The new feature named Amazon S3 Object Lock which blocks object version removal at the time of a user described retention time so that you can inflict retention rules as as extra layer to the data security or for regulatory compliance. Amazon S3 Object Lock can be configured in one of two modes. AWS accounts with particular IAM authorization are able to delete object locks from objects when it deployed in Governance mode. And the security cannot be deleted by any user, containing the root account in the Compliance Mode. Besides, you can use Compliance Mode if you want powerful immutability to comply with regulations. You can relocate workloads from current write-once-read-many (WORM) systems into Amazon S3, and configure S3 Object Lock at the object- and bucket-levels to secure object version removals initials to pre-defined Retain Until Dates or Legal Hold Dates. Amazon S3 Object Lock security is retained anyhow of which storage class the object resides in and throughout S3 Lifecycle transitions in storage classes. You can track what objects have S3 Object Lock from S3 Inventory report which contains the WORM status of objects. Now Amazon S3 Object Lock is accessible in every AWS Regions and AWS GovCloud (US) Regions and to know more refer S3 Object Lock
No comments:
Post a Comment