AWS Public Sector Blog
Tag: technical how-to
Connectivity patterns between AWS GovCloud (US) and AWS commercial partition
AWS GovCloud (US) was architected to have isolation (both physically and logically) from other AWS partitions for compliance. For this reason, AWS services, used to privately interconnect virtual private cloud (VPC) hosted resources within the same partition like AWS PrivateLink, Amazon Virtual Private Cloud (Amazon VPC) peering, or AWS Transit Gateway peering, cannot span from AWS GovCloud (US) to commercial Regions natively by design. In this post, we will highlight four connectivity patterns customers can use to interconnect VPC hosted systems cross partition.
Using Protective DNS services with AWS workloads
Protective DNS services, commonly known as PDNS, are a go-to solution if you’re aiming to bolster the security of your infrastructure from the ground up. Unlike traditional methods involving software-based agents or devices for traffic filtering, PDNS services take a unique approach – they scrutinise the DNS requests made by users and adjust responses based on predefined rules within the service. In this post, we explore the seamless integration of PDNS services with workloads in the Amazon Web Services (AWS) Cloud, showcasing their effectiveness in enhancing cybersecurity within cloud environments.
University of Nebraska-Omaha’s ITD Lab migrates to Amazon Aurora with Babelfish, reducing database costs
The IT for Development (ITD) Lab at the University of Nebraska at Omaha previously migrated their ETeams application to Amazon Web Services (AWS) because they did not want to manage the underlying infrastructure. With a limited staff, they could focus more on building new functionality in the ETeams application and less on performing mundane maintenance tasks. While the application was performing well, the ITD Lab’s director wanted to lower the monthly costs. This blog post explores an alternative to an SQL Server database that is just as performant but at a lower cost.
How to migrate to the new AWS Ground Station Agent launching March 28
On March 28, Amazon Web Services (AWS) will release a new version of the AWS Ground Station Agent (agent), which is not compatible with past agent releases. In order to maintain operational continuity of Ground Station environments, agent users must follow the instructions provided in this blog post before upgrading to the March 28 version of the agent.
Aligning the Landing Zone Accelerator on AWS with UK National Cyber Security Centre guidance
This blog post provides technical guidance for UK organisations to implement their landing zone in-line with guidance from the UK National Cyber Security Centre (NCSC) using the LZA.
Automating multi-channel communication for school bus delays
In this blog post, learn how to set up a solution that enables school districts to notify a targeted group of parents about school bus breakdowns and delays via the parent’s preferred method of communication (i.e., phone call, SMS, or email), when a bus driver reports it. This solution uses AWS services like Amazon Connect and Amazon Pinpoint to create a solution in which a bus driver can call an automated system, report the bus breakdown, and start an outbound notification to parents notifying them of the event and potential delay. Through the same process, the system notifies parents that the bus is back in service or provides alternate instructions for student pickup.
Building high-throughput satellite data downlink architectures with AWS Ground Station WideBand DigIF and Amphinicy Blink SDR
This blog summarizes some of the benefits of cloud-based ground segment architectures, and demonstrates how users can build a proof-of-concept using AWS Ground Station’s capability to transport and deliver Wideband Digital Intermediate Frequency (DigIF) data, along with the software-defined radio Blink, built by the AWS Partner Amphinicy.
Support FedRAMP and CMMC compliance with the Landing Zone Accelerator on AWS
Some US federal agencies and those who collaborate with them must support an automated, secure, and scalable multi-account cloud environment that meets Federal Risk and Authorization Management Program (FedRAMP) and Cybersecurity Maturity Model Certification (CMMC) standards. To support these needs, AWS customers and partners can deploy the Landing Zone Accelerator (LZA) on AWS. Recently, AWS worked with Coalfire, a FedRAMP-approved third-party assessment organization (3PAO) and AWS Partner, to assess and verify the LZA solution.
Implement a secure, serverless GraphQL architecture in AWS GovCloud (US) to optimize API flexibility and efficiency
GraphQL is a query language and server-side runtime system for application programming interfaces (APIs) that prioritizes giving clients exactly the information they request and no more. GraphQL can help public sector customers focus on their data and provide ways to explore the data in their APIs. Learn a reference architecture using serverless technologies that you can use to build GraphQL-enabled solutions in the AWS GovCloud (US) Regions to unify data access in real-time and simplify operations.
Creating agentless outbound campaigns to support Medicaid unwinding efforts
With state Medicaid agencies (SMAs) contacting all their members, contact centers must scale to meet increased demand—however, staffing shortages can make this outreach and call support difficult. SMAs can support staff members and make sure members get their communications needs met by using AWS and cloud technology to introduce automation into their outreach process. Learn how to deploy a serverless outbound campaign to meet Medicaid unwinding outreach needs and support agency staff members by streamlining the outreach process.