Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

AWS FAQs > S3 > Flashcards

S3 Flashcards

1
Q

Which S3 encryption-at-rest option enables you to use AWS Key Management Service to manage your encryption keys?

A

SSE-KMS

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Versioning’s __________ Delete capability can be used to provide an additional layer of security.

A

Multi-factor Authentication (MFA)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

S3 Standard is designed for __________ availability.

A

99.99%

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Which S3 encryption-at-rest option enables you to leverage S3 to perform encryption/decryption of objects while letting you retain control of the encryption keys?

A

SSE-C

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

S3 Transfer Acceleration leverages __________.

A

Amazon CloudFront (it’s globally distributed Edge locations)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

S3 Standard provides __________ 9s of durability.

A

Eleven.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

The maximum file size allowed on S3 Standard is __________.

A

5 TB

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

How long will it take to restore my objects archived in Glacier using Expedited retrievals?

A

1-5 minutes.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

True or False: Versioning can be turned off.

A

False.

Once versioning has been enabled, it cannot be disabled; it can only be suspended.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

True or False: Customers cannot configure an S3 bucket to create access log records for requests made against it.

A

False.

Customers can enable access log records. Access log records contain details about the request such as request type, resources requested, and the time/date the request was processed.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

__________ allows you to retain control of encryption keys and complete the encryption/decryption of objects client-size using an encryption library of your choice.

A

Amazon S3 Encryption Client.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

S3 One Zone - IA is designed for __________ availability.

A

99.5%

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

All of the S3 storage classes are designed for eleven 9s of durability except for __________.

A

S3 RRS.

S3 RRS is designed for four nines of durability.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

True or False: Versioning must be enabled for both the source and destination S3 buckets to enable CRR.

A

True.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

True or False: There is no Data Transfer charge for data transferred between regions via a COPY request.

A

False.

Cross-region data transfer costs money.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

True or False: There is no Data Transfer charge for data transferred between EC2 and S3 within the same region.

A

True.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
17
Q

What are the four mechanisms for controlling access to S3 buckets?

A
  1. bucket policies
  2. access control lists (ACLs)
  3. IAM policies
  4. query string authentication (URL with expiry)
18
Q

__________ enables fast, easy, and secure transfers of files over long distances between your client and S3 bucket.

A

Amazon S3 Transfer Acceleration

19
Q

Can I allow a specific VPC Endpoint access to my S3 bucket?

A

Yes.

You can limit access to your bucket from a specific VPC Endpoint using a bucket policy.

20
Q

True or False: You can securely upload/download your data to S3 via SSL endpoints using the HTTPS protocol.

A

True.

21
Q

The minimum file size allowed on S3 Standard is __________.

A

0 bytes.

22
Q

True or False: Only the owner of an S3 bucket can permanently delete a version.

A

True.

23
Q

S3 Standard - IA is designed for __________ availability.

A

99.9%

24
Q

True or False: There is no Data Transfer charge for data transferred within a region via a COPY request.

A

True.

25
Q

In which storage classes are objects stored redundantly within a single Availability Zone?

A

S3 One Zone - IA

26
Q

True or False: If S3 Transfer Acceleration is not faster than a regular S3 transfer, Amazon still adds the additional charge to your bill.

A

False.

If the transfer isn’t faster than standard, Amazon will not charge your for the Transfer Acceleration.

27
Q

Which S3 storage option allows customers to store noncritical, reproducible data at lower levels of redundancy than S3 Standard?

A

S3 RRS (reduced redundancy storage)

28
Q

S3 RRS is designed for __________ availability.

A

99.99%

29
Q

For the S3 Standard, S3 Standard - IA, and Glacier storage classes, objects are automatically stored across multiple devices spanning a minimum of _______ Availability Zones.

A

Three.

30
Q

How long will it take to restore my objects archived in Glacier using Standard retrievals?

A

3-5 hours.

31
Q

True or False: S3 Transfer Acceleration can be used with multipart uploads.

A

True.

32
Q

True or False: For the S3 Standard, S3 Standard - IA, and Glacier storage classes, objects are automatically stored across multiple devices spanning a minimum of two Availability Zones.

A

False.

Three availability zones; not two.

33
Q

__________ allows you to preserve, retrieve, and restore every iteration of every object stored in an S3 bucket.

A

Versioning.

34
Q

How long will it take to restore my objects archived in Glacier using Bulk retrievals?

A

5-12 hours.

35
Q

True or False: S3 Standard, S3 Standard - IA, S3 One Zone - IA, and Glacier all provide seven 9s of durability.

A

False.

The S3 services listed provide eleven 9s of durability.

36
Q

True or False: S3 Standard - IA provides the same performance as the S3 Standard and S3 One Zone - IA storage classes.

A

True.

37
Q

Which S3 encryption-at-rest option provides an integrated solution where Amazon handles key management and key protection?

A

SSE-S3

38
Q

S3 RRS is designed for __________ durability.

A

99.99%

39
Q

A __________ is a logical entity within a VPC that allows connectivity only to S3 without having to send traffic over the Internet.

A

VPC Endpoint for S3

40
Q

__________ is an S3 feature that automatically replicates data across regions.

A

CRR (cross-region replication)

41
Q

Which encryption option should you use if you need to maintain control of your encryption keys and have your objects encrypted before they are sent to S3?

A

Amazon S3 Encryption Client.

42
Q

What is the S3 Standard - IA storage class useful for?

A

Storing data that is accessed less frequently but still requires rapid access.

AWS FAQs (10 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions