Amazon Macie adds ability to tune findings with allow lists, and enhances machine learning models to better identify sensitive data
Share
Services
We are pleased to announce a new capability to create allow lists in [Amazon Macie](/macie/). You can now [create and use allow lists](https://docs.aws.amazon.com/macie/latest/user/allow-lists.html) to specify text or text patterns that you don’t want Macie to report as sensitive data. For example, an allow list might include corporate phone numbers, names of executives, or sample data that is used for testing. When you create a sensitive data discovery job, you can configure the job to use one or more of your allow lists, in addition to choosing from a growing list of Macie [managed data identifiers](https://docs.aws.amazon.com/macie/latest/user/managed-data-identifiers.html) (MDI).
Macie has also enhanced the machine learning models used by managed data identifiers in order to produce more accurate and actionable findings when inspecting JSON data in your [Amazon Simple Storage Service](/s3/) (Amazon S3) buckets. The accuracy of the machine learning models is further enhanced by extracting additional context from surrounding fields in JSON data and JSON Lines files. This improvement also reduces processing times for these types of files, which means that your sensitive data discovery jobs will finish more quickly. In addition, we further enhanced the detection and reporting of full names in S3 objects by updating our machine learning models to extract additional context from file headers and attributes.
Getting started with Amazon Macie is fast and easy with one-click in the AWS Management Console or with a single API call. In addition, Macie has multi-account support using AWS Organizations, which makes it easier for you to enable Macie across all of your AWS accounts. Once enabled, Macie automatically gathers a complete S3 inventory at the bucket level and automatically and continually evaluates every bucket to alert if buckets are publicly accessible, unencrypted, shared or replicated with AWS accounts outside of a customer’s organization. Then, Macie applies machine learning and pattern matching techniques to the buckets you select to identify and alert you to [sensitive data](https://docs.aws.amazon.com/macie/latest/user/managed-data-identifiers.html), such as names, addresses, credit card numbers, or credential materials. Identifying sensitive data in S3 can help you comply with regulations, such as the Health Insurance Portability and Accountability Act (HIPAA) and General Data Privacy Regulation (GDPR).
Amazon Macie comes with a 30-day free trial for S3 bucket level inventory and evaluation of access controls and encryption. Sensitive data discovery is free for the first 1 GB per account per region each month with additional scanning charged according to the Amazon Macie [pricing](/macie/pricing/) plan. Amazon Macie also provides estimated costs per sensitive data discovery job in the console before you submit the job for processing. To learn more, see the Amazon Macie [documentation](https://docs.aws.amazon.com/macie/latest/user/what-is-macie.html) page.
What else is happening at Amazon Web Services?
Amazon AppStream 2.0 users can now save their user preferences between streaming sessions
December 13th, 2024
Services
Share
AWS Elemental MediaConnect Gateway now supports source-specific multicast
December 13th, 2024
Services
Share
Amazon EC2 instances support bandwidth configurations for VPC and EBS
December 13th, 2024
Services
Share
AWS announces new AWS Direct Connect location in Osaka, Japan
December 13th, 2024
Services
Share
Amazon DynamoDB announces support for FIPS 140-3 interface VPC and Streams endpoints
December 13th, 2024
Services
Share