Watch this episode on YouTube.
Reasonably Accurate 馃馃 Transcript
Hello morning. Um How's everyone doing? Um, so, uh, first temptation was to talk about Facebook and because it seems to be someone imploding, sent out some tweets last night, um, sort of ranting and rambling about that a little bit. Um Mainly because they're kind of launching features left, right and center for your privacy.
Um, when it's really stuff they were doing for GDPR, um, or if they did whip that together real quick, the question is, you know, why, now all that kind of stuff, but, you know, talked about Facebook all last week. I was working on that data dump tool which I published and pushed out.
Um, and I'll drop the link again down low, um, still working on a post to kind of summarize some of my findings and the bigger issues. But really, I wanted to take more of a positive zone on today, um, because I was thinking about maybe shifting a little bit around how I tackled Mornings with Mark.
The original idea was, you know, kind of talk about what I've been thinking about and what might become something more and then it seems to be putting a little bit of pressure on me, um, to deliver some stuff. But of course, you know, it just keeps delaying and the light going.
So what I might do is do this more of a kind of like a recap of what happened yesterday, what happened today, kind of the last 24 hours kind of thing. Um, and sort of up level that message from you saw this, but here's what it means or here's what the potential impact.
So maybe more of a, a quick opinion show in the mornings. Um So I'm still kind of batting that idea around, but what I wanted to talk about, um today was a bunch of announcements that Aws made yesterday um at the San Francisco summit. So the San Francisco Summit sort of kicks off the summit series for Aws, they're running summits um pretty much every other week now, up until uh the early fall, um and they go around the world.
Um And you'll see variations on what you heard yesterday um at all these various summits and now you may see another service announcement or two, but the vast majority of the time what you're going to see at the additional summits is sort of regional availability of existing services and local customer examples.
So Aws does a really good job of kind of setting up that one event and then using it as sort of a cookie cutter to stamp it across um uh across the world. So you can check out uh my tweets at marknca from yesterday. I live tweeted the um the keynote pulled out some important stuff.
What I want to do is actually just turn and show you some of the things um in detail, some of the new services or the features that went live um and give you a bit of a quick run down. Um So I thought that might be cool. I'm going to switch over to my screen.
Um At least, yeah, there we go. Ok. So you guys can kind of see this. I am going to uh hide that nameplate. So it makes it a little bit easier. Um Let me adjust screen size a bit. There we go. Ok. So um before I dive into the firewall rules, what I wanted to talk about was a couple of the A I announcements.
So Matt Wood came on stage. He's the GM for A I and Aws and he talked about sort of the levels of A I and how they've got the core infrastructure um that you can build on that. Hopefully, you never have to build on that sort of this mid tier um where Sage Maker, Amazon Sage Maker really um comes to the forefront and a lot of folks are starting to experiment around with Sage Maker and you really should um it really abstracts away a lot of the effort required to get machine learning and A I models.
Up and running. Um But before you even go that far, you might as well take advantage of some of the power that's available in the high level A I services. So these are services where Amazon has created the model, they tuned the model and they continue to tune it and you just basically give it data and get back results.
Now, the two that were generally available yesterday are Amazon translate and Amazon transcribe translate. I've just started playing around with, but I've been on the preview for transcribe for quite a while. Transcribe. You give it some audio and it spits back text, which is amazing because now you open up a lot of possibilities.
A friend of mine, Fernando Montenegro four or 51 had said last night, he's like, hey, have you tried it with podcasts? And I was like, no, that's a great idea though. Um That would be really interesting to transcribe your podcast real quick um and be able to read them instead of listening to them.
Um For those of us that are in a scenario where we can't really listen to them or prefer to read. Um But what I have been doing is using transcribe to um take ideas that I'm just kind of spitballing into uh into an audio file and spit out first draft posts of papers.
And I found that quite useful and quite powerful. Um And it's a really cool service and then translate obviously can take any text and flip it around to any number of the supported languages. So good examples of A I at work. Um And then uh stage makers made these additional instance, types um local mode which is huge.
