Compare storage on Azure and AWS
The audience for this guide is organizations or individuals who are migrating from AWS to Azure or adopting a multicloud strategy. The goal of this guide is to help AWS architects understand the storage capabilities of Azure by comparing Azure services to AWS services.
S3/EBS/EFS and Azure Storage
On the AWS platform, cloud storage is typically deployed in three ways:
Simple Storage Service (S3). Basic object storage that makes data available through an API.
Elastic Block Store (EBS). Block-level storage that's typically intended for access by a single virtual machine (VM). You can attach it to multiple volumes by using specific storage classes and file systems.
Shared storage. Various shared storage services that AWS provides, like Elastic File System (EFS) and the FSx family of managed file systems.
In Azure Storage, subscription-bound storage accounts allow you to create and manage the following storage services:
Blob storage stores any type of text or binary data, such as a document, media file, or application installer. You can set Blob storage for private access or share contents publicly to the Internet. Blob storage serves the same purpose as both AWS S3 and EBS.
Table storage stores structured datasets. Table storage is a NoSQL key-attribute data store that allows for rapid development and fast access to large quantities of data. Similar to AWS' SimpleDB and DynamoDB services.
Queue storage provides messaging for workflow processing and for communication between components of cloud services.
File storage provides shared storage for applications. It uses the standard Server Message Block (SMB) or Network File System (NFS) protocol. File storage is used in a way that's similar to how EFS or FSx for Windows File Server are used.
Azure also provides other managed file systems, including Azure Managed Lustre, Azure NetApp Files, and Azure Native Qumulo. For more information, see Storage comparison.
Glacier and Azure Storage
Azure Archive Blob Storage is comparable to AWS Glacier storage service. It's intended for rarely accessed data that is stored for at least 180 days and can tolerate several hours of retrieval latency.
For data that is infrequently accessed but must be available immediately when accessed, Azure Cool Blob Storage tier provides cheaper storage than standard blob storage. This storage tier is comparable to AWS S3 - Infrequent Access storage service.
Object storage access control
In AWS, access to S3 is typically granted via either an Identity and Access Management (IAM) role or directly in the S3 bucket policy. Data plane network access is typically controlled via S3 bucket policies.
With Azure Blob Storage, a layered approach is used. The Azure Storage firewall is used to control data plane network access.
In Amazon S3, it's common to use pre-signed URLs to give time-limited permission access. In Azure Blob storage, you can achieve a similar result by using a shared access signature.
Regional redunandacy and replication for object storage
Organizations often want to protect their storage objects by using redundant copies. In both AWS and Azure, data is replicated in a particular region. On Azure, you control how data is replicated by using locally redundant storage (LRS) or zone-redundant storage (ZRS). If you use LRS, copies are stored in the same datacenter for cost or compliance reasons. ZRS is similar to AWS replication: it replicates data across availability zones within a region.
AWS customers often replicate their S3 buckets to another region by using cross-region replication. You can implement this type of replication in Azure by using Azure blob replication. Another option is to configure geo-redundant storage (GRS) or geo-zone-redundant storage (GZRS). GRS and GZRS synchronously replicate data to a secondary region without requiring a replication configuration. The data isn't accessible unless a planned or unplanned failover occurs.
Comparing block storage choices
Both platforms provide different types of disks to meet particular performance needs. Although the performance characteristics don't match exactly, the following table provides a generalized comparison. You should always perform testing to determine which storage configurations best suit your application. For higher-performing disks, on both AWS and Azure you need to match the storage performance of the VM with the provisioned disk type and configuration.
| AWS EBS volume type | Azure Managed disk | Use |
|---|---|---|
| gp2/gp3 | Standard SSD | Web servers and lightly used application servers or dev/test environments |
| gp2/gp3 | Premium SSD | Production and performance-sensitive workloads |
| io1 | Premium SSD v2 | Performance-sensitive workloads or workloads that require high IOPS and low latency |
| io2 | Ultra Disk Storage | IO-intensive workloads, performance-demanding databases, and very high transaction workloads that demand high throughput and IOPS |
| st1/sc1 | Standard HDD | Non-critical or infrequent-access systems |
On Azure, you can configure many VM types for host caching. When host caching is enabled, cache storage is made available to the VM and can be configured for read-only or read/write mode. For some workloads, the cache can improve storage performance.
