Amazon Web Services (AWS) has announced the availability of data event logging in Amazon S3 Express One Zone using AWS CloudTrail. This feature enables auditing for governance and compliance of object operations like PutObject and GetObject.
S3 Express One Zone is a high-performance, single-Availability Zone (AZ) storage class purpose-built to deliver consistent single-digit millisecond data access for your most frequently accessed data and latency-sensitive applications. It is well-suited for demanding applications and is designed to deliver up to 10x better performance than S3 Standard.
With AWS CloudTrail support, users can now monitor all object-level operations like PutObject, GetObject, and DeleteObject, in addition to bucket-level actions like CreateBucket and DeleteBucket. This provides the transparency needed to ensure compliance with security policies and governance.
Using CloudTrail logs, administrators can identify which objects were created, read, updated, or deleted, and pinpoint the source of the API calls. This information can be used to detect any unauthorized access and take appropriate action.
This feature is a valuable addition to S3 Express One Zone, as it provides users with greater control over their data and ensures its security and compliance.
