Section 5 Storage & Content Delivery Flashcards
S3 Bucket Authorization
Controlled using Identity Policies
Sngle Put Upload
Object uploaded in a single data stream
Multipart Upload
Object is broken up into parts and uploded in parallel
S3 In Transit Encryption
Data between a cliant an S3 is encrypted
S3 At Rest Encryption
Can be configuered on a per object basis
S3 Client-Side Encryption
Client / Application is responsible for encryption and decryption and keys
Server-Side Encryption with Customer-Managed Keys (SSE-C)
S3 hamdles encryption an decryption and its keys
Standard Storage Teir
- Default, all porpose storage
- 99.999999999 (11 nines) durability
- 99.99 % Availablility
Standard Infrequent Access (Standard-IA)
- Objects where real-time access is required but infrequent
- 99.9% Availibility
- 3+ AZ Replication
- Cheapr than Standard
- 30 day and 128 KB min Charge
- Object Retreival is Free
One Zone Infrequent Access (One Zone-IA)
- Non-Critical and reproducable abjects
- 99.5% Availablility
- 1 AZ
- 30 day & 128 KB min charge
- Cheaper than standard and Standard-IA
Glacier
- Long Term archival Storage
- Retreival could take minutes to hours
- 3+ AZ Replication
- 90 day 7 40 KB min charge
Glacier Deep Archive
- Long Term Archival
- 180 days and 40 KB min charge
- Long Retreival Time
- Cheaper than Glacier
Content Delivery Network (CDN)
Global Cache that stores copies of your data on Edge Caches
Cloud Front Component
ORIGIN
The Server or Servers that host the content
Cloud Front Component
DOSTRIBUTION
Configuration entity within CloudFront