In this podcast episode, learn about confidential computing and data privacy in the context of AWS services. The hosts - Shai, Anton, and Arindam, who are AWS Solution Architects, provide insights into AWS's security technologies and operational practices that exceed customer standards for confidential computing and data privacy. The podcast delves into the Nitro system and its protection categories for confidential computing, as well as AWS Nitro Enclaves - a feature that provides isolation for sensitive data and applications. The hosts discuss the many use cases of Nitro enclaves, including cryptographic attestation capabilities, and explore how it can be used in various blockchain use cases, containerization, and Kubernetes. Additionally, the podcast provides resources for listeners to learn more about Nitro enclaves. Throughout the episode, the hosts emphasize the importance of keeping customers' workloads secure and confidential. They provide insights into how confidential computing can be used in blockchain networks and modern advanced enterprise architectures. Overall, the podcast provides a comprehensive understanding of confidential computing and how it can be implemented for enhanced security. It's a valuable resource for those interested in AWS services and data privacy. Key Moments: [00:02:30] Confidential computing explained. [00:05:13] AWS Nitro system. [00:10:36] Cryptographic attestation. [00:13:39] Nitro Enclave's use cases. [00:18:11] Cryptographic attestation capabilities. [00:21:11] Bridging multiple blockchain chains. [00:26:41] Nitro enclaves workshop. Links: Workshop: https://nitro-enclaves.workshop.aws/en/ (also available in Japanese) Workshop (“one module if you only have 30 min”): https://nitro-enclaves.workshop.aws/en/my-first-enclave/cryptographic-attestation.html Docs https://docs.aws.amazon.com/enclaves/latest/user/nitro-enclave.html Blogs: Confidential computing: an AWS perspective: https://aws.amazon.com/blogs/security/confidential-computing-an-aws-perspective/ Announcement Nitro Enclave: https://aws.amazon.com/blogs/aws/aws-nitro-enclaves-isolated-ec2-environments-to-process-confidential-data/ Nitro Enclaves + windows: https://aws.amazon.com/blogs/compute/getting-started-with-aws-nitro-enclaves-on-microsoft-windows/ Nitro Enclaves + Blockchain Part 1: https://aws.amazon.com/blogs/database/part-1-aws-nitro-enclaves-for-secure-blockchain-key-management/ Part 2: https://aws.amazon.com/blogs/database/part-2-aws-nitro-enclaves-for-secure-blockchain-key-management/ Part 3: https://aws.amazon.com/blogs/database/part-3-aws-nitro-enclaves-for-secure-blockchain-key-management/ GitHub Samples: https://github.com/aws/aws-nitro-enclaves-cli https://github.com/aws/aws-nitro-enclaves-sdk-c https://github.com/aws/aws-nitro-enclaves-acm https://github.com/aws-samples/aws-nitro-enclaves-certificate-manager-sample EKS + Nitro Enclaves https://github.com/aws/aws-nitro-enclaves-k8s-device-plugin https://github.com/aws/aws-nitro-enclaves-with-k8s https://docs.aws.amazon.com/enclaves/latest/user/kubernetes.html Video: Confidential computing with AWS compute - https://www.youtube.com/watch?v=pyRBOHYgHc0

In this episode of AWS Techchat, we talk briefly about container basics, difference between VMs and containers, and how customers are leveraging containers to modernize their legacy workloads. We look at different orchestration options for building modern applications and talk about various AWS tools that could be used. We cover use cases for automated infrastructure provisioning and integrating with Continuous Integration and Continuous Deployment. We cover Karpenter from autoscaling perspective and few new feature releases in containers space and Amazon Elastic Kubernetes Service (Amazon EKS) Anywhere support on bare metal and also discuss security best practices at high level. Resources: • Hands On workshop for Amazon EKS - ecsworkshop.com/ • Live streams and videos featuring AWS Container Services and demos - www.youtube.com/c/ContainersfromtheCouch/featured • Amazon EKS Best Practices Guide - aws.github.io/aws-eks-best-practices/ • Architecting Amazon EKS workload for PCI DSS compliance white-paper -d1.awsstatic.com/whitepapers/arch…s-compliance.pdf • Architecting Amazon EKS workload for HIPAA compliance white-paper - docs.aws.amazon.com/whitepapers/lat…amazon-eks.html • Amazon EKS Blueprints Quick Start *-*aws-quickstart.github.io/cdk-eks-blueprints/ • Karpenenter Documentation - karpenter.sh/ Speakers: Shai Perednik - Global Tech Lead - Blockchain www.linkedin.com/in/shaiperednik/ Arindam Chatterji - Senior Solution Architect - US SMB www.linkedin.com/in/arinchat/ Prasad Shetty - Senior Solution Architect - US NE Enterprise www.linkedin.com/in/prasadshetty3/

