Amazon Glacier: In-Depth Exploration of AWS’s Archival Storage Solution

As the digital age advances, organizations and individuals alike find themselves managing a deluge of data. Not all this information is used daily. Some of it—such as historical records, compliance documentation, and media archives—needs to be stored securely but accessed infrequently. For this specific purpose, a specialized type of storage is essential: one that’s affordable, secure, durable, and efficient for long-term storage. This is where Amazon Glacier comes into play.

Developed by Amazon Web Services (AWS), Glacier offers an extremely low-cost storage option tailored for data that doesn’t need frequent retrieval. It is particularly effective when used alongside Amazon S3, with Glacier taking on the responsibility of archiving older or less active data. This hybrid approach helps cut costs while maintaining data availability whenever required.

Introduction to Amazon Glacier

Amazon Glacier, now officially known as Amazon S3 Glacier, is a scalable, durable, and secure cloud-based archival storage service. It is crafted for long-term data preservation, where speed is a lower priority than cost. Glacier supports diverse data types, from large video repositories and medical records to compressed logs and application backups.

While Amazon S3 serves real-time and near-real-time data needs, Glacier is geared toward asynchronous storage and retrieval. This difference makes Glacier particularly attractive to industries that accumulate immense volumes of information but rarely need to retrieve it—such as legal firms, hospitals, R&D departments, and government agencies.

Key Characteristics of Glacier

• Glacier accommodates unlimited amounts of data, supporting storage growth seamlessly as needs expand.
  
• It offers an impressive durability of 99.999999999% by distributing data across several geographically dispersed facilities.
  
• Files stored within Glacier are immutable, ensuring they remain unchanged once uploaded.
  
• All archived content is encrypted by default for robust security at rest.
  
• Storage costs are exceptionally low, making it an ideal choice for organizations seeking to trim long-term data retention expenses.

Glacier’s Underlying Architecture: Archives and Vaults

Amazon Glacier operates using a fundamental data model based on two core entities: Archives and Vaults.

Archives: The Basic Storage Units

An archive is the actual data object you store. This can include single files or compressed folders like .zip or .tar formats. Whether it’s a gigabyte of compliance data or a terabyte of media content, Glacier allows it all to be stored as an archive.

Important details about archives:

• Each archive can be as large as 40 terabytes.
  
• There is no upper limit to how many archives you can store.
  
• Once uploaded, an archive cannot be modified.
  
• Archives are uniquely identified and managed using system-generated IDs.

Vaults: Logical Containers for Archives

While archives represent the stored data, vaults serve as containers for organizing and managing those archives. Each vault can contain countless archives, making it easier to manage large datasets and apply consistent policies.

Noteworthy features of vaults:

• Each AWS account can create up to 1000 vaults.
  
• Access control policies can be applied individually to vaults.
  
• Operations like creating, locking, tagging, and listing vaults are available via AWS SDKs or APIs.

Features That Make Glacier Stand Out

Amazon Glacier’s strength lies in the combination of powerful features that enhance security, manageability, and retrieval flexibility.

Flexible Retrieval Options

Recognizing that not all archived data has the same urgency for retrieval, Glacier provides three distinct methods:

• Expedited Retrieval: Ideal for emergency situations, data can be accessed in as little as 1 to 5 minutes.
  
• Standard Retrieval: Suitable for normal usage, this method takes approximately 3 to 5 hours.
  
• Bulk Retrieval: Designed for massive data sets, it may take 5 to 12 hours but is highly cost-efficient.

These options allow users to balance cost with speed depending on the specific retrieval scenario.

Querying with Glacier Select

One of Glacier’s more advanced features is the ability to query archives directly without downloading them entirely. This is made possible through Glacier Select, a feature that enables structured queries on archived datasets, significantly saving both time and retrieval costs.

Vault Lock for Compliance

To support regulatory compliance, Glacier includes Vault Lock, which lets users configure immutable policies such as WORM (Write Once Read Many). These policies prevent modifications to stored data and support industries with stringent compliance needs like finance or healthcare.

Access Control via IAM

Security is at the heart of Glacier. With AWS Identity and Access Management (IAM), administrators can create roles and assign precise permissions, controlling who can perform what actions on each vault. Whether you’re granting read-only access to an auditor or full control to a backup manager, permissions are fully customizable.

