Post Syndicated from Bruce Schneier original https://www.schneier.com/blog/archives/2023/12/cyberattack-on-ukraines-kyivstar-seems-to-be-russian-hacktivists.html
The Solntsepek group has taken credit for the attack. They’re linked to the Russian military, so it’s unclear whether the attack was government directed or freelance.
This is one of the most significant cyberattacks since Russia invaded in February 2022.
Post Syndicated from Sophie Ashford original https://www.raspberrypi.org/blog/coolest-projects-creators-young-v-a-london/
Each year, young people all over the world share and celebrate their amazing tech creations by taking part in Coolest Projects, our digital technology showcase. Our global online showcase and local in-person events give kids a wonderful opportunity to celebrate their creativity with their communities, explore other young creators’ tech projects, and gain inspiration and encouragement for their future projects.
Now, visitors to the Young V&A museum in London can also be inspired by some of the incredible creations showcased at Coolest Projects. The museum has recently reopened after a large reimagining, and some of the inspiring projects by Coolest Projects 2022 participants are now on display in the Design Gallery, ready to spark digital creativity among more young people.
Many Coolest Projects participants showcase projects that they created to make an impact and solve a real-world problem that’s important to them, for example to help members of their local community, or to protect the environment.
One example on display in the Young V&A gallery is EleVoc, by 15-year-old Chinmayi from India. Chinmayi was inspired to create her project after she and her family faced a frightening encounter:
“My family and I are involved in wildlife conservation. One time we were charged by elephants even though we were only passing by in a Jeep. This was my first introduction to human–animal conflict, and I wanted to find a way to solve it!” – Chinmayi
The experience prompted Chinmayi to create EleVoc, an early-warning device designed to reduce human–elephant conflict by detecting and classifying different elephant sounds and alerting nearby villages to the elephants’ proximity and behaviour.
Also exhibited at the Young V&A is the hardware project Gas Leak Detector by Sashrika, aged 11, from the USA. Gas Leak Detector is a device that detects if a fuel tank for a diesel-powered heating system is leaking and notifies householders through an app in a matter of second.
Sashrika knew this invention could really make a difference to people’s lives. She explained, “Typically, diesel gas tanks for heating are in the basement where people don’t visit every day. Leakage may be unnoticed and lead to fire or major repair cost.”
As well as projects designed to solve problems, Coolest Projects also welcomes young people who create things to entertain or have fun.
At the Young V&A, visitors can enjoy the fun, fast-paced game project Runaway Nose, by 10-year-old Harshit from Ireland. Runaway Nose uses facial recognition, and players have to use their nose to interact with the prompts on the screen.
Harshit shared the motivation behind his project:
“I wanted to make a fun game to get you thinking fast and that would get you active, even on a rainy day.” – Harshit
We can confirm Runaway Nose is a lot of fun, and a must-do activity for people of all ages on a visit to the museum.
If you are in London, make sure to head to the Young V&A to see Chinmayi’s, Sashrika’s, and Harshit’s projects, and many more. We love seeing the ingenuity of the global community of young tech creators celebrated, and hope it inspires you and your young people.
With that in mind, we are excited that Coolest Projects will be back in 2024. Registrations for the global Coolest Projects online showcase will be open from 14 February to 22 May 2024, and any young creator up to age 18 anywhere in the world can get involved. We’ll also be holding in-person Coolest Projects events for young people in Ireland and the UK. Head to the Coolest Projects website to find out more.
Coolest Projects is for all young people, no matter their level of coding experience. Kids who are just getting started and would like to take part can check out the free project guides on our projects site. These offer step-by-step guidance to help everyone make a tech project they feel proud of.
To always get the latest news about all things Coolest Projects, from event updates to the fun swag coming for 2024, sign up for the Coolest Projects newsletter.
The post Celebrating young Coolest Projects creators at a London museum appeared first on Raspberry Pi Foundation.
Post Syndicated from corbet original https://lwn.net/Articles/955132/
The LWN.net Weekly Edition for December 21, 2023 is available.
Post Syndicated from Oglaf! -- Comics. Often dirty. original https://www.oglaf.com/tsa-2023/
Post Syndicated from corbet original https://lwn.net/Articles/955832/
Version 8.2.0 of
the QEMU emulator is out. Changes include new emulations for virtio-sound
devices, universal flash storage devices, Xilinx Versai boards, and much
more.
Post Syndicated from Patrick Kennedy original https://www.servethehome.com/cwwk-crazy-a-small-6w-tdp-cpu-homelab-super-system/
This crazy CWWK system has more than just dual 2.5GbE NICs, there are four display outputs, M.2 and SATA storage, and even a PCIe slot
The post CWWK Crazy A Small 6W TDP CPU Homelab Super System appeared first on ServeTheHome.
Post Syndicated from Danilo Poccia original https://aws.amazon.com/blogs/aws/dns-over-https-is-now-available-in-amazon-route-53-resolver/
Starting today, Amazon Route 53 Resolver supports using the DNS over HTTPS (DoH) protocol for both inbound and outbound Resolver endpoints. As the name suggests, DoH supports HTTP or HTTP/2 over TLS to encrypt the data exchanged for Domain Name System (DNS) resolutions.
Using TLS encryption, DoH increases privacy and security by preventing eavesdropping and manipulation of DNS data as it is exchanged between a DoH client and the DoH-based DNS resolver.
This helps you implement a zero-trust architecture where no actor, system, network, or service operating outside or within your security perimeter is trusted and all network traffic is encrypted. Using DoH also helps follow recommendations such as those described in this memorandum of the US Office of Management and Budget (OMB).
DNS over HTTPS support in Amazon Route 53 Resolver
You can use Amazon Route 53 Resolver to resolve DNS queries in hybrid cloud environments. For example, it allows AWS services access for DNS requests from anywhere within your hybrid network. To do so, you can set up inbound and outbound Resolver endpoints:
After you configure the Resolver endpoints, you can set up rules that specify the name of the domains for which you want to forward DNS queries from your VPC to an on-premises DNS resolver (outbound) and from on-premises to your VPC (inbound).
Now, when you create or update an inbound or outbound Resolver endpoint, you can specify which protocols to use:
Let’s see how this works in practice.
Using DNS over HTTPS with Amazon Route 53 Resolver
In the Route 53 console, I choose Inbound endpoints from the Resolver section of the navigation pane. There, I choose Create inbound endpoint.
I enter a name for the endpoint, select the VPC, the security group, and the endpoint type (IPv4, IPv6, or dual-stack). To allow using both encrypted and unencrypted DNS resolutions, I select Do53, DoH, and DoH-FIPS in the Protocols for this endpoint option.
After that, I configure the IP addresses for DNS queries. I select two Availability Zones and, for each, a subnet. For this setup, I use the option to have the IP addresses automatically selected from those available in the subnet.
After I complete the creation of the inbound endpoint, I configure the DNS server in my network to forward requests for the amazonaws.com domain (used by AWS service endpoints) to the inbound endpoint IP addresses.
Similarly, I create an outbound Resolver endpoint and and select both Do53 and DoH as protocols. Then, I create forwarding rules that tell for which domains the outbound Resolver endpoint should forward requests to the DNS servers in my network.
Now, when the DNS clients in my hybrid environment use DNS over HTTPS in their requests, DNS resolutions are encrypted. Optionally, I can enforce encryption and select only DoH in the configuration of inbound and outbound endpoints.
Things to know
DNS over HTTPS support for Amazon Route 53 Resolver is available today in all AWS Regions where Route 53 Resolver is offered, including GovCloud Regions and Regions based in China.
