s3 Flashcards
What is object storage?
When things are stored, they are stored as objects, not files or file hierarchies.
What size do you store data as?
0 Bytes to 5 TB
How do you name a bucket?
Unique name
What are the different storage classes?
Standard
Intelligent Tiering – Use ML to find the Storage class.
Standard Infrequent Access
One Zone IA
Glacier
Glacier Deep Archive
Which s3 storage class does not replicate across all three AZ?
One Zone IA
Place an order on s3 buckets for the ones that are cheaper
Intelligent Tiering – the most expensive
Standard- 2nd
Standard Infrequent Access 3rd 50% less than Standard.
One Zone IA 4th 20% less than Standard Infrequent Access. Reduced AV
Glacier 5th
Glacier Deep Archive 6th slow retrieval
How does data retrieval work with Glacier and Glacier deep archive?
Glacier- retrieval minutes to hours
Glacier Deep Archive- retrieval time is 12+ hrs.
Minimum storage duration charge?
Standard- NA
Intelligent Tiering, Standard IA, One Zone IA- 30 days
Glacier- 90 days
Glacier Deep Archive- 180
Are s3 buckets private or public by default?
Private
Can create logging per request that goes to a different bucket.
How do you control access to S3 bucket?
Access Control List
Bucket Policies- JSON
How do you manage control of an s3 bucket for a static hosting website?
Bucket Policies
How is traffic between the local host and the s3 bucket achieved?
SSL/TLS
What methods does s3 provide to achieve encryption at rest?
SSE-AES- s3 handles the key, AES-256
SSE-KMS- Envelope encryption- AWS KMS you manage the key. The Key is encrypted with another key.
SSE-C- Customer provides key
Client-Side Encryption- you encrypt your file before uploading it to s3
How do you manage control of an s3 bucket for a static hosting website?
Bucket Policies
How do you control access to S3 bucket?
Access Control List
Bucket Policies- JSON
Are s3 buckets private or public by default?
Private
Can create logging per request that goes to a different bucket.
s3-Data consistency for New Objects
Provide Read After Write Consistency
Can read immediately after writing.
How does data consistency work for overwrite (PUTS) or Delete Objects (DELETS)
Eventually Consistent.
Takes time to replicate in other AZ
You have to wait for new copies.
How does data consistency work for overwrite (PUTS) or Delete Objects (DELETS)
Eventually Consistent.
Takes time to replicate in other AZ
You have to wait for new copies.
What must be turned on for CRR to work?
Versioning in both the source and destination buckets.
Can you turn on CRR between accounts?
Yes
Can you disable bucket versioning?
No, only suspended
How can you provide extra protection against your data being deleted in an s3 bucket?
MFA Delete
How does s3 Lifecycle Management Work
It uses ML to move objects between storage classes or delete them.
Can Lifecycle Management be applied to Versioning?
Yes, to both current and previous.
Can you give an example of s3 Lifecycle Management?
How does Transfer Acceleration work?
Though Cloud Front distributed Edge locations you can transfer files over long distances.
How do users upload to s3 bucket via edge locations?
Distinct url for an Edge Location
What are preassigned URLs for s3?
URL that provides temp access to object to either upload or download.
How do you create pre-signed URLs?
AWS CLI or AWS SDK
Under what conditions can MFA Delete be performed?
AWS CLI must be turned on MFA
Is the interface for s3 Global or Regional
Interface is global, the bucket is regional.
