AWS S3

Question 1

S3 is good for what kind of files?

Answer 1

Flat Files

Question 2

What object sizes can S3 store?

Answer 2

0 Bytes to 5 TB (per object)

Question 3

S3 Bucket names must be:

Answer 3

Globally Unique

Question 4

What code does your browser receive following a successful S3 upload?

Answer 4

HTTP 200

Question 5

Name the fundamental parts of an S3 Object:

Answer 5

• Key (Filename)
• Value (Data)
• Version ID
• Metadata
• Sub Resources

Question 6

What are Amazon’s S3 Guarantees?

Answer 6

• 99.99% Availability

- 99.99999999999% Durability (11 9’s)

Question 7

What is the S3 data consistency model?

Answer 7

• Read after write consistency for PUTS of new objects.

- Eventual consistency for overwrite PUTS and DELETES

Question 8

What is S3 Lifecycle Management?

Answer 8

Lifecycle management moves objects between storage tiers based on the objects age.

Question 9

Does S3 allow versioning?

Answer 9

Yes!

Question 10

Does S3 Support MFA?

Answer 10

S3 versioning supports MFA for object deletion.

Question 11

How is S3 data secured?

Answer 11

Data is secured using Access Control Lists and Bucket Policies.

Question 12

What is S3 Standard?

Answer 12

S3 Standard offers 99.99% availability and 11 9’s of durability. It is designed to sustain the loss of 2 facilities concurrently.

Question 13

What is S3 - IA?

Answer 13

S3 Infrequently Accessed is a tier that offers lower storage fees than S3 Standard, but higher data retrieval fees.

Question 14

What is S3 One Zone - IA?

Answer 14

S3 One Zone Infrequently Accessed has lower data storage fees than S3 - IA, but does not provide multi-AZ resilience.

Question 15

What is S3 - Glacier?

Answer 15

S3 Glacier provides low cost data archival. The retrieval time for data in Glacier can be range from minutes to hours.

Question 16

What is S3 - Glacier Deep Archive?

Answer 16

S3 Glacier Deep Archive is the cheapest S3 storage option. Data retrieval time is 12 hours.

Question 17

What affects S3 charges?

Answer 17

• Storage
• Number of Requests
• Tier Pricing
• Data Transfers
• Use of Transfer Acceleration
• Use of Cross-Region Replication

Question 18

What is Cross-Region Replication?

Answer 18

The automatic replication of bucket objects from one zone to another zone.

Question 19

What is Transfer Acceleration?

Answer 19

Transfer Acceleration utilizes CloudFront’s system of global edge locations to quickly route data from users to the S3 bucket over Amazon’s backbone network.

Question 20

Is S3 suitable for operating systems and databases?

Answer 20

No!

Question 21

Are S3 Buckets region-specific?

Answer 21

Yes! You can choose the region where the bucket is created.

Question 22

From where can you access an S3 Bucket?

Answer 22

S3 Buckets are globally accessible.

Question 23

By default, are S3 Buckets public or privately accessible?

Answer 23

S3 Buckets block all public access by default.

Question 24

Is server-side encryption enabled on S3 Buckets by default?

Answer 24

No! The default configuration is encryption disabled.

Question 25

What is S3 Intelligent Tiering?

Answer 25

Intelligent Tiering moves files to different bucket classes based on how frequently you access those files.

Question 26

What are three methods of controlling access in an S3 Bucket?

Answer 26

• Bucket Policies: Apply to entire bucket
• Object Policies: Apply to Objects in the bucket
• IAM Policies: Apply to Users and Groups who access the bucket

Question 27

Can S3 produce access logs?

Answer 27

Yes! Logs can be stored in another bucket in the account, or on another account.

Question 28

What are three methods of S3 encryption?

Answer 28

• S3 Managed Keys (SSE - S3)
• AWS Key Management Service (SSE-KMS)
• Server-side encryption with customer provided keys (SSE - C)

Question 29

Can S3 bucket versioning be disabled?

Answer 29

No! Once versioning is enabled, it can only be suspended. No new versions will be created, but existing versions will be retained.

Question 30

Can versioning be integrated with lifecycle rules?

Answer 30

Yes!

Question 31

What extra security measure does versioning provide?

Answer 31

Multifactor Authentication (MFA)

Question 32

When uploading a new version of a public file, will the new version also be public?

Answer 32

No! You must make each individual item public.

Question 33

What does Lifecycle Management do?

Answer 33

It automates the movement of objects between storage tiers.

Question 34

What is S3 Object Lock?

Answer 34

Object Lock stores objects using the Write Once, Read Many (WORM) model. It prevents objects from being deleted or modified for a fixed amount of time, or indefinitely.

Question 35

What is S3 Compliance Mode?

Answer 35

Compliance Mode protects objects from being deleted or modified for the duration of the retention period. Not even the Root User can delete or modify the object.

Question 36

What is the Retention Period?

Answer 36

The Retention Period is the amount of time that an object will be protected. Once the Retention Period expires, the object can be overwritten or deleted.

Question 37

What are S3 Legal Holds?

Answer 37

A Legal Hold prevents an object version from being overwritten or deleted. A Legal Hold remains in place until removed.

Question 38

What is Glacier Vault Lock?

Answer 38

Glacier Vault Lock allows you to deploy and enforce compliance controls for individual S3 Glacier Vaults with a Vault Lock Policy.

Question 39

What are Prefixes in S3?

Answer 39

The Prefix is the middle part between the bucket name and the file name.

mybucketname/folder1/subfolder1/myfile.jpg

The Prefix is /folder1/subfolder1

Question 40

Why are Prefixes important in S3?

Answer 40

Prefixes have a large impact on S3 performance. S3 request limits are per-Prefix.

Question 41

What is the limit for GET/HEAD requests per prefix?

Answer 41

GET/HEAD requests are limited to 5,500 per prefix, per second.

Question 42

What is the limit for PUT/COPY/POST/DELETE requests per-prefix?

Answer 42

PUT/COPY/POST/DELETE requests are limited to 3,500 per prefix, per second.

Question 43

What are the KMS quota limits for S3?

Answer 43

The quota is region-specific. It will be either 5,500 or 10,000 or 30,000 requests per second.

Question 44

Can you request a KMS quota increase?

Answer 44

Not at this time.

Question 45

What are S3 Multipart Uploads?

Answer 45

Multipart upload splits files into multiple parts and parallelizes the upload for increased speed.

Question 46

When should I use S3 Multipart Upload?

Answer 46

Multipart Upload should be used for files over 100MB and must be used for files over 5GB.

Question 47

What are S3 Byte Range Fetches?

Answer 47

Byte Range Fetches allow you to parallelize downloads by specifying the byte range. This speeds up the download of files and can be used to download only part of a file.

Question 48

What is S3 Select?

Answer 48

S3 Select allows your application to retrieve only a subset of data from an object using SQL expressions. This can lead to drastic performance increases. (Up to 400%)

Question 49

What is Glacier Select?

Answer 49

Glacier Select allows you to run SQL queries against Glacier directly.