DNS over port 53 continues to be the default for inbound or outbound Resolver endpoints. In this way, you don’t need to update your existing automation tooling unless you want to adopt DNS over HTTPS.
There is no additional cost for using DNS over HTTPS with Resolver endpoints. For more information, see Route 53 pricing.
— Danilo
Post Syndicated from Noritaka Sekiyama original https://aws.amazon.com/blogs/big-data/new-amazon-cloudwatch-log-class-to-cost-effectively-scale-your-aws-glue-workloads/
AWS Glue is a serverless data integration service that makes it easier to discover, prepare, and combine data for analytics, machine learning (ML), and application development. You can use AWS Glue to create, run, and monitor data integration and ETL (extract, transform, and load) pipelines and catalog your assets across multiple data stores.
One of the most common questions we get from customers is how to effectively optimize costs on AWS Glue. Over the years, we have built multiple features and tools to help customers manage their AWS Glue costs. For example, AWS Glue Auto Scaling and AWS Glue Flex can help you reduce the compute cost associated with processing your data. AWS Glue interactive sessions and notebooks can help you reduce the cost of developing your ETL jobs. For more information about cost-saving best practices, refer to Monitor and optimize cost on AWS Glue for Apache Spark. Additionally, to understand data transfer costs, refer to the Cost Optimization Pillar defined in AWS Well-Architected Framework. For data storage, you can apply general best practices defined for each data source. For a cost optimization strategy using Amazon Simple Storage Service (Amazon S3), refer to Optimizing storage costs using Amazon S3.
In this post, we tackle the remaining piece—the cost of logs written by AWS Glue.
Before we get into the cost analysis of logs, let’s understand the reasons to enable logging for your AWS Glue job and the current options available. When you start an AWS Glue job, it sends the real-time logging information to Amazon CloudWatch (every 5 seconds and before each executor stops) during the Spark application starts running. You can view the logs on the AWS Glue console or the CloudWatch console dashboard. These logs provide you with insights into your job runs and help you optimize and troubleshoot your AWS Glue jobs. AWS Glue offers a variety of filters and settings to reduce the verbosity of your logs. As the number of job runs increases, so does the volume of logs generated.
To optimize CloudWatch Logs costs, AWS recently announced a new log class for infrequently accessed logs called Amazon CloudWatch Logs Infrequent Access (Logs IA). This new log class offers a tailored set of capabilities at a lower cost for infrequently accessed logs, enabling you to consolidate all your logs in one place in a cost-effective manner. This class provides a more cost-effective option for ingesting logs that only need to be accessed occasionally for auditing or debugging purposes.
In this post, we explain what the Logs IA class is, how it can help reduce costs compared to the standard log class, and how to configure your AWS Glue resources to use this new log class. By routing logs to Logs IA, you can achieve significant savings in your CloudWatch Logs spend without sacrificing access to important debugging information when you need it.
When continuous logging is enabled, AWS Glue for Apache Spark writes Spark driver/executor logs and progress bar information into the following log group:
If a security configuration is enabled for CloudWatch logs, AWS Glue for Apache Spark will create a log group named as follows for continuous logs:
The default and custom log groups will be as follows:
aws-glue/jobs/logs-v2-<Security-Configuration-Name><custom-log-group-name>-<Security-Configuration-Name>You can provide a custom log group name through the job parameter –continuous-log-logGroup.
To gain the benefits from Logs IA for your AWS Glue workloads, you need to complete the following two steps:
Complete the following steps to create a new log group using the new Infrequent Access log class:
/aws-glue/jobs/logs-v2-infrequent-access.
Complete the following steps to configure your AWS Glue job to point to the new log group:
--continuous-log-logGroup./aws-glue/jobs/logs-v2-infrequent-access.New log events are written into the new log group.
Now you’re ready to view the logs with the Infrequent Access log class. Open the log group /aws-glue/jobs/logs-v2-infrequent-access on the CloudWatch console.
When you choose one of the log streams, you will notice that it redirects you to the CloudWatch console Logs Insight page with a pre-configured default command and your log stream selected by default. By choosing Run query, you can view the actual log events on the Logs Insights page.
Keep in mind the following considerations:
This post provided step-by-step instructions to guide you through enabling Logs IA for your AWS Glue job logs. If your AWS Glue ETL jobs generate large volumes of log data that makes it a challenge as you scale your applications, the best practices demonstrated in this post can help you cost-effectively scale while centralizing all your logs in CloudWatch Logs. Start using the Infrequent Access class with your AWS Glue workloads today and enjoy the cost benefits.
Noritaka Sekiyama is a Principal Big Data Architect on the AWS Glue team. He works based in Tokyo, Japan. He is responsible for building software artifacts to help customers. In his spare time, he enjoys cycling on his road bike.
Abeetha Bala is a Senior Product Manager for Amazon CloudWatch, primarily focused on logs. Being customer obsessed, she solves observability challenges through innovative and cost-effective ways.
Kinshuk Pahare is a leader in AWS Glue’s product management team. He drives efforts on the platform, developer experience, and big data processing frameworks like Apache Spark, Ray, and Python Shell.
Post Syndicated from corbet original https://lwn.net/Articles/954535/
Yet another year has come to an end. Much to our dismay, 2023 did not, in
fact, happen exactly as we predicted back in
January. So it seems that, once again, we will have to go through the
process of looking at the predictions that we made and mocking each in
turn, before getting into what was missed altogether. A lot happened in
2023, not all of which was predictable.
Post Syndicated from corbet original https://lwn.net/Articles/955827/
The 2024 Linux Storage, Filesystem, Memory-Management, and BPF Summit will
be held May 13 to 15 in Salt Lake City, Utah, USA. The call
for proposals has already gone out, with a deadline of March 1.
“LSF/MM/BPF is an invitation-only technical workshop to map out
”
improvements to the Linux storage, filesystem, BPF, and memory management
subsystems that will make their way into the mainline kernel within the
coming years.
Post Syndicated from corbet original https://lwn.net/Articles/955812/
The
6.6.8,
6.1.69,
5.15.144,
5.10.205,
5.4.265,
4.19.303, and
4.14.334
stable kernel updates have all been released; each contains another set of
important fixes.
Note that 5.15.145
is already in the review process, with a due date of December 22. It
consists almost exclusively of ksmbd patches in a flurry of backporting
that was seemingly inspired by the recent marking
of ksmbd as broken in 5.15.
Post Syndicated from Lara Sunday original https://blog.rapid7.com/2023/12/20/expanded-coverage-and-aws-compliance-pack-updates-in-insightcloudsec-coming-out-of-aws-re-invent-2023/
It seems like it was just yesterday that we were in Las Vegas for AWS Re:Invent, but it’s already been almost two weeks since the conference wrapped up. As is always the case, AWS unveiled a host of new services throughout the week, including advancements around serverless, artificial intelligence (AI) and Machine Learning (ML), security and more.
There were a ton of really exciting announcements, but a few stood out to me. Before we dive into the new and updated services we now support in InsightCloudSec, let’s take a second to highlight a few of them and why they’re of note.
Amazon Bedrock general availability was announced back in October, re:Invent brought with it announcements of new capabilities including customized models, GenAI applications to execute multi-step tasks, and Guardrails announced in preview. New Security Hub functionalities were introduced, including centralized governance, custom controls and a refresh of the dashboard.
Serverless innovations include updates to Amazon Aurora Limitless Database, Amazon ElasticCache Serverless, and AI-driven Amazon Redshift Serverless adding greater scaling and efficiency to their database and analytics offerings. Serverless architectures bring scalability and flexibility, however security and risk considerations shift away from traditional network traffic inspection and access control lists, towards IAM hygiene, system identity behavioral analysis along with code integrity and validation.