Storage comparison
Object storage
| AWS service | Azure service | Description |
|---|---|---|
| Simple Storage Services (S3) | Blob storage | Object storage service for use cases that include cloud applications, content distribution, backup, archive, immutable storage, disaster recovery, and big data analytics. |
Virtual server disks
| AWS service | Azure service | Description |
|---|---|---|
| Elastic Block Store (EBS) | Managed Disks | SSD storage that's optimized for I/O-intensive read/write operations. For use as high-performance Azure virtual machine storage. |
| Amazon FSX for NetApp ONTAP iSCSI or NVMe/TCP LUNs | Azure Elastic SAN | Storage area network (SAN) capabilities in the cloud. Uses industry-standard storage protocols. |
Shared files
| AWS service | Azure service | Description |
|---|---|---|
| Elastic File System | Files | Provides a simple interface for creating and configuring file systems quickly and sharing common files. Supports NFS protocol for connectivity. |
| Amazon FSx for Windows File Server | Files | Provides a managed SMB file share that can work with Active Directory for access control. Azure Files can also natively integrate with Microsoft Entra ID. |
| Amazon FSx for Lustre | Azure Managed Lustre | Provides a managed Lustre file system that integrates with object storage. Primary use cases include HPC, machine learning, and analytics. |
| Amazon FSx for NetApp ONTAP | Azure NetApp Files | Provides managed NetApp capabilities in the cloud. Includes dual-protocol high-performance file storage. |
Archiving and backup
| AWS service | Azure service | Description |
|---|---|---|
| S3 Infrequent Access (IA) | Storage cool tier | Cool storage is a lower-cost tier for storing data that is infrequently accessed and long-lived. |
| S3 Glacier | Cold access storage tier | Cold storage has lower storage costs and higher access costs. Access times remain in the milliseconds. |
| S3 Glacier Deep Archive | Storage archive access tier | Archive storage has the lowest storage cost and higher data retrieval costs. It can take hours to retrieve data. |
| Backup | Backup | This option is used to back up and recover files, databases, disks, and virtual machines. Azure Backup also supports backing up compatible on-premises Windows systems. |
Hybrid storage
| AWS service | Azure service | Description |
|---|---|---|
| AWS Storage Gateway: S3 File Gateway | Azure Data Box Gateway, Azure File Sync | Provides on-premises, locally cached NFS and SMB file shares that are cloud-backed. |
| AWS Storage Gateway: Tape Gateway | None | Replaces on-premises physical tapes with on-premises, cloud-backed virtual tapes. |
| AWS Storage Gateway: Volume Gateway | None | Provides on-premises iSCSI based block storage that is cloud-backed. |
| DataSync | File Sync | Azure Files can be deployed in two main ways: by directly mounting the serverless Azure file shares or by caching Azure file shares on-premises using Azure File Sync. |
Bulk data transfer
| AWS service | Azure service | Description |
|---|---|---|
| Import/Export Disk | Import/Export | A data transport solution that uses secure disks and appliances to transfer large amounts of data. Also offers data protection during transit. |
| Snowball Edge | Data Box | Petabyte-scale to exabyte-scale data transport solution that uses enhanced-security data storage devices to transfer large amounts of data to and from Azure. |
Storage architectures
| Architecture | Description |
|---|---|
| HIPAA and HITRUST-compliant health data AI | Manage HIPAA and HITRUST-compliant health data and medical records with the highest level of built-in security. |
| HPC log | Optimize the media rendering process with a step-by-step HPC solution architecture from Azure that combines Azure CycleCloud and HPC Cache. |
| Medical data storage solutions | Store healthcare data effectively and affordably with cloud-based solutions from Azure. Manage medical records with the highest level of built-in security. |
View Azure storage architectures
Contributors
This article is maintained by Microsoft. It was originally written by the following contributors.
Principal author:
- Adam Cerini | Director, Partner Technology Strategist
Other contributor:
- Yuri Baijnath | Senior CSA Manager
To see non-public LinkedIn profiles, sign in to LinkedIn.