📋 Content Update Notice (June 2026)
This post has been updated to reflect the latest AWS DR whitepaper “Disaster Recovery of Workloads on AWS: Recovery in the Cloud” which replaces the original AWS Disaster Recovery whitepaper. Key updates include AWS Elastic Disaster Recovery (DRS), AWS Backup, AWS Resilience Hub, deprecation of OpsWorks and AWS Import/Export, and rebranding of Amazon Glacier to S3 Glacier storage classes.
AWS Disaster Recovery Whitepaper is one of the very important Whitepaper for both the Associate & Professional AWS Certification exam
Disaster Recovery Overview
- AWS Disaster Recovery whitepaper “Disaster Recovery of Workloads on AWS: Recovery in the Cloud” highlights AWS services and features that can be leveraged for disaster recovery (DR) processes to significantly minimize the impact on data, system, and overall business operations.
- It outlines best practices to improve your DR processes, from minimal investments to full-scale availability and fault tolerance, and describes how AWS services can be used to reduce cost and ensure business continuity during a DR event
- Disaster recovery (DR) is about preparing for and recovering from a disaster. Any event that has a negative impact on a company’s business continuity or finances could be termed a disaster. One of the AWS best practice is to always design your systems for failures
- Resiliency is a shared responsibility between AWS and the customer. AWS is responsible for “Resiliency of the Cloud” (infrastructure), while customers are responsible for “Resiliency in the Cloud” (workload architecture)
Disaster Recovery Key AWS services
- Region
- AWS services are available in multiple regions around the globe, and the DR site location can be selected as appropriate, in addition to the primary site location
- Each AWS Region is fully isolated and consists of multiple Availability Zones, which are physically isolated partitions of infrastructure
- All traffic between AZs is encrypted and interconnected with high-bandwidth, low-latency networking
- Storage
- Amazon S3
- provides a highly durable (99.999999999%) storage infrastructure designed for mission-critical and primary data storage.
- stores Objects redundantly on multiple devices across multiple facilities within a region
- supports cross-region replication for DR scenarios
- Amazon S3 Glacier Storage Classes (formerly Amazon Glacier)
- S3 Glacier Instant Retrieval – millisecond retrieval for archives that need immediate access
- S3 Glacier Flexible Retrieval (formerly S3 Glacier) – retrieval times of minutes to hours, suitable for backup data
- S3 Glacier Deep Archive – lowest cost storage, retrieval time of 12-48 hours for long-term archive
- Note: Amazon Glacier (original standalone vault-based service) no longer accepts new customers as of December 15, 2025. Use S3 Glacier storage classes instead.
- Amazon EBS
- provides the ability to create point-in-time snapshots of data volumes.
- Snapshots can then be used to create volumes and attached to running instances
- Snapshots can be copied across regions for cross-region DR
- AWS Storage Gateway
- a service that provides seamless and highly secure integration between on-premises IT environment and the storage infrastructure of AWS.
- Supports File Gateway (S3 File Gateway, FSx File Gateway), Volume Gateway (cached and stored), and Tape Gateway
- AWS Snow Family (formerly AWS Import/Export)
- accelerates moving large amounts of data into and out of AWS by using portable storage devices for transport bypassing the Internet
- ⚠️ Important: Effective November 7, 2025, AWS Snowball Edge devices are only available to existing customers. New customers should explore:
- AWS DataSync – for online data transfers
- AWS Data Transfer Terminal – secure physical locations for high-speed data upload using 100 GbE connections
- AWS Partner solutions – for specialized transfer needs
- AWS Backup
- Fully managed service that centralizes and automates data protection across AWS services and hybrid workloads
- Define central backup policies (backup plans) that work across compute, storage, and database services
- Supports cross-region and cross-account backup for DR
- Provides ransomware detection and recovery capabilities
- Includes compliance insights and analytics for data protection policies
- Compute
- Amazon EC2
- provides resizable compute capacity in the cloud which can be easily created and scaled.
