The whitepapers section features a comprehensive list of technical AWS whitepapers, covering topics such as architecture, security and economics. These whitepapers have been authored by the AWS Team, independent analysts or the AWS Community (Customers or Partners). To read reports authored by industry analysts click here. This page will be regularly updated with new and updated whitepapers and reports. Check back regularly or subscribe to the RSS feed for new content.
This document intends to provide information to assist AWS customers with integrating AWS into their existing control framework supporting their IT environment. This document includes a basic approach to evaluating AWS controls and provides information to assist customers with integrating control environments. This document also addresses AWS-specific information around general cloud computing compliance issues.
An often overlooked benefit of migrating workloads to AWS is the ability to achieve a higher level of security, at scale, by utilizing the many governance-enabling features offered. This paper describes how you can achieve a high level of governance over your IT resources by using AWS.
This paper provides an overview of common compliance requirements related to logging and how AWS CloudTrail can be used help satisfy these requirements. It is organized by general logging domains that you may find useful from a security and operational perspective.
This whitepaper provides an overview of the options for encrypting data at rest in AWS services. It describes these options in terms of where encryption keys are stored and how access to those keys is controlled. Both server-side and client-side encryption methods are discussed with examples of how each can be accomplished in various AWS services.
This document is intended to answer questions such as “How does AWS help me ensure my data are secure?” Specifically, AWS physical and operational security processes are described for network and infrastructure under AWS’ management, as well as service-specific security implementations.
This whitepaper provides security best practices that will help you define your Information Security Management System (ISMS) and build a set of security policies and processes for your organization so you can protect your data and assets in the AWS Cloud. It also provides an overview of different security topics such as identifying, categorizing and protecting your assets on AWS, managing access to AWS resources using accounts, users and groups and suggesting ways you can secure your data, your operating systems and applications and overall infrastructure in the cloud.
This whitepaper helps you understand the primary data storage options available with the AWS cloud computing platform. We provide an overview of each storage option, describe ideal usage scenarios, and examine other important cloud-specific characteristics such as elasticity and scalability.
The companion paper presents several storage use cases that show how to use multiple AWS cloud storage options together.
This whitepaper provides an overview of how to create and manage multiuser environments in the AWS cloud so that professors and researchers can leverage AWS for student labs, training applications, individual IT environments, and cloud computing courses.
This whitepaper highlights the best practices of moving data to AWS, collecting, aggregating and compressing the data, and discusses common architectural patterns for setting up and configuring Amazon EMR clusters for faster processing. We also discuss several performance and cost optimization techniques so you can process and analyze massive amounts of data at high throughput and low cost in a reliable manner.
This paper is targeted at AWS customers’ internal compliance teams and their external auditors and who are evaluating or auditing the use of AWS for an internal review or external audit. It provides a checklist to help design and execute a security assessment of an organization’s use of AWS, which may be required by industry or regulatory standards. This paper builds on top of the Operational Checklist Whitepaper that provides operational and architectural guidance to help assess their application's operational readiness
This paper is targeted at developers and architects who are looking for operational and architectural guidance from AWS to help assess their application's operational readiness. It provides two checklists - Basic and Enterprise - so that you can evaluate your applications against a list of essential and recommended best practices and deploy them with confidence.
This whitepaper is targeted at CXO/Technical decision makers and provides overview of AWS and discusses factors that distinguish AWS: Elastic + Scalable, Flexible, Secure and Experienced. It’s perfect for those who want to understand the AWS perspective on Cloud Computing.
This whitepaper is intended for architects and developers in the financial services sector who are looking to expand grid computation onto AWS. It outlines the best practices for managing large grids on the AWS cloud platform and offers a reference architecture to guide organizations in the delivery of these complex systems.
Customers may wish to migrate AWS Resources from one region to another for a variety of reasons. In particular, if a new region is available closer to their user base, they may wish to locate various services geographically closer to those users. This technical whitepaper is intended for experienced customers of AWS who would like to migrate existing resources to a new AWS region. The whitepaper provides technical guidance and best practices on migrating each AWS Resource such as AMI, keypairs etc. to another region.