Amazon Datazone general availability, like Bedrock, was originally announced in October and got some new innovations showcased during Re:Invent including business driven domains and data catalog, projects and environments, and the ability for data workers to publish and data consumers to subscribe to workflows. Available in open preview for Datazone are automated, AI-driven recommendations for metadata-driven business descriptions and specific columns and analytical applications based on business units.
One of the most exciting announcements from Re:Invent this year was Amazon Q, Amazon’s new GenAI-powered Virtual Assistant. Q was also integrated into Amazon’s Business Intelligence (BI) service, QuickSight, which has been supported in InsightCloudSec for some time now.
Having released our support for Amazon OpenSearch last year, this year’s re:Invent brought some exciting updates that are worth mentioning here. Now generally available is Vector Engine for OpenSearch Serverless, which enables users to store and quickly search vector embeddings for GenAI applications. AWS also announced the OR1 Instance family, which is compute optimized specifically for OpenSearch and also a new zero-ETL integration with S3.
It’s very important to us here at Rapid7 that we provide our customers with the peace of mind to know when their teams leave these events and begin implementing new innovations from AWS that they’re doing so securely. To that end, the days and weeks following Re:Invent is always a bit of a sprint, and this year was no exception.
The Coverage and Analysis team loves a challenge though, and in my totally unbiased opinion — we’ve delivered something special. Our latest release featured new support for a variety of the new services announced during Re:Invent, as well as, a number of existing services we’ve expanded support for in relation to updates announced by AWS. We’ve added support for 6 new services that were either announced or updated during the show. We’ve also added 25 new Insights, all of which have been applied to our existing AWS Foundational Security Best Practices pack, AWS Center for Internet Security (CIS) 2.0 compliance pack, as well as new AWS relevant updates to NIST SP800-53 (Rev 5).
The newly supported services are:
Along with support for newly-added services, we’ve also expanded our coverage around the host of existing services as well. We’ve added or expanded support for the following security and serverless solutions:
One of the most exciting elements to come out of the past few weeks with the addition of AWS Bedrock, is our extended coverage for AI and ML solutions that we are now able to provide across cloud providers for our customers. Supporting AWS Bedrock, along with GCP Vertex and Azure OpenAI Service has enabled us to build a very exciting new feature as part of our Compliance Packs.
Machine learning, artificial intelligence, and analytics were driving themes of this year’s conference, so it makes me very happy to announce that we now offer a dedicated Rapid7 AI/ML Security Best Practices compliance pack. If interested, I highly recommend you keep an eye out in the coming days for my colleague Kathryn Lynas-Blunt’s blog discussing how Rapid7 enables teams to securely build AI applications in the cloud.
As a cloud enthusiast, AWS re:Invent never fails to deliver on innovation, excitement and shared learning experiences. As we continue our partnership with AWS, I’m very excited for all that 2024 holds in store. Until next year!
Post Syndicated from corbet original https://lwn.net/Articles/955786/
Security updates have been issued by Fedora (ansible and ansible-core), Gentoo (Minecraft Server and thunderbird), Mageia (fusiondirectory), Red Hat (gstreamer1-plugins-bad-free, opensc, and openssl), Slackware (libssh and mozilla), SUSE (avahi, firefox, ghostscript, gstreamer-plugins-bad, mariadb, openssh, openssl-1_1-livepatches, python-aiohttp, python-cryptography, xorg-x11-server, and xwayland), and Ubuntu (libssh and openssh).
Post Syndicated from Zaid Zaid http://blog.cloudflare.com/author/zaid-zaid/ original https://blog.cloudflare.com/project-cybersafe-schools-update
As the last school bell rings before winter break, one thing school districts should keep in mind is that during the winter break, schools can become particularly vulnerable to cyberattacks as the reduced staff presence and extended downtime create an environment conducive to security lapses. Criminal actors make their move when organizations are most vulnerable: on weekends and holiday breaks. With fewer personnel on-site, routine monitoring and response to potential threats may be delayed, providing cybercriminals with a window of opportunity. Schools store sensitive student and staff data, including personally identifiable information, financial records, and confidential academic information, and therefore consequences of a successful cyberattack can be severe. It is imperative that educational institutions implement robust cybersecurity measures to safeguard their digital infrastructure.
If you are a small public school district in the United States, Project Cybersafe Schools is here to help. Don’t let the Cyber Grinch ruin your winter break.
In August of this year, as part of the White House Back to School Safely: K-12 Cybersecurity Summit, Cloudflare announced Project Cybersafe Schools to help support eligible K-12 public school districts with a package of Zero Trust cybersecurity solutions — for free, and with no time limit.
The response from school districts across the United States exceeded our expectations. We have had inquiries from over 200 school districts in over 30 states and Guam. Over the past few months, we have onboarded dozens of qualifying school districts into the program. As a result, over 60,000 students, teachers, and staff are protected by Cloudflare’s cloud email security to protect against a broad spectrum of threats including Business Email Compromise, multichannel phishing, credential harvesting, and other targeted attacks. These school districts are also receiving protection against Internet threats with DNS filtering by preventing users from reaching unwanted or harmful online content like ransomware or phishing sites. There are more than 9,000 small public school districts across the United States with fewer than 2,500 students. All of those school districts are eligible for Project Cybersafe Schools (for free, and with no time limit — see below for all the details), and we want to help as many as possible.
Since we launched the program, the White House has continued to amplify awareness around the risks for schools as well as the opportunities school districts have to protect themselves. Cloudflare hosted a series of live onboarding sessions at the start of the program and also created a Cybersafe School Resource Hub for school districts to learn more about the program and submit an inquiry.
Here’s what a few Project Cybersafe Schools have to say about the impact of the program on small school districts.
“Project Cybersafe Schools has been incredibly helpful, especially for school districts with smaller enrollments, to provide resources, tools and information that otherwise might be out of grasp. Often, these smaller districts have individuals with many responsibilities and cybersecurity may not always be at the forefront. The tools Cloudflare offers as part of the White House focus to strengthen Cybersecurity across the K-12 spectrum allow us greater visibility into the threats experienced through E-Mail as well as protect our devices by layering DNS-based filtering on top of our existing environment to protect against threats that may come through via ransomware or phishing sites. Being able to leverage multiple layers of security helps us be more robust in protecting our student and teacher devices and ensure our learning environment is successful, safe and productive in the current digital landscape.”
– Randy Saeks, Network Manager, Glencoe School District 35, Glencoe, Illinois
“Quitman School District was excited to add another layer of security for our staff and students with Cloudflare Project Cybersafe Schools. Living in a low income, rural community, we were grateful for the opportunity to add a world-class free service to our school’s network architecture. Partnering with Cloudflare allowed us to continue to modernize and strengthen our security measures and protect our staff and students from a wide variety of threats. This implementation was quick and easy, and we were ecstatic that there was no expiration date for this service. We were amazed to see that Cloudflare caught nearly 4,000 malicious emails in the first month of implementation! We are confident that Cloudflare will continue to keep our district and infrastructure safe from harmful threats.”
– Matt Champion, Technology Coordinator, Quitman School District, Quitman, Mississippi
Eligible K-12 public school districts in the United States will have access to a package of enterprise-level Zero Trust cybersecurity services for free and with no time limit – there is no catch and no underlying obligations. Eligible organizations will benefit from:
To be eligible, Project Cybersafe Schools participants must be:
If you think your school district may be eligible, we welcome you to contact us to learn more. Please visit our Project Cybersafe Schools Resource Hub.