Vault Inventory Reports

Glacier automatically generates periodic inventories for all vaults. These reports help users maintain an up-to-date catalog of archives, showing attributes like name, creation time, and description. This becomes especially valuable when dealing with thousands of archives spread across multiple vaults.

Integration with AWS SDKs

Developers and system administrators can interact with Glacier using AWS Software Development Kits. These SDKs are available for popular programming languages such as Python, Java, .NET, and PHP, making integration seamless across diverse application stacks.

Retrieval Policies and Cost Management

To further reduce costs and avoid unexpected charges, Glacier allows the configuration of data retrieval policies. These rules define the maximum rate at which data can be retrieved and can be adjusted based on business requirements.

Available options include:

• Free Tier Only: Restricts retrievals to stay within the free monthly quota.
  
• Maximum Retrieval Rate: Allows users to specify a maximum allowable data transfer rate in gigabytes per hour.

Policies can be applied using either the AWS Management Console or via command-line tools and APIs. Once configured, Glacier enforces these rules strictly, ensuring that retrievals do not exceed set thresholds.

Real-World Applications of Glacier

Amazon Glacier is utilized across numerous industries for a variety of long-term storage scenarios:

Medical Institutions

Hospitals and healthcare systems must retain patient records, scans, and other documents for decades. Glacier provides the durability and cost savings needed for such extended retention.

Legal and Compliance Archiving

Law firms and corporate legal departments often manage vast libraries of legal documents, case histories, and contracts. Glacier ensures these are stored securely and cost-effectively for future reference.

Research and Academia

Universities and scientific research labs accumulate massive volumes of experimental data. Glacier offers an economical solution for storing these datasets, especially when the information may only be accessed occasionally.

Media and Content Archives

Production houses and broadcasters often deal with terabytes of raw footage, edited content, and digital assets. Archiving this content on Glacier ensures preservation without bloating the storage budget.

Enterprise Backup and Disaster Recovery

Enterprises frequently use Glacier to maintain backups of systems, databases, and applications. These backups are only accessed during audits or recovery events, making Glacier’s cold storage model a perfect match.

Steps to Create a Glacier Vault

Setting up a Glacier vault is straightforward and intuitive. Here’s a high-level view of the steps:

1. Access the Glacier Service: Log into your AWS account and navigate to the Glacier dashboard.
   
2. Choose Region and Vault Name: Select your preferred geographic region and provide a unique name for the vault.
   
3. Configure Optional Notifications: While not mandatory, you may enable event notifications using Amazon Simple Notification Service (SNS).
   
4. Review and Confirm: Check your configurations and finalize the vault creation.
   
5. Define Retrieval Policies: Set up retrieval rules that align with your access needs and budget constraints.

Once created, the vault is ready for uploading archives through the AWS Console, SDKs, or CLI.

Combining Glacier with S3 for Efficient Data Management

A common strategy among seasoned AWS users is to integrate Glacier with Amazon S3 using lifecycle policies. These rules automatically transition objects from S3 to Glacier after a specified period of inactivity. For example, backups older than 90 days can be automatically moved to Glacier, freeing up S3 space and reducing costs.

This tandem setup enables organizations to enjoy the performance of S3 for current data and the affordability of Glacier for historical information—all under a unified storage architecture.

Amazon Glacier presents a robust solution for organizations seeking to manage their archival data intelligently. It offers a compelling balance of scalability, durability, and affordability, supported by a mature ecosystem of tools and integrations. Whether you’re a large enterprise, a healthcare provider, or a research institution, Glacier empowers you to preserve valuable data without straining operational budgets.

In a world where data accumulation is inevitable, having a reliable cold storage mechanism like Glacier ensures that no byte is lost to time or budget constraints. As cloud computing continues to evolve, services like Glacier provide the cornerstone for sustainable, long-term digital preservation strategies.

Introduction to Glacier’s Operational Workflow

When managing archival data at scale, understanding the flow of operations is critical. Amazon Glacier operates through a series of simple yet powerful processes that govern how data is stored, managed, and retrieved. While its design emphasizes long-term retention and cost-efficiency, Glacier also ensures flexibility in handling data lifecycle transitions, access patterns, and administrative control.

In this section, we’ll walk through how Glacier functions under the hood—from uploading archives to managing vault configurations and automating transitions from other AWS storage classes. These insights are essential for making the most of Glacier’s unique value proposition.

