S3 Flashcards
S3
Allows the upload of files because S3 is
Object Based
S3
Not suitable for
OS
–OR–
Database
S3
Files sizes from 0 bytes up to
5 TB can be uploaded
S3
Storage volume
unlimited
S3
Files are stored in
Buckets
S3
Names
Https://
Bucket Name/Region/keyname
S3
Successful upload code
200
S3
The object name
Key
S3
The data that is made up of a sequence of bytes
Value
S3
Allows you to store multiple versions of the same object
Versioning
S3
What is data about data
Metadata
S3
Data stored redundantly across multiple devices in multiple facilities
> =3 AZs
S3
S3 - IA
S3 - OZ IA
Glacier
Glacier Deep Archive
S3 - Intelligent Tiering
Availability
99.9% Availability
S3
S3 - IA
S3 - OZ IA
Glacier
Glacier Deep Archive
S3 - Intelligent Tiering
Durability
99.999999999% (11 9s)
S3
Designed for frequent access
Designed for frequently accessed data.
S3
Suitable for most workloads and
Default storage class
S3
Used for data that is accessed less frequently but requires rapid access when needed
S3 - IA
Infrequent Access
S3
There is a low GB storage price and per GB retrieval fee.
S3 - IA
Infrequent Access
S3
Great for long-term storage, backups, and as a data store for disaster recovery file.s
Use Case
S3
Avaiilabilty for S3 One Zone IA
99.5%
S3
S3 One Zone is like S3 - IA
But data is stored redundantly within a single AZ.
S3
One Zone IA cost
Costs 20% less than regular S3-IA
S3
One Zone IA use case
long-lived, infrequently accessed, non-critical data.
S3
Very cheap archival storage - optimized for very infrequently accessed data
Glacier
S3
This happens each time you access your data
You pay for that
S3
Long term data archiving with retrieval times that range from 1 minute to 12 hours
Glacier
S3
Great for historical data that only accessed a few times in a year.
Glacier
S3
Archiving for rarely accessed data with a default retrieval time of 12 hours.
Glacier Deep Archive
S3
Financial records that may be accessed once or twice per year
Use case of Glacier Deep Archive
S3
Storage with 2 tiers - frequent and infrequent access
S3 - Intelligent Tiering
S3
Automatically moves your data to the most cost-effective tier based on how frequently you access each object.
S3 - Intelligent Tiering
S3
S3 - Intelligent Tiering cost
Monthly fee of $0.0025 per 1,000 objects
S3 Security
By default all newly created S3 buckets are
PRIVATE
S3 Security
Access Control at the bucket level
Bucket policy
S3 Security
Access control at the object level
Access Control Lists
S3 Security
S3 can be configured to create
Access Logs
S3 Security
S3 Access logs can be written to another
S3 Bucket
S3 Security
S3 Access Requests
Make lists of requests made of the S3 bucket.
S3 Encryption
Encryption In-Transit
SSL/TLS (HTTPS)
S3 Encryption
At Rest: Server Side
S3 Managed Keys
SSE-S3
S3 Encryption
At Rest: Server Side
AWS Key Management Service
SSE-KMS
Managed Keys
S3 Encryption
At Rest: Server Side
Server side Encryption with Customer Provided Keys
SSE-C
Customer provides keys
S3 Encryption
If you want to enforce the use of encryption for your files stored in S3 use
Use S3 Bucket Policy to deny all PUT requests that does not include the x-amz-server-side-encryption parameter in the request header.
S3 Encryption
x-amz-server-side-encryption parameter
Included when a file is to be encrypted at upload time.
S3 Encryption
x-amz-server-side-encryption: AE256
SSE-S3 - S3 Managed Keys
S3 Encryption
x-amz-server-side-encryption: aws:kms
SSE-KMS - KMS managed keys
S3 - Summary
S3 allows you to upload files so it is
Object based
S3 - Summary
Files sizes can range from
0 bytes - 5 TB
S3 - Summary
Files are stored in
Buckets
S3 - Summary
S3 is not appropriate for this
OS
S3 - Summary
Allows one a bucket from one region to access a bucket in another region
CORS
Cross Origin Resource Sharing
S3 - Summary
Location where content is cached
Edge Location
S3 - Summary
The origin of all the files that the CDN will distribute
Origin
S3 - Summary
Given name of the CDN that consists of a collection of Edge locations
Distribution
S3 - Summary
Distribution used for Websites
Web Distribution
S3 - Summary
Distribution used for Media Streaming
RTMP
READ THE S3 FAQs
https://aws.amazon.com/s3/faqs/
S3 - Quiz
What determines which partition that files are stored in
The key name
https://aws.amazon.com/blogs/aws/amazon-s3-performance-tips-tricks-seattle-hiring-event/
S3 - Quiz
The largest object that can be uploaded in a single PUT is
5 gigabytes.
S3 - Quiz
If you want to upload files that are > 100 mb use
Multipart upload
S3 - Quiz
If you want a user to download a private file directly from S3 from a webpage
Provide the user a pre-signed URL link on the site.
S3 - Quiz
encryption of data at its destination by the application or service that receives it.
Server-Side Encryption
S3 - Quiz
encrypts your data at the object level as it writes it to disks in its data centers and decrypts it for you when you access it.
S3
S3 - Quiz
a way for client web applications that are loaded in one domain to interact with resources in a different domain.
Cross-origin resource sharing (CORS)
With CORS support, you can build rich client-side web applications with Amazon S3 and selectively allow cross-origin access to your Amazon S3 resources
S3 - Quiz
different ways to ensure that users attempting access to files in an S3 bucket can be authorized.
Signed URLs and Signed Cookies
S3 - Quiz
virtual user identity that is used to give the CloudFront distribution permission to fetch a private object from an S3 bucket.
Origin Access Identity