For schools or school districts that do not qualify for Project Cybersafe Schools, Cloudflare has other packages available with educational pricing. If you do not qualify for Project Cybersafe Schools, but are interested in our educational services, please contact us at [email protected].
Post Syndicated from The History Guy: History Deserves to Be Remembered original https://www.youtube.com/watch?v=xiS4Imqs47M
Post Syndicated from Bruce Schneier original https://www.schneier.com/blog/archives/2023/12/gchq-christmas-codebreaking-challenge.html
Looks like fun.
Details here.
Post Syndicated from Светла Енчева original https://www.toest.bg/da-izteglish-kusata-klechka-ili-za-nevuzmozhnata-smyana-na-yuridicheskiya-pol-v-bulgaria/
Кампанията срещу Конвенцията на Съвета на Европа за превенция и борба с насилието над жени и домашното насилие, по-известна като Истанбулската конвенция, в България има последствия, отиващи далеч. Потърпевши са не само транс хората, а цялото общество. Този извод може да се направи от прочита на една книга, чиято премиера беше миналата седмица: „Юридическото признаване на пола в България. Настояще и перспективи“. Тя е издание на Фондация „Ресурсен център Билитис“, разпространява се безплатно, а в скоро време ще е налична и в електронен формат.
Идеята за правен анализ на юридическата смяна на пола възниква поради разнопосочните практики на българските съдилища в това отношение (за тях ще стане дума по-долу). Тези практики допълнително се усложниха от решенията на Конституционния съд (КС) от 2018 г. и 2021 г. С първото решение Истанбулската конвенция беше обявена за противоконституционна, а с второто КС постанови, че полът е единствено биологичен.
Първоначалната идея е за доклад. Понеже темата се оказва твърде обширна, от един доклад стават четири. Когато те са почти готови, Върховният касационен съд (ВКС) излиза с решение, с което на практика отменя юридическата смяна на пола. Именно това събитие дава импулса докладите да се доразвият и да се обединят в книга. Резултатът е книжно тяло от 233 страници, дело на четирима юристи – правозащитника Радослав Стоянов (отговорен и за общата редакция), адвокатките Силвия Петкова и Галина Чеширова, както и доц. Велина Тодорова.
Това е първият мащабен юридически анализ по темата – както в национален план, така и в сравнение с опита на други страни и с практиките на международни съдилища и организации, от които България е част. Трябва да се признае обаче, че тя се чете трудно. Първо, защото е писана от юристи и второ, защото проблематиката, която разглежда, е много комплексна. Тази статия е опит за превод на книгата на „човешки език“ – с ясното съзнание, че при опростяването се жертват множество теми, контексти и нюанси.
Юридическо признаване на пола означава промяна на пола в личните документи. То е необходимо за две категории лица. Първата са транс хората – тоест онези, които не се идентифицират с „биологичния си пол“, както е популярно да се казва в България. „Биологичен пол“ обаче може да означава много неща – хормони, хромозоми, първични и вторични полови белези… В книгата се говори конкретно за „генитален пол“, тоест пола според външните полови органи.
При интерсекс хората пък някои от „биологичните“ измерения на пола – хормони, хромозоми и пр. – не съвпадат. Затова те чисто физически не могат да бъдат определени като мъже или като жени. Полът им по документи е определен спрямо това дали приличат (или могат да заприличат след хирургически процедури) повече на мъж или на жена. Но идентичността на някои от тях може да се разминава с тази преценка, затова те също имат нужда от промяна на пола в документите.
Според защитниците на т.нар. традиционни ценности транс- и интерсекс е някаква мода. Но свидетелства за хора, които не могат да се определят категорично като мъже или жени, има още от дълбока древност. Да не говорим, че такива се срещат и в различни митологии. Опитите за „поправяне“ на пола, тоест вкарването му в представите за мъжко или женско, датират някъде от XIII в. Съществуват свидетелства в българския печат от края на XIX в. за няколко случая на хора, чийто пол не отговаря на идентичността им.
Разбира се, има държави, в които транс хората се преследват от закона. В книгата обаче се обръща внимание на добрите практики и се дава пример с Малта, Исландия, Норвегия, Швейцария и Аржентина.
Може би сте срещали аргумента на противници на правата на транс хората, че деца си променят пола с хормони или операция и ако по-късно съжалят, вече няма връщане назад. Макар книгата да е посветена на юридическите измерения на темата, в главата за добрите международни практики се засяга и този въпрос. От нея може да се научи, че в тези практики изобщо не се препоръчва физическа промяна на пола на непълнолетни, дори напротив. Нито се препоръчват т.нар. блокери на пубертета (препарати, забавящи развитието на мъжките или женските полови белези).
Но на подрастващите не се забранява да изразяват себе си, нито пък са оставяни „на произвола на съдбата“. Добрата практика е транс децата да бъдат подкрепяни от родители и психолози, докато станат достатъчно зрели, за да могат да вземат толкова важни решения за тялото и живота си.
От друга страна, в тези държави липсата на физическа смяна на пола не е отказ за юридическа промяна на личните документи. Защото важното е зачитането на самоидентификацията на една личност, а не дали тя е привела тялото си в съответствие с типичните стандарти за мъж или жена. А освен това се смята, че държавата няма право да накара никого да се лиши от детеродните си органи.
Интересен детайл в тези добри практики е, че процедурата за смяна на юридическия пол е чисто административна, тоест няма нужда от съдилища и доказателства. Достатъчно е просто вписване в някоя служба или пред нотариус. В някои случаи е нужно съдебно дело, ако човек иска да върне първоначалния си пол.
Смяната на пола по документи в България е възможна в продължение на повече от 30 години – до 20 февруари 2023 г., когато ВКС постанови, че „такова животно няма“. Според Закона за гражданската регистрация и в Правилника за издаване на български лични документи към Закона за българските лични документи се допуска, че човек може да смени юридическия си пол, но нямаше ясни правила как да става това, което беше предпоставка за хаос. Според съдебната практика имаше две минимални условия, но не всички съдилища се съобразяват с тях:
Първият критерий беше наличието на транссексуалност. Това е медицински критерий, защото до неотдавна Световната здравна организация определяше транссексуалността като медицинско състояние. За доказването ѝ се изискваше съдебномедицинска експертиза от вещи лица – психолози, психиатри и сексолози.
Вторият критерий беше „сериозното и непоколебимо решение за биологично потвърждение на изпълняваната от лицето психична и социална полова роля“, тоест желанието за оперативна промяна на пола. Тя се доказва с показания на човека, който иска да смени юридическия си пол, с показания на негови близки, с различни документи, както и отново с експертиза.
В книгата се прави анализ на всички дела за смяна на пола в България, до които авторките на съответната глава са получили достъп (някои съдилища, включително в София, са отказали да им предоставят такъв). И са стигнали до извода, че има три основни типове решения по тези дела. Ще ги представим чрез три измислени персонажа, разказите за които обобщават много истински истории.
Диян е транс мъж, който се е подложил на хормонална терапия и операция за смяна на пола. Преди решението на ВКС неговият вариант се случва статистически най-рядко, но това не му помага – той „изтегля късата клечка“. Съдът постановява, че полът в документите му може да бъде сменен само ако първоначално е бил вписан грешно в акта за раждане. Щом Диян е роден с женско тяло, няма никакво значение, че вече си е направил операция за смяна на пола – по документи трябва да бъде жена, защото полът е само биологичен. Точка по въпроса.
Диян обмисля емиграция в някоя държава, в която има ясни правила за смяна на юридическия пол. Още е млад, има шанс на пазара на труда и може да се адаптира.
