AWS Open Source Blog

Introducing kro: Kube Resource Orchestrator

Introducing kro: Kube Resource Orchestrator

Today, we’re excited to release Kube Resource Orchestrator (kro), a new experimental open source project that simplifies and empowers the use of custom APIs and resources with Kubernetes. With kro, you can define complex, multi-resource API extensions for reuse in any Kubernetes cluster. Defining new resource groups with kro is like creating your own custom […]

Enhancing Developer Productivity

Enhancing Developer Productivity: Finch’s Support for Development Containers and the Finch Daemon

In today’s fast-paced software development landscape, containerization has become an essential tool for building and deploying applications. With all the necessary tools and dependencies encapsulated in a container, developers can effortlessly set up and replicate development environments on various machines. The key steps involved in building and running containers typically include: Building container images using […]

Achieving Zero Trust Security on Amazon EKS with Istio

Achieving Zero Trust Security on Amazon EKS with Istio

This is the fourth blog post of our “Istio on EKS” series. In this blog post, we’ll explore how Istio, a powerful service mesh, enables organizations to implement a zero trust security model on Amazon Elastic Kubernetes Service (Amazon EKS). We will start by understanding how Istio implements peer authentication between microservices by Mutual Transport […]

From Data Chaos to Cohesion: How OCSF is Optimizing Cyber Threat Detection

From Data Chaos to Cohesion: How OCSF is Optimizing Cyber Threat Detection

With the release of version 1.3.0, the Open Cybersecurity Schema Framework (OCSF) introduces several enhancements designed to further standardize and help streamline cybersecurity data management. OCSF is a collaborative, open source effort by AWS and leading partners in the cybersecurity industry, which provides a standard schema for common security events, defines versioning criteria to facilitate […]

Diving into OCI Image and Distribution 1.1 support in Amazon ECR

Diving into OCI Image and Distribution 1.1 Support in Amazon ECR

AWS recently announced that Amazon Elastic Container Registry (Amazon ECR) now supports version 1.1 of the Open Container Initiative (OCI) Image and Distribution specifications. This latest version includes support for image referrers, as well as significant enhancements for distribution of non-image artifacts. We are excited about this set of new capabilities, which helps customers more […]

Amazon's Exabyte-Scale Migration from Apache Spark to Ray on Amazon EC2

Amazon’s Exabyte-Scale Migration from Apache Spark to Ray on Amazon EC2

Large-scale, distributed compute framework migrations are not for the faint of heart. There are backwards-compatibility constraints to maintain, performance expectations to meet, scalability limits to overcome, and the omnipresent risk of introducing breaking changes to production. This all becomes especially troubling if you happen to be migrating away from something that successfully processes exabytes of […]

Getting Started with Cilium Service Mesh on Amazon EKS

Getting Started with Cilium Service Mesh on Amazon EKS

Cilium is an open source solution for providing, securing, and observing network connectivity between workloads, powered by the revolutionary kernel technology called extended Berkeley Packet Filter (eBPF). eBPF enables the dynamic insertion of security, visibility, and networking logic into the Linux kernel. Cilium provides high-performance networking, advanced load balancing, transparent encryption, and observability. Cilium was […]