SANTA CLARA, California — Modern apps require serverless architectures with a lot of automation and continuous security, said Amazon CTO Werner Vogels during the AWS Summit keynote. He wore a black tee-shirt that read: “Encrypt Everything.”
It’s a simple message, but an important one in today’s culture of bigger, more expensive security breaches with companies still not encrypting data.
“Encryption is the tool we have to make sure that nobody else has access to your data,” Vogels said. Amazon Web Services (AWS) built encryption into nearly all of its 165 cloud services, he added. “Make use of it. Dance like nobody is watching. Encrypt like everyone is.”
By continuous security, Vogels means a DevSecOps approach where security is built into the continuous integration and deployment model and “security is everyone’s job.” Old-style security — like firewalls — don’t work in today’s microservices world, he said. “If firewalls were the right security solution, we would still have moats around our cities. We don’t. We protect our individual houses, we protect individual rooms in our houses. So we should do that in our digital systems as well.”
New AWS Tools
The very first cloud service that AWS launched is it’s S3 storage. Vogels called it the “ninth world wonder in a digital sense,” and today the cloud giant made available a new storage class in S3 called Glacier Deep Archive.
Customers collect petabytes of data and not all of this needs to be processed or analyzed immediately. Some of it has to be retained for compliance or auditing, and Glacier Deep Archive provides a cost-effective way to store infrequently accessed data. Vogels said it’s the lowest cost storage available in the cloud and costs less than using on-premises tape: “It comes as a cost point of not even a tenth-of-a-cent per gigabyte, per month.”
AWS also rolled out new tools that make it easier for developers to navigate this new world across compute instances, containers, and serverless applications. One of these is App Mesh, a service mesh that allows customers to monitor and control communications across applications running in AWS Fargate (its serverless containers product), EC2 (compute instances), ECS (containers), Elastic Container Service for Kubernetes (managed Kubernetes containers), or Kubernetes. “AWS App Mesh gives you a complete view of the network,” Werner said.
It’s generally available today, and integrates with Tetrate, Datadog, HashiCorp, Sysdig, and SignalFx.
Another new tool that AWS made available today is Deep Learning Containers, which is designed to make it easier for developers to use deep learning in their applications. These are Docker images that are ready to use for deep learning training or inferencing using TensorFlow or Apache MXNet. AWS will add other frameworks including PyTorch in the future. And these images run on ECS, Elastic Container Service for Kubernetes, and EC2.
Photo: Amazon CTO Werner Vogels delivered the keynote at the AWS Summit in Santa Clara, California.