S3

Question 1

What is Amazon S3

Answer 1

Amazon Simple Storage Service - provides object storage through a web service interface.

Question 2

List use cases for S3

Answer 2

Backup and storage
Disaster Recovery
Archive 
Hybrid Cloud storage 
app hosting 
Media hosting 
Data lakes and big data analytics 
Software delivery

Question 3

What is a file called in Amazon S3

Answer 3

objects

Question 4

What is a directory called in amazon S3

Answer 4

buckets

Question 5

When making a name for a bucket in amazon S3 does the name have to be globally unique across all regions all accounts ?

Answer 5

Yes

Question 6

Where are buckets defined at

Answer 6

at the region level

Question 7

Describe the naming conventions for buckets

Answer 7

No uppercase
no underscore
3-63 characters long 
Not an ip
Must start with lowercase letter or number

Question 8

What is a key in Amazon S3

Answer 8

The full path to an object (files)

Question 9

Describe the parts of a key

Answer 9

PREFIX + object name

s3://my-bucket/ my_folder/another/folder/my_file.txt

Question 10

What is the maximum size of an object

Answer 10

5TB (5000GB)

Question 11

In Amazon S3 what is metadata

Answer 11

List of text key / value pairs - system or user metadata

Question 12

In Amazon S3 what is a tag

Answer 12

Unicode key /value pair - up to 10 - useful for security / lifecycle

Question 13

Describe S3 User-based security policy

Answer 13

IAM policies - which API calls should be allowed for a specific user from IAM console

Question 14

Describe Resource-Based Security policy in Amazon S3

Answer 14

Bucket policies - bucket wide rules from the S3 console - allows cross account
Object Access Control list (ACL) - finer grain
Bucket Access Control List ( ACL) - less common

Question 15

When can an IAM principal access an S3 object if

Answer 15

the user IAM permissions allow it OR the resource policy Allows it
AND there’s no explicit DENY

Question 16

How do you encrypt objects in Amazon S3

Answer 16

using encryption keys

Question 17

What are S3 bucket poilicies

Answer 17

Json based policy 
resources: buckets and objects 
Actions: Set of API to Allow or Deny
Effect:Allow / Deny 
Principal: The account or user to apply the policy to

Question 18

When should you use S3 bucket for a policy

Answer 18

Grant public access to the bucket
Force objects to be encrypted at upload
Grant access to another account (Cross Account)

Question 19

Describe amazon S3 websites

Answer 19

S3 can host static websites and have them accessible on the www

Question 20

Define how a Amazon S3 website URl format would look like

Answer 20

.s3-website-.amazonaws.com
OR
.s3-website..amazonaws.com
/\
|

Question 21

If you get a 403 error code while trying to get to a website within S3 what should you do first

Answer 21

Make sure the bucket policy allows public reads

Question 22

Describe versioning

Answer 22

Enabled at the bucket level
best practice to version your buckets
Protects against unintended deletes (ability to restore a version)
easy roll back to previous
Any file that is not versioned prior to enabling versioning will have version :null:
Suspending versioning does not delete the previous versions

Question 23

In Amazon S3 why would you want to have access logs

Answer 23

For audit purposes

Question 24

What kind of information will you find in an Access log for S3 buckets

Answer 24

Any request made to S3 from any account, authorized or denied, will be logged into another S3 bucket

Question 25

What is Cross-Region Replication (RR)

Answer 25

every object uploaded to an S3 bucket is automatically replicated to a destination bucket in a different AWS region that you choose

Question 26

What is Same region Replication (SRR)

Answer 26

Automatically replicates data between buckets within the same AWS Region

Question 27

Why would you use CRR for

Answer 27

Compliance, lower latency access, replication across accounts

Question 28

Why would you use SRR

Answer 28

Log aggregation, live replication between production and test acconts

Question 29

Define durability in Amazon S3

Answer 29

How often you will lose a file High durability = (99.999999999, 11 9's) of objects across multiple AZ If you store 10,000 000 objects with Amazon S3 you can on average expect to incur a loss of a single object once every 10,000 years

