Amazon S3

Question 1

Global storage platform that is region based - data is held at the region level

Answer 1

S3

Question 2

Is data replicated across AZ when using S3

Answer 2

Yes

Question 3

Is S3 useful for offloading large data?

Answer 3

Yes

Question 4

Term for the name of an object in a bucket

Answer 4

Key

Question 5

Range of sizes for objects able to be stored in S3

Answer 5

0 bytes - 5 TB

Question 6

If uploading more than 5GB, must use

Answer 6

Multi-part upload

Question 7

Bucket wide rules from the S3 console

Answer 7

Resource-Based Bucket Policies

Question 8

Encrypt objects in Amazon S3 using

Answer 8

Encryption keys

Question 9

Markers on an object version to mark it as removed, rather than permanently deleting it from your S3 bucket

Answer 9

Delete Markers

Question 10

A security feature that is used together with S3 Versioning to prevent unauthorized
or accidental deletions in your S3 bucket

Answer 10

MFA delete

Question 10

Allows access to S3 via HTTP once index and error documents are set

Answer 10

Static Web Hosting

Question 11

Lets you keep a copy of an object whenever it is overwritten as its versions also protects your objects from accidental deletions

Answer 11

Versioning

Question 11

Allows access to S3 via HTTP once index and error documents are set

Answer 11

Static Web Hosting

Question 12

Data is broken up into parts for uploading, parts can fail and be restarted

Answer 12

Multipart Upload

Question 13

Uses the network of Edge locations to upload to optimize long distance transfers from your client to Amazon S3

Answer 13

Transfer Acceleration

Question 14

Data is first encrypted on the client-side before uploaded to Amazon
S3. You manage the encryption process, the encryption keys, and related tools

Answer 14

Client-Side encryption (CSE)

Question 15

Amazon S3 encrypts your object before saving it on disks in its data
centers and then decrypts it when you download the objects

Answer 15

Server-Side encryption (SSE)

Question 16

You manage the encryption keys and S3 manages the encryption and decryption process

Answer 16

SSE-C

Question 17

S3 uses AES-256 encryption keys to encrypt your objects, and each object is encrypted with a unique key

Answer 17

SSE-S3 (AES256)

Question 18

S3 uses AES-256 encryption keys to encrypt your
objects but the key is managed in a different service, which is AWS KMS

Answer 18

SSE-KMS

Question 19

Share objects or allow your customers/users to upload objects to buckets without AWS security credentials or permissions. Takes on the realtime permissions of the creator when used

Answer 19

Presigned URL

Question 20

Lets you keep a copy of an object whenever it is overwritten as its versions also protects your objects from accidental deletions

Answer 20

Versioning

Question 21

Allows access to S3 via HTTP once index and error documents are set

Answer 21

Static Web Hosting

Question 22

Grants others time-limited permission to download or upload objects
from and to the owner’s S3 buckets

Answer 22

Presigned URL

Question 23

Used to retrieve parts of objects instead of whole objects using SQL-like statements

Answer 23

S3 Select

Question 24

Feature to receive notifications when certain events happen in your S3 bucket such as creating, deleting, restoring or replicating an object

Answer 24

Amazon S3 Event Notifications

Question 25

Provides detailed records for the requests that are made to an Amazon S3 bucket used for security and access audits

Answer 25

S3 server access logging

Question 26

Store objects using a write-once-read-many (WORM) model which requires versioning

Answer 26

Object Lock

Question 27

Object is WORM-protected and can’t be overwritten or deleted and remains in place until you explicitly remove it

Answer 27

Legal Hold

Question 28

Retention mode where certain permissions can be granted to adjust the lock settings

Answer 28

Governance

Question 29

Named network endpoints that are attached to buckets that you can use to perform S3 object operations

Answer 29

Access points

Question 30

Used to monitor malicious activity on S3 such as unauthorized access or suspicious access patterns

Answer 30

AWS Guard Duty

Question 31

Replication used for log aggregation, live replication between production and test accounts

Answer 31

Same-Region Replication (SRR)

Question 32

Replication used for compliance, lower latency access, replication across accounts

Answer 32

Cross-Region Replication (CRR)

Question 33

Replicate existing objects and objects that failed replication

Answer 33

S3 Batch Replication

Question 34

Automatic, asynchronous copying of objects across Amazon S3 buckets

Answer 34

S3 Replication