AWS Storage Flashcards
The total amount of data you can store within a S3 bucket
5 TB
The size for Multipart uploads for objects
100 MB
To reduce the risk of data loss during data upload to cloud storage
Multipart Upload
If you need to transfer large files to Cloud S3, you can speed up transfers by routing through AWS edge locations within the AWS infrastructure.
Amazon S3 Transfer Acceleration
AWS uses its enterprise encryption standard to encrypt data in S3.
Amazon Server-Side Encryption (SSE-S3)
Encryption is performed using AWS KMS, which includes adding an envelope key and AWS Cloud Trail to track key usage. This setup also provides flexibility if you wish to import your own key.
Amazon KMS-Managed Keys (SSE-KMS)
Customers have the flexibility to use their own encryption standard to encrypt storage data.
Customer-Provided Keys (SSE-C)
You have the option to encrypt data before storing it in S3 using AWS KMS-Managed CMK.
Client-side Encryption
AWS will automatically move infrequently accessed data to a lower-cost storage solution.
S3 Intelligent-Tiering
This storage option could lead to archive bloat, it solves the issues of accidentally deleting objects by saving overwritten
Versioning
AWS allows you to manually set up life cycle rules for objects using automation to transition objects through storage classes.
S3 Intelligent-Tiering
Manages access requirements for objects from the perspective of external accounts and users.
S3 bucket policies
Managed at the account level to control the way individual users and roles access multiple resources
IAM policies
Controls how users and services access objects within your S3 buckets through a policy that dictates access using DNS names.
AWS Access point
A low latency way to route to multiple buckets in different regions through the use of AWS Global Accelerator.
Multi-Region Access point