S3

Question 1

S3 standard

Answer 1

General-purpose storage of frequently accessed data

Question 2

S3 intelligent tiering

Answer 2

For data with unknown or changing access patterns, durability of 99.999999999% of objects across multiple Availability Zones, 99.9% availability

Question 3

S3 standard IA

Answer 3

long-lived but less frequently accessed data but rapid access when needed, lower cost than standard with same durability and availability

Question 4

S3 one zone IA

Answer 4

accessed less frequently but rapid access when needed, only in a single availability zone so costs 20% less than standard IA. Availability 99.5%

Question 5

S3 Glacier Deep archive

Answer 5

lowest cost storage class for data that may be accessed once or twice a year, for data that must be retained for a number of years, stored across at least 3 geographically dispersed availability zones with 99.999999999% durability, restored w/in 12 hours

Question 6

How is S3 data organized?

Answer 6

key-based object store

Question 7

Region

Answer 7

made up of multiple availability zones

Question 8

Availability Zone

Answer 8

One datacenter, a min of 3 AZs in a region

Question 9

Do prices vary based on region?

Answer 9

Yes, charges are less where costs are less

Question 10

How do charges for versioning work?

Answer 10

You are charged for every version of an object stored or requested.

Question 11

What ways are available to control access to data in S3?

Answer 11

1. IAM policies
2. Bucket policies
3. Access Control Lists
4. Query String Authentication

Question 12

Encryption options

Answer 12

1. SSE-S3
2. SSE-C
3. SSE-KMS
4. Amazon S3 Encryption Client

Question 13

SSE-S3

Answer 13

integrated solution where Amazon does key mgmt and protection

Question 14

SSE-C

Answer 14

S3 does the encryption and decryption of the objects but the client keeps the keys

Question 15

SSE-KMS

Answer 15

The AWS Key Management Service manages the keys

Question 16

S3 Encryption Client

Answer 16

A client library that lets the client manage the keys and do the encryption and decryption of the objects client-side

Question 17

VPC Endpoint

Answer 17

A logical entity in a VPC that allows connection to S3, the endpoint routes requests to S3 and responses back to the VPC

Question 18

Consistency

Answer 18

Read after write (immediate) for puts of new objects

Eventual for overwrite puts and deletes

Question 19

Transfer acceleration

Answer 19

Speeds up transfer of files across long distances b/t user and bucket. Uses CloudFront globally distributed edge locations.

Question 20

Edge location

Answer 20

Used for transfer acceleration, does not save data