by Tushar Jain on April 22, 2026 at 12:12 am

Amazon Web Services (AWS) is pleased to announce that the Winter 2025 System and Organization Controls (SOC) 1 report is now available. The report covers 184 services over the 12-month period from January 1, 2025 – December 31, 2025, giving customers a full year of assurance. This report demonstrates our continuous commitment to adhering to

by Vihar Kodakandla on April 21, 2026 at 11:59 pm

In this post, we explore architectural patterns for implementing centralized internet ingress with inspection using AWS Cloud WAN. We examine different design considerations and integration strategies with centralized internet egress while walking through practical examples and deployment scenarios. We demonstrate how to use the AWS Cloud WAN core networking capabilities alongside other AWS networking services

by Salman Ahmed on April 21, 2026 at 11:43 pm

Your on-call engineer gets paged at 2 AM. A payment service in Workload Account cannot reach a shared database in Shared Services Account. The Amazon CloudWatch alarm fired eight minutes ago. The engineer starts by checking route tables across two accounts, Amazon Virtual Private Cloud (Amazon VPC) attachment states, security group rules on both sides,

by Alexander Onbysh on April 21, 2026 at 4:24 pm

In this post, we share Ring’s billion-scale semantic video search on Amazon RDS for PostgreSQL with pgvector architectural decisions vs alternatives, cost-performance-scale challenges, key lessons, and future directions. The Ring team designed for global scale their vector search architecture to support millions of customers with vector embeddings, the key technology for numerical representations of visual content generated by an AI model. By converting video frames into vectors-arrays of numbers that capture what’s happening (visual content) in each frame – Ring can store these representations in a database and search them using similarity search. When you type “package delivery,” the system converts that text into a vector and finds the video frames whose vectors are most similar-delivering relevant results in under 2 seconds.

by Jiaming Yan on April 20, 2026 at 9:57 pm

Amazon Aurora Serverless is an on-demand, auto scaling configuration for Aurora that scales up to support your most demanding workloads and down to zero when you don’t need it. The latest improvements deliver up to 30% better performance and enhanced scaling that understands your workload. These enhancements are available at no additional cost for a better price-performance ratio. In this post, we’ll share recent performance and scaling improvements with benchmark results, showing how Aurora Serverless can now scale up to 45.0% faster with a 32.9% faster workload completion time.

by Sameer Malik on April 20, 2026 at 8:00 pm

In this post, we explore Oracle Database@AWS high performance networking capabilities and provide a step-by-step guide to help you configure and deploy this feature.

by Gopinath Jeganathan on April 20, 2026 at 6:33 pm

Managing data access across multiple layers of permissions is a common industry challenge. Changes to AWS Identity and Access Management (AWS IAM) policies, Amazon Simple Storage Service (Amazon S3) bucket configurations, AWS Key Management Service (AWS KMS) key policies, or Amazon Virtual Private Cloud (Amazon VPC) endpoint policies can unintentionally cause access issues. When these

by Sébastien Stormacq on April 20, 2026 at 3:53 pm

Claude Opus 4.7 arrives in Amazon Bedrock with improved agentic coding and a 1M token context window. AWS Interconnect reaches general availability with multicloud private connectivity and a new last-mile option. Plus, post-quantum TLS for Secrets Manager, new C8in/C8ib EC2 instances, and more.

by Ran Pergamin on April 20, 2026 at 3:26 pm

Organizations processing large-scale data for analytics, machine learning (ML), and business intelligence face a persistent challenge: how to access and read massive datasets quickly and cost-effectively. As data volumes grow exponentially, the performance of data access patterns becomes more critical. Inefficient read operations can lead to longer processing times, higher compute costs, and delayed insights,

by Desiree Brunner on April 20, 2026 at 3:15 pm

Important: As of January 1, 2025, Client SDK 3 tools (CMU and KMU) are no longer supported. This guide has been updated to use Client SDK 5 commands exclusively. Ensure you’re using the latest Client SDK 5 version (5.17 or later) for the most recent features and security improvements. You can use AWS CloudHSM to

by Shibin Michaelraj on April 17, 2026 at 7:25 pm

Providing a copy of production data to developers, testers, or disaster recovery (DR) teams quickly is a common operational challenge our customers face. Whether it’s a daily database refresh for a support environment, a one-time troubleshooting session that requires real-world data, or a disaster recovery drill that needs to run against a current replica, the

by Vivek Gautam on April 17, 2026 at 4:30 pm

Security logs capture essential security-related activities, such as user sign-ins, file access, network traffic, and application usage. These logs are important for monitoring, detecting, and responding to potential security events. The Open Cybersecurity Schema Framework (OCSF) addresses this challenge by providing a standardized format to represent security events, ensuring consistent and efficient data handling across

by Alok Srivastava on April 16, 2026 at 5:13 pm

In this post, we show you how to build a multi-Region Kerberos authentication system that matches your Aurora Global Database’s resilience using AWS Directory Service for Microsoft Active Directory (AWS Managed Microsoft AD) with multi-Region replication and a one-way forest trust to your on-premises Active Directory, so your Linux clients can authenticate without joining the AD domain.

by Channy Yun (윤석찬) on April 16, 2026 at 2:49 pm

AWS launches Claude Opus 4.7 in Amazon Bedrock, Anthropic’s most intelligent Opus model for advancing performance across coding, long-running agents, and professional work. Claude Opus 4.7 is powered by Amazon Bedrock’s next generation inference engine, purpose-built for generative AI inferencing and fine-tuning workloads.

by Robert Kennedy on April 15, 2026 at 12:57 pm

AWS and Lumen simplify enterprise cloud connectivity with AWS Interconnect – last mile and Lumen Cloud Interconnect This post was jointly written by Rob Kennedy, Vice President of Network Services, Amazon Web Services, and Scott Yow, Senior Vice President of Product, Lumen Technologies For decades, the cloud and the network connecting to it have operated

by Sébastien Stormacq on April 14, 2026 at 11:54 pm

Today, we’re announcing the general availability of AWS Interconnect – multicloud, a managed private connectivity service that connects your Amazon Virtual Private Cloud (Amazon VPC) directly to VPCs on other cloud providers. We’re also introducing AWS Interconnect – last mile, a new capability that simplifies how you establish high-speed, private connections to AWS from your

by Riggs Goodman III on April 14, 2026 at 10:52 pm

AI agents and coding assistants interact with AWS resources through the Model Context Protocol (MCP). Unlike traditional applications with deterministic code paths, agents reason dynamically, choosing different tools or accessing different data depending on context. You must assume an agent can do anything within its granted entitlements, whether OAuth scopes, API keys, or AWS Identity

by Alex Berkov on April 14, 2026 at 6:38 pm

Organizations today face increasing pressure to protect their backup data against ransomware events and accidental deletions. Although air-gapped storage provides strong protection for backups, implementing it traditionally requires maintaining multiple copies of data which increases costs and adds complexity. This can force organizations to compromise between meeting strict security requirements and managing storage costs, either

by Sudheer Manubolu on April 14, 2026 at 4:55 pm

In this post, we will walk you through a three-tier MCP application deployed entirely on Amazon ECS, using Service Connect for service-to-service communication and Express Mode for automated load balancing, to show how to take an MCP-based workload from concept to production.

by Sai Charan Teja Gopaluni on April 14, 2026 at 4:51 pm

This post covers how EKS Auto Mode handles VPC CNI optimization, pod density scaling, network security implementation, and hybrid connectivity.