with ironSource: The Road to Production with Node.js and JavaScript.
• October 14 – Server-less Application Development using Swagger, API Gateway, and Lambda (6 – 7:30 PM).
• October 14 – Getting Started with Big Data and HPC (4 – 5 PM).
• October 19 – AWS Bootcamp: Getting Started with AWS (10 AM – 6 PM).
• October 19 – Transparency Across DevOps Culture, Process and Toolchain (7 – 9 PM).
• October 20 – AWS Bootcamp: Getting Started with AWS (10 AM – 6 PM).
• October 21 – Intro to Using AWS and the Alexa Skills Kit to Build Voice Driven Experiences + Open Hackathon (10 AM – 3 PM).
• October 22 – IoT Hack Day Sponsored by MediaTek Labs (10 AM – 6 PM).
• October 26 – A New Way to Use EC2 – At Up to 90% Less Than On Demand Prices (3 – 4 PM).
• October 29 – Building Serverless Microservices with AWS Lambda (Noon – 4 PM).
• October 29 – Startup Pitch Event and Halloween Party (6:30 PM – 9:30 PM).

Upcoming Events at the AWS Loft (New York)

• October 20 – Chef Cookbook Workflow (6:30 – 8:30 PM).
• October 22 – Programmatic Security on AWS (6:30 – 8:30 PM).
• October 26 – AWS Bootcamp: Getting Started on AWS (10 AM – 6 PM).
• October 27 – AWS Bootcamp: Getting Started on AWS (10 AM – 6 PM).
• October 27 – Startup Pitch Event and Halloween Party (6:30 – 9:30 PM).
• October 28 – Responsive Game Design (Noon – 1 PM).
• October 28 – A Prescription for Startup Financial Health – 8 Financial Best Practices for Startup Executives (6:30 PM – 8 PM).

Upcoming Events at the AWS Loft (Berlin) – Register Now

• October 15 – An overview of Hadoop & Spark, using Amazon Elastic MapReduce (9 AM).
• October 15 – Processing streams of data with Amazon Kinesis (and other tools) (10 AM).
• October 15 – STUPS – A Cloud Infrastructure for Autonomous Teams (5 PM).
• October 16 – Transparency and Audit on AWS (9 AM).
• October 16 – Encryption Options on AWS (10 AM).
• October 16 – Simple Security for Startups (6 PM).
• October 19 – Introduction to AWS Directory Service, Amazon WorkSpaces, Amazon WorkDocs and Amazon WorkMail (9 AM).
• October 19 – Amazon WorkSpaces: Advanced Topics and Deep Dive (10 AM).
• October 19 – Building a global real-time discovery platform on AWS (6 PM).
• October 20 – Scaling Your Web Applications with AWS Elastic Beanstalk (10 AM).
• October 20 – Managing Infrastructure and Configuration with AWS OpsWorks (10 AM).
• October 20 – Deep Dive into Blue/Green Deployments on AWS (4 PM).
• October 20 – AWS OpsWorks Under the Hood (October 20th).
• October 21 – Cloud Gaming Architectures from Mobile to Social to MMO (10 AM).
• October 21 – re:Invent 2015 Revisited (10 AM).
• October 21 – Live Demo Day (2 PM).
• October 22 – AWS Pop-Up Loft Morning Shower: Microservices (8:30 AM).
• October 22 – Serverless Architecture on AWS (5 PM).
• October 22 – Berlin’s Godfather of Tech (6 PM).
• October 23 – Amazon Echo Hackathon (10 AM).
• October 23 – Convert Your Code into a Microservice using AWS Lambda (4 PM).
• October 23 – Why Load & Performance Test the Cloud? (5 PM).
• October 23 – Lessons Learned from 7 Accelerator Programs (6 PM).
• October 26 – re:Invent Recap (9 PM).
• October 26 – Funding Cycles and Term Sheets (5 PM).
• October 26 – Scaling synergy – How AWS works with VC’s (6 PM).
• October 27 – DevOps at Amazon: A Look at Our Tools and Processes (9 AM).
• October 27 – Taking Ops to the Next Level (10 AM).
• October 27 – Automating Software Deployments with AWS CodeDeploy (10 AM).
• October 27 – Releasing Software Quickly and Reliably with AWS CodePipeline (5 PM).
• October 28 – Cache is King (9 AM).
• October 28 – How to Save Costs and Mitigate Risks with Spot Instances (10 AM).
• October 28 – Running Lean & Mean on AWS: How to Optimize for Cost Efficiency (5 PM).
• October 29 – Simple Security for Startups (9 AM).
• October 29 – Encryption Options on AWS (10 AM).
• October 29 – Software to Services workshop – An intro to SaaS Business with AWS (2 PM).
• October 29 – Best Practice Tech Recruiting (4 PM).
• October 29 – Mapping Traditional Security Controls to AWS (5 PM).
• October 29 – Transparency and Audit on AWS (6 PM).
• October 30 – Mobile Identity Management and Data Synchronization Using Amazon Cognito (9 AM).
• October 30 – Analyze Mobile App Data and Build Predictive Applications (10 AM).
• October 30 – Software to Services workshop – An intro to SaaS Technology with AWS (2 PM).
• October 30 – The Data Pipeline Powering EyeEm (6 PM).

