S3 - Access Points/Object Lambda

Question 1

What problem do S3 access points solve?

Answer 1

They simplify the management of complex bucket policies by allowing separate policies for different data access needs.

Question 2

How do S3 access points work?

Answer 2

Each access point is associated with an S3 bucket and has its own access point policy.
Policies control access to specific prefixes or parts of the bucket.

Question 3

What are the key components of S3 access points?

Answer 3

Access Point Policies: Define permissions for specific data (e.g., finance, sales).
DNS Name: Each access point has a unique DNS name for connections.
VPC Origin (Optional): Allows private traffic via a VPC.

Question 4

What is an example use case for S3 access points?

Answer 4

A finance access point for finance data with read/write access to the finance/ prefix.
A sales access point for sales data with read/write access to the sales/ prefix.
An analytics access point for read-only access to both finance and sales data.

Question 5

What are the benefits of S3 access points?

Answer 5

Simplifies security management for large buckets.
Allows fine-grained control for different user groups or applications.
Reduces the complexity of a single bucket policy.

Question 6

What is Object Lambda?

Answer 6

Allows you to use AWS Lambda functions to change (typically redact sensitive data) the original object before it’s retrieved by the caller application.

Question 7

What AWS service is used to analyse data in S3 using severless SQL?

Answer 7

Athena