AWS Public Sector Blog
What’s New for AWS Storage & Ingestion Services from re:Invent 2016
We hope you have had a chance to catch up on the security and compute services announced at re:Invent. Next up, we have the re:Invent updates on storage and ingestion that will benefit our public sector customers.
AWS Snowball Edge – Petabyte-scale Data Transfer with On-Board Compute
AWS Snowball Edge is our newest 100TB data transfer device, offering highly secure, on-board storage and in-flight compute capabilities with AWS Greengrass. Organizations can use AWS Snowball Edge to move massive amounts of data into and out of the AWS Cloud, use the device as a temporary storage tier for large local datasets, or seamlessly support edge workloads in remote or offline locations.
Snowball Edge connects to your organization’s existing applications and infrastructure using standard storage interfaces, streamlining the data transfer process, minimizing setup and integration, and helping ensure that the applications continue to run even when they are not able to access the cloud.
How does Snowball Edge accelerate data transfer to the cloud?
It has four times the network speed of the original AWS Snowball, built-in WiFi and cellular wireless communication, a Network File System (NFS) interface, and an HAQM S3-compatible endpoint. The device automatically encrypts all data stored. Encryption keys are managed with the AWS Key Management Service (KMS) and never stored on the device, ensuring that your most sensitive data is secure on site and in transit to AWS.
The AWS Snowball Edge device also comes with AWS Greengrass embedded, so you can execute AWS Lambda functions and process data locally, making it possible to collect and analyze sensor data streams, transcode multimedia content, compress images in real time, or run a local HAQM S3-compatible file server.
How it works
Jobs are created right from the AWS Management Console. Once a job is created, AWS automatically ships a Snowball Edge device to you. When you receive the device, simply attach it to your local network and then connect your applications. Once the device is ready to be returned, the E Ink shipping label will automatically update to the correct AWS facility, and the job status can be tracked via HAQM SNS generated text or email messages, or directly in the console.
AWS Snowball & HIPAA Compliance
AWS has expanded its HIPAA compliance program to include AWS Snowball, allowing you to transfer large amounts of data, including Protected Health Information (PHI), into and out of AWS securely and cost-effectively. Read the HIPAA Compliance whitepaper.
AWS Snowmobile – Move Exabytes of Data to the Cloud in Weeks, Not Years
Even with high-end connections, moving petabyte and exabyte-scale data to the cloud is challenging. Now migrating financial and regulatory records, scientific archives, and satellite imagery to the cloud won’t take years or decades. The AWS Snowmobile secure data truck stores up to 100 PB of data so customers can migrate data to the AWS Cloud in weeks.
Tamper-resistant AWS Snowmobile shipping containers attach to your network and appears as a local, NFS-mounted volume. Each AWS Snowmobile consumes about 350 kW of AC power and includes a network cable connected to a high-speed switch, capable of supporting 1 Tb/second of data transfer spread across multiple 40 Gb/second connections.
Snowmobile also incorporates multiple layers of logical and physical protection, including chain-of-custody tracking, 24/7 video surveillance and GPS tracking with cellular or satellite connectivity back to AWS. AWS Snowball offers 2560-bit encryption and encrypts with AWS Key Management Service (KMS) keys. We can even arrange for a security vehicle escort when the AWS Snowmobile is in transit and dedicated security guards while your AWS Snowmobile is on-premises.
New HAQM S3 Features
- HAQM S3 CloudWatch Metrics – Understand and improve the performance of your applications that use HAQM S3 by monitoring and alarming on 13 new HAQM S3 CloudWatch metrics. For web and mobile applications that depend on cloud storage, these metrics allow you to quickly identify and act on operational issues. You can receive one-minute HAQM S3 CloudWatch Metrics, set CloudWatch alarms, and access CloudWatch dashboards to view real-time operations and performance.
- HAQM S3 Object Tagging – With S3 Object Tagging, you can manage and control access for HAQM S3 objects. HAQM S3 Object Tags are key-value pairs applied to HAQM S3 objects which can be created, updated, or deleted at any time during the lifetime of the object. You’ll also have the ability to create Identity and Access Management (IAM) policies, set up HAQM S3 Lifecycle policies, and customize storage metrics.
- HAQM S3 Analytics, Storage Class Analysis – With storage class analysis, you can analyze and visualize storage access patterns and transition the right data to the right storage, optimizing costs. You can configure a storage class analysis policy to monitor an entire bucket, a prefix, or object tag. This new HAQM S3 Analytics feature automatically identifies the optimal lifecycle policy to help you transition less frequently accessed storage to Standard Infrequent Access SIA and save.
- HAQM S3 Inventory – You can simplify and speed up business workflows and big data jobs using HAQM S3 Inventory, which provides a scheduled alternative to HAQM S3’s synchronous List API. HAQM S3 Inventory provides a CSV (Comma Separated Values) flat-file output of your objects and their corresponding metadata on a daily or weekly basis for an HAQM S3 bucket or a shared prefix.
New HAQM EFS (Elastic File System) Features
HAQM EFS (Elastic File System) offers storage for use with HAQM EC2 instances and allows you to access file data from on-premises datacenters. You can now migrate file data to and from on-premises into HAQM EFS to support cloud bursting workloads and backups to the cloud when connected to your HAQM VPC with AWS Direct Connect.
New AWS Storage Gateway Provides File Interface to Objects in HAQM S3 Buckets
AWS Storage Gateway now provides a virtual on-premises file server, which enables you to store and retrieve HAQM S3 objects through standard file storage protocols. With file gateway, existing applications or devices can use secure and durable cloud storage without modification. File gateway simplifies moving data into HAQM S3 for in-cloud workloads, provides cost-effective storage for backup and archive workloads, or expands your on-premises storage into the cloud.
File gateway is available as a virtual machine image which you download from the AWS Management Console. To start using the new AWS Storage Gateway, click here.
Contact us to get started today with these new services.