With the advent of high definition, on-demand digital media, media and entertainment companies are challenged to evolve their IT infrastructure fast enough to keep up with the demands of their customers. Check out this presentation to learn how you can make use of the economical, elastic, and on-demand compute and storage capacity that AWS offers to address the challenges faced by media & entertainment companies.
You can see a recording of the webinar based on this presentation on YouTube here:
1. Journey Through the Cloud
ianmas@amazon.com
@IanMmmm
Ian Massingham — Technical Evangelist
Digital Media
2. Journey Through the Cloud
Learn from the journeys taken by other AWS customers
Discover best practices that you can use to bootstrap your projects
Common use cases and adoption models for the AWS Cloud
1
2
3
3. Digital Media
Amazon Web Services provides a set of secure and on-demand storage,
archive, computing, transcoding, streaming, and application services for
media companies
4. Agenda
Why AWS for Digital Media Applications?
Media Ingest
Media Storage & Archive
Media Content Delivery
Useful Resources
12. AWS Direct Connect
Dedicated bandwidth between your
site and AWS
AWS Storage Gateway
On-premises storage federation with
Amazon S3 and Amazon Glacier
AWS Import/Export
Physical transfer of media into and
out of AWS
AWS Ingest Options
14. • Reduces costs for bandwidth-heavy
workloads
• Private connectivity to AWS
• Physical connection – 1 Gbps or 10
Gbps port
• Logical connections (802.1q VLANs)
• Public: To AWS cloud (Amazon S3
endpoints etc.)
• Private: To in-VPC resources
• Consistent network performance
• Compatible with all AWS services
Ingest Options – AWS Direct Connect
aws.amazon.com/directconnect
15. • Snowball is a petabyte-scale data
transport solution
• Uses secure appliances to transfer
large amounts of data into and out of
AWS
• Includes a high-speed, 10 Gbps
network connection to minimize data
transfer times
• Designed to transfer up to 50
terabytes of data from your data
source to the appliance in less than
one day, plus shipping time.
Ingest Options – AWS Import/Export Snowball
http://aws.amazon.com/importexport/
https://youtu.be/-PqOwc3KURw
16. • Rapidly move data into and out of AWS
• Portable storage device shipment to
AWS
• eSATA
• USB 2.0 and 3.0
• 2.5 and 3.5 inch internal SATA hard
drives
• Supports
• Amazon Elastic Block Store (EBS)
• Amazon Simple Storage Service (S3)
• Amazon Glacier
Ingest Options – AWS Import/Export Disk
aws.amazon.com/importexport/disk
17. • On-premises, virtual iSCSI storage
appliance
• Local cache enables low latency
access to data
• Gateway – stored volumes
• Gateway – cached volumes
• Copies data in the form of Amazon
EBS snapshots to Amazon S3
• Leverage Amazon S3 server-side
encryption
• Recover to Amazon EBS / Amazon
EC2
Ingest Options – AWS Storage Gateway
aws.amazon.com/storagegateway/
19. Moving Big Data into the Cloud with Tsunami UDP
https://blogs.aws.amazon.com/bigdata/post/Tx33R88KHCWEOHT/Moving-Big-Data-into-the-Cloud-with-Tsunami-UDP
21. Amazon Elastic
Block Store (EBS
Amazon GlacierAmazon Simple Storage
Service (S3)
Long-term object archive
Extremely low cost per gigabyte
99.999999999% durability
Highly scalable object storage
1 byte to 5 TB in size
99.999999999% durability
High-performance block storage device
1 GB to 16 TB in size
Mount as drives to instances with
snapshot/cloning functionalities
AWS Storage and Archive Options
22. Storage Options - Amazon Elastic Block Store (EBS)
• High I/O block storage for Amazon EC2
• Predictably scale to 1000s of IOPS per
Amazon EC2 instance
• Automatic replication within the Availability
Zone
• 10x more reliable than commodity disk drives
• Point-in-time snapshots
• Amazon S3 durability (11-9s)
