You can now use canary release deployments to gradually roll out new APIs in Amazon API Gateway. This helps you more safely roll out API changes and limit the blast radius of new deployments.

You can now shift incoming traffic between two AWS Lambda function versions based on pre-assigned weights. This allows you to gradually shift traffic between two versions, helping you reduce the risk and limit the blast radius of new Lambda deployments. You can now also use AWS CodeDeploy to automatically manage the rollout of new function versions. CodeDeploy is a service that automates software deployments to a variety of compute services like Lambda and Amazon EC2. CodeDeploy makes it easy to gradually and safely deploy updates to Lambda, and it is supported by the AWS Serverless Application Model .  

Now, you can use advanced security features (beta) for Amazon Cognito to help protect access to user accounts in your applications. These advanced security features provide risk-based adaptive authentication and protection from the use of compromised credentials.

AWS Batch now supports the submission of arrays of jobs with a single API call. With ArrayJobs, users can easily submit, with a single SubmitJob  call, up to 10,000 copies of a job. Users can also express dependencies on Array Jobs, including ‘N-to-N’ dependencies between related elements across multiple Array Jobs. Array Jobs simplify the submission and management of large-scale Monte Carlo simulations, parametric sweeps, and jobs which need to perform the same operation on thousands of input files or objects. AWS Batch dynamically provisions the optimal quantity and type of compute resources (e.g., CPU or memory optimized instances) based on the volume and specific resource requirements of the batch jobs submitted. With AWS Batch, there is no need to install and manage batch computing software or server clusters.

Amazon MQ is a managed message broker service for Apache ActiveMQ that makes it easy to set up and operate message brokers in the cloud. Message brokers allow different software systems–often using different programming languages, and on different platforms–to communicate and exchange information. Messaging is the communications backbone that connects and integrates the components of distributed applications, such as order processing, inventory management, and fullfillment for e-commerce. Amazon MQ manages the administration and maintenance of ActiveMQ, a popular open-source message broker. Amazon MQ takes care of time-consuming tasks such as provisioning the infrastructure, setting up the broker, updating the software, and managing security. Amazon MQ is designed to withstand failures so your messages are highly available. With Amazon MQ, you get direct access to the ActiveMQ console and industry standard APIs and protocols for messaging, including JMS, NMS, AMQP, STOMP, MQTT, and WebSocket. You can easily move from any message broker that uses these standards to Amazon MQ because you don’t have to rewrite any messaging code in your applications.

Amazon EC2 Bare Metal instances provide your applications with direct access to the processor and memory of the underlying server. These instances are ideal for workloads that require access to hardware feature sets (such as Intel VT-x), or for applications that need to run in non-virtualized environments for licensing or support requirements.

Amazon EC2 H1 instances are the latest generation of Amazon EC2’s Storage Optimized instances, which are powered by 2.3 GHz Intel^® Xeon^® E5 2686 v4 processors (codenamed Broadwell), offer more vCPUs and more memory per terabyte of local magnetic storage compared to D2 instances. The largest instance size, h1.16xlarge, provides 64vCPUs and 16TB of HDD-based instance storage. H1 instances are designed for applications that need low cost storage, high disk throughput, and high sequential disk I/O access to large data sets. H1 instances are ideal for data-intensive workloads such as MapReduce-based workloads, distributed file systems such as HDFS and MapR-FS, network file systems, log or data processing applications such as Apache Kafka, and big data workload clusters.

Amazon EC2 Spot can now hibernate Amazon EBS-backed instances in the event of an interruption. Spot can fulfill your request by resuming instances from a hibernated state when capacity is available. Hibernate is just like closing and opening your laptop lid, with your application starting up right where it left off.

M5 Instances are the next generation of the Amazon EC2 General Purpose compute instances, powered by 2.5 GHz Intel® Xeon Platinum 8175 processors (formerly codenamed Skylake), and featuring Intel’s newest vector processing instruction set, Advanced Vector Extension 512 (AVX-512). M5 instances are based on the Nitro System, a combination of dedicated hardware and lightweight hypervisor, which delivers practically all of the compute and memory resources of the host hardware to your instances. They deliver up to 14% improvement in price/performance compared to M4 instances with the updated processor. The addition of new AVX-512 delivers 2x the performance per core for vector and floating point intensive workloads such as image and video processing, data compression, cryptography, and high-performance web serving.

Amazon GuardDuty is a threat detection service that provides you with an accurate and easy way to continuously monitor and protect your AWS accounts and the applications and services running within them. With a few clicks in the AWS Management Console, GuardDuty immediately begins analyzing billions of events from AWS CloudTrail, VPC Flow Logs, and other AWS data sources.