AWS S3 Flashcards
What are the storage classes available in AWS?
S3 standard
S3 standard IA
Zone IA
Intelligent tiering
Glacier
Glacier Deep Archive
What type of storage is S3?
Object storage
What is the availability of S3?
4 x 9s
What is the durability of S3?
11 X 9s
How many availability zones is S3 data replicated to?
3 AZ
What is the min size of data you can put in S3?
1 byte
What is the max size of single file in S3?
5 TB
Is encryption at the object level or the bucket level?
Encryption is enabled and applied at the bucket
If one tenant has a bucket called ‘dog’ can you have a bucket called ‘dog’?
No buckets has to be unique with in a region.
What are the two types of encryption available to S3?
Server side and Client side.
What is the encryption used on server side encryption for S3?
AES-256
Who holds the master key for S3 encryption?
AWS- in KMS
Are all objects encrypted using the same master key? (are the keys changed over time)
No the keys are rotated each month.
The master keys is used in the process to encrypt a object, is this the only key?
No there is a per object key.
Is the per object key encrypted?
Yes it is encrypted by the master key.
Is the object data encrypted at rest?
Yes
Where is the per object stored?
In a hidden S3 bucket.
Is there other options available to encrypt a object?
Client side encryption using the SDK.
If you put data in a single region is that data/objects replicated to other regions?
No data stays with in a region.
Can you copy data and objects to other regions?
Yes we can with CRR.
Would you make a html page available to people on the internet?
Use static web hosting.
How can you delete a object after a week (period of time)
Use life cycle policies.
Can life cycle policies be applied to just one object with in a bucket?
Yes using the prefix parameter.
How would you apply life cycle policies to a entire bucket?
Use the ‘Apply to Entire Bucket’ parameter.
If you do not need S3 data available on demand, how can you lower the cost of storage?
Use AWS Glacier.
How can you move data into glacier storage?
Use life cycle policies.
How can we ensure that when a object is updated or deleted that we can get the old data?
Use S3 versioning.
Can versioning and life cycle policies be used at the same time?
No.
Can versioning be removed easily?
No.
What is the minimum number of copies in availability zones of the S3 object are kept with in a region?
3
What is WORM architecture?
Write one read many times.
Is S3 a WORM architecture?
Yes.
What is eventual consistency?
When a object is update in S3 by many users across the availability zones, the object that is wrote last will be the one that all other copies become.
When you write a object to S3 will all availability zones have a consistent copied of the object?
Yes new objects are synced across all availability zones before you get a ask back to say the write was OK.
Is there any region that dose not support read after write?
US-Standard
Do you get a sync write across all availability zones during a update?
No object is async wrote to the other availability zones with in the region.
When you delete a object are all objects dated before you get a ack to say the operations was successful?
No much like update the objects in the other availability zones are async deleted.
What is read after write?
Data is available to read in all availability zones after a ack is returned.
Is data replicated across regions?
No data is not replicated across regions.
What stops you data having bitrot (bitrot is where you data at rest get corrupt)?
AWS is checking objects on a regular basis to make sure there check sum is correct.
When bitrot is detected what will AWS do about it?
AWS will restore the corrupt date using the redundant copies.
Will all incoming object request be sent to the same availability zone?
No requests are load balanced across all availability zones.
What is S3 RRS?
Reduced redundancy storage.
How durable is RRS storage?
4 x 9s.
What happens when a object is lost from RRS?
A ReduceRedundacyLostObject event is triggered.
What is the max UTF-8 name size of a bucket?
1024 bytes.
S3 will partition based on key prefix, why is it important to not have the object name sequence?
Sequence naming of objects mean that the objects are clustered to gather and not spread out over the entire S3 cluster.
Do you need to manage the server side encryption?
No it is automatically taken care by AWS.
What are the 3 ways for access control on S3
Policies, ACL’s, IAM.
How could you store some extra data like the object date, use name with the object?
Use metadata.
How can you get visibility in to the incoming S3 requests for you objects?
Logs when turned on will save each request and response.
When are S3 logs kept?
You define a bucket for the logs?
Are S3 logs automatically deleted?
No you have to take care of this your self, you can set up a life cycle policy to delete the objects.
Why is glacier called write once read never?
This is because when you write it is take some time to retrieve that data when needed?
With glacier how long dose it take to retrieve data to S3?
2 - 6hrs
What is the cost of glacier storage?
1c per GB.
What is the cost of S3 storage?
8.5c per GB.
What is the cost of RRS?
6.8c per GB.
If a object in S3 has a life cycle policy to delete the object after 30days and the object moves to glacier with will glacier do after the 30days?
Glacier will observe the S3 policy and delete the object after 30days.
When a object is retrieved from glacier when is it put (a)S3 (b)RRS
(b) RRS
What AWS functionality is used to move S3 data from one storage class to anither
Life cycle policies
Can I remove versioning from bucket once applied?
No but you can disable it.
What is the max upload in s single put?
5GB
I need to upload a single file that is 500GB in size, what is my best option for uploading the file?
Ensure you are using multipart upload
When files are larger than 100MB what is the recommended option for upload?
Multi-part upload
For PUT (new objects), can I read it and will it be consistent?
Yes, for S3 you have read after write consistency.
For HEAD and GET
Eventual
For PUT and DELETES, what is the consistency model?
Eventual
Updates to a single key are?
Atomic, only one person can update the object at a time.