คลังคำศัพท์

Amazon S3

Easy

Amazon Simple Storage Service (S3) is a scalable, high-speed, and inexpensive web-based cloud storage service to store and retrieve data anytime and anywhere.

What Is Amazon S3?

Amazon Simple Storage Service (S3) is a cloud storage platform offered by Amazon Web Services (AWS) service. It was released back in 2006 to provide clients with access to cloud storage using a customized web interface. Amazon S3 has the same storage architecture as its worldwide e-commerce business, and it can be used to store almost any sort of item, including web applications, data archives, data recovery, recovery plans, analytics, hybrid cloud storage, and much more.
The use of blockchain technology allows developers to create apps that enable numerous parties to conduct transactions without the requirement for a trusted central authority. To create a blockchain platform, reliable infrastructure is required. This is where Amazon Managed Blockchain comes into the picture along with its Amazon S3 that plays a crucial role in securing and storing sensitive blockchain data. 
With encryption capabilities and access management tools, users may store their data in Amazon S3 and protect it from unwanted access. S3 Block Public Access is a simple storage solution that allows users to restrict public access to all of their objects at the bucket or account level. S3 is also in compliance with the legal procedures and regulatory obligations, such as PCI-DSS, HIPAA/HITECH, FedRAMP, EU Data Protection Directive, and FISMA. The platform also offers a variety of auditing options for tracking access requests to a user’s S3 resources.

Amazon S3 users only have access to the S3 resources that they create by default, which helps them with safeguarding their data in the S3 buckets. Using one or a combination of the following access control tools, users can provide access to their data to others. Some of these tools include: 

  • AWS Identity and Access Management (IAM), that is used to establish users database and manage their access,
  • Access Control Lists (ACLs) are used to make specific items available to authorized users,
  • Bucket policies are used to set rights for all objects in a single S3 bucket.
For data uploads, Amazon S3 offers both server-side encryption and client-side encryption. Unauthorized users can't access anyone’s data since Amazon S3 has configurable security settings. Users can connect S3 resources from their Amazon Virtual Private Cloud using VPC endpoints. They can also check the encryption state of their S3 objects using the S3 Inventory.