AWS This Week

AWS This Week: New management features for EC2 Key Pairs, EC2 supports NitroTPM and UEFI Secure Boot

Episode description

Faye Ellis is back with your AWS news! This week, EC2 Key Pairs gains some new management features, EC2 now Supports NitroTPM and UEFI Secure Boot, CloudWatch Events can now receive notifications that are generated by Amazon Machine Images, and registration is now open for the AWS EMEA Summit Online.

Introduction to AWS updates (0:00)
New management features for EC2 Key Pairs (0:36)
EC2 supports NitroTPM (1:27)
EC2 supports UEFI Secure Boot (2:27)
CloudWatch Events supports AMI Status Changes (3:07)
Register For The AWS EMEA Summit Online (3:39)

Save 40% on all Personal Annual Plans:
Offer applies to customers who purchase, upgrade, or renew to a Personal Plus Annual or Personal Basic Annual plan. Offer valid from 12:00AM CT on May 10, 2022 until 11:59PM CT on May 17, 2022. Offer may not be combined with any other offers. Offer includes access to the A Cloud Guru Platform only. Purchases made in connection with this offer do not include a free trial period and are subject to the Terms of Use.

Subscribe to A Cloud Guru for AWS latest updates and service announcements, every week

Like us on Facebook and Twitter!

Join the conversation on Discord!

AWS adds new management features for EC2 key pairs:
Amazon EC2 Now Supports NitroTPM and UEFI Secure Boot:
Announcing the general availability of NitroTPM and UEFI Secure Boot on Amazon EC2:
Amazon EC2 adds CloudWatch Events support for Amazon Machine Images:
AWS EMEA Summit Online:

Series description

Join our ACG hosts as they recap the most important developments in the AWS world from the past week. Keeping up with ever-changing world of cloud can be difficult, so let us do the hard work sifting through announcements to bring you the best of what's new with AWS This Week.

Hello Cloud Gurus and welcome to AWS This Week. And I have some incredible announcements to tell you about this week, including EC2 key pairs gain some new management features. EC2 now supports NitroTPM and UEFI Secure Boot. CloudWatch Events can now receive notifications that are generated by Amazon Machine Images. And registration is now open for the AWS EMEA Summit. Online. You're watching AWS This Week with me, Faye Ellis.

EC2 key pairs have recently gained some new management features. A key pair, consisting of a public key and a private key, is a pair of security credentials that prove your identity when connecting to an EC2 instance over SSH, for example. Using the AWS Console or CLI, you can now view the key creation date and public key material for all key pairs created in your AWS account. Whereas previously, you could only view a list of the key pairs and their assigned tag. So this is great if you would like to audit your key creation dates and make sure that keys are being rotated in line with company policy.

And in addition to this, you can now also create and delete key pairs using CloudFormation templates, which is very cool. EC2 now supports NitroTPM. And TPM stands for Trusted Platform Module. And it represents an international standard for dedicated, separate crypto processes that are designed to carry out cryptographic operations like generating, storing, and controlling access to encryption keys at a hardware level. And this technology is now available for EC2 instances that run on NitroTPM powered hypervisors. And this will allow nitro-based EC2 instances to generate, store, and use cryptographic keys without even having access to them.

And it can also handle platform device authentication using the TPMS unique RSA key, which is burned into the physical hardware. So this is great for workloads that have very specific security requirements that up until now could only be satisfied by running the workload on your own hardware. EC2 now also supports UEFI Secure Boot. And this stands for unified extensible firmware interface. It's another industry standard specification, this time for the software interface that handles communication between an operating system and the platform firmware.

Secure Boot is a feature that uses a digital signature to verify the integrity of software that boots and runs on your EC2 instance. And it will even halt the boot process if the signature verification fails. For instance, if the software has been altered or tampered with by a malicious actor. EC2 now sends notifications to CloudWatch events for a variety of Amazon Machine Image status changes, for instance, creation, registration and deregistration of an AMI. And this allows you to then initiate further actions based on these events, such as triggering Lambda to automatically launch a new instance, using a new AMI that's just been registered, or sending out an SNS notification about the deregistration of an existing AMI. And finally,

registration is now open for the AWS EMEA summit online, which is happening next month on June the 29th. This event is free of charge and available for everybody to attend. And it's a great opportunity to hear technical talks from AWS experts, partners, and customers, and even participate in technical breakout sessions, demonstrations, and workshops. Well, that is all for this week. Keep being awesome cloud gurus, take care of yourselves, and I will look forward to seeing you soon.

More videos in this series

Master the Cloud with ACG

Sign In
Welcome Back!

Psst…this one if you’ve been moved to ACG!

Get Started
Who’s going to be learning?