The new Amazon S3 Express One Zone storage class is designed for high-performance applications requiring low latency access to frequently used data. It offers up to 10x better performance than S3 Standard, using directory containers to store objects in a single Availability Zone.
Now, S3 Express One Zone supports AWS CloudTrail data event logging, allowing monitoring of object-level operations like SetObject, GetObject, and DeleteObject, along with bucket-level actions such as CreateBucket. This feature enhances governance, compliance, and offers 50% lower request costs compared to S3 Standard.
By using CloudTrail Data Event Logging, users can quickly identify unauthorized access, create rule-based workflows, and analyze data events. Setting up CloudTrail logging involves creating a directory repository, enabling data event logging in the CloudTrail console, and selecting log events like PutObject and GetObject to track.
Testing the functionality involves uploading and downloading files to the S3 directory via the AWS CLI and S3 Console. CloudTrail publishes log files in a structured manner for easy retrieval using the AWS CLI, allowing users to analyze specific events such as PutObject and GetObject.
CloudTrail data event logging captures detailed information such as event time, source IP address, and user agent (browser or AWS CLI) for each action performed in the S3 Express One Zone bucket. This allows for precise tracking of user activity and unauthorized access attempts.
Enabling CloudTrail data event logging is available in all AWS Regions where S3 Express One Zone operates and is charged based on the number of events logged and log retention period. This feature helps simplify governance and compliance tasks for users of high-performance storage classes.
By leveraging the CloudTrail Data Event Logging feature, users of S3 Express One Zone can gain valuable insights into object and bucket-level activities, ensuring the security and integrity of their data. For more information, users can refer to the AWS CloudTrail Pricing page and the S3 User Guide.
Article Source
https://aws.amazon.com/blogs/aws/monitor-data-events-in-amazon-s3-express-one-zone-with-aws-cloudtrail/