Лора е транс жена, която въпреки професионалната си квалификация все е без работа, защото външният ѝ вид не съответства на личните ѝ документи и никой не иска да я наеме. Съдът настоява тя първо да премине през хормонална терапия и оперативна промяна на пола, за да бъде и според външните си полови белези жена. Лора обаче има здравословни проблеми, поради които тези процедури са опасни за живота ѝ, затова не иска да рискува. За нея решението също е „къса клечка“ – тя си остава с мъжко име в личната карта.
За разлика от Диян, за Лора емиграцията не е вариант. Тя трябва да се грижи за болните си родители, а докато го прави, годините минават и Лора става все по-неконкурентоспособна.
Мариета е транс жена, която се подлага на хормонална терапия, но не си е направила операция за смяна на пола. Сгодена е за Мишо. Тя има късмета да попадне на варианта, който се случва най-често. След като се запознава със съдебнопсихиатричната ѝ експертиза и получава уверения от нея и близките ѝ, че е взела „сериозно и непоколебимо решение“ за биологична смяна на пола, съдът смята, че той самият би извършил престъпление, ако накара Мариета да промени пола си хирургически. Наказателният кодекс предвижда затвор от 3 до 10 години за причиняване на телесна повреда, водеща до безплодие. Затова ѝ разрешава юридическата промяна и без да си е направила операция.
С женско име в личната карта Мариета най-сетне може съвсем законно да се омъжи за Мишо в България. Двамата спретват голяма сватба и както се казва в приказките, три дни всички ядат, пият и се веселят.
До неотдавна съдилищата, които издаваха решения от типа „Имате грешка!“, се срещаха най-рядко. Големият проблем обаче е, че тяхната позиция, че полът е само биологичен и по рождение, се споделя от най-важните съдебни инстанции в България – КС и ВКС. Решенията им в тази област връщат България десетилетия назад. Затова всички транс хора в страната, които до този момент не са успели да сменят документите си, „теглят късата клечка“.
КС нямаше отношение към темите, свързани с пола, до кампанията срещу Истанбулската конвенция (ИК). В резултат на тази кампания думата „джендър“ беше демонизирана и се надигна мощна трансфобска вълна, въпреки че транс хората изобщо не са централна тема в ИК.
През 2018 г. 75 депутати от всички парламентарни групи се обърнаха към КС с искане да направи анализ доколко Конвенцията съответства на Конституцията. В Решението си от 27 юли 2018 г. КС отсъди, че ИК противоречи на Конституцията, с което затвори пътя към ратификацията ѝ в България.
Какви бяха аргументите на КС за това решение? Според него понятието „джендър идентичност“ не съответства на бинарната представа за пол (според която половете са два) в Основния закон. Нищо че нито Конституцията, нито ИК дефинират какво е пол. Нещо повече – съдът свежда социалните роли на пола до биологичните с твърдението, че социалната роля на жената е да бъде майка, което впрочем се подкрепя от всички жени в КС. Използват се религиозни аргументи, въпреки че според Основния закон религията е отделена от държавата.
На всичко отгоре КС се отклонява от собствената си практика да тълкува международни документи, използвайки оригиналния вариант на официалните езици, на които са написани – английски и френски. Вместо това интерпретира единствено българския превод на ИК. А там разликата между „джендър“, преведен като „социален пол“, и „пол“ далеч не е толкова ясна, колкото на оригиналните езици.
Така съдът стига до извода, че с понятието „социален пол“ се въвежда „трети пол“, което няма нищо общо с оригиналния смисъл. И изобщо не го е грижа, че Конвенцията се отнася предимно към насилието над жени и домашното насилие.
Решението на КС от 2018 г. променя практиката на ВКС, който е най-висшата инстанция за обжалване на дела. До този момент ВКС е допускал промяната на юридическия пол на транс хората, като се е позовавал на Европейската конвенция за правата на човека (ЕКПЧ) и практиката на Европейския съд за правата на човека в Страсбург (ЕСПЧ). В чл. 8 на ЕКПЧ всеки има право на неприкосновеност на личния и семейния живот, а според ЕСПЧ това включва и сексуалната ориентация и половата идентичност.
След решението на конституционните съдии ВКС започва да постановява и решения в обратния смисъл. Върховните съдии не могат да се разберат помежду си как е правилно да постъпват, и затова отправят няколко въпроса към КС, който да разясни как да се разбира понятието „пол“ и как това се отнася към правото на личен живот, защитено от Конституцията и европейското законодателство.
В решението си КС игнорира темата за правото на личен живот и отговаря само на въпроса „Как следва да се разбира понятието „пол“, използвано в Конституцията, и има ли то смисъл, различен от биологичен пол?“
Отговорът е в стила на предишното решение – че полът има само биологичен смисъл. В мотивите на КС не става дума за правата на гражданите, макар че те са защитени от Конституцията. Но пък много се говори за семейство, традиции, брак, религия и църква.
В решението си от февруари 2023 г. ВКС постановява, че българското материално право не допуска промяната на юридическия пол на транс лицата, макар това да е ставало десетилетия наред. Съдът впрочем е силно разделен по тази тема – решението се взема от 28 съдии, докато 21 гласуват против, защото според тях така се нарушава балансът между обществените и личните интереси.
В решението съдиите тълкуват твърде фриволно международното право, което България е ратифицирала, както и практиките на ЕСПЧ, и продължават да смесват темите за брака между лица от един и същи пол и правата на транс хората. А в действителност според ЕСПЧ отказът на една държава да промени юридическия пол на транс лицата е нарушение на ЕКПЧ.
ВКС допълнително усилва религиозните и традиционалистки аргументи в решенията на КС. Накрая се стига до абсурда, че самата същност на човека произтича от понятието за брака в Конституцията. Защото КС говори за „бинарно понятие за брака“ в Основния закон (тоест че бракът е само между мъж и жена), а ВКС – за „бинарно съществуване на човешкия вид“.
С решенията си КС и ВКС са в противоречие с международното право, което България е ратифицирала, и с европейските съдилища. Най-малкото ще последват глоби за страната ни, които ще се извадят от джоба на данъкоплатците. Но анализът в книгата стига до далеч по-тревожно заключение – че тези решения предизвикват цели пет кризи.
Първата е в правовата държава и води до отдалечаване от ООН, ЕС и Съвета на Европа, защото решенията демонстрират нихилизъм в областта на правата на човека. Втората е в правораздаването, защото на съдилищата в България вече на практика е забранено да отсъждат по собствена преценка и в съответствие с международните съдилища. Третата е политическа, защото с тези решения България се отдалечава от демократичните страни. Четвъртата е социална, защото се засилват дискриминацията, стереотипите и цензурата. Петата е, че Конституционният съд вече не защитава правата на хората, които живеят в България.
Логично възниква въпросът дали висшите съдии, гласували за тези решения, са толкова глупави, че да не разбират какво са „надробили“. В книгата се защитава тезата, че разбират всичко. Както че има разлика между „пол“ и „джендър“, така и какво действително пише в Конституцията и какво са свободни интерпретации, както и как стоят нещата в международното право.
Тогава защо постъпват така?
На този въпрос книгата не дава пряк отговор, но изводът, който може да се направи от прочита ѝ, е: поддали са се на политически натиск, изпълнили са политическа поръчка.
Книгата „Юридическото признаване на пола в България. Настояще и перспективи“ е предназначена за хората, които могат да се опитат да направят промяна. Например адвокати, съдии, правозащитници, политици, експерти, работещи в държавната администрация, университетски преподаватели, студенти по право.
Промяна е необходима съвсем не само заради документите на транс хората. А най-вече – за да продължи България да бъде част от демократичните страни, за които правата на човека са ценност и които зачитат международното право. А не като диктатурите, в които отделният човек е нищо, а интересът на държавата е всичко.