• Point-in-time snapshots across regions
aws.amazon.com/ebs/
23. Storage Options - Amazon S3
• Designed for 99.999999999% durability
• Authentication & authorisation mechanisms
ensure that data is kept secure
• Multiple encryption options
• Standard, infrequent access (IA) & Reduced
redundancy storage (RRS)
aws.amazon.com/s3/
24. Amazon S3 - Security Controls
• Bucket- and object-level permissions
• Owner only access (by default)
• Signed URLs/query string authentication
• IAM policies
• Versioning
• MFA delete
https://youtu.be/VC0k-noNwOU
25. bucket
Bucket level
operations
• Creation and deletion of buckets
• Modifications to access controls
• Changes to lifecycle policies
• Changes to cross-region replication settings
logging
bucket
AWS CloudTrail
objects
Object level
operations
logging
bucket
S3 Server
Access Logs
http://docs.aws.amazon.com/AmazonS3/latest/dev/ServerLogs.html
https://aws.amazon.com/blogs/aws/amazon-s3-update-cloudtrail-integration/
Amazon S3 Logging & Auditing
26. bucket
Bucket level
operations
• Creation and deletion of buckets
• Modifications to access controls
• Changes to lifecycle policies
• Changes to cross-region replication settings
logging
bucket
AWS CloudTrail
objects
Object level
operations
logging
bucket
S3 Server
Access Logs
http://docs.aws.amazon.com/AmazonS3/latest/dev/ServerLogs.html
https://aws.amazon.com/blogs/aws/amazon-s3-update-cloudtrail-integration/
Amazon S3 Logging & Auditing
27. Archiving Options - Amazon Glacier
• $0.007 - GB per month [ EU(Ireland) ]
• Retrievals:
• 5% of monthly average storage (pro-rated daily)
free, after this 0.011 per gigabyte
• Synchronous in
• 3–5 hour asynchronous retrieval
• Designed for 99.999999999% durability
• AES 256 encryption at rest
• Highly scalable and reliable
• Authentication & authorisation mechanisms
ensure data is kept secure
aws.amazon.com/glacier
28. Archiving Options - Object Lifecycle Management
• Seamlessly move data from
Amazon S3 → Amazon Glacier
• 3-5 hour asynchronous retrieval
• Data lifecycle policies
• $0.01 per GB for Amazon Glacier costs
http://docs.aws.amazon.com/AmazonS3/latest/dev/object-lifecycle-mgmt.html
30. Using AWS for Media Streaming
Ecosystem
Scaling
Media Specific Capabilities
31. Encode to Take Advantage of Commonality Across Devices
Ingest
Amazon S3 Amazon Elastic Transcoder
Lowest number of encodes that span maximum number of devices
H.264 video, AAC audio
Low quality, high quality & 720p HD compression
http://aws.amazon.com/elastictranscoder/
32. • All HTTP-based streaming protocols (HLS,
HDS, Smooth Streaming, MPEG-DASH)
supported
• Video streaming-specific caching
optimizations
• Scalable to handle popular content
• Global reach (50+ edge locations)
• Native streaming support for HLS
• Joint solutions with streaming media ISVs
• Granular customer access logs
Video Streaming with Amazon CloudFront
http://aws.amazon.com/cloudfront/
33. Amazon CloudFront Security Controls
• CloudFront’s private content feature
• Only deliver content to securely signed requests
• HTTPS ONLY requests/delivery
• CloudFront origin access identity
• Signed URL verification
• Policy based on a timed URL or a CIDR block of
the requestor
• HTTPS ONLY origin fetches
• Trusted signers
• Access logs
Amazon S3
(Media Storage)
Amazon CloudFront
End User
HTTP________
HTTPS ONLY
Delivery EC2 Instances
Security Group
CloudFront Origin Access Identity
Signed Request
H
TTPS
HTTPS
Amazon S3
(Logs Storage)
Access Logs
38. Media & Entertainment Sessions from AWS re:Invent 2015
http://aws.amazon.com/digital-media/2015-reInvent-slides/
Digital Media Customer References
https://aws.amazon.com/digital-media/media-customer-references/
AWS Media Solutions Center
https://aws.amazon.com/digital-media/solutions/