This paper provides high-level concepts of how you can simplify your current backup and recovery environment in the enterprise. It provides details of how you can leverage the on-demand nature of the cloud and automate your backup and recovery processes so they are not only less complex and lightweight but also easy to manage and maintain.
This whitepaper describes how AWS adds value in the various phases of the software development cycle, with specific focus on development and test. The intended audiences for this paper are project managers, developers, testers, systems architects, or anyone involved in software production activities.
Amazon VPC provides customers with several options for interconnecting their AWS virtual networks with other remote networks. This whitepaper describes several such common network connectivity options available to our customers. This includes connectivity options for integrating remote customer networks with Amazon VPC as well as interconnecting multiple Amazon VPCs into a contiguous virtual network.
This whitepaper discusses Web application hosting solution in detail, including how each of the services can be used to create a highly available, scalable Web application.
Do you know the true cost of running your web applications on your existing infrastructure? This whitepaper will help you understand the different cost factors involved when you deploy and manage a scalable web application in an on-premises environment and compare the total cost to a variety of different AWS purchasing options. Our analysis shows that AWS offers significant cost savings, up to 80%, compared to the equivalent on-premises deployments.
This paper briefly outlines how companies can use Amazon Web Services to power HIPAA-compliant information processing systems.
This whitepaper will help you understand many of the best practices involved in creating and sending high quality email from a strategy and management perspective. It identifies characteristics of high value and high quality email, it talks about the parties involved in the email sending process, and it discusses best practices for optimizing and increasing email quality.
This whitepaper will help you understand how to effectively estimate the costs of running your specific project on AWS. It provides several examples that leverage the AWS Simple Monthly Calculator. For each example, this paper discusses its architecture, example usage of each service, cost breakdown for each service, and the total estimated monthly charge.
This whitepaper will help you understand the different cost factors involved in deploying and managing a scalable NoSQL database solution. You will learn about the TCO savings of using a NoSQL (non-relational) database cloud service such as Amazon DynamoDB over equivalent NoSQL database software that is deployed on-premises or hosted in the cloud.
In the event of a disaster, you can quickly launch resources in Amazon Web Services (AWS) to ensure business continuity. The paper highlights relevant AWS features and services that you can leverage for your DR processes and shows example scenarios on how to recover from disaster. It further provides recommendations on how you can improve your DR plan and leverage the full potential of AWS for your Disaster Recovery processes.
This set of whitepapers are targeted at architects and technical decision makers of enterprises looking to build a cloud migration strategy. The main whitepaper discusses a phase-driven step-by-step strategy for migrating applications to the cloud and three scenarios illustrate the step-by-step strategy for common use cases.
This whitepaper discusses scenarios for Amazon VPC.
This whitepaper is ideal for those who would like to understand how to build fault-tolerant application on AWS.
This whitepaper paper provides prescriptive guidance to cloud architects so that they can build highly scalable and elastic applications optimized to run in AWS cloud. It discusses cloud concepts and highlights various design patterns and best practices.
This document provides step-by-step instructions for creating a test lab demonstrating identity federation between an on-premise Windows Server Active Directory domain and an ASP.NET web application hosted on EC2 service, using Microsoft’s Active Directory Federation Services (AD FS) technology.
This document presents a discussion of the costs of Amazon Web Services vs. traditional IT infrastructure alternatives, including comparative analysis of direct costs of ownership such as hardware costs and asset utilization, data redundancy and security, supply chain management, power and cooling efficiency, and personnel costs.
This paper illustrates the style of building applications using services available in the Internet cloud.
This whitepaper discusses how you can run Oracle Database on both Amazon RDS and Amazon EC2, and will give you an understanding of the advantages of each approach. We review in detail how to provision and monitor your Oracle database, and how to manage scalability, performance, backup and recovery, high availability and security in both Amazon RDS and Amazon EC2.
The companion document, Oracle Database 11g on Amazon EC2: Implementation Guide provides an overview of four reference architecture scenarios and provides detailed guidance on how to customize and launch Oracle database on Amazon EC2 using AWS CloudFormation templates so you can deploy any architecture scenario easily and reliably on AWS.
This whitepaper provides IT infrastructure decision-makers and system administrators with specific technical guidance on how to configure, deploy, and run an Alfresco server cluster on AWS.