Uploading Data to Amazon Glacier

Storing data in Glacier is not a drag-and-drop process as seen in conventional cloud drives. Instead, it’s tailored for developers, system architects, and data engineers who operate through APIs, AWS SDKs, or the AWS Management Console.

Direct Uploads

Users can upload data directly into Glacier by creating an archive and sending the payload via REST API or through the SDK. These archives must be placed inside a designated vault. Each archive is assigned a unique ID by the system, and metadata such as checksums are generated to verify the integrity of the data.

Multipart Uploads

For exceptionally large files—say over a few gigabytes—Glacier supports multipart uploads. This method allows files to be split into smaller parts and uploaded in parallel, improving efficiency and reliability. Once all parts are uploaded, they are assembled on AWS’s end and committed as a single archive.

Integrity Validation

Every upload into Glacier is subject to a SHA-256 tree hash checksum. This ensures the uploaded data remains uncorrupted and confirms that the content received by Glacier is identical to what was intended. Such mechanisms are critical when storing sensitive or regulatory data.

Managing Vaults for Administrative Control

A vault in Glacier isn’t just a container—it’s also a point of control. Administrators can apply a variety of configurations and policies that govern how data inside the vault behaves.

Access Policies

Vault-level access can be fine-tuned using AWS Identity and Access Management (IAM) and vault policy statements. These rules determine who can read from, write to, or administer the vault. For instance, you could restrict a team of developers to read-only access while granting full access to backup administrators.

Notifications

Vaults can be configured to trigger notifications via AWS Simple Notification Service (SNS). This feature is useful for audit trails, compliance monitoring, or simply knowing when a data retrieval job has completed.

Vault Lock Configuration

Vault Lock is a Glacier-specific feature designed to help organizations meet compliance obligations. Once enabled, it enforces a policy—such as Write Once Read Many (WORM)—that cannot be altered or bypassed after the lock is finalized. This makes it ideal for storing regulatory data like tax records or healthcare compliance logs.

Retrieval Workflow and Job Management

Retrieving data from Glacier isn’t an instantaneous process like with other storage services. Instead, it operates using a job-based retrieval system that varies depending on the urgency and volume of the data needed.

Retrieval Job Creation

To access archived data, users initiate a retrieval job. This process involves specifying the archive ID and selecting a retrieval method—Expedited, Standard, or Bulk. Glacier processes the job in the background and delivers the output either to an S3 bucket or directly to a specified location depending on the method used.

Retrieval Job Types

• Expedited Jobs: Ideal for scenarios requiring urgent access. Small datasets can be retrieved within 1 to 5 minutes.
  
• Standard Jobs: The default and most economical option for moderate-speed access, typically within 3 to 5 hours.
  
• Bulk Jobs: Tailored for retrieving massive volumes of data. The process is slower (5 to 12 hours) but extremely cost-efficient.

Partial Retrievals

Not all use cases require downloading entire archives. Glacier supports ranged retrieval, which allows users to fetch only specific byte ranges from an archive. This minimizes bandwidth and cost when only a segment of the data is needed.

Lifecycle Integration with Amazon S3

One of Glacier’s most powerful features is its seamless integration with Amazon S3 through lifecycle policies. This allows organizations to automate the movement of data from S3 to Glacier after a predefined period.

Lifecycle Rule Definition

In S3, users can define rules that automatically transition objects between storage classes. For example, objects that haven’t been accessed for 90 days can move from S3 Standard to S3 Glacier, and later to S3 Glacier Deep Archive after one year.

Benefits of Lifecycle Transitions

• Reduced Operational Overhead: No need to manually manage file transfers or data migration.
  
• Predictable Costs: Helps in long-term budgeting and reduces unnecessary usage of high-cost storage tiers.
  
• Retention Control: Policies can be structured to automatically delete objects after a certain period, further optimizing storage usage.

Storage Class Considerations

While S3 Glacier is meant for long-term archiving, Glacier Deep Archive offers even lower storage costs at the expense of retrieval time. Understanding your data access patterns helps determine the best class:

• S3 Glacier: Used for data retrieved once or twice a year.
  
• S3 Glacier Deep Archive: Suitable for data accessed less than once a year and retained purely for compliance or archival.

