Advanced Amazon S3 & Athena Flashcards
Who can enable/disable MFA-Delete?
Only the bucket owner (root account)
Why do you need MFA?
- Permanently delete an object version
* Suspend versioning on the bucket
What do you need before using MFA-Delete?
Enable Versioning on the S3 bucket
When are bucket policies evaluated?
Before “default encryption”
Any request made to S3, from any account, authorized or denied, will be logged into another S3 bucket
S3 Access Logs
Concerning S3 Access Logs, what should you NEVER do?
Never set your logging bucket to be the monitored bucket
Compliance, lower latency access, replication across accounts
What use case is this?
CRR (Cross Region Replication)
What use case is this?
Log aggregation, live replication between production and test accounts
SRR (Same Region Replication)
Is there any way to replicate a delete between two buckets?
No.
How many S3 storage classes are there?
6
Use Cases: Big Data analytics, mobile & gaming applications, content distribution
S3 Standard - General Purpose
- High durability of objects across multiple AZ (99.999999999%)
- Sustain 2 concurrent facility failures
- 99.99% Availability over a given year
S3 Standard - General Purpose
- Suitbale for data that is less frequently accessed, but requires rapid access when needed
- High durability (99.9999999999%) of objects across multiple AZs
99.9% Availability
•Use Cases: As a data store for disaster recovery, backups
S3 Standard - Infrequent Access (IA)
- 99.5% Availability
- Low latency and high throughput performance
- Supports SSL for data at transit and encryption rest
- Stored in single AZ
- Use Cases: Storing secondary backup copies of on-premises data, or storing data you can recreate
S3 One Zone - Infrequent Access (IA)
- Low latency & high throughput
- Resilient against events that impact an entire AZ
- Small monthly monitoring and auto tiering fee
- Automatically moves objects between two access tiers based on changing access patterns
S3 Intelligent Tiering
- Low cost object meant for archiving/backup
- Data is retained for the long term (10s of years)
- Each item in Glacier is called “Archive” (up to 40TB)
Amazon Glacier
Amazon Glacier has 3 retrieval options:
What are they?
- Expedited (1 to 5 min)
- Standard (3 to 5 hours)
- Bulk (5 to 12 hours)
What is the minimum storage duration on Amazon Glacier?
90 days