AWS Architecture Blog

Category: Security, Identity, & Compliance

Figure 1. Validation system for data classification

Using Amazon Macie to Validate S3 Bucket Data Classification

Securing sensitive information is a high priority for organizations for many reasons. At the same time, organizations are looking for ways to empower development teams to stay agile and innovative. Centralized security teams strive to create systems that align to the needs of the development teams, rather than mandating how those teams must operate. Security […]

Read More
Microservices-based order submission workflow

Architecting a Highly Available Serverless, Microservices-Based Ecommerce Site

The number of ecommerce vendors is growing globally, and they often handle large traffic at different times of the day and different days of the year. This, in addition to building, managing, and maintaining IT infrastructure on-premises data centers can present challenges to their businesses’ scalability and growth. This blog provides you a Serverless on […]

Read More
Figure 1. Data pipeline that cleans, processes, and segments data

How Financial Institutions can use AWS to Address Regulatory Reporting

Since the 2008 financial crisis, banking supervisory institutions such as the Basel Committee on Banking Supervision (BCBS) have strengthened regulations. There is now increased oversight over the financial services industry. For banks, making the necessary changes to comply with these rules is a challenging, multi-year effort. Basel IV, a massive update to existing rules, is […]

Read More
Figure 1. Centralized inspection architecture with AWS Network Firewall and imported rules

Integrate AWS Network Firewall with your ISV Firewall Rulesets

You may have requirements to leverage on-premises firewall technology in AWS by using your existing firewall implementation. As you move these workloads to AWS or launch new ones, you may replicate your existing on-premises firewall architecture. In this case, you can run partner appliances such as Palo Alto and Fortinet firewall appliances on Amazon EC2 […]

Read More
Serverless compute with Fargate

Rate Limiting Strategies for Serverless Applications

Serverless technologies reduce the work needed to set up and maintain computing resources, provide built-in scalability, and optimize agility, performance, cost, and security. The pay-as-you-go model is particularly liberating for developers. You can fail fast, experiment more, and do it fairly cheaply. However, serverless brings its own challenges. In this blog, we’ll examine how to […]

Read More
Figure 1. Managed File Transfer Process Flow

Managed File Transfer using AWS Transfer Family and Amazon S3

Financial, healthcare, retail and other companies exchange many different types of data. This can include stock information, healthcare claims, and sharing product data files with their partners. These companies need a managed file transfer solution that supports data transformation, and exchange of data over File Transfer Protocol over SSL (FTPS), and Secure File Transfer Protocol (SFTP). […]

Read More
Example of a basic organization

New Whitepaper Provides Best Practices for Optimizing AWS Accounts

Moving fast on the cloud while staying secure requires mechanisms to give the right people access to the right features at the right time. We recommend using multiple accounts, which helps you isolate applications, data, and business processes across your environment. The recently released whitepaper Organizing Your AWS Environment Using Multiple Accounts will show you […]

Read More
Monolithic versus microservice approach

Issues to Avoid When Implementing Serverless Architecture with AWS Lambda

There’s lots of articles and advice on using AWS Lambda. I’d like to show you how to avoid some common issues so you can build the most effective architecture. Technologies emerge and become outdated quickly. So, solutions that may look like the right solution, otherwise known as anti-patterns, can prevent you from building a cost-optimized, […]

Read More
The customer's solution is presented on a black background

Building a Serverless Outbreak Management Solution with AWS Data Lab

September 8, 2021: Amazon Elasticsearch Service has been renamed to Amazon OpenSearch Service. See details. This post was co-written by Dhruba Mondal and Shhalu Mittal of Erickson Senior Living and Rielah De Jesus Erickson Senior Living is an owner, manager, and developer of retirement communities in the United States. We provide independent living, assisted living, […]

Read More
AD FS Reference Architecture

Field Notes: Integrating Active Directory Federation Service with AWS Single Sign-On

Enterprises use Active Directory Federation Services (AD FS) with single sign-on, to solve operational and security challenges by allowing the usage of a single set of credentials for multiple applications. This improves the user experience and helps manage access to the applications in a centralized way. AWS offers a native cloud-based single sign-on solution called […]

Read More