Препоръките заемат едва една страница от книгата, защото възможните ходове не са много. Най-добре би било, ако КС реши да ревизира решенията си от 2018 г. и 2021 г. Но това е малко вероятно, ако той продължава да се формира по начин, компрометиращ независимостта на съдиите.
Според авторите е реалистично да се правят две неща. Първото е да се продължава със сезирането на ЕСПЧ, въпреки че КС не признава върховенството на решенията му. Второто е публичност – кампании, активизъм по отношение на институциите, ангажиране на медиите, за да се променят обществените нагласи.
И двете приличат на сизифовски труд, но докато не са забранени, има надежда.
Post Syndicated from Sébastien Stormacq original https://aws.amazon.com/blogs/aws/the-aws-canada-west-calgary-region-is-now-available/
Today, we are opening a new Region in Canada. AWS Canada West (Calgary), also known as ca-west-1, is the thirty-third AWS Region. It consists of three Availability Zones, for a new total of 105 Availability Zones globally.
This second Canadian Region allows you to architect multi-Region infrastructures that meet five nines of availability while keeping your data in the country.
A global footprint
Our approach to building infrastructure is fundamentally different from other providers. At the core of our global infrastructure is a Region. An AWS Region is a physical location in the world where we have multiple Availability Zones. Availability Zones consist of one or more discrete data centers, each with redundant power, networking, and connectivity, housed in separate facilities. Unlike with other cloud providers, who often define a region as a single data center, having multiple Availability Zones allows you to operate production applications and databases that are more highly available, fault tolerant, and scalable than would be possible from a single data center.
AWS has more than 17 years of experience building its global infrastructure. And there’s no compression algorithm for experience, especially when it comes to scale, security, and performance.
Canadian customers of every size, including global brands like BlackBerry, CI Financial, Keyera, KOHO, Maple Leaf Sports & Entertainment (MLSE), Nutrien, Sun Life, TELUS, and startups like Good Chemistry and Cohere, and public sector organizations like the University of Calgary and Natural Resources Canada (NRCan), are already running workloads on AWS. They choose AWS for its security, performance, flexibility, and global presence.
AWS Global Infrastructure, including AWS Local Zones and AWS Outposts, gives our customers the flexibility to deploy workloads close to their customers to minimize network latency. For example, one customer that has benefited from AWS flexibility is Canadian decarbonization technology scale-up, BrainBox AI. BrainBox AI uses cloud-based artificial intelligence (AI) and machine learning (ML) on AWS to help building owners around the world reduce HVAC emissions by up to 40 percent and energy consumption by up to 25 percent. The AWS Global Infrastructure allows their solution to manage with low latency hundreds of buildings in over 20 countries, 24-7.
Services available
You can deploy your workloads on any of the C5, M5, M5d, R5, C6g, C6gn, C6i, C6id, M6g, M6gd, M6i, M6id, R6d, R6i, R6id, I4i, I3en, T3, and T4g instance families. The new AWS Canada West (Calgary) has 65 AWS services available at launch. Here is the list, sorted by alphabetical order: Amazon API Gateway, AWS AppConfig, AWS Application Auto Scaling, Amazon Aurora, Aurora PostgreSQL, AWS Batch, AWS Certificate Manager, AWS CloudFormation, Amazon CloudFront, AWS Cloud Map, AWS CloudTrail, Amazon CloudWatch, Amazon CloudWatch Events, Amazon CloudWatch Logs, AWS CodeDeploy, AWS Config, AWS Database Migration Service (AWS DMS), AWS DataSync, AWS Direct Connect, Amazon DynamoDB, Amazon ElastiCache, Amazon Elastic Block Store (Amazon EBS), Amazon Elastic Compute Cloud (Amazon EC2), Amazon EC2 Auto Scaling, Amazon Elastic Container Registry (Amazon ECR), Amazon Elastic Container Service (Amazon ECS), Amazon Elastic Kubernetes Service (Amazon EKS), Elastic Load Balancing, Elastic Load Balancing – Gateway (GWLB), Elastic Load Balancing – Network (NLB), Amazon EMR, Amazon EventBridge, AWS Fargate, AWS Health Dashboard, AWS Identity and Access Management (IAM), Amazon Kinesis Data Firehose, Amazon Kinesis Data Streams, AWS Key Management Service (AWS KMS), AWS Lambda, AWS Management Console, AWS Marketplace, Amazon OpenSearch Service, AWS Organizations, Amazon Redshift, Amazon Relational Database Service (Amazon RDS), AWS Resource Access Manager, Resource Groups, Amazon Route 53, AWS Secrets Manager, AWS Security Hub, AWS Security Token Service, Service Quotas, AWS Shield Standard, Amazon Simple Notification Service (Amazon SNS), Amazon Simple Queue Service (Amazon SQS), Amazon Simple Storage Service (Amazon S3), Amazon Simple Workflow Service (Amazon SWF), AWS Site-to-Site VPN, AWS Step Functions, AWS Support API, AWS Systems Manager, AWS Trusted Advisor, Amazon Virtual Private Cloud (Amazon VPC), VM Import/Export, and AWS X-Ray.
AWS in Canada
We have been supporting our customers and partners with infrastructure in Canada since December 2016, when the first Canadian AWS Region, AWS Canada (Central), was launched. In the same year, we launched Amazon CloudFront locations in Toronto and Montreal to better serve your customers in the region. To date, there are ten CloudFront points of presence (PoPs) in Canada: five in Toronto, four in Montreal, and one in Vancouver. We also have engineering teams located in multiple cities in the country.
From 2016–2021, AWS has invested over 2.57 billion CAD (1.9 billion USD) in Canada and plans to invest up to 24.8 billion CAD (18.3 billion USD) by 2037 in the two Regions. Using the input-output methodology and statistical tables provided by Statistics Canada, we estimate that the planned investment will add 43.02 billion CAD (31 billion USD) to the gross domestic product (GDP) of Canada and support more than 9,300 full-time equivalent (FTE) jobs in the Canadian economy.
In addition to providing our customers with world-class infrastructure benefits, Amazon is committed to reaching net zero carbon across its business by 2040 and is on a path to powering its operations with 100 percent renewable energy by 2025. In 2022, 90 percent of the electricity consumed by Amazon was attributable to renewable energy sources. Additionally, AWS has a goal to be water positive by 2030, returning more water to communities than it uses in its direct operations. Amazon has a total of four renewable energy projects in Canada: three south of Calgary and one close to Edmonton. According to BloombergNEF, Amazon is the largest corporate purchaser of renewable energy in the country (and the world). These projects generate more than 2.3 million megawatt hours (MWH) of clean energy–enough to power 1.69 million Canadian homes.
Education is one of our top priorities as well. Since 2017, we have trained more than 200,000 Canadians on cloud computing skills through free and paid AWS Training and Certification programs. Learners of various skill levels, roles, and backgrounds can build knowledge and practical skills with more than 600 free online courses in up to 14 languages on AWS Skills Builder. Amazon is committed to providing 29 million people around the world with free cloud computing skills training by 2025.
Security
Customers around the world trust AWS to keep their data safe, and keeping their workloads secure and confidential is foundational to how we operate. Since the inception of AWS, we have relentlessly innovated on security, privacy tools, and practices to meet, and even exceed, our customers’ expectations.
For example, you decide where to store your data and who can access it. Services such as AWS CloudTrail allow you to verify how and when data are accessed. Our virtualization technology, AWS Nitro System, has been designed to restrict any operator access to customer data. This means no person, or even service, from AWS can access data when it is being used in an EC2 instance. NCC Group, a leading cybersecurity consulting firm based in the United Kingdom, audited the Nitro architecture and affirmed our claims.
