AWS Architecture Blog
Category: Security, Identity, & Compliance
Convert and Watermark Documents Automatically with Amazon S3 Object Lambda
When you provide access to a sensitive document to someone outside of your organization, you likely need to ensure that the document is read-only. In this case, your document should be associated with a specific user in case it is shared. For example, authors often embed user-specific watermarks into their ebooks. This way, if their […]
Choosing Your VPC Endpoint Strategy for Amazon S3
This post was co-written with Anusha Dharmalingam, former AWS Solutions Architect. Must your Amazon Web Services (AWS) application connect to Amazon Simple Storage Service (S3) buckets, but not traverse the internet to reach public endpoints? Must the connection scale to accommodate bandwidth demands? AWS offers a mechanism called VPC endpoint to meet these requirements. This […]
Using Amazon Macie to Validate S3 Bucket Data Classification
Securing sensitive information is a high priority for organizations for many reasons. At the same time, organizations are looking for ways to empower development teams to stay agile and innovative. Centralized security teams strive to create systems that align to the needs of the development teams, rather than mandating how those teams must operate. Security […]
Architecting a Highly Available Serverless, Microservices-Based Ecommerce Site
The number of ecommerce vendors is growing globally, and they often handle large traffic at different times of the day and different days of the year. This, in addition to building, managing, and maintaining IT infrastructure on-premises data centers can present challenges to their businesses’ scalability and growth. This blog provides you a Serverless on […]
How Financial Institutions can use AWS to Address Regulatory Reporting
Since the 2008 financial crisis, banking supervisory institutions such as the Basel Committee on Banking Supervision (BCBS) have strengthened regulations. There is now increased oversight over the financial services industry. For banks, making the necessary changes to comply with these rules is a challenging, multi-year effort. Basel IV, a massive update to existing rules, is […]
Integrate AWS Network Firewall with your ISV Firewall Rulesets
You may have requirements to leverage on-premises firewall technology in AWS by using your existing firewall implementation. As you move these workloads to AWS or launch new ones, you may replicate your existing on-premises firewall architecture. In this case, you can run partner appliances such as Palo Alto and Fortinet firewall appliances on Amazon EC2 […]
Rate Limiting Strategies for Serverless Applications
Serverless technologies reduce the work needed to set up and maintain computing resources, provide built-in scalability, and optimize agility, performance, cost, and security. The pay-as-you-go model is particularly liberating for developers. You can fail fast, experiment more, and do it fairly cheaply. However, serverless brings its own challenges. In this blog, we’ll examine how to […]
Managed File Transfer using AWS Transfer Family and Amazon S3
Financial, healthcare, retail and other companies exchange many different types of data. This can include stock information, healthcare claims, and sharing product data files with their partners. These companies need a managed file transfer solution that supports data transformation, and exchange of data over File Transfer Protocol over SSL (FTPS), and Secure File Transfer Protocol (SFTP). […]
New Whitepaper Provides Best Practices for Optimizing AWS Accounts
Moving fast on the cloud while staying secure requires mechanisms to give the right people access to the right features at the right time. We recommend using multiple accounts, which helps you isolate applications, data, and business processes across your environment. The recently released whitepaper Organizing Your AWS Environment Using Multiple Accounts will show you […]
Issues to Avoid When Implementing Serverless Architecture with AWS Lambda
There’s lots of articles and advice on using AWS Lambda. I’d like to show you how to avoid some common issues so you can build the most effective architecture. Technologies emerge and become outdated quickly. So, solutions that may look like the right solution, otherwise known as anti-patterns, can prevent you from building a cost-optimized, […]