Upcoming Events at the AWS Loft (London) – Register Now

• October 14 – Masterclass Live: Amazon EMR (10 AM).
• October 14 – IoT on AWS (Noon).
• October 14 – FinTech in the Cloud: How to build scalable, compliant and secure architecture with AWS (2 PM).
• October 14 – AWS for Startups (6 PM).
• October 15 – AWS Container Day (10 AM).
• October 16 – HPC in the Cloud Workshop (2 – 4 PM).
• October 19 – Hands-on Labs Drop In (1 PM).
• October 20 – An Introduction to Using Amazon Web Services and the Alexa Skills Kit to Build Voice Driven Experiences + Open Hackathon (10 AM).
• October 21 – Startup Showcase – B2C (10 AM).
• October 21 – Chef Cookbook Workflow (6 PM).
• October 22 – AWS Security Day (10 AM).
• October 22 – Working with Planetary-Scale Open Data Sets on AWS (4 PM).
• October 23 – AWS Booktamp: Taking AWS Operations to the Next Level (10 AM).
• October 26 – Hands-on Labs Drop In (1 PM).
• October 27 – IoT Hack Day: AWS Pop-up Loft Hack Series – Sponsored by Intel (10 AM).

Help Wanted

• This Week’s Cloud Computing Jobs: U.S. Opportunities (Cloud Academy).
• This Week’s Cloud Computing Jobs: AWS and Linux Administration (Cloud Academy).
• AWS Careers.

Stay tuned for next week! In the meantime, follow me on

Twitter and subscribe to the RSS

feed.

— Jeff;

AWS Mobile Hub – Build, Test, and Monitor Mobile Applications

The new AWS Mobile Hub (Beta) simplifies the process of building, testing, and monitoring mobile applications that make use of one or more AWS services. It helps you skip the heavy lifting of integrating and configuring services by letting you add and configure features to your apps, including user authentication, data storage, backend logic, push notifications, content delivery, and analytics—all from a single, integrated console.

The AWS Mobile Hub helps you at each stage of development: configuring, building, testing, and usage monitoring. The console is feature-oriented; instead of picking individual services you select higher-level features comprised of combinations of one or more services, SDKs, and client code. What once took a day to properly choose and configure can now be done in 10 minutes or so.

Diving In
Let’s dive into the console and take a look!

The Mobile Hub outlines (and helps with) each step of the mobile app development process:

I will call my project SuperMegaMobileApp:

Each feature is backed up by one or more AWS services. For example, User Sign-In is powered by Amazon Cognito and Push Notification is powered by Amazon Simple Notification Service (SNS). I simply click on a feature to select and configure it.

I click on Push Notifications and Enable push, then choose the destination platform(s):

I want to push to Android devices, so I select it. Then I need to enter an API Key and a Sender ID:

I can add logic to my application by connecting it to my AWS Lambda functions:

After I have selected and configured the features that I need, I click on Build to move forward:

The Mobile Hub creates a source package that I can use to get started, and provides me with the links and other information that I need to have at hand in order to get going:

I can download the entire package, open it up in my preferred IDE, and keep going from there:

I can use this code as a starter app and edit it as desired. I can also copy selected pieces of code and paste them in to my existing mobile app.

I can also make use of the AWS Device Farm for testing and Amazon Mobile Analytics to collect operational metrics.

Visit the Hub
Whether you are creating a brand new mobile app or adding features to an existing app, AWS Mobile Hub lets you take advantage of the features, scalability, reliability, and low cost of AWS in minutes. As you have seen, AWS Mobile Hub walks you through feature selection and configuration. It then automatically provisions the AWS services required to power these features, and generates working quickstart apps for iOS and Android that use your provisioned services.

You can now spend more time adding features to your app and less time taking care of all of the details behind the scenes!

To learn more, visit the Mobile Hub page.

— Jeff;