Question 30

What is availability in amazon S3

Answer 30

Measure how readily available a sservice is S3 standard has 99.99%, which means it will not be available 53 minutes a year Varies depending on storage class

Question 31

Decribe S3 Standard - General Purposes

Answer 31

99.99% availability Used for frequently accessed data Low latency and high throughput Sustain 2 concurrent facility failures

Question 32

When should use S3 standard - General purpose storage

Answer 32

Big data analytics, mobile and gaming apps, content distribution

Question 33

Describe S3 Infrequent Access (IA)

Answer 33

Suitable for data that is less frequently accessed, but requires rapid access when needed 99.9% availibility Lower cost compared to amazon S3 standard, but retrieval fee Sustain 2 concurrent facility failures

Question 34

When should you use S# - infrequent Access (IA)

Answer 34

As a data store for disaster recover, backups

Question 35

Describe S3 Intelligent-Tiering

Answer 35

99.9% availability Same low latency and high throughput performance of S3 standard Cost-optimized by automatically moving objects between two access tiers based on changing access patterns resilient against events that impact an entire availabilty zone

Question 36

Describe S3 One Zone - infrequent Access (IA)

Answer 36

Same as IA but data is stored in a single AZ 99.5% avail Low latency and high throughput performance Lower cost compared to S3-IA (by 20%)

Question 37

When should you use S3 One Zone

Answer 37

Storing secondary backup copies of on-premise data, or storing data you can recreate

Question 38

Describe Amazon Glacier and Glacier Deep Archive storage

Answer 38

Low cost object storage (in GB/Month) meant for archiving/ backup Data is retained for the longer term (years) Various retrieval options of time + fees for retrieval

Question 39

What is S3 object lock

Answer 39

an Amazon S3 feature that allows you to store objects using a write once, read many (WORM) model.

Question 40

What is Glacier Vault Lock

Answer 40

to lock your vault with a variety of compliance controls Lock the policy for future edits (Can no longer be changed ) Helpful for compliance and data retention

Question 41

Describe S3 encryption

Answer 41

Server-side encryption - File is encrypted after the server receives it Client-side encryption - File is encrypted before it reaches server

Question 42

What is amamzon responsible for in S3

Answer 42

Infrastructure config and vulnerability analysis Compliance validation

Question 43

What are you responsible for in S3

Answer 43

``` Versioning Bucket policies replication setup Logging and Monitoring S3 storage classes Data encryption at rest and in transit ```

Question 44

What is an AWS Snow Family

Answer 44

Highly secure, portable devices to collect and process data at the edge, and migrate data into and out of aws Offline devices to perform data migrations

Question 45

When should you use AWS Snow family

Answer 45

If it takes more than a week to transfer over the network

Question 46

Describe AWS Snow cone

Answer 46

Storage capacity 8 TB usable Migration Size Up to 24 Tb, online and offline Data sync agent Pre installed

Question 47

Describe AWS Snowball edge

Answer 47

80 TB usable Up to petabytes, offline Up to 15 nodes

Question 48

Describe Snowmobile

Answer 48

More than 100 PB | Up to exabytes, offline

Question 49

What is edge computing

Answer 49

a distributed computing paradigm that brings computation and data storage closer to the sources of data

Question 50

Describe Snow Family Edge computing Snowcone

Answer 50

2 cpus, 4gb of memory | USB-C poer using a cord or the optional battery

Question 51

Describe Snow Family Edge computing Snowball edge Compute optimized

Answer 51

52 vCPU, 208 GIB of Ram Optional GPU 42TB usable storage

Question 52

Describe Snow Family Edge computing Snowball edge Storage optimized

Answer 52

Up to 40 CPUs , 80 gib of ram | Object storage clustering available

Question 53

What is hybrid cloud

Answer 53

Part of infrastructure on and premise and other part on the cloud

Question 54

What is aws Storage gateway

Answer 54

Bridge between on-premise data and cloud data in S3