- EC2 instance creation using Preconfigured AMIs
- EC2 instances can be launched in multiple AZs, which are engineered to be insulated from failures in other AZs
- Networking
- Amazon Route 53
- is a highly available and scalable DNS web service
- includes a number of global load-balancing capabilities that can be effective when dealing with DR scenarios for e.g. DNS endpoint health checks and the ability to failover between multiple endpoints
- Amazon Route 53 Application Recovery Controller (ARC)
- Provides readiness checks and routing controls to manage application failover across AZs and Regions
- Zonal Shift – temporarily moves traffic away from an impaired Availability Zone within minutes
- Zonal Autoshift – AWS automatically shifts traffic away from an AZ when a potential failure is detected
- No additional charge for zonal autoshift
- Elastic IP
- addresses enables masking of instance or Availability Zone failures by programmatically remapping
- addresses are static IP addresses designed for dynamic cloud computing.
- Elastic Load Balancing (ELB)
- performs health checks and automatically distributes incoming application traffic across multiple EC2 instances
- Amazon Virtual Private Cloud (Amazon VPC)
- allows provisioning of a private, isolated section of the AWS cloud where resources can be launched in a defined virtual network
- Amazon Direct Connect
- makes it easy to set up a dedicated network connection from on-premises environment to AWS
- Databases
- RDS, DynamoDB, Redshift provided as a fully managed RDBMS, NoSQL and data warehouse solutions which can scale up easily
- DynamoDB offers global tables with multi-region, active-active replication
- RDS provides Multi-AZ and Read Replicas and also ability to snapshot data from one region to other
- Amazon Aurora Global Database provides cross-region replication with RPO typically measured in seconds and RTO in under a minute for failover
- Deployment Orchestration
- CloudFormation
- gives developers and systems administrators an easy way to create a collection of related AWS resources and provision them in an orderly and predictable fashion
- Infrastructure as Code (IaC) enables rapid re-creation of environments in DR regions
- Elastic Beanstalk
- is an easy-to-use service for deploying and scaling web applications and services
OpsWorks (EOL – May 26, 2024)
- ⚠️ AWS OpsWorks reached End of Life on May 26, 2024 and has been disabled for both new and existing customers.
- The OpsWorks console, API, CLI, and CloudFormation resources have been discontinued in all AWS Regions.
- Migration alternatives: AWS Systems Manager, AWS CloudFormation, AWS CDK, or third-party tools like Ansible, Puppet, or Chef directly.
- Disaster Recovery Services
- AWS Elastic Disaster Recovery (AWS DRS)
- Minimizes downtime and data loss with fast, reliable recovery of on-premises and cloud-based applications
- Achieves RPOs in seconds and RTOs in minutes (typically 5-20 minutes)
- Uses lightweight staging environment with minimal resources to keep costs down
- Supports automated failover and failback
- Supports physical, VMware vSphere, Microsoft Hyper-V, and cloud infrastructure sources
- Provides point-in-time recovery capability for ransomware protection
- Supports servers with up to 60 volumes
- Supports AWS Outposts for on-premises recovery
- Note: AWS DRS replaced CloudEndure Disaster Recovery (CEDR), which was discontinued on March 31, 2024
- AWS Resilience Hub
- Central location to define resilience goals, assess resilience posture, and implement recommendations
- Continuously validates and tracks the resilience of AWS workloads
- Assesses whether RTO and RPO targets can be met
- Provides automated DR testing and compliance reporting
- Integrates with AWS Well-Architected Framework for improvement recommendations
- Next generation (GA May 2026) includes generative AI-based SRE resilience journey
Key factors for Disaster Planning
Recovery Time Objective (RTO) – The time it takes after a disruption to restore a business process to its service level, as defined by the operational level agreement (OLA) for e.g. if the RTO is 1 hour and disaster occurs @ 12:00 p.m (noon), then the DR process should restore the systems to an acceptable service level within an hour i.e. by 1:00 p.m
Recovery Point Objective (RPO) – The acceptable amount of data loss measured in time before the disaster occurs. for e.g., if a disaster occurs at 12:00 p.m (noon) and the RPO is one hour, the system should recover all data that was in the system before 11:00 a.m.
