S3 Flashcards
What is a Storage Gateway?
It is a client application provided by AWS that coordinates the transmission of data from an organizations datacentre to AWS storage
What are the different types of storage gateways?
Filegateway - for flat files stored directly on S3
#Volume Gateway: used for block storage (databases, OS etc)
-stored volumes - entire dataset stored onsite. asynchronously backed up to S3
-cached volumes - entire dataset stored on S3. Frequently accessed data cached onsite
#Gateway Virtual Tape Library(VTL): used for backup and uses backup applications like Netbackup, Backup Exec, Veeam etc.
What are the security aspects available for S3?
/By default all newly created buckets are PRIVATE
/Bucket policies
/Access control list
/Create access logs to log all requests made to the S3 bucket
What are the broad encryption categories?
In Transit
At Rest
What are the in-transit encryption methods available?
SSL/TLS
What are the At Rest broad encryption methods available?
Server Side Encryption
Client Side Encryption
What are the server side encryptions available?
/S3 Managed Keys - SSE-S3 :: Each object is encrypted using strong key which is again encrypted using a master key which is rotated. All managed by amazon
/AWS Key Management Service, Managed Keys - Separate permission for the use of envelope key - added protection - also provides audit trail
/Server Side Encryption using customer provided keys
What is client side encryption
Where encryption is done at client side before uploading
What is snowball
It is an import/export mechanism to and fro AWS using physical storage devices called snowballs. Earlier people used to send their own storage devices of different types that were hard to manage. So Amazon developed a standard device
What are the different types of snowballs available
/Snowball
/Snowball Edge - with computing power
/Snowball Mobile - Truckload of data -literally! Used mainly by fortune 500 companies
What are the high level steps to transfer data to AWS using snowball?
/order snowball in amazon website and get it
/open the snowball and plug both power and Ethernet cables
/download snowball client tool from amazon
/note down the id to connect to snowball using the client
/power on the snowball
/when ready open up the command line tool and connect to snowball and transfer the required files
What is s3 transfer acceleration?
It is about enabling faster data transfer to an S3 bucket through internet by enabling this property from the S3 bucket.
It allows for file uploads to cloudfront locations closer to ones location and use amazon’s backbone to transfer data to the s3 bucket from there.
How do we set up static website using S3
/create an S3 bucket /in the properties, enable static website /set redundancy as standard /upload index and error html pages /set permission - read-only to all /click on the url and it works
What does url of a static website consists of?
S3 bucket name.s3.wesite.region.amazonaws.com
Is S3 an object based storage or block based storage
It is an object based storage. Only files can be uploaded here such as images, text files etc.
Block based storage is used for running OS or relational DBs.
