Google’s Workforce Identity Federation unveils new features

Google’s Workforce Identity Federation unveils new features

Updates related to CDPA, AWS Backup, Azure Firewall, Amazon S3, AWS mainframe with Precisely, Azure NetApp, Cloud NAT, Cloud Run and more

NPW Research


Workforce Identity Federation unveils new features

  • Supports authorization code flow and implicit flow for OpenID Connect providers.
  • Enables SAML token encryption for added security.
  • Provides programmatic access to Google Cloud through API and CLI.
  • Expanded support to GKE, Chronicle, Cloud Storage, and Cloud Billing. UPDATE

Google Cloud enhances global data processing terms

  • Updates to Cloud Data Processing Addendum (CDPA) for Google Cloud, Google Workspace, and other services.
  • Commitments extended to a broader customer base beyond European data protection laws.
  • Support for compliance with California Consumer Privacy Act (CCPA) and GDPR included.
  • Centralized and clarified privacy and security terms for better transparency. UPDATE

AWS Backup unveils air-gapped vault preview

  • Preview of logically air-gapped vault announced for AWS Backup.
  • Enables secure backup sharing across accounts, supporting direct restores.
  • Immutable backup copies locked by default, encrypted with AWS-owned keys.
  • Vault sharing and direct restore using AWS Resource Access Manager (RAM). UPDATE

Azure Firewall previews monitoring, logging updates

Introduces Resource Health monitor for firewall health status. Embeds workbooks in Firewall Portal for insights on activities, events. UPDATE

Azure Firewall releases structured logs, latency probe

Offers detailed Structured Logs for easier log queries, improved performance. Latency Probe measures Azure Firewall's overall service health. UPDATE

Network Load Balancer supports security groups

Network Load Balancers now support security groups, allowing traffic filtering to applications. Ensures NLB accepts traffic from trusted IPs, enhancing security and operation simplicity. UPDATE

Provisioning + Runtime

Azure Mv3 MM VMs public preview released

  • Powered by 4th Gen Intel® Xeon® Scalable Processor and DDR5 DRAM.
  • Can scale for SAP workloads from 250GB to 4TB.
  • ~25% improvement in network throughput with Azure Boost.
  • Increased resilience against failures in memory, disks, and networking.
  • Available in both disk and diskless offerings. UPDATE

Azure Sphere integrates with Azure Resource Manager

  • New REST API for Azure Sphere Security Services.
  • Integrations include Azure Portal, Azure CLI, Azure Monitor, and Azure RBAC. UPDATE

Azure Backup adds Cross Region Restore for PostgreSQL

  • Enables access to backups in paired region at all times, including non-outage scenarios.
  • Optimal for recovery drills and high resiliency of backup data.
  • Available for PostgreSQL backups in select public regions. UPDATE

Mountpoint for Amazon S3 now available

  • High-throughput access to Amazon S3, reducing processing times and costs.
  • Translates local file system API calls to S3 object API calls.
  • Ideal for large dataset workloads like machine learning and autonomous vehicle data processing.
  • Supports various read and write operations. UPDATE

AWS mainframe replication with Precisely released

  • Data replication by Precisely now available for AWS Mainframe Modernization.
  • Real-time replication from mainframe data stores to AWS databases.
  • Supports offloading data processing and creating new functions.
  • Near-zero downtime during production switchovers. UPDATE

Azure NetApp Files introduces cloud backup

Enables VM consistent snapshot backups on Azure NetApp Files datastores. Provides policy based automated backups integrated with Azure NetApp snapshot technology. UPDATE

Redis 7.0 on Memorystore introduces functions

Redis Functions reduce network bandwidth overhead, negate the need for client app script copies, and simplify troubleshooting. Also, improved in-transit encryption performance. UPDATE

Cloud Run previews direct VPC egress

Enables traffic to VPC network without a Serverless VPC Access connector. Easier setup, faster, handles more traffic, cost-effective. UPDATE

Cloud NAT support now available for Standard Tier

Cloud NAT support for network services Standard Tier routes traffic over the internet. Offers benefits of Cloud NAT with Standard Tier's cost savings. UPDATE

Amazon FSx for Windows File Server boosts max throughput

Service increases max throughput from 2 GB/s to 12 GB/s, and IOPS from 80,000 to 350,000. Benefits performance-intensive workloads, VDI. UPDATE

Amazon FSx for OpenZFS launches Multi-AZ deployment

Multi-AZ deployment option offers storage across multiple AWS Availability Zones. Designed for high availability, durability for critical workloads. UPDATE


OpenSearch Serverless supports larger workloads

  • Amazon OpenSearch Serverless now handles up to 6TB of time series data.
  • Simplifies search and analytics without infrastructure management concerns.
  • Compute capacity measured in OpenSearch Compute Units (OCUs).
  • Doubled OCU limit for indexing and search, including redundancy provisions. UPDATE

AWS Fargate supports PID namespace, kernel configuration

Enables Process ID namespace sharing, kernel parameter config for applications via Amazon ECS. Benefits include application-specific kernel optimization. UPDATE

Management Tools

Google Cloud unveils improved Pricing API

  • New Pricing API provides account-specific custom prices, discounts, and SKU-level metadata.
  • Allows enhanced cost auditing, estimation, and optimization.
  • Shows negotiated contract pricing, discounts for SKUs; offers SKU-to-service and SKU group mapping. UPDATE

NPW Insights this week

  1. Atlassian CTO on developer productivity
  2. IEEE whitepaper on technical debt
  3. Instagram Explore recommendation system
  4. Hashicorp’s switch to BSL licensing
Access NPW Insights here