S3 Flashcards
S3 standard
General-purpose storage of frequently accessed data
S3 intelligent tiering
For data with unknown or changing access patterns, durability of 99.999999999% of objects across multiple Availability Zones, 99.9% availability
S3 standard IA
long-lived but less frequently accessed data but rapid access when needed, lower cost than standard with same durability and availability
S3 one zone IA
accessed less frequently but rapid access when needed, only in a single availability zone so costs 20% less than standard IA. Availability 99.5%
S3 Glacier Deep archive
lowest cost storage class for data that may be accessed once or twice a year, for data that must be retained for a number of years, stored across at least 3 geographically dispersed availability zones with 99.999999999% durability, restored w/in 12 hours
How is S3 data organized?
key-based object store
Region
made up of multiple availability zones
Availability Zone
One datacenter, a min of 3 AZs in a region
Do prices vary based on region?
Yes, charges are less where costs are less
How do charges for versioning work?
You are charged for every version of an object stored or requested.
What ways are available to control access to data in S3?
- IAM policies
- Bucket policies
- Access Control Lists
- Query String Authentication
Encryption options
- SSE-S3
- SSE-C
- SSE-KMS
- Amazon S3 Encryption Client
SSE-S3
integrated solution where Amazon does key mgmt and protection
SSE-C
S3 does the encryption and decryption of the objects but the client keeps the keys
SSE-KMS
The AWS Key Management Service manages the keys
