1. AWS storage options

To do that, let’s start by taking a quick look at the different data storage options offered in AWS. There are three main types of storage in AWS:

  1. You can host several types of relational databases
  2. You can use Elastic Block Storage (EBS) for your EC2 instances, and
  3. You can use the famous S3 buckets for object storage

_slides._001-8.jpeg

What to protect?

_slides._005-3.jpeg

2. EBS Data Protection and Encryption

Amazon Elastic Block Storage, or EBS, is an attached file system-like type of storage that can be used as block-level storage for your EC2 instances.

_slides._001-9.jpeg

Encrypting EBS volumes

As far as the protection of data stored in EBS is concerned, volume encryption is not enabled by default when you create a new volume, unless you enable a setting in the EC2 settings dashboard. More info on how to do that here. Also, the encryption status of an EBS volume cannot be changed during its lifecycle, which means that once an EBS volume is encrypted you cannot switch it to a non-encrypted format, or if the volume is un-encrypted when it’s created, you cannot switch it to an encrypted format.