Amazon S3 section Flashcards
S3: bucket (directories)
- global unique name( (across all region all accounts)
- tied to a region level
- Building blocks of AWS
- “Infinitely scaling” storage
- EBS snapshot store in S3
- object (files) are stored like key, metedata, and value. (Where are objects stored in Amazon S3? bucket)
- Websites use S3 as a backbone
- Many AWS service use Amazon S3 a an integration
- Step 2 step approach to S3
S3 use case : store object on
- Backup and storage
- Disaster recovery
- Archive
- Hybrid cloud storage
- Application hosting
- Media hosting
- Data lakes & big data analytics
- Software delivery
- Static website
S3 security
- IAM policy ( user access to s3 IAM permission )
- S3 bucket policy (public access)
EC2 instance access - for ec2 to access it need to have an ec2 instance role then add an IAM permission to the ec2 instance role to access s3 - S3 encryption
Advanced: cross- Account Access
USE Bucket policy : create s3 bucket policy
S3 websites
- can host static website on S3, access wwww
- error issue: you need bucket policy allows public reads
S3 versioning
- Multiple version for files, prevent accidental deletes
- File that are not versioned prior to enabling versioning will have version ‘null’
S3 Access logs
- Log requests made to s3 from any account, authorized or denied will be logged into another s3 bucket
- Used : for audit purposes,
- have all access to s3 log buckets
- come down to the root cause of an issue,
- view suspicious patterns,
S3 ReplicationS3 Replication (CRR & SRR)
same-region ( SRR):
use case: log aggregation, live replication between production and test accounts
- or cross-region (CRR) : use case: compliance, lower latency access, replication across accounts
- must enable versioning
s3 storage classes
Amazon S3 standard
- general General purpose
- 99.99% availability
- for frequently accessed data
- use case : big data analytic, mobile & gmailing application, content distribution
Amazon S3 standard infrequent access (IA)
- not open frequently
- 99.9% availability
- for data less frequently accessed but returned rapid access when needed
- use cases: as a data store for disaster recovery, back up
- Which S3 Storage Class is suitable for less frequently accessed data, but with rapid access when needed, while keeping a high durability and allowing an Availability Zone failure
Amazon S3 one Zone-infrequent access,
files you can recreate, and don’t rick losing it
A company stores copies of backups on Amazon S3 and requires rapid access but low resiliency. Which storage class is optimized for these requirements?
Amazon S3 intelligent tiering
- costed optimized by automatically moving object between two access tires based on changing access patterns:
- not know if you should use frequent or infrequently access
- resilient against events that impact an entire availability zone
S3 one zone - infrequent Access (IA)
- same as IA but data is stored in a single AZ
- 99.5% availability
- Use Case: storing secondary back copies of on-premise data or storing data you can recreate
Amazon Glacier
- have backup and archive
is a low-cost, cloud-archive storage service that provides secure and durable storage for data archiving and online backup