Our core infrastructure is built to satisfy the security requirements of the military, global banks, and other high-sensitivity organizations.
In Canada, Neo Financial is a financial tech startup that uses the elasticity of the AWS Cloud to scale its business. They chose AWS in 2019 because we helped them to meet their regulatory requirements. They use EC2 for their core infrastructure, S3 for highly durable storage, Amazon GuardDuty to improve their security posture, and CloudFront to improve performance for their customers.
Performance
The AWS Global Infrastructure is built for performance, offering the lowest latency, lowest packet loss, and highest overall network quality. This is achieved with a fully redundant 400 GbE fiber network backbone, often providing many terabits of capacity between Regions.
To help provide Canadian customers with even lower latency, we have announced two AWS Local Zones in Toronto and Vancouver.
Performance is specially important when you are streaming your favorite TV show. Calgary-based Kidoodle.TV offers a streaming service for children. They have more than 100 million app downloads worldwide and more than 1 billion ad seconds for sale every 2 days. Using AWS, Kidoodle.TV was able to build the same service architecture that multibillion-dollar companies can deploy, which allowed them to seamlessly scale up from 400,000 monthly active users to 12 million in a year.
Additional things to know
We preannounced 12 additional Availability Zones in four future Regions in Malaysia, New Zealand, Thailand, and the AWS European Sovereign Cloud. We will be happy to share more information on these Regions so, stay tuned.
I can’t wait to discover how you will innovate and what amazing services you will deploy on this new AWS Region. Go build and deploy your infrastructure on ca-west-1 today.
Aujourd’hui, nous inaugurons une nouvelle Région Amazon Web Services (AWS) au Canada. La Région AWS Canada Ouest (Calgary), également connue sous le nom ca‑west‑1, est la 33e Région AWS. Elle compte trois Zones de disponibilité, emmenant ainsi le total des Zones de disponibilité à travers le monde à 105.
Cette deuxième Région au Canada vous permet d’élaborer des infrastructures multi-Régions qui demeurent disponibles 99,999 % du temps, tout en conservant vos données à l’intérieur des frontières canadiennes.
Une empreinte mondiale
Notre approche en matière de développement de notre infrastructure est fondamentalement différente de celle adoptée par d’autres fournisseurs. Au cœur de notre infrastructure mondiale, vous trouvez des Régions. Une Région AWS est un lieu physique dans le monde, dans lequel nous avons plusieurs Zones de disponibilité. Les Zones de disponibilité sont formées d’un ou plusieurs centres de données distincts, chacun doté de systèmes d’alimentation, de réseau et de connectivité redondants, et hébergés dans des installations séparées. Contrairement aux autres fournisseurs infonuagiques, qui définissent souvent une région comme étant un centre de données unique, le fait de pouvoir compter sur plusieurs Zones de disponibilité vous permet d’exploiter des applications et des bases de données de production ayant une plus grande disponibilité, une meilleure tolérance aux pannes et une plus importante évolutivité, allant ainsi au-delà des possibilités offertes par un centre de données unique.
AWS compte plus de 17 années d’expérience dans la mise en œuvre de son infrastructure mondiale. Il n’existe pas d’algorithme de compression pour remplacer une telle expérience, surtout lorsqu’il est question d’évolutivité, de sécurité et de performances.
Des clients canadiens de toute taille, dont des marques mondiales telles que BlackBerry, CI Financial, Keyera, KOHO, Maple Leaf Sports & Entertainment (MLSE), Nutrien, Sun Life et TELUS, ainsi que de jeunes pousses comme Good Chemistry and Cohere, en plus d’organismes du secteur public telles que l’Université de Calgary et Ressources naturelles Canada (RNCan), exécutent déjà des charges de travail sur AWS. Ces entreprises et organismes ont choisi AWS pour la sécurité, les performances, la flexibilité et la présence mondiale que nous offrons.
L’infrastructure mondiale AWS, dont font partie les Zones locales AWS et les AWS Outposts, offre à nos clients la flexibilité de déployer leurs charges de travail à proximité de leur clientèle, minimisant ainsi la latence du réseau. Par exemple, un de nos clients qui bénéfice de la flexibilité d’AWS est BrainBox AI, une jeune entreprise en croissance qui élabore des technologies de décarbonation. BrainBox AI utilise l’intelligence artificielle (IA) et l’apprentissage automatique (AA) basés dans le Nuage AWS pour aider des propriétaires d’édifice, partout au monde, à réduire les émissions liées aux systèmes de chauffage, de ventilation et de climatisation jusqu’à 40 %, et la consommation énergétique jusqu’à 25 %. L’infrastructure mondiale AWS permet à leur solution de gérer, avec une latence faible, des centaines d’immeubles dans plus de 20 pays, et ce 24 heures sur 24, sept jours sur sept.
Services disponibles
Vous pouvez déployer vos charges de travail sur n’importe laquelle des familles d’instance C5, M5, M5d, R5, C6g, C6gn, C6i, C6id, M6g, M6gd, M6i, M6id, R6d, R6i, R6id, I4i, I3en, T3 et T4g. La nouvelle Région Canada Ouest (Calgary) compte 65 services AWS, tous disponibles dès le lancement. En voici la liste, en ordre alphabétique : Amazon API Gateway, AWS AppConfig, AWS Application Auto Scaling, Amazon Aurora, Aurora PostgreSQL, AWS Batch, AWS Certificate Manager, AWS CloudFormation, Amazon CloudFront, AWS Cloud Map, AWS CloudTrail, Amazon CloudWatch, Amazon CloudWatch Events, Amazon CloudWatch Logs, AWS CodeDeploy, AWS Config, AWS Database Migration Service (AWS DMS), AWS DataSync, AWS Direct Connect, Amazon DynamoDB, Amazon Elastic Block Store (Amazon EBS), Amazon Elastic Compute Cloud (Amazon EC2), Amazon EC2 Auto Scaling, Amazon Elastic Container Registry (Amazon ECR), Amazon Elastic Container Service (Amazon ECS), Amazon Elastic Kubernetes Service (Amazon EKS ), , Elastic Load Balancing, , Elastic Load Balancing – Gateway (GWLB), Amazon EMR, Amazon EventBridge, AWS Fargate, AWS Health Dashboard, AWS Identity and Access Management (IAM), Amazon Kinesis Data Streams, AWS Key Management Service (AWS KMS), AWS Lambda, AWS Management Console, AWS Marketplace, Amazon OpenSearch Service, AWS Organizations, Amazon Redshift, AWS Resource Access Manager, Resource Groups, Amazon Route 53, AWS Secrets Manager, AWS Security Hub, AWS Security Token Service, Service Quotas, AWS Shield Standard, Amazon Simple Notification Service (Amazon SNS), Amazon Simple Queue Service (Amazon SQS), Amazon Simple Storage Service (Amazon S3), Amazon Simple Workflow Service (Amazon SWF), AWS Site-to-Site VPN, AWS Step Functions, AWS Support API, AWS Systems Manager, AWS Trusted Advisor, VM Import/Export et AWS X-Ray.
AWS au Canada
Nous soutenons nos clients et partenaires grâce à notre infrastructure canadienne depuis décembre 2016, lorsque la première Région AWS au Canada, soit la Région AWS Canada (Centre), a été inaugurée. Au cours de cette même année, nous avons lancé des emplacements Amazon CloudFront à Toronto et Montréal afin de mieux servir vos clients dans ces régions. Actuellement, nous comptons 10 points de présence (PdP) au Canada : cinq à Toronto, quatre à Montréal et un à Vancouver. Nous avons également des équipes d’ingénieurs basées dans plusieurs villes à travers le pays.