Disaster Recovery Scenarios
- Disaster Recovery scenarios can be implemented with the Primary infrastructure running in your data center in conjunction with the AWS
- Disaster Recovery Scenarios still apply if Primary site is running in AWS using AWS multi region feature.
- Combination and variation of the below is always possible.
- Use AWS Resilience Hub to continuously validate and track the resilience of your workloads, including whether you are likely to meet your RTO and RPO targets.
Disaster Recovery Scenarios Options
- Backup & Restore (Data backed up and restored)
- Pilot Light (Only Minimal critical functionalities)
- Warm Standby (Fully Functional Scaled down version)
- Multi-Site Active/Active
For the DR scenarios options, RTO and RPO reduces with an increase in Cost as you move from Backup & Restore option (left) to Multi-Site option (right)
Note: For a disaster event based on disruption or loss of one physical data center for a well-architected, highly available workload, you may only require a backup and restore approach. If your definition of a disaster goes beyond the disruption of a physical data center to that of a Region or if you are subject to regulatory requirements, then consider Pilot Light, Warm Standby, or Multi-Site Active/Active.
Backup & Restore
AWS can be used to backup the data in a cost effective, durable and secure manner as well as recover the data quickly and reliably.
Backup phase
In most traditional environments, data is backed up to tape and sent off-site regularly taking longer time to restore the system in the event of a disruption or disaster
- Amazon S3 can be used to backup the data and perform a quick restore and is also available from any location
- AWS Snow Family (for existing customers) or AWS Data Transfer Terminal (for new customers) can be used to transfer large data sets bypassing the Internet
- Amazon S3 Glacier storage classes can be used for archiving data – use S3 Glacier Flexible Retrieval for hours or S3 Glacier Instant Retrieval for millisecond access
- AWS Storage Gateway enables snapshots (used to created EBS volumes) of the on-premises data volumes to be transparently copied into S3 for backup. It can be used either as a backup solution (Volume Gateway – stored volumes) or as a primary data store (Volume Gateway – cached volumes)
- AWS Direct Connect can be used to transfer data directly from On-Premise to Amazon consistently and at high speed
- Snapshots of Amazon EBS volumes, Amazon RDS databases, and Amazon Redshift data warehouses can be stored in Amazon S3
- AWS Backup can centrally manage backup policies across all AWS services with automated scheduling, retention management, and cross-region/cross-account copying
Restore phase
Data backed up then can be used to quickly restore and create Compute and Database instances
Key steps for Backup and Restore:
1. Select an appropriate tool or method to back up the data into AWS.
2. Ensure an appropriate retention policy for this data.
3. Ensure appropriate security measures are in place for this data, including encryption and access policies.
4. Regularly test the recovery of this data and the restoration of the system.
Pilot Light
In a Pilot Light Disaster Recovery scenario option a minimal version of an environment is always running in the cloud, which basically host the critical functionalities of the application for e.g. databases
In this approach :-
- Maintain a pilot light by configuring and running the most critical core elements of your system in AWS for e.g. Databases where the data needs to be replicated and kept updated.
- During recovery, a full-scale production environment, for e.g. application and web servers, can be rapidly provisioned (using preconfigured AMIs and EBS volume snapshots) around the critical core
- For Networking, either a ELB to distribute traffic to multiple instances and have DNS point to the load balancer or preallocated Elastic IP address with instances associated can be used
- AWS Elastic Disaster Recovery (DRS) can automate the pilot light approach with continuous replication and rapid failover capabilities
Preparation phase steps :
- Set up Amazon EC2 instances or RDS instances to replicate or mirror data critical data
- Ensure that all supporting custom software packages available in AWS.
- Create and maintain AMIs of key servers where fast recovery is required.
- Regularly run these servers, test them, and apply any software updates and configuration changes.
- Consider automating the provisioning of AWS resources.
- Use AWS Resilience Hub to validate your DR posture and ensure RTO/RPO targets can be met.
Key steps for Backup and Restore:
Recovery phase Steps:
