Astran S5 - The S3 Compatible Confidential API

Share
Table of Contents

S3 is considered an industry standard and has become fundamental. Its widespread adoption across the industry has set a de facto standard, making compatibility a critical aspect for emerging cloud services. Astran's innovative approach, through its S5 product, pays homage to this standard by offering an S3 compatible API with a twist – enhanced Resilience & Security through Secret Sharing, without complicating the user experience. This blog post delves into the significance of S3, the pioneering S5 technology by Astran, and its seamless integration into existing ecosystems, ensuring both resilience and security natively.

Before we explore the groundbreaking Astran S5, let's revisit what makes S3 the gold standard in cloud storage. S3's simple yet powerful web service interface allows users to store and retrieve any amount of data, at any time, from anywhere on the web. It's known for its scalability, high availability, and durability. The protocol's broad acceptance and support across cloud platforms and applications underscore its critical role in today's digital infrastructure.

Astran S5, where S5 stands for Secret Sharing S3, brings a novel approach to cloud storage – it marries the widely used S3 protocol with advanced cryptographic techniques; combining All or Nothing Transform (AONT, see our CTO presentation at the NIST 28/09/2023) and Threshold Secret Sharing (TSS). This unique combination ensures that Astran's users enjoy continuous native multi-cloud resilience and unprecedented security levels without additional complexity or the need for direct encryption key management.

Features AWS Astran S5
Objects Storage API (S3) Yes Yes
IAM Role Authentication Yes Yes
Multi-cloud Resilient No Yes
Cloud Agnostic No Yes
GDPR compliant No Yes
Standard Cryptography (classical encryption) Yes No
Advanced Cryptography (Multi-Party Threshold Cryptography) No Yes
Keyless Service No Yes
ANSSI certifications No CSPN Under Audit (Feb 2024) SecNumCloud Acceleration Program

The beauty of Astran S5 lies in its seamless integration. By being fully compatible with the S3 protocol, it plugs directly into existing workflows and tools that already support S3, ensuring that the transition is smooth and requires no extra work from the users' end. This compatibility extends the utility of S3's robust ecosystem to Astran S5 users, enabling you to leverage existing S3 tools and libraries while benefiting from enhanced security measures, as well as Compliance coverage.

One of the standout features of Astran S5 is its keyless service approach. By utilizing an All or Nothing Transform (AONT) and Threshold Secret Sharing, Astran S5 ensures data is encrypted and fragmented server-side. This method eliminates the need for clients to manage encryption keys, thereby reducing the risk of mismanagement and enhancing security. Users can interact with their storage with the peace of mind that their data is protected through advanced cryptographic measures, inherently resistant to attacks and unauthorized access.

The nomenclature "S5" is more than just a branding choice; it signifies the seamless blend of S3's simplicity and flexibility with the added layer of secret sharing security, encapsulating the essence of Astran's innovation in five simple characters. This mnemonic serves as a constant reminder of the product's core value proposition: uncompromised security without added complexity.

Accompanying this blog is a YouTube video that illustrates the interoperability of Astran S5 with AWS S3. Viewers will witness a side-by-side comparison of two command-line interfaces (CLIs), one interfacing with AWS S3 and the other with Astran S5. The video demonstrates how both systems respond similarly to identical queries, showcasing the seamless integration of Astran S5 into existing S3-based workflows while highlighting its added security benefits.

As cloud storage needs continue to evolve, the demand for solutions that offer both ease of integration and enhanced security is paramount. Astran S5 rises to this challenge by providing an S3 compatible API enriched with advanced cryptographic security measures, all while maintaining the simplicity and familiarity of S3. With Astran S5, users gain not just a storage solution but a resilient and secure data fortress that integrates smoothly into their existing digital ecosystem.

Return to Resources ->