In this episode of AWS TechChat, we talk about history of AWS Graviton, difference between ARM and x86, and how to get workloads running on AWS Graviton. We then talk about how to assess your application for ARM compatibility. First understanding the type of application, follow by the features and libraries used, then onto the components of the application like the database. Resources: - AWS Graviton Public Page - https://aws.amazon.com/ec2/graviton/ - .NET on ARM - https://aws.amazon.com/blogs/devops/build-and-deploy-net-web-applications-to-arm-powered-aws-graviton-2-amazon-ecs-clusters-using-aws-cdk/ - ARM for Databases: https://aws.amazon.com/blogs/database/key-considerations-in-moving-to-graviton2-for-amazon-rds-and-amazon-aurora-databases/ - Transitioning to ARM Best Practices: https://github.com/aws/aws-graviton-getting-started/blob/main/transition-guide.md Speakers: Shai Perednik - Global Tech Lead - Blockchain https://www.linkedin.com/in/shaiperednik/ Matthew Cline - Senior Solutions Architect https://www.linkedin.com/in/matthewbcline/ Muhammad Mansoor - Senior Solutions Architect https://www.linkedin.com/in/mmansoor/

In this episode of AWS TechChat, we talk about how leveraging the AWS Cloud Adoption Framework (AWS CAF) can help you accelerate your digital transformation efforts and business outcomes. We highlight the potential value that cloud transformation can bring to organizations, identify some of the key challenges that organizations may face along their journey, and discuss how the AWS CAF can help you overcome those. We unpack the key components of the AWS CAF, including 4 categories of business outcomes, 4 transformation domains, 6 perspectives, 47 foundational capabilities, and 4 incremental & iterative transformation phases that the AWS CAF recommends. And finally, we talk about the AWS CAF Envisioning and Alignment workshops and how they can be leveraged to help you identify and prioritize transformation opportunities, assess your organizational cloud readiness, and evolve your transformation roadmap. Speakers: • Shai Perednik - (www.linkedin.com/in/shaiperednik/) - Global Tech Lead – Blockchain, AWS • Dr. Saša Baškarada (www.linkedin.com/in/baskarada/) - Worldwide Lead, AWS Cloud Adoption Framework, AWS • Jason Turse (www.linkedin.com/in/turse-262/) - Senior Practice Manager, Advisory (Defense), AWS Resources: • AWS Cloud Adoption Framework (AWS CAF) eBook https://d1.awsstatic.com/whitepapers/aws-caf-ebook.pdf • An Overview of the AWS Cloud Adoption Framework https://docs.aws.amazon.com/whitepapers/latest/overview-aws-cloud-adoption-framework/welcome.html • AWS CAF Public Page https://aws.amazon.com/professional-services/CAF/ • AWS CAF Whitepaper - Kindle Edition https://www.amazon.com/dp/B09X9DBL4V/ref=cm_sw_em_r_mt_dp_49MV5ZHXJBAAXRNS4VZ9

In this episode of AWS Techchat, we start the show by talking about foundations - an overview of Amazon EventBridge and how it is different from Amazon CloudWatch Events. Then we talk about some of the features such as Archive and Replay Events, Schema Registry, Global Endpoints, and API Destinations. Finally, we dive into architecture patterns to touch on the need to spend time modeling your logical architecture to get a good foundation for your event-driven architecture and explored event bus topologies and best practices. Speakers Shai Perednik - Global Tech Lead - Blockchain Cheryl Joseph - Solutions Architect, AWS Stephen Liedig - Principal SA - Serverless, AWS Resources *Amazon EventBridge resource policy samples* https://github.com/aws-samples/amazon-eventbridge-resource-policy-samples *AWS re:Invent 2020 session* Building event-driven applications with Amazon EventBridge (https://youtu.be/Wk0FoXTUEjo) *Introducing global endpoints for Amazon EventBridge* https://aws.amazon.com/blogs/compute/introducing-global-endpoints-for-amazon-eventbridge/ *ANZ Summit: Design event-driven integrations using Amazon EventBridge (Day 2)* * AWS Summit regisration (https://aws.amazon.com/events/summits/anz/) * Agenda at a glance (https://pages.awscloud.com/rs/112-TZM-766/images/AWS-Summit-ANZ-2022-Agenda.pdf) Blog Post * Building an event-driven application with Amazon EventBridge (https://aws.amazon.com/blogs/compute/building-an-event-driven-application-with-amazon-eventbridge/)