Entre 2016 et 2021, AWS a investi plus de 2,57 milliards $ CAD (1,9 milliards $ USD) au Canada et prévoit investir jusqu’à 24,8 milliards $ CAD (18,3 milliards $ USD) dans nos deux Régions d’ici 2037. En se basant sur la méthodologie entrée-sortie et les tableaux statistiques fournies par Statistique Canada, nous estimons que les investissements prévus ajouteront 43,02 milliards $ CAD (31 milliards USD) au produit intérieur brut (PIB) du Canada et soutiendront plus de 9 300 emplois équivalents temps plein (ETP) au sein de l’économie canadienne.
En plus d’offrir les avantages d’une infrastructure de classe mondiale à nos clients, Amazon s’est engagé à atteindre une empreinte carbone nette zéro pour l’ensemble de ses activités d’ici 2040, et est en voie d’alimenter l’ensemble de ses opérations avec des énergies 100 % renouvelables d’ici 2025. En 2022, 90 % de l’électricité consommée par Amazon provenait de sources d’énergie renouvelables. En outre, AWS s’est donné comme objectif d’avoir un bilan positif en matière d’eau d’ici 2030, restituant ainsi plus d’eau aux communautés que la quantité utilisée pour ses activités directes. Amazon compte quatre projets d’énergie renouvelable au Canada, soit trois situés au sud de Calgary et un autre près d’Edmonton. Selon BloombergNEF, Amazon est la plus grande entreprise acheteuse d’énergie renouvelable au pays (et au monde). Ces projets génèrent plus de 2,3 millions de mégawattheures (MWh) d’énergie propre, soit suffisamment pour alimenter 1,69 million de foyers canadiens.
La formation est également l’une de nos principales priorités. Depuis 2017, nous avons formé plus de 200 000 Canadiens et Canadiennes en compétences infonuagiques par le biais de programmes de formation et certification AWS gratuits et payants. Des apprenants ayant différents niveaux de compétences, de responsabilités et d’expérience peuvent acquérir des connaissances et des compétences pratiques grâce à AWS Skills Builder, qui offre plus de 600 cours en ligne gratuits en jusqu’à 14 langues. Amazon s’est engagé à offrir des formations gratuites en compétences infonuagiques à 29 millions de personnes à travers le monde d’ici 2025.
Sécurité
Des clients du monde entier font confiance à AWS pour assurer la sécurité de leurs données, alors que la sécurisation et la confidentialité de leurs charges de travail sont des éléments fondamentaux de notre mode de fonctionnement. Depuis les tous débuts d’AWS, nous innovons sans relâche en matière de sécurité, d’outils de protection de la vie privée et de pratiques afin de répondre aux attentes de nos clients, et même dépasser ces attentes.
Par exemple, les décisions concernant l’emplacement de stockage de vos données, et qui peut y accéder, vous appartiennent. Des services tels qu’AWS CloudTrail vous permettent de vérifier comment et quand les données sont consultées. Notre technologie de virtualisation, AWS Nitro System, a été conçue pour restreindre l’accès de tout opérateur aux données de la clientèle. Cela signifie qu’aucun membre du personnel d’AWS, ou même un service AWS, peut accéder aux données lorsqu’elles sont utilisées au sein d’une instance Amazon Elastic Compute Cloud (Amazon EC2). En effet, NCC Group, une des principales firmes de conseil en cybersécurité au Royaume‑Uni, a procédé à une vérification de notre architecture Nitro et a confirmé nos affirmations.
Notre infrastructure de base est conçue pour répondre aux exigences de sécurité des armées, des banques mondiales, ainsi que d’autres organisations traitant des informations hautement sensibles.
Basée au Canada, Neo est une jeune pousse spécialisée en technologie financière qui profite de l’élasticité du Nuage AWS pour développer ses activités. En 2019, l’entreprise a choisi AWS car nous l’avions aidée à répondre aux exigences réglementaires du secteur. Elle utilise Amazon Elastic Compute Cloud (Amazon EC2) pour son infrastructure de base, Amazon Simple Storage Service (Amazon S3) pour un stockage très durable, Amazon GuardDuty pour améliorer sa posture de sécurité, ainsi qu’Amazon CloudFront afin d’optimiser les performances de ses systèmes pour sa clientèle.
Performances
L’infrastructure mondiale AWS est conçue pour offrir les meilleures performances et la plus faible latence atteignable, minimiser la perte de paquets et fournir la meilleure qualité générale pour l’ensemble du réseau. Cela est rendu possible grâce à un réseau dorsal de fibre optique de 400 GbE entièrement redondant, permettant souvent plusieurs térabits de capacité entre les Régions.
Afin d’offrir une latence encore plus faible à nos clients canadiens, nous avons annoncé la mise en place de deux Zone locales AWS à Toronto et Vancouver.
Les performances sont davantage importantes lorsque vous visionnez la diffusion en continu de votre émission préférée. L’entreprise Kidoodle.TV, basée à Calgary, offre un service de diffusion en continu destiné aux enfants. Elle compte plus de 100 millions de téléchargements de son application à travers le monde et plus d’un milliard de secondes publicitaires à vendre par période de 48 heures. En utilisant AWS, Kidoodle.TV a pu mettre en place le même type d’architecture de service que les entreprises multimilliardaires sont en mesure de déployer. Cela a permis à l’entreprise de passer, en une année, de 400 000 à 1,2 million d’utilisateurs actifs mensuels.
Informations complémentaires
Nous avons annoncé 12 futures Zones de disponibilité dans quatre Régions additionnelles en Malaisie, en Nouvelle‑Zélande, en Thaïlande et la Région souveraine en Europe; nous aurons le plaisir de partager des informations supplémentaires le moment venu.
Je suis impatient de découvrir vos innovations ainsi que les extraordinaires services que vous allez mettre en œuvre au sein de la Région AWS Canada Ouest (Calgary). N’hésitez pas à développer et à déployer votre infrastructure sur ca‑west‑1 dès aujourd’hui.
Post Syndicated from Bozho original https://blog.bozho.net/blog/4185
Приехме окончателно измененията в Конституцията. Структурните предпоставки за независим съд и за отчетна прокуратура вече са налице. А подобряването на съдебната система е ключово за развитието на страната.
Аргументираните критики към законопроекта бяха чути и бяха направени съответните редакции (критика „заради самата критика“ винаги ще има).
А това, че с наши опоненти сме постигнали съгласие по тази голяма задача, е признак не на слабост, а на политическа адекватност. Никой няма сам да има 160 гласа, затова целите се постигат с разговор.
Дали това е исторически момент, ще кажат историците след десетилетия. Но със сигурност изкачихме един стръмен склон, който катерим от много години. Да, това не е върхът – катереното на стръмни склонове продължава. Това не е краят на съдебната реформа (ако някой реши да го определя така), но е ключова стъпка. Предстоят изменения на устройствени и процесуални закони.
Благодаря на всички за подкрепата, която направи възможно приемането на тези отдавна чакани промени.
Материалът Приехме измененията в Конституцията е публикуван за пръв път на БЛОГодаря.
Post Syndicated from Will Taillac original https://www.servethehome.com/crucial-t500-2tb-pcie-gen4-nvme-ssd-review/
The Crucial T500 2TB NVMe SSD is a fast M.2 SSD that might be the best price performance drive right now, except in one key metric
The post Crucial T500 2TB PCIe Gen4 NVMe SSD Review appeared first on ServeTheHome.