AWS Backup のアイコン

AWS Backup Popular2019年〜

A service for centralized backup management, automation, and compliance across AWS resources

About 3 min read

What It Does

AWS Backup is a fully managed service that centrally manages backups across multiple AWS services including EC2, EBS, RDS, DynamoDB, EFS, and S3. Simply define a backup plan and it handles scheduled automatic backups, retention management, cross-region copies, and cross-account copies. It also provides integrated management of backup encryption and access controls, simplifying compliance requirements.

Use Cases

Used for daily automated backups and generation management of production databases, cross-region backups for disaster recovery (DR), applying backup retention policies based on compliance requirements, centralized backup management across multiple AWS accounts, and operating immutable backups (Vault Lock) as a ransomware countermeasure. Widely used for data protection and business continuity.

Everyday Analogy

Think of it like a bank with safe deposit boxes. Instead of keeping important documents (data) scattered across drawers at home (individual AWS services), you deposit them in the bank's vault (AWS Backup) where they are managed in a fire-proof, secure environment. By automatically storing copies at another branch (another region), you are protected even in the event of a disaster.

What Is AWS Backup?

AWS Backup is a centralized backup management service released in 2019. Previously, you had to manage separate backup configurations and scripts for each AWS service. With AWS Backup, you can manage all backups from a single console. Define schedules, retention periods, and destinations in a backup plan, and automatically apply them to resources using tags.

Backup Plans and Policies

The core of AWS Backup is the backup plan. A plan defines backup rules (frequency, start time, retention period) and specifies target resources by tags or resource IDs. For example, you can declaratively configure a policy like "back up all resources tagged as production every day at 3:00 AM and retain for 30 days." By integrating with AWS Organizations, you can apply backup policies across your entire organization at once. For comprehensive best practices on backup plans and policies, books on Amazon are recommended.

Cross-Region and Compliance

AWS Backup natively supports cross-region and cross-account copies. As part of a disaster recovery plan, you can automatically replicate backups to another region. The Vault Lock feature protects backups in WORM (Write Once Read Many) mode, creating immutable backups that even administrators cannot delete or modify. This enables compliance with regulations such as SEC 17a-4 and CFTC 1.31.

Things to Watch Out For

  • Backup storage pricing varies by service, so estimate costs in advance when backing up large volumes of data
  • Once Vault Lock is enabled, settings cannot be changed or deleted, so carefully consider retention periods before enabling it
共有するXB!

Related Services

Amazon S3 iconAmazon S3A scalable object storage serviceAmazon EBS iconAmazon EBSA block storage service that attaches to EC2 instancesAmazon RDS iconAmazon RDSA managed service providing relational databases like MySQL, PostgreSQL, and OracleAmazon DynamoDB iconAmazon DynamoDBA fully managed NoSQL database delivering single-digit millisecond latency

Related Articles

Centralized Backup Management with AWS Backup - Backup Plans and Cross-Region ProtectionManage backups for EC2, RDS, DynamoDB, and more under a unified policy. Covers Vault Lock WORM protection and automated restore testing.Protecting On-Premises VMware VMs with AWS Backup Gateway - A Hybrid Backup StrategyDeploy a gateway into your vSphere environment and centrally manage on-premises VMware VM backups with AWS Backup plans. Also covers cross-region copy for disaster recovery.Centralized Backup Management - Data Protection Strategy with AWS BackupLearn about centralized backup management with AWS Backup. Covers unified management of backups across multiple AWS services including EC2, RDS, DynamoDB, EFS, and S3, and how to build a data protection strategy that meets compliance requirements.How EBS Snapshots Are Incremental Yet Allow Full Restores - Inside Block-Level Differential ManagementDiscover how EBS snapshots can restore a complete volume from any snapshot despite being incremental backups, through block-level differential management, S3 storage structure, and fast snapshot restore internals.Operating Hybrid Cloud with Amazon EVS - DR Site Construction and Burst CapacityLearn how to operate a hybrid cloud with Amazon EVS, including DR site construction, on-demand capacity bursting, and integration patterns with AWS services.

More in This Category

AWS Backup Gateway iconAWS Backup Gateway SpecializedA gateway service for protecting on-premises VMware virtual machines with AWS BackupAmazon EBS iconAmazon EBS EssentialA block storage service that attaches to EC2 instancesAmazon EFS iconAmazon EFS EssentialA shared file storage service accessible from multiple EC2 instances simultaneouslyAmazon FSx iconAmazon FSx SpecializedFully managed file systems for Windows File Server, Lustre, NetApp ONTAP, and OpenZFSAmazon S3 Glacier iconAmazon S3 Glacier SpecializedAn extremely low-cost storage service for archiving long-term dataAmazon S3 iconAmazon S3 EssentialA scalable object storage serviceAWS Storage Gateway iconAWS Storage Gateway SpecializedA hybrid storage service that seamlessly connects on-premises environments to AWS storage

Similar Articles and Services

Centralized Backup Management - Data Protection Strategy with AWS BackupLearn about centralized backup management with AWS Backup. Covers unified management of backups across multiple AWS services including EC2, RDS, DynamoDB, EFS, and S3, and how to build a data protection strategy that meets compliance requirements.AWS BackupA centralized service for managing and automating backups across EC2, RDS, S3, DynamoDB, and other AWS services with policy-based controlsCentralized Backup Management with AWS Backup - Backup Plans and Cross-Region ProtectionManage backups for EC2, RDS, DynamoDB, and more under a unified policy. Covers Vault Lock WORM protection and automated restore testing.Protecting On-Premises VMware VMs with AWS Backup Gateway - A Hybrid Backup StrategyDeploy a gateway into your vSphere environment and centrally manage on-premises VMware VM backups with AWS Backup plans. Also covers cross-region copy for disaster recovery.AWS Backup GatewayA gateway service for protecting on-premises VMware virtual machines with AWS Backup