S3

Question 1

Why the bucket name must be unique?

Answer 1

The name has to be unique because it will be used in a webaddress with the scope of accessing it with the created endpoint.

Question 2

What response you will receive the file was successfully uploaded.

Answer 2

A 200 Http response will be sent.

Question 3

Name all storage classes

Answer 3

Standard
S3 IA (infrequently accessed)
S3 One zone IA
S3 Intelligent tiering
S3 Glacier
S3 Glacier Deep Archive

Question 4

S3 standard

Answer 4

• 99.99% availability and 99.9x11% durability. Stored redundantly across multiple devices in multiple facilities and is designed to sustain the loss of 2 facilities concurrently.

Question 5

S3 IA (infrequently accessed)

Answer 5

For the data that is accessed less frequently but requires rapid access when needed. lower fee than S3 standard, but you are charged a retrieval fee.

Question 6

S3 One zone IA

Answer 6

• lower cost option for IA that doesn’t require multiple availability zone data resilience.

Question 7

S3 intelligent tier

Answer 7

Designed to optimize costs bu automatically moving data to the most cost efficient access tier without performance impact or operational overhey

Question 8

S3 glacier

Answer 8

Is a secure, durable and low cost storage class for data archiving. Can reliably store any amount of data at a cost cheaper than on-premise solutions. Retrieval times configurable from minutes to hours.

Question 9

S3 Glacier Deep Archive

Answer 9

Is the lowest cost storage with a retrieval time of 12 hours acceptable.

Question 10

Consistency models

Answer 10

• Read after Write consistency for PUTS of new objects
  • The created object is available immediately after write.
• Eventual consistency for overwrite PUTS and DELETES( can take some time to propagate)

Question 11

Key fundamentals

Answer 11

Key - the name of the object
Value - this is the data and is made up of a sequence of bytes
Version ID - versioning files 
Metadata - data about data
Subresources - 
        • Access Control Lists
        • Torrent

Question 12

How to protect objects?

Answer 12

Turn on MFA Delete, it will require MFA in order to delete a file

Question 13

What type of storage is S3?

Answer 13

S3 is Object-based storage.

Question 14

S3 files allowed capacity

Answer 14

Files can be from 0 to 5TB.
There is unlimited storage.
Files are stored in Buckets ( similar to folders)

Question 15

Bucket security

Answer 15

Buckets are private by default when created.
This can be changed through:
• Bucket policies - apply security policies at the bucket level
• Access control list - control access to individual objects

Question 16

Access logs

Answer 16

S3 buckets can be created to create access logs which log all requests made to the S3 buckets.
The logs can be sent to another bucket or another bucket in another account.

Question 17

Encryption

Answer 17

Encryption In Transit is achieved by SSL/TLS
Encryption at rest (server side) is achieved by :
• S3 Managed Keys - SSE-S3
- amazon manages the keys
• AWS key management Service managed keys - SSE-KMS
- user and amazon in collaboration manages the keys
• Customer Encryption with customer provided keys - SSE-C
- give your own managed keys

Client side encryption
• upload encrypted files