InfoQ – April 2022

From Fauna transactional database to infrastructure as SQL on AWS, from RDS and Aurora PostgreSQL vulnerabilities to AWS Firewall Manager: a recap of my articles for InfoQ in April.

Infrastructure as SQL on AWS: IaSQL is Now Open Source and SaaS

IaSQL, the company behind a service that models AWS infrastructure using SQL, has recently announced that IaSQL is available as open source and software as a service.

Amazon EC2 Introduces Automatic Recovery of Instances by Default

Amazon recently announced that EC2 instances will now automatically recover in case they become unreachable due to underlying hardware issues. Automatic recovery migrates the instance to a different hardware while retaining instance ID, private IP addresses, Elastic IP address, and metadata.

RDS and Aurora PostgreSQL Vulnerability Leads to AWS Deprecating Many Minor Versions

A researcher at the security company Lightspin recently explained how she obtained credentials to an internal AWS service using a PostgreSQL extension and exploiting a local file read vulnerability on RDS. AWS confirmed the issue and deprecated dozens of minor versions of Amazon Aurora and RDS for PostgreSQL.

AWS Firewall Manager Supports Palo Alto Networks Cloud Next Generation Firewalls

AWS recently announced that Firewall Manager supports Palo Alto Networks Cloud Next Generation Firewalls (NGFW). Palo Alto Networks partnered with the cloud provider to offer a managed firewall service designed to simplify securing AWS deployments.

AWS Introduces Lambda Function URLs to Simplify Serverless Deployments

AWS recently announced the general availability of Lambda Function URLs, a feature that lets developers directly configure a HTTPS endpoint and CORS headers for a Lambda function without provisioning other services.

Fauna Transactional Database Introduces Event Streaming

Fauna, the company behind the Fauna transactional database, recently announced the general availability of event streaming, a push-based stream that sends changes at both the document and collection levels to subscribed clients.

More news? A recap of my articles for InfoQ in March.

InfoQ – March 2022

From changes to AWS Lambda, to second generation Cloud Functions on Google Cloud, from new health services on Azure to growing concerns among developers about Google Cloud price increases: a recap of my articles for InfoQ in March.

AWS Lambda Supports up to 10 GB Ephemeral Storage for Data-Intensive Applications

AWS recently announced that Lambda functions now support up to 10 GB of ephemeral storage that is preserved for the lifetime of the execution environment. The feature will help customers that run data workloads such as media processing, machine learning inference or financial analysis.

Microsoft Introduces Azure Health Data Services: Protected Health Information on the Cloud

Microsoft recently announced Azure Health Data Services, a Platform-as-a-Service that allows organizations to upload, store, manage and analyze healthcare data in the open standards FHIR and DICOM.

Growing Concerns among Developers about Google Cloud Price Increases

Google Cloud recently announced changes to their pricing models, with storage and data transfer costs mostly affected. Many experts in the cloud community have been raising concerns about architectural implications and the end of a long term “prices never go up” cloud tenet.

Google Cloud Introduces Community Security Analytics

Google Cloud recently released Community Security Analytics (CSA), a set of open-sourced queries and rules for security analytics designed to help detect common cloud-based threats.

Cloud Spanner Introduces Committed Use Discounts

Google Cloud recently announced the launch of Committed Use Discounts (CUDs) for Cloud Spanner. The option triggers a 20% to 40% discount on the on-demand price of the managed relational database in exchange for a commitment of one or three years.

AWS Backup for Amazon S3 Generally Available

Amazon recently announced the general availability of AWS Backup for Amazon S3, a managed option to centralize data protection for applications storing data on S3. The new feature automates the backup and restore of application data on S3 and combines it with the backup of other services, including instances and databases.

Amazon S3 Supports New Checksum Algorithms for Integrity Checking

Amazon S3 recently introduced support of four checksum algorithms for data integrity checking on upload and download requests. Amazon claims that the enhancements to the AWS SDK and S3 API accelerates integrity checking of the S3 requests by up to 90%.

AWS Lambda Supports .NET 6

AWS Lambda recently added support for .NET 6, as both a managed runtime and a container base image. The new runtime introduces new .NET language features and performance optimizations, improves logging and simplifies function definition using top-level statements.

AWS WAF Introduces Fraud Control – Account Takeover Prevention

Amazon recently introduced Fraud Control – Account Takeover Prevention, a new feature of AWS Web Application Firewall to protect login pages at network edge.

Google Announces Second Generation Cloud Functions

Google recently announced the public preview of the second generation of Cloud Functions, the functions as a service platform on Google Cloud. The new version introduces more controls over functions runtime, provides better performances and scalability and supports triggers from more than 90 event sources.

More news? A recap of my articles for InfoQ in February.

InfoQ – February 2022

From CloudFront to Google Certificate Manager, from Elastic File System Replication to AWS IoT RoboRunner: a recap of my articles for InfoQ in February.

AWS Introduces Managed Prefix List for CloudFront

AWS recently announced the availability of the AWS managed prefix list for CloudFront. Customers can now limit inbound HTTP/HTTPS traffic to a VPC and an application from only IP addresses that belong to CloudFront’s origin-facing servers.

Amazon Introduces S3 Batch Replication to Replicate Existing Objects

Amazon recently introduced Batch Replication for S3, an option to replicate existing objects and synchronize buckets. The new feature is designed for use cases such as disaster recovery setup, reduce latency or transfer ownership of existing data.

