The whitepapers section features a comprehensive list of technical AWS whitepapers, covering topics such as architecture, security and economics. These whitepapers have been authored by the AWS Team, independent analysts or the AWS Community (Customers or Partners). To read reports authored by industry analysts click here. This page will be regularly updated with new and updated whitepapers and reports. Check back regularly or subscribe to the RSS feed for new content.
This document is intended to answer questions such as “How does AWS help me ensure my data are secure?” Specifically, AWS physical and operational security processes are described for network and infrastructure under AWS’ management, as well as service-specific security implementations.
Apache Storm developers can use Amazon Kinesis to quickly and cost effectively build real-time analytics dashboards and applications that can continuously process very high volumes of streaming data, such as clickstream log files and machine-generated data.
In the event of a disaster, you can quickly launch resources in Amazon Web Services (AWS) to ensure business continuity. The paper highlights relevant AWS features and services that you can leverage for your DR processes and shows example scenarios on how to recover from disaster. It further provides recommendations on how you can improve your DR plan and leverage the full potential of AWS for your Disaster Recovery processes.
Amazon VPC provides customers with several options for interconnecting their AWS virtual networks with other remote networks. This whitepaper describes several such common network connectivity options available to our customers. This includes connectivity options for integrating remote customer networks with Amazon VPC as well as interconnecting multiple Amazon VPCs into a contiguous virtual network.
This guide extends Scenario #1 described in the "Implementing Active Directory Domain Services in the AWS Cloud" white paper by adding Windows Active Directory Federation Services (ADFS), and automating the configuration of SAML 2.0 federation for web single sign-on (Web SSO) access to the Amazon Web Services Management Console. It provides links to automated AWS CloudFormation templates that you can leverage for your implementation or launch directly into your AWS account.
One challenge that architects and developers face today is how to process large volumes of data in a timely, cost effective, and reliable manner. There are several NoSQL solutions in the market today, and choosing the right one for your use case can be difficult. This paper compares two popular NoSQL data stores, Amazon DynamoDB, a fully managed NoSQL cloud database service, and Apache HBase, an open-source, column-oriented, distributed big data store. Both Amazon DynamoDB and Apache HBase are available in the Amazon Web Services (AWS) cloud.
This document intends to provide information to assist AWS customers with integrating AWS into their existing control framework supporting their IT environment. This document includes a basic approach to evaluating AWS controls and provides information to assist customers with integrating control environments. This document also addresses AWS-specific information around general cloud computing compliance issues.
An often overlooked benefit of migrating workloads to AWS is the ability to achieve a higher level of security, at scale, by utilizing the many governance-enabling features offered. This paper describes how you can achieve a high level of governance over your IT resources by using AWS.
This paper provides an overview of common compliance requirements related to logging and how AWS CloudTrail can be used help satisfy these requirements. It is organized by general logging domains that you may find useful from a security and operational perspective.
This whitepaper provides an overview of the options for encrypting data at rest in AWS services. It describes these options in terms of where encryption keys are stored and how access to those keys is controlled. Both server-side and client-side encryption methods are discussed with examples of how each can be accomplished in various AWS services.
This whitepaper provides security best practices that will help you define your Information Security Management System (ISMS) and build a set of security policies and processes for your organization so you can protect your data and assets in the AWS Cloud. It also provides an overview of different security topics such as identifying, categorizing and protecting your assets on AWS, managing access to AWS resources using accounts, users and groups and suggesting ways you can secure your data, your operating systems and applications and overall infrastructure in the cloud.
This whitepaper helps you understand the primary data storage options available with the AWS cloud computing platform. We provide an overview of each storage option, describe ideal usage scenarios, and examine other important cloud-specific characteristics such as elasticity and scalability.
The companion paper presents several storage use cases that show how to use multiple AWS cloud storage options together.
This whitepaper provides an overview of how to create and manage multiuser environments in the AWS cloud so that professors and researchers can leverage AWS for student labs, training applications, individual IT environments, and cloud computing courses.
This whitepaper highlights the best practices of moving data to AWS, collecting, aggregating and compressing the data, and discusses common architectural patterns for setting up and configuring Amazon EMR clusters for faster processing. We also discuss several performance and cost optimization techniques so you can process and analyze massive amounts of data at high throughput and low cost in a reliable manner.
This paper is targeted at AWS customers’ internal compliance teams and their external auditors and who are evaluating or auditing the use of AWS for an internal review or external audit. It provides a checklist to help design and execute a security assessment of an organization’s use of AWS, which may be required by industry or regulatory standards. This paper builds on top of the Operational Checklist Whitepaper that provides operational and architectural guidance to help assess their application's operational readiness
This paper is targeted at developers and architects who are looking for operational and architectural guidance from AWS to help assess their application's operational readiness. It provides two checklists - Basic and Enterprise - so that you can evaluate your applications against a list of essential and recommended best practices and deploy them with confidence.
This whitepaper is targeted at CXO/Technical decision makers and provides overview of AWS and discusses factors that distinguish AWS: Elastic + Scalable, Flexible, Secure and Experienced. It’s perfect for those who want to understand the AWS perspective on Cloud Computing.