Monitoring and Audit Trails

Visibility into operations is crucial for governance, especially in enterprises where storage compliance is mandatory. Amazon Glacier supports extensive monitoring features:

AWS CloudTrail Integration

All API interactions with Glacier are logged in AWS CloudTrail. This includes uploads, retrieval requests, vault policy changes, and deletions. These logs are invaluable for audits, forensic analysis, and policy enforcement.

Amazon CloudWatch Metrics

Glacier integrates with CloudWatch to provide near real-time metrics on usage and performance. These include:

• Number of vaults created
  
• Number of retrieval jobs submitted or completed
  
• Notifications triggered
  
• Vault size over time

Vault Inventory Reports

Every vault maintains an inventory report that details all archives it contains. These reports can be used to validate data, confirm uploads, or support compliance documentation. They’re typically generated once every 24 hours and include metadata like size, description, and creation timestamps.

Security and Encryption

Amazon Glacier is built on AWS’s world-class security infrastructure. By default, all data is encrypted at rest using AES-256 bit encryption. Additional layers of protection can be implemented using IAM roles, KMS-managed keys, and access control policies.

Key Security Features

• Automatic Encryption: All data is encrypted server-side without requiring user intervention.
  
• Key Management Services (KMS): For advanced users, integration with AWS KMS allows custom key generation, auditing, and key rotation.
  
• IAM Integration: Fine-grained user access to vaults and archives, ensuring only authorized users can interact with stored data.

Practical Use Cases in the Real World

Organizations across the globe rely on Glacier to streamline their long-term data storage strategies.

Enterprise Backup Solutions

Businesses use Glacier to archive nightly or weekly backups of critical systems. In the event of a disaster, this ensures that a safe, unalterable version of data exists off-site.

Media and Entertainment

Film studios and broadcasters generate vast media libraries that must be retained for licensing, reruns, or historical archives. Glacier offers a low-cost alternative to expensive physical storage or high-performance cloud options.

Healthcare and Research

Medical institutions that generate high-resolution scans or clinical trial data need to preserve records for decades. Glacier provides cost-effective, durable storage while maintaining compliance with healthcare standards.

Government and Legal Firms

Data held by law enforcement, courts, or municipal agencies often needs to be archived indefinitely. Glacier’s immutability and Vault Lock features align well with such long-term, non-negotiable storage requirements.

Cost Considerations and Budgeting

One of the most compelling reasons to adopt Glacier is its cost structure. At a fraction of a cent per gigabyte per month, it is among the most affordable cloud storage services available. However, the following points must be considered:

• Retrieval Costs: Fast retrievals (Expedited) cost more than Standard or Bulk.
  
• Early Deletion Fees: Archives deleted within 90 days of upload incur early deletion fees.
  
• API Call Costs: Interactions with Glacier (such as upload or retrieval requests) may incur charges if frequency is high.

Strategic planning and retrieval policy enforcement are essential to keep costs manageable. Businesses should also explore AWS’s cost calculators and budgeting tools to fine-tune their Glacier usage.

Future-Proofing Storage Strategy

Data is expected to grow exponentially in the coming years. Organizations that proactively embrace cold storage solutions like Glacier are better prepared for future compliance, cost management, and digital archiving. Moreover, as AI and analytics demand access to historical data, having structured and retrievable archives will become even more important.

By integrating Glacier early into their data infrastructure, businesses ensure not just storage, but strategic readiness.

Amazon Glacier stands at the intersection of cost-efficiency and long-term data security. Its operational design, retrieval model, and lifecycle integrations make it a cornerstone for any serious cloud storage strategy. When thoughtfully implemented, it becomes not just a place to store old data, but a structured, governed, and budget-conscious extension of your digital infrastructure.

Evolving from Basic Archival to Strategic Cold Storage

Storing data isn’t merely about placing it in the cloud—it’s about maintaining control, scalability, accessibility, and cost-efficiency. Once an organization understands how Amazon Glacier operates at a foundational level, the next logical step is to integrate it into a broader cloud infrastructure. Doing so not only optimizes data lifecycle management but also positions the enterprise for long-term success as storage needs escalate.

This final segment explores how Amazon Glacier can be adopted strategically in a variety of deployment scenarios. From combining it with other AWS tools to implementing automation, compliance safeguards, and data recovery techniques, Glacier becomes a pivotal element in resilient digital ecosystems.