Google Cloud Introduces Certificate Manager

Google Cloud recently introduced the public preview of Certificate Manager, a service that integrates with External HTTPS Load Balancing to manage multiple certificates and domains.

Amazon Launches AWS IoT RoboRunner for Robot Fleet Management Applications

Amazon recently announced the preview of AWS IoT RoboRunner, a new service to help companies build and deploy robotics management applications. Developed from technology already in use at Amazon warehouses, IoT RoboRunner provides infrastructure to connect fleets of robots and automation software.

Amazon Announces Elastic File System Replication for Multi-Region Deployments

Amazon recently announced Elastic File System Replication to keep an up-to-date copy of a network file system in a second AWS region or within the same region.

More news? A recap of my articles for InfoQ in January

InfoQ – January 2022

From Lambda Powertools to OpenSearch, from Google Spanner to RDS clusters: a recap of my articles for InfoQ in January.

Amazon OpenSearch Adds Anomaly Detection for Historical Data

Amazon OpenSearch recently introduced the support of anomaly detection for historical data. The machine learning based feature helps identifying trends, patterns, and seasonality in OpenSearch data.

Amazon Announces AWS Lambda Powertools TypeScript.

Amazon recently announced the beta release of AWS Lambda Powertools TypeScript. The set of utilities for Node.js Lambda functions helps developers follow best practices for tracing, structured logging and custom metrics.

Google Cloud Spanner Dialect for SQLAlchemy is Generally Available

Google Cloud recently announced the general availability of the Spanner dialect enabling SQLAlchemy applications to run on the distributed SQL database management and storage service.

Incorrect IAM Policy Raised Questions about AWS Access to S3 Data

An unexpected change in the policy used by AWS Support raised concerns about access to customers’ S3 data. The cloud provider reverted the change, stating that the permissions were not and could not be used and published a security bulletin. Security experts suggest steps to detect and prevent similar issues in the future.

Amazon RDS Introduces Readable Standby Instances in Multi-AZ Deployments

AWS has recently announced readable standby instances in Amazon RDS multi-AZ deployments. The new database cluster option provides high availability and durability for workloads requiring more read capacity and consistent transaction latency.

More news? A recap of my articles for InfoQ in December.

Developing and Deploying Secure Code with AWS Lambda

I am looking forward to moderate tonight the InfoQ webinar Developing and Deploying Secure Code with AWS Lambda with Tal Melamed and Mark Kriaf.

Attend this webinar to learn how to find and fix overly permissive AWS Lambda functions with ease, uncover vulnerabilities in your custom code and open source packages, gain a holistic view of your AWS Lambda application, including all functions and related components, and more.

InfoQ – December 2021

From re:Post to Graviton3 processors, from Azure Orbital to Amazon RDS Custom. And a lot of news from re:Invent 2021. A recap of the topics I covered for InfoQ in December 2021.

Amazon Introduces re:Post, a “Stack Overflow” for AWS

At re:Invent Amazon announced re:Post, a Q&A service that replaced the AWS Forums and is designed to offer crowd-sourced and expert-reviewed answers to technical questions about AWS.

Amazon RDS Custom for SQL Server Is Now Generally Available

Amazon announced the general availability of Amazon RDS Custom for SQL Server. The new service supports legacy, custom, and packaged applications that have dependencies on specific configurations and third-party tools and have historically been unable to move to a fully-managed database.

AWS US-EAST-1 Outage: Postmortem and Lessons Learned

On December 7th AWS experienced an hours-long outage that affected many services in its most popular region, Northern Virginia. The cloud provider released an analysis of the incident that started threads in the community about redundancy on AWS and multi-region approaches.

Azure Space Introduces Azure Orbital in Preview and New Geospatial Capabilities

Microsoft recently announced new satellite connectivity and geospatial capabilities for Azure Space. The cloud provider introduced the preview of Azure Orbital, a ground station as-a-service that provides communication and control of satellites, and added geospatial and data analytics partnerships with Esri,, and Orbital Insight.

Amazon S3 Adds New Storage Class for Long-Lived Data and Simplifies Access Management

During the latest re:Invent Amazon announced the S3 Glacier Instant Retrieval storage class, a new storage class for rarely-accessed data that requires milliseconds retrieval. A new bucket owner enforced option lets customers disable the ACLs associated with the bucket and the objects.

Recap of AWS re:Invent 2021

After one year as a virtual-only event, re:invent was back last week to Las Vegas with fewer attendees for the 10th edition, and with multiple sessions and keynotes, including a first one for the new CEO Adam Selipsky. AWS announced new features and improvements, with a focus more on packaged solutions than new primitives.

Amazon Introduces New EC2 Families G5g, M6a, Im4gn and Is4gen

At the recent re:Invent conference, Amazon introduced new EC2 instance families running on different processors, including G5g Arm-based instances, M6a AMD-based ones and storage-optimized Im4gn and Is4gen.

AWS Announces Next Generation Graviton3 Processors

Amazon announced the next generation Graviton3 processors and the preview of the EC2 C7g instances. The cloud provider claims that the new instance type running the latest Arm-based processors will provide better compute, higher floating-point and faster cryptographic performances.

AWS Introduces Amazon Redshift Serverless

As part of a trend towards serverless analytics options, AWS announced the public preview of Amazon Redshift Serverless. The latest version of the managed data warehouse service targets deployments where it is difficult to manage capacity due to variable workloads or unpredictable spikes.

More news? A recap of my articles for InfoQ in November.