In this episode of AWS TechChat, we take a journey into Amazon Elastic Compute Cloud (Amazon EC2) Mac instances. I interview two Amazon EC2 Mac Specialists, Muhammad and Scott, who help us deep dive into the depths of Amazon EC2 and supporting services and features. We start the show by setting foundations as we talk about the single tenancy model and how that relates to billing. We then discuss the differences between instances and hosts and Amazon Elastic Block Store (Amazon EBS) storage as well as building a CI/CD pipeline with Amazon EC2 MAC for your build servers. We wrap that all up with some use cases we’ve heard and by looking at where customers should start their Amazon EC2 Mac journey. Speakers Shai Perednik - Senior Solutions Architect, AWS Muhammad Mansoor - Senior Solutions Architect, AWS Scott Malki - Senior EC2/Graviton Specialist, AWS AWS Events: AWS Builders Online Series https://aws.amazon.com/events/builders-online-series/ AWS Innovate – AI/ML Edition https://aws.amazon.com/events/aws-innovate/machine-learning/ AWS Events and Webinars - http://aws.amazon.com/events/ Resources Use Amazon EC2 Mac Instances to Build & Test macOS, iOS, iPadOS, tvOS, and watchOS Apps https://aws.amazon.com/blogs/aws/new-use-mac-instances-to-build-test-macos-ios-ipados-tvos-and-watchos-apps/

In this episode of AWS TechChat, we take a journey into Amazon Managed Blockchain and Amazon Quantum Ledger Database (QLDB). I interview a blockchain specialist - Forrest, who help us deep dive into the depths of blockchain technologies and terminologies. We start the show by setting foundations, diving into cryptocurrencies, tokenization, and smart contracts before walking through the difference between layer 1, layer 2, and sidechains. We then pivot the discussion to private and public blockchain, Hyperledger as well as Ethereum. We close out this segment by answering some of the frequently asked questions - “Is there only one blockchain? Why do we need multiple blockchains?” We also discuss about blockchain versus databases and how to decide between Amazon Managed Blockchain and Amazon QLDB. Finally, we wrap up the show with some exciting use cases and share how you should start your blockchain journey. Speakers Shai Perednik - Sr. Solutions Architect, AWS Forrest Colyer - Blockchain Specialist Solutions Architect, AWS AWS Events: AWS Innovate – Data Edition https://aws.amazon.com/events/aws-innovate/data/ AWS Events and Webinars - http://aws.amazon.com/events/ Customer stories How Contura Energy built a letter of credit application on Amazon Managed Blockchain https://aws.amazon.com/blogs/database/how-contura-energy-built-a-letter-of-credit-application-on-amazon-managed-blockchain/ Enterprise solutions with blockchain: Use cases from Nestlé, Sony Music, and Workday https://d1.awsstatic.com/events/reinvent/2019/Enterprise_solutions_with_blockchain_Use_cases_from_Nestle_Sony_Music_and_Workday_BLC204.pdf Nestlé brings supply chain transparency with Amazon Managed Blockchain https://www.youtube.com/watch?v=P6vPvZ0-7dY Amazon Managed Blockchain Customers https://aws.amazon.com/managed-blockchain/customers/ Resources Getting started with the Amazon QLDB console https://docs.aws.amazon.com/qldb/latest/developerguide/getting-started.html Get Started Creating a Hyperledger Fabric Blockchain Network Using Amazon Managed Blockchain https://docs.aws.amazon.com/managed-blockchain/latest/hyperledger-fabric-dev/managed-blockchain-get-started-tutorial.html Deploy an Ethereum node on Amazon Managed Blockchain https://aws.amazon.com/blogs/database/deploy-an-ethereum-node-on-amazon-managed-blockchain/ Building a serverless blockchain application with Amazon Managed Blockchain https://aws.amazon.com/blogs/database/building-a-serverless-blockchain-application-with-amazon-managed-blockchain/ Integrate Amazon Managed Blockchain identities with Amazon Cognito https://aws.amazon.com/blogs/database/integrate-amazon-managed-blockchain-identities-with-amazon-cognito/ Tracking activity in Amazon Managed Blockchain with Amazon CloudWatch Logs https://aws.amazon.com/blogs/database/tracking-activity-in-amazon-managed-blockchain-with-amazon-cloudwatch-logs/ Automating Hyperledger Fabric chaincode deployment on Amazon Managed Blockchain using AWS CodePipeline https://aws.amazon.com/blogs/database/automating-hyperledger-fabric-chaincode-deployment-on-amazon-managed-blockchain-using-aws-codepipeline/