They've open sourced the underlying containers they use and updated all the libraries. So um stage maker continues to be the best way to get your hands dirty. Um at sort of um multi-purpose ML and A I. Um whereas the translate, transcribe poly lack all this kind of stuff are more specifically trained uh recognition and are trained um models that you're leveraging.
So, what I wanted to talk about was a couple of announcements they made around security. Um And I'm conscious for time here, I don't want to keep uh just ranting and rambling nonstop. Um but a couple of quick things and they all add up to one big thing, um which is they added the Aws firewall manager.
So this is for Aws WAF, it's not for normal firewalls, it's for the Aws Waf and Aws Shield. And what it does is it allows you to centrally manage Aws WAF rules across a variety of different areas. So really, it just helps consolidate multiple, multiple regional deployments into one easier area to wear.
So if you're an org user, you designate a firewall admin and you're using config firewall manager will make it easier to automate and get a global view of your Aws SWF deployment which echoes the AWS config updates that we got, which essentially AWS config will now aggregate across regions and accounts, which is huge because you used to have to set up config time and time again in each area.
And basically just, you know, automate that deployment and then pull in data from various places. Now you're going to get this aggregated view, which is huge and this is another piece of automation tied together with the last one. And this is by far, the biggest announcement from yesterday is AW secrets Manager.
So this is to help you store database credentials or API keys. We've seen breach after breach after breach where people have put secrets into their github code and it's backfired. Obviously, this is a secure way to do it where you can control the encryption keys and manage these secrets properly so that they are never actually stored in the application that they're just stored in a safe insecure manner um that you can audit that's automatically rotated like there's all sorts of greatness in here.
Um But the challenge is and someone, you know, sort of tweeted this out. I think it was Evan K still tweeted this. I was saying, you know, Aws has made yet another set of security tools to help you automate this really difficult thing. I think that's the wrong way to look at this.
Aws is making it easier for you to get to the point where you can automate all of your security because that's what you should be doing. The vast majority of people crying out because they don't, they can't get candidates with adequate security knowledge that the security is such an overwhelming task.
I agree. I understand a lot of it stems from the fact that people are approaching it wrong. You need to be building security into the core of everything you do. We heard it from Werner Vogels, the CTO of Amazon on stage yesterday. You need to be building security into absolutely everything that you do.
Um, and it makes it way easier. You get far better security outcomes. Um, by the way, Randall is one of the senior tech evangelists over at Aws should absolutely check out, check out his tweets Jr Hunt, um, on Twitter. Um, he had some great stuff yesterday and he's always on their Twitch stream.
Um, same with Abby Fuller, uh, all one word. A bbyfull, er, hit up Abby, uh, online, see her tweets, lots of great stuff from, from those two and all the rest of the Aws evangelism team. Uh, let me come back on here. Hello. Um, so, um, key takeaway from the Aws summit is A BS, keeps giving you higher level tools that let you automate your security, um, and build it into the fabric of everything that you're doing because that's the way to have successful security.
So, obviously I'm gonna be talking a lot more about that in the coming days, I'm going to play around with secret manager. Um a lot more show you some practical examples of how that fits in and how that can try to drive some changes in your team. And I think the biggest change and it's not on the development side, the biggest change is going to be on your security team side on how they approach um talking to developers, talking to other teams within the organization to ensure that security is everywhere.
But uh personally, um you know, summit season is always interesting, but I love to hear the fact that the vast majority of the keynote at the San Francisco summit was dedicated to looking at how to be better um when it comes to security by design, when it comes to building a strong protections into your applications, because security after all is just making sure that whatever your building is doing what it's supposed to do and only that.
So I hope you guys have a great day. Excuse me, hope you have a great day. Hit me up online at marknca. Uh Here in the comments, I always looking to talk about this. What are your challenges around uh security and building it into the fabric of everything you do?
What do you think of the AWS announcements? Were they good enough for you? Um Do you, is there something missing? Have you tried any of these services or uh you know, what's your opinion? Hit me up at marknca. Uh, let me know what you're thinking. I hope you guys have a great day.
Talk to you soon.