It includes an implementation guide and an AWS CloudFormation template that you can use to easily and quickly create a working Alfresco cluster in AWS.
This whitepaper provides an overview of general best practices that apply to all major NoSQL systems and highlights one of popular NoSQL systems - Couchbase - and discusses how to best run it on the AWS cloud. It further examines different Couchbase configurations so you can optimize it for performance, durability, and security.
Written with Microsoft Exchange Server IT infrastructure administrators and deployment engineers in mind, the guide discusses the process for planning and deploying a Microsoft Exchange Server 2010 based messaging service in the AWS cloud using tools that they are already familiar with. It also provides a small deployment scenario (along with AWS CloudFormation templates) so you can launch a fully-configured site-resilient Exchange Server in AWS.
This whitepaper provides an overview of one of emerging Open Source NoSQL Distributed Database systems - Riak - and discusses how to best run it on the AWS cloud. It starts with how to launch a 3-node Riak cluster using the AWS Marketplace and discusses different architectural and operational Riak characteristics so you can optimize it for performance, durability, and security.
This whitepaper provides general best practices of running one of the most popular open source RDBMS - PostgreSQL - in the AWS cloud. It examines important PostgreSQL characteristics such as performance, durability, and security in the context of the AWS environment and provides basic architectural and performance guidance so you can run PostgreSQL on AWS at scale.
This paper is authored by Trend Micro and discusses what part of the shared responsibility equation customers are responsible for and what some of the recommended security practices are that can help create a secure AWS cloud environment.
This whitepaper provides an overview of general best practices that apply to all major NoSQL systems and highlights one of popular NoSQL systems - MongoDB - and discusses how to best run it on the AWS cloud. It further examines different MongoDB configurations so you can optimize it for performance, durability, and security.
Microsoft Windows Server and SQL Server 2012 provide built-in capabilities to run highly-available solutions for enterprise-class applications. This guide shows how to consistently and reliably deploy SQL Server 2012 AlwaysOn Availability Groups on a Windows Server failover cluster in the AWS cloud.
This paper provides Esri ArcGIS users with the necessary information to get started with publishing and analyzing geographic information systems (GIS) imagery data (such as satellite imagery, or aerial imagery), as well as, creating tile cached map services in Amazon Web Services (AWS). The paper focuses on imagery, because that has been the most challenging data type to manage in the cloud, but the approaches discussed are general enough to apply to any type of data.
This paper provides guidance on how to secure your Microsoft applications on AWS. It outlines the principles for protecting the runtime environment of your Microsoft Windows applications with a focus on risk assessment, reducing attack surface, adhering to the principle of least privilege, and protecting your data.
This white paper discusses general concepts regarding how to run SharePoint on AWS and provides detailed technical guidance on how to configure, deploy, and run a SharePoint Server farm on AWS. It illustrates common reference architecture for SharePoint Server deployment scenarios and discusses their network, security, and deployment configurations so you can run SharePoint Server workloads in the cloud with confidence.
It includes an implementation guide and an AWS CloudFormation template that you can use to easily and quickly create a working SharePoint 2010 environment in AWS.
You can run Microsoft SQL Server on the AWS Cloud. This whitepaper reveals how to best run Microsoft SQL Server 2008 on EC2 and discusses implementation choices to optimize for performance, durability, and security. It clearly enumerates how to take advantage of native Microsoft SQL Server features that provide scalability, high-availability, and fault-tolerance in the AWS Cloud environment.
This is an overview paper written by a vendor and co-sponsored by AWS and Microsoft.
This paper describes how and why Amazon.com moved all its Oracle Database Backups from tapes to Amazon S3 using the Oracle Secure Backup Cloud Module. The paper provides the details of architecture, best practices, lessons learned and benefits that emerged due to moving to highly durable cloud storage.
This paper describes how and why Amazon's corporate IT organization deployed its corporate intranet (an enterprise mission-critical corporate IT application that involves highly sensitive data) running Microsoft SharePoint 2010 to the AWS cloud.
This paper describes how and why Amazon's corporate IT organization implemented its migration of Appian's Business Process Management Suite (an enterprise-class, mission-critical financial application) to the AWS cloud.