This whitepaper is intended for architects and developers in the financial services sector who are looking to expand grid computation onto AWS. It outlines the best practices for managing large grids on the AWS cloud platform and offers a reference architecture to guide organizations in the delivery of these complex systems.
Customers may wish to migrate AWS Resources from one region to another for a variety of reasons. In particular, if a new region is available closer to their user base, they may wish to locate various services geographically closer to those users. This technical whitepaper is intended for experienced customers of AWS who would like to migrate existing resources to a new AWS region. The whitepaper provides technical guidance and best practices on migrating each AWS Resource such as AMI, keypairs etc. to another region.
This paper provides high-level concepts of how you can simplify your current backup and recovery environment in the enterprise. It provides details of how you can leverage the on-demand nature of the cloud and automate your backup and recovery processes so they are not only less complex and lightweight but also easy to manage and maintain.
This whitepaper describes how AWS adds value in the various phases of the software development cycle, with specific focus on development and test. The intended audiences for this paper are project managers, developers, testers, systems architects, or anyone involved in software production activities.
This whitepaper discusses Web application hosting solution in detail, including how each of the services can be used to create a highly available, scalable Web application.
Do you know the true cost of running your web applications on your existing infrastructure? This whitepaper will help you understand the different cost factors involved when you deploy and manage a scalable web application in an on-premises environment and compare the total cost to a variety of different AWS purchasing options. Our analysis shows that AWS offers significant cost savings, up to 80%, compared to the equivalent on-premises deployments.
This paper briefly outlines how companies can use Amazon Web Services to power HIPAA-compliant information processing systems.
This whitepaper will help you understand many of the best practices involved in creating and sending high quality email from a strategy and management perspective. It identifies characteristics of high value and high quality email, it talks about the parties involved in the email sending process, and it discusses best practices for optimizing and increasing email quality.
This whitepaper will help you understand how to effectively estimate the costs of running your specific project on AWS. It provides several examples that leverage the AWS Simple Monthly Calculator. For each example, this paper discusses its architecture, example usage of each service, cost breakdown for each service, and the total estimated monthly charge.
This whitepaper will help you understand the different cost factors involved in deploying and managing a scalable NoSQL database solution. You will learn about the TCO savings of using a NoSQL (non-relational) database cloud service such as Amazon DynamoDB over equivalent NoSQL database software that is deployed on-premises or hosted in the cloud.
This set of whitepapers are targeted at architects and technical decision makers of enterprises looking to build a cloud migration strategy. The main whitepaper discusses a phase-driven step-by-step strategy for migrating applications to the cloud and three scenarios illustrate the step-by-step strategy for common use cases.
This whitepaper discusses scenarios for Amazon VPC.
This whitepaper is ideal for those who would like to understand how to build fault-tolerant application on AWS.
This whitepaper paper provides prescriptive guidance to cloud architects so that they can build highly scalable and elastic applications optimized to run in AWS cloud. It discusses cloud concepts and highlights various design patterns and best practices.
This document provides step-by-step instructions for creating a test lab demonstrating identity federation between an on-premise Windows Server Active Directory domain and an ASP.NET web application hosted on EC2 service, using Microsoft’s Active Directory Federation Services (AD FS) technology.
This document presents a discussion of the costs of Amazon Web Services vs. traditional IT infrastructure alternatives, including comparative analysis of direct costs of ownership such as hardware costs and asset utilization, data redundancy and security, supply chain management, power and cooling efficiency, and personnel costs.
This paper illustrates the style of building applications using services available in the Internet cloud.
This whitepaper demonstrates using various services on AWS to deploy Microsoft Windows Server 2012 R2 as a Network Address Translation (NAT) device and deploy the Microsoft DirectAccess Windows Server role. Tools such as AWS Toolkit for Microsoft Visual Studio and AWS Toolkit for Windows PowerShell are used to automate the deployments. The target audience is IT infrastructure administrators and developer operations personnel.
This whitepaper provides specific technical guidance on how to deploy and configure NGINX Plus on AWS. Additionally, we outline key integrations and configurations that are unique to AWS products and allow flexibility around using the NGINX Plus product to best meet your needs.
This Quick Start Reference Deployment guide includes architectural considerations and configuration steps for deploying Cloudera Enterprise Data Hub (EDH) on the Amazon Web Services (AWS) cloud. This reference deployment will assist you in building an EDH cluster on AWS by integrating Cloudera Director with an automated deployment initiated by an AWS CloudFormation template, or you can launch the deployment directly from the AWS Quick Start page.
This new whitepaper outlines deployment of a PowerShell DSC pull server environment using AWS resources. PowerShell Desired State Configuration provides a configuration management platform in Windows Server, which enables you to express the desired state of your systems using declarative language syntax instead of complex imperative scripts. The guide shows how to use AWS CloudFormation to bootstrap your servers and applications from scratch and make sure instances are resilient to configuration drift once the application stack has been deployed.
This reference deployment guide shows how to build a Microsoft SharePoint Server 2013 environment on the AWS Cloud, using services such as Amazon EC2 and Amazon VPC. It includes an AWS CloudFormation template designed to help you deploy the highly available infrastructure predictably and repeatedly. The template can also be launched directly from the AWS Quick Start page. To learn more about SharePoint on AWS, click here.