Integrating Glacier with Backup and Restore Architectures

Glacier’s design fits naturally into backup and disaster recovery solutions. Because its storage costs are minimal and it supports massive file sizes, many enterprises build their long-term backup pipelines with Glacier at the core.

Offloading Historical Backups

Routine application or database backups are often stored in Amazon S3. Over time, older versions can become less relevant yet still legally required. Glacier serves as the perfect tier to offload these backup archives automatically after a set period using lifecycle rules.

For example, a typical flow might involve:

• Initial backup to S3 Standard
  
• Transition to S3 Infrequent Access after 30 days
  
• Final migration to Glacier after 90 days

This strategy minimizes cost while keeping data available for regulatory or auditing needs.

Configuring Disaster Recovery Vaults

In the event of data loss due to ransomware, accidental deletion, or system failure, recovery speed becomes vital. While Glacier is inherently designed for infrequent access, a dual approach can be adopted:

• Use S3 Glacier Instant Retrieval for critical subsets requiring rapid access.
  
• Retain less crucial historical data in Glacier Deep Archive for maximum cost savings.

This bifurcated setup ensures optimal access and economics for different disaster recovery scenarios.

Enhancing Compliance Through Immutability and Locking

Enterprises that manage sensitive data are frequently subject to regulatory mandates requiring long-term storage, unchangeable records, and audit trails. Glacier offers capabilities that directly support these compliance needs.

Using Vault Lock for Regulatory Enforcement

Vault Lock policies create immutable access rules that, once locked, cannot be altered. These policies help meet data governance standards such as HIPAA, FINRA, and GDPR.

Example use cases include:

• Financial statements that must be retained for 7 years.
  
• Legal documents that require tamper-proof storage.
  
• Medical scans and diagnostic reports for lifetime retention.
  

Vault Lock ensures the stored data adheres to retention guidelines without requiring constant oversight.

Audit Logs and Monitoring

All Glacier operations can be monitored using AWS CloudTrail and CloudWatch. These services generate real-time logs of:

• Who accessed a vault
  
• When data was retrieved
  
• Whether any changes were made to access policies

This information is invaluable during compliance audits, offering provable security and access integrity.

Automating Lifecycle with Intelligent Rules

Amazon S3 lifecycle policies can be configured to automatically transition data to Glacier. However, for large enterprises managing diverse datasets, a single policy might not suffice. Instead, intelligent automation can be achieved by defining multiple rules based on object prefixes, tags, or creation dates.

Lifecycle Transition Examples

• Customer invoices older than 365 days: move to Glacier
  
• Log files with the “archive=true” tag: move to Glacier Deep Archive after 180 days
  
• Daily snapshots tagged “QA”: remain in S3 Infrequent Access for one year, then move to Glacier

By combining object tagging, date-based rules, and customized transitions, organizations can implement a nuanced strategy that maximizes both performance and cost savings.

Pairing Glacier with AWS Lambda for Event-Driven Automation

To push automation further, Glacier can be integrated with AWS Lambda for event-driven actions. For example:

• After a file is uploaded to S3 and tagged “archive,” a Lambda function triggers a policy to transition it to Glacier.
  
• When a vault notification is received, Lambda can send a message or initiate a workflow in response to a retrieval event.
  
• In regulatory environments, Lambda can validate and log metadata every time a vault is updated or a retrieval job is initiated.

This type of serverless architecture ensures continuous monitoring and adaptation without human intervention.

Designing a Secure Glacier Deployment

Security is foundational in any cloud-based storage system. When it comes to storing sensitive or mission-critical information, Glacier’s features can be extended with AWS security services to create an impenetrable storage framework.

IAM Policies and Least Privilege Access

Always assign the minimum necessary permissions to each user or service interacting with Glacier. Create roles specifically for:

• Backup automation scripts (upload-only)
  
• Auditors (read-only access)
  
• Administrators (full vault control)

This approach minimizes potential attack vectors and ensures accountability for each interaction.

KMS for Advanced Key Management

Amazon Glacier uses server-side encryption with AES-256 by default, but it also integrates with AWS Key Management Service (KMS) for customer-managed encryption keys. This adds another layer of control, enabling organizations to:

• Rotate keys on schedule
  
• Enable granular access to encrypted objects
  
• Revoke keys in the event of a breach

Using KMS also ensures compatibility with stricter compliance frameworks that require customer-managed encryption.

