Category: Security, Identity, & Compliance

Bottlerocket is an open source Linux-based operating system from Amazon that was purpose built for running containers with a strong emphasis on security. The result is an operating system that comes with a variety of built-in controls for creating a secure environment for running containerized workloads. In this post, we’ll explore several of the security […]

Organizations running workloads in Amazon Web Services (AWS) often must search and analyze logs to troubleshoot or investigate operations, governance, or security events. Amazon Athena enables AWS customers to search and analyze log data directly from in Amazon Simple Storage Service (Amazon S3) using standard SQL queries. Additionally, we understand that customers need a common […]

This post was written by Victor Julien, Kelley Misata, Shakeel Ahmad, and Maritza Mills. Suricata is a fast, robust, open source network threat detection engine that includes real-time intrusion detection (IDS), an inline intrusion prevention system (IPS), network security monitoring (NSM), and offline packet capture (pcap) processing. Suricata is owned by the community-run, non-profit Open […]

Data scientists and engineers have made Apache Airflow a leading open source tool to create data pipelines due to its active open source community, familiar Python development as directed acyclic graph (DAG) workflows, and extensive library of prebuilt integrations. However, managing the connections and variables that these pipelines depend on can be a challenge, especially […]

November 8, 2022: This blog post was written prior to AWS renaming AWS Single Sign-On. The new name is AWS IAM Identity Center (successor to AWS Single Sign-On). Please consider all references, in this blog, to AWS Single Sign-On or AWS SSO as being AWS IAM Identity Center. September 8, 2021: Amazon Elasticsearch Service has […]

Prometheus is an open source systems monitoring and alerting toolkit that is widely adopted as a standard monitoring tool with self-managed and provider-managed Kubernetes. Prometheus provides many useful features, such as dynamic service discovery, powerful queries, and seamless alert notification integration. Beyond certain scale, however, problems arise when basic Prometheus capabilities do not meet requirements […]

This article is a guest post from Olaf Conijn, the creator of org-formation. Part 1: Managing AWS Organizations resources using infrastructure as code Part 2: Integrating management of resources across accounts using task files Part 3: Deploying CloudFormation resources to multiple accounts using Organization Bindings org-formation on GitHub In the first two parts of this […]

This article is a guest post from Olaf Conijn, the creator of org-formation. Part 1: Managing AWS Organizations resources using infrastructure as code Part 2: Integrating management of resources across accounts using task files Part 3: Deploying CloudFormation resources to multiple accounts using Organization Bindings org-formation on GitHub In the first part of this series […]

This article is a guest post from Olaf Conijn, the creator of org-formation. Part 1: Managing AWS Organizations resources using infrastructure as code Part 2: Integrating management of resources across accounts using task files Part 3: Deploying CloudFormation resources to multiple accounts using Organization Bindings org-formation on GitHub Over the years, AWS customers have found […]

BigBlueButton is an open source video conference system that supports various audio and video formats and allows the use of integrated video-, screen- and document-sharing functions. BigBlueButton has features for multi-user whiteboards, breakout rooms, public and private chats, polling, moderation, emojis, and raise-hands. In this post, we will explain how AWS customers who are looking […]