Enhancing Control and Transparency: Amazon S3 Express One Zone Integrates Cost Allocation Tags and Attribute-Based Access Control
Seattle, WA – July 2, 2025 – Amazon Web Services (AWS) today announced a significant enhancement to Amazon S3 Express One Zone, its high-performance storage class designed for frequently accessed data that requires single-digit millisecond latency. With the latest update, S3 Express One Zone now fully supports tags for both cost allocation and attribute-based access control (ABAC). This move promises to bring greater financial transparency and more granular security management to organizations leveraging this powerful storage solution.
For businesses and developers who rely on S3 Express One Zone for their most demanding workloads, such as interactive analytics, real-time data processing, and gaming applications, the ability to tag objects and buckets is a welcome development. These tags, which are key-value pairs, can now be applied to S3 Express One Zone resources, providing a powerful mechanism for understanding and managing storage costs.
Unlocking Granular Cost Visibility
The integration of cost allocation tags will empower customers to precisely track and attribute S3 Express One Zone usage to specific projects, teams, applications, or business units. This granular visibility is crucial for effective budgeting, financial planning, and optimizing cloud spend. By tagging data based on its purpose or owner, organizations can gain a clearer picture of where their S3 Express One Zone costs are originating, enabling them to make informed decisions about resource allocation and potential cost-saving measures.
For instance, a company running a real-time recommendation engine might tag all data associated with that service. This allows their finance department to easily identify the exact cost attributable to the recommendation engine, distinguishing it from other applications utilizing S3 Express One Zone. This level of detail facilitates more accurate chargebacks and a deeper understanding of the return on investment for various initiatives.
Strengthening Security with Attribute-Based Access Control (ABAC)
Beyond cost management, the introduction of ABAC support for S3 Express One Zone represents a substantial leap forward in security posture management. ABAC allows customers to define access policies based on attributes (tags) associated with resources and the principals requesting access. This dynamic approach moves beyond traditional identity-based access control, offering a more flexible and scalable way to manage permissions.
With ABAC, organizations can implement sophisticated access control strategies. For example, access to sensitive data stored in S3 Express One Zone could be granted only to users whose job function tag matches the project tag associated with the data. Similarly, access could be restricted to specific environments, such as allowing developers to read from staging buckets but only administrators to write to production buckets, all managed through tag-based policies. This significantly reduces the complexity of managing numerous individual permissions, especially in large and dynamic environments.
This enhancement is particularly beneficial for organizations operating under strict regulatory compliance requirements, where demonstrating control over data access is paramount. By leveraging tags, security teams can more effectively enforce least-privilege principles and ensure that only authorized individuals and applications can interact with sensitive data.
A Natural Progression for a High-Performance Service
The addition of these crucial features to S3 Express One Zone underscores AWS’s commitment to evolving its services based on customer feedback and the growing needs of modern cloud-native applications. S3 Express One Zone’s focus on speed and performance, coupled with these new management and security capabilities, positions it as an even more compelling choice for workloads that demand the utmost in responsiveness and control.
Customers can begin utilizing cost allocation tags and attribute-based access control for their S3 Express One Zone resources immediately. This update signifies a significant step towards providing customers with the comprehensive tools needed to manage their data effectively, securely, and cost-efficiently in the cloud.
Amazon S3 Express One Zone now supports tags for cost allocation and attribute-based access control
AI has delivered the news.
The answer to the following question is obtained from Google Gemini.
Amazon published ‘Amazon S3 Express One Zone now supports tags for cost allocation and attribute-based access control’ at 2025-07-02 21:15. Please write a detailed article about this news in a polite tone with relevant information. Please reply in English with the article only.