Windows Server and SQL Server provide built-in capabilities to run highly available solutions. This updated guide covers failover clusters and the AlwaysOn Availability Groups feature in SQL 2012 and 2014, including configuration steps and testing instructions, as well as an AWS CloudFormation template to automate deployment. The template can also be launched directly from the AWS Quick Start page.
Learn how to deploy Remote Desktop Gateway on AWS, including best practices for securely accessing your Windows-based instances using the Remote Desktop Protocol (RDP) for remote administration. Also provided are AWS CloudFormation templates to help automate deployment.
This reference implementation guide includes architectural considerations and configuration steps for deploying highly available AD solutions in the AWS Cloud. Two scenarios are covered, one all cloud and one hybrid. Included are AWS CloudFormation templates to help automate deployment. Active Directory Domain Services (AD DS) and Domain Name Server (DNS) are core Windows services that provide the foundation for many enterprise class solutions including Microsoft SharePoint, Microsoft Exchange, and .NET applications.
This whitepaper discusses how you can run Oracle Database on both Amazon RDS and Amazon EC2, and will give you an understanding of the advantages of each approach. We review in detail how to provision and monitor your Oracle database, and how to manage scalability, performance, backup and recovery, high availability and security in both Amazon RDS and Amazon EC2.
The companion document, Oracle Database 11g on Amazon EC2: Implementation Guide provides an overview of four reference architecture scenarios and provides detailed guidance on how to customize and launch Oracle database on Amazon EC2 using AWS CloudFormation templates so you can deploy any architecture scenario easily and reliably on AWS.
This whitepaper provides IT infrastructure decision-makers and system administrators with specific technical guidance on how to configure, deploy, and run an Alfresco server cluster on AWS.
It includes an implementation guide and an AWS CloudFormation template that you can use to easily and quickly create a working Alfresco cluster in AWS.
This whitepaper provides an overview of general best practices that apply to all major NoSQL systems and highlights one of popular NoSQL systems - Couchbase - and discusses how to best run it on the AWS cloud. It further examines different Couchbase configurations so you can optimize it for performance, durability, and security.
Written with Microsoft Exchange Server IT infrastructure administrators and deployment engineers in mind, the guide discusses the process for planning and deploying a Microsoft Exchange Server 2010 based messaging service in the AWS cloud using tools that they are already familiar with. It also provides a small deployment scenario (along with AWS CloudFormation templates) so you can launch a fully-configured site-resilient Exchange Server in AWS.
This whitepaper provides an overview of one of emerging Open Source NoSQL Distributed Database systems - Riak - and discusses how to best run it on the AWS cloud. It starts with how to launch a 3-node Riak cluster using the AWS Marketplace and discusses different architectural and operational Riak characteristics so you can optimize it for performance, durability, and security.
This whitepaper provides general best practices of running one of the most popular open source RDBMS - PostgreSQL - in the AWS cloud. It examines important PostgreSQL characteristics such as performance, durability, and security in the context of the AWS environment and provides basic architectural and performance guidance so you can run PostgreSQL on AWS at scale.
This paper is authored by Trend Micro and discusses what part of the shared responsibility equation customers are responsible for and what some of the recommended security practices are that can help create a secure AWS cloud environment.
This whitepaper provides an overview of general best practices that apply to all major NoSQL systems and highlights one of popular NoSQL systems - MongoDB - and discusses how to best run it on the AWS cloud. It further examines different MongoDB configurations so you can optimize it for performance, durability, and security.
This paper provides Esri ArcGIS users with the necessary information to get started with publishing and analyzing geographic information systems (GIS) imagery data (such as satellite imagery, or aerial imagery), as well as, creating tile cached map services in Amazon Web Services (AWS). The paper focuses on imagery, because that has been the most challenging data type to manage in the cloud, but the approaches discussed are general enough to apply to any type of data.
This paper provides guidance on how to secure your Microsoft applications on AWS. It outlines the principles for protecting the runtime environment of your Microsoft Windows applications with a focus on risk assessment, reducing attack surface, adhering to the principle of least privilege, and protecting your data.
This white paper discusses general concepts regarding how to run SharePoint on AWS and provides detailed technical guidance on how to configure, deploy, and run a SharePoint Server farm on AWS. It illustrates common reference architecture for SharePoint Server deployment scenarios and discusses their network, security, and deployment configurations so you can run SharePoint Server workloads in the cloud with confidence.
It includes an implementation guide and an AWS CloudFormation template that you can use to easily and quickly create a working SharePoint 2010 environment in AWS.
You can run Microsoft SQL Server on the AWS Cloud. This whitepaper reveals how to best run Microsoft SQL Server 2008 on EC2 and discusses implementation choices to optimize for performance, durability, and security. It clearly enumerates how to take advantage of native Microsoft SQL Server features that provide scalability, high-availability, and fault-tolerance in the AWS Cloud environment.
This is an overview paper written by a vendor and co-sponsored by AWS and Microsoft.