Amazon launches S3 Access Points to assign AWS access policies for apps

During the first of several keynote addresses at re:Invent 2019 in Las Vegas, Amazon Web Services (AWS) — Amazon’s cloud computing division — announced S3 Access Points, an offering intended to “radically simplify” access management for apps using shared services.

S3 Access Points locks down access for Amazon’s Virtual Private Cloud, Amazon’s service that supports the provisioning of a logically isolated section of the AWS cloud. With S3, AWS customers can assign a different access policy to each application, providing a customized path into buckets with unique hostnames and access policies with permissions that admins define.

Policies could represent hundreds of applications with many differing permissions, making audits, and updates a potential bottleneck affecting many systems. A bucket can have multipleacess points, and each access point has its own AWS Identity and Access Management (IAM) policy. And because each access point has a unique DNS name, it’s now possibly to address buckets with any name that’s unique within a given AWS account and region.

“Now, when you have to think about deciding who should have access what data, and only that amount of data, it makes it so much easier,” said AWS CEO Andy Jassy onstage during a keynote address this morning. “You don’t have to layer on thousands on top of that one button you can assign different access to each application scales much better your way through your stakes.”

Alongside S3 Access Points, Amazon detailed Graviton2, a 64-bit, 7-nanometer Arm system-on-chip optimized for cloud-native applications by AWS. It packs over 30 million transistors, which compares to the 39.5 million transistors that make up AMD’s Epyc Rome. And it’s been tested in AWS services like Amazon Elastic Load Balancing, Amazon ElastiCache, and Amazon Elastic Map Reduce, all of which will incorporate the chip by  2020.

Amazon’s new M6g, R6g, and C6g instances are powered by Amazon Garviton2, and offer up to 64 virtual CPUs (VCPUs), 25Gbps of enhanced networking, 18Gbps of bandwidth. That works out to four times the compute cores, five times the memory, and 7 times the performance overall of the instances they succeed.

That’s not all Amazon announced this week at re:Invent 2019. It took the wraps off of DeepComposer, an AI-enabled musical keyboard designed for developers to try their hand at either pretrained or custom models, and Transcribe Medical, a HIPAA-compliant API that integrates with voice-enabled apps and microphone-equipped devices to transcribe medical speech for primary care. Amazon also debuted AWS Braket, a service that lets customers experiment with a range of quantum computing hardware, in preview. And the company announced the AWS Center for Quantum Computing, a new laboratory to be established at Caltech with the goal of “boosting innovation in science and industry.”

Leave a Reply