Network Isolation and Access Restrictions

To prevent unauthorized exposure, access to Glacier can be isolated using Virtual Private Cloud (VPC) endpoints. Combined with AWS firewall configurations and service control policies, this strategy ensures that Glacier is accessible only through approved, secured channels.

Leveraging S3 Glacier Deep Archive for Legacy Data

S3 Glacier Deep Archive is the most cost-effective storage class available in AWS, even cheaper than traditional Glacier. It’s built for digital preservation projects and data rarely, if ever, accessed.

Ideal Use Cases

• Historical video footage
  
• Legacy project files from completed contracts
  
• Research data that needs to be retained indefinitely

Although retrieval takes 12 to 48 hours, it is a suitable trade-off for organizations that only retrieve data in exceptional circumstances.

Transitioning to Deep Archive

Lifecycle rules in S3 can transition objects from Glacier to Deep Archive automatically after a defined period, such as two years. This practice helps create multi-tier cold storage strategies, keeping active archives accessible while aging records move to deeper, slower but cheaper storage.

Glacier with Hybrid and Multi-Cloud Architectures

Many enterprises operate in hybrid cloud models or across multiple cloud vendors. Glacier can be adapted to function within these architectures as a long-term archival backend.

On-Premise to Glacier

AWS Storage Gateway enables organizations to move on-premise backups and archives to Glacier transparently. This service supports seamless integration between legacy data centers and Glacier by providing:

• Volume Gateway: for disk backups
  
• Tape Gateway: for VTL (virtual tape library) emulation
  
• File Gateway: for NFS/SMB file transfers

Glacier in Multi-Cloud Environments

For teams using different public clouds, Glacier can act as a centralized archive destination. Data from Azure Blob, Google Cloud Storage, or third-party services can be scheduled for transfer into Glacier using data movement tools like AWS DataSync or third-party automation platforms.

Cost Management and Billing Analysis

Glacier’s ultra-low cost doesn’t mean you should ignore budgeting. A well-managed Glacier setup includes proactive cost monitoring and retrieval planning.

Tracking Storage Growth

AWS Cost Explorer can be configured to track spending by storage class. Over time, you can identify:

• Growth rate of vault storage
  
• Which lifecycle rules save the most money
  
• Retrieval patterns and frequency

This data supports better forecasting and helps refine retention policies.

Retrieval Budgeting

Unexpected retrievals can become expensive. Use policies and tagging to distinguish between business-critical archives and those stored only for compliance. Restrict access to retrieval operations through IAM roles and implement approval workflows if necessary.

Templates and Tools for Real-World Deployment

To simplify adoption, AWS and the broader cloud community provide numerous templates and automation tools.

AWS CloudFormation

Using CloudFormation, you can deploy infrastructure as code. Predefined templates can:

• Create Glacier vaults with access policies
  
• Set up lifecycle rules from S3
  
• Enable event notifications

This promotes consistent deployments across environments.

Terraform and Ansible

For teams using open-source tools, providers exist to automate Glacier configurations using Terraform modules or Ansible playbooks. This ensures Glacier can be incorporated into CI/CD pipelines for infrastructure automation.

Best Practices for Maximizing Glacier’s Potential

• Avoid frequent retrievals to maintain low costs; use S3 for short-term storage.
  
• Use multipart uploads for files over a few gigabytes to ensure reliability.
  
• Apply descriptive tagging to all archives for easier inventory management.
  
• Conduct periodic reviews of lifecycle rules and retrieval metrics.
  
• Educate teams about retrieval timeframes to prevent emergencies.

Final Reflections

Amazon Glacier, whether used alone or alongside Amazon S3, has redefined the concept of archival storage. It offers organizations the ability to retain critical data for decades—securely, affordably, and reliably. With its rich ecosystem of features and integration capabilities, it supports not just storage but a broader data governance strategy.

Enterprises that architect Glacier smartly can reduce their storage costs dramatically while meeting compliance, availability, and durability expectations. By incorporating intelligent automation, event-driven responses, and structured policies, Glacier transitions from being a simple archive to a strategic pillar in modern cloud infrastructure.

Whether you’re safeguarding intellectual property, managing compliance records, or preserving multimedia assets, Amazon Glacier offers the blueprint for cold storage done right.