In this episode of AWS TechChat, we took a journey out the edge, and gave you an in-depth look in to a new product that we have released to market, CloudFront Function. I interviewed 2 special guests from our CloudFront service team, David Brown and Raji Sundararajan who gave me the low down on the major feature release. We started the show setting down a foundation of what is Edge Computing, how Edge Computing is changing modern architectures and some of the shortcomings customers face with Lambda @ Edge before introducing CloudFront Functions CloudFront Functions, which is a feature of Amazon CloudFront, enables you to write lightweight functions in JavaScript for high-scale, latency-sensitive CDN customizations. CloudFront Functions can manipulate the requests and responses that flow through CloudFront, perform basic authentication and authorization, generate HTTP responses at the edge and more. I then wore that hat of you, our customer and spend the better half of the show in a Q&A session with Raji and David to which we cover patterns, anti patterns, performance, the developer experience and more. Speakers: Shane Baldacchino - Edge Specialist Solutions Architect, ANZ, AWS David Brown - Sr. Product Manager, Cloudfront Service Team Raji Sundararajan - Software Development Manager, CloudFront Service Team

In this episode of AWS TechChat, we start with an introduction of containers and explain the many terms we often hear about them. We then pivot and discuss why the industry is adopting containers, its benefits, and how you can get started by either using your local machine, single board computer, or an Amazon technology. From images through to Docker files, this episode will help you get started on your containers journey. We dive into orchestration, talk about when to use containers and serverless, and close off the show with containers development tools and show you how you would deploy and manage them in AWS. We just scratched the surface on the tooling we covered and suggest our listeners take a read through some of the links below: AWS glossary - AWS General Reference (https://docs.aws.amazon.com/general/latest/gr/glos-chap.html) Glossary | Docker Documentation (https://docs.docker.com/glossary/) Container Orchestration Amazon ECS vs Amazon EKS: making sense of AWS container services | Con... (https://aws.amazon.com/blogs/containers/amazon-ecs-vs-amazon-eks-making-sense-of-aws-container-services/) Lambda Containers: New for AWS Lambda – Container Image Support | AWS News Blog (https://aws.amazon.com/blogs/aws/new-for-aws-lambda-container-image-support/) CoPilot Developing an application based on multiple microservices using AWS Co... (https://aws.amazon.com/blogs/containers/developing-an-application-based-on-multiple-microservices-using-the-aws-copilot-and-aws-fargate/) AWS Copilot is now generally available | Containers (https://aws.amazon.com/blogs/containers/aws-copilot-is-now-generally-available/) ECS Amazon ECS developer tools overview - Amazon Elastic Container Service (https://docs.aws.amazon.com/AmazonECS/latest/developerguide/ecs-developer-tools.html#developer-tools-dockercli) Tutorial: Creating a Cluster with an EC2 Task Using the Amazon ECS CLI... (https://docs.aws.amazon.com/AmazonECS/latest/developerguide/ecs-cli-tutorial-ec2.html) EKSCTL The eksctl command line utility - Amazon EKS (https://docs.aws.amazon.com/eks/latest/userguide/eksctl.html) MISC A Docker Tutorial for Beginners (https://docker-curriculum.com/) Speakers: Shane Baldacchino - Edge Specialist Solutions Architect, ANZ, AWS Shai Perednik - Solutions Architect, AWS

In this episode of AWS TechChat, we close out our four parts of AWS re:Invent 2020 series with an AI/ML special. We cover Amazon Sagemaker, Amazon Kendra, Amazon Elastic MapReduce (EMR), Amazon QuickSight, and some brand new services. We talk about AWS HealthLake and how it makes sense of health data. AWS customers can use Kendra’s Google Drive connector to ingest and manage content from Google Docs and Google Slides. We introduce AWS Panorama which will help improve your operations with computer vision at the edge. We continue with a raft of new Amazon SageMaker updates: • Amazon SageMaker Feature Store - A fully managed repository for machine learning features • Amazon SageMaker Clarify - Bias Detection and Explainability • Amazon SageMaker Debugger - Optimize ML models with real-time monitoring of training metrics and system resources • Amazon SageMaker Model Monitor - Detect drift in model quality, model bias, and feature importance • Amazon SageMaker Pipelines - First purpose-built CI/CD service for machine learning • Amazon SageMaker Jumpstart - Simplifies Access to Pre-built Models and Machine Learning Solutions Before wrapping out, we share two more AI/ML updates - Amazon EMR Studio is the integrated development environment (IDE) for applications written in R, Python, Scala, PySpark, and Jupyter notebooks now gives you the option to deploy on Amazon Elastic Kubernetes Service (EKS). Amazon QuickSight allows you to ask Natural Language Query (NLQ) about your data and get answers in seconds. Speakers: Shane Baldacchino - Edge Specialist Solutions Architect, ANZ, AWS Shai Perednik - Solutions Architect, AWS Pallavi Nargund - Solutions Architect, AWS