Amazon S3

Question 1

How many bytes can files be in S3?

Answer 1

0 bytes to 5 TB

Question 2

You create your buckets within a _____

Answer 2

You create your buckets within a Region

Question 3

There’s no ____ for objects within a bucket

Answer 3

There’s no ____ for objects within a bucket

hierarchy

Question 4

S3 delivers strong ___ ___ ____ consistency

Answer 4

read-after-write consistency

Question 5

You can use an object key name (prefix) to _____ folders

Answer 5

You can use an object key name (prefix) to mimic folders

Question 6

What is the max default bucket amount per account?

Answer 6

100 buckets per account by default

Question 7

What file type does S3 support?

Answer 7

any file type

Question 8

Each object is ____ and _______ by a unique key

Answer 8

Each object is ____ and _______ by a unique key

stored, retrieved

Question 9

Objects are stored in the region they are setup in unless you setup __________

Answer 9

setup replication

Question 10

Bucket Policies are _________-based policies

Answer 10

Bucket Policies are resource-based policies

Question 11

Bucket policies can only be attached to Amazon __ _______

Answer 11

Bucket policies can only be attached to Amazon S3 buckets

Question 12

AWS generally recommends using ___ _____ policies or ___ policies rather than ACLS

Answer 12

AWS generally recommends using S3 bucket policies or IAM policies rather than ACLS

;

Question 13

Use IAM policies if you have numerous S3 buckets that require ________ permissions

Answer 13

Use IAM policies if you have numerous S3 buckets that require different permissions

Question 14

Bucket policies allow you to grant ____-______ access to your S3 environment, without using IAM _____

Answer 14

Bucket policies allow you to grant cross-account access to your S3 environment, without using IAM roles

Question 15

Versioning-enabled buckets enable you to recover objects from accidental ________ or ________

Answer 15

Versioning-enabled buckets enable you to recover objects from accidental deletion or overwrite

Question 16

Transition actions are when objects transition to another _______ _____

Answer 16

Transition actions are when objects transition to another storage class

Question 17

Expiration actions are when an object ______ or gets ______ by S3

Answer 17

Expiration actions are when an object expires or gets deleted by S3

Question 18

You can transition any storage class to which two storage classes?

Answer 18

S3 Glacier or S3 Glacier Deep Archive

Question 19

You can’t transition any storage class to

Answer 19

S3 standard

Question 20

You can’t transition the S3 One Zone-IA storage class to which two storage classes?

Answer 20

Standard-IA or S3 Intelligent-Tiering storage classes

Question 21

MFA Delete Adds MFA requirement for bucket owners to perform the following actions: (2)

• Changing the __________ state of a bucket
• Permanently _______ an object version

Answer 21

Changing the versioning state of a bucket

• Permanently deleting an object version

Question 22

The second factor of MFA Delete is a _____ _________ by a hardware device or ________ program

Answer 22

The second factor of MFA Delete is a token generated by a hardware device or software program

Question 23

Versioning can be enabled by: (3)

• _____ owners
• AWS account that ________ the bucket
• _________ IAM users

Answer 23

• Bucket owners
• AWS account that created the bucket
• Authorized IAM users

Question 24

MFA delete can be enabled by the ______ owner or ____ account

Answer 24

MFA delete can be enabled by the Bucket owner or root account

Question 25

MFA-protected API access is used to enforce the ___________ factor (MFA code) when accessing AWS ________

Answer 25

MFA-protected API access is used to enforce the authentication factor (MFA code) when accessing AWS resources

Question 26

ServerSideEncryption SSE-S3 works by using ___ existing encryption key for ________

Answer 26

ServerSideEncryption SSE-S3 works by using S3’s existing encryption key for AES-256

Question 27

With ServerSideEncryption Client SSE-C you upload your own _______ encryption key which S3 uses when it ______ objects

Answer 27

With ServerSideEncryption Client SSE-C you upload your own AES-256 encryption key which S3 uses when it writes objects

Question 28

ServerSideEncryption SSE-KMS uses a key generated and managed by ___ ___

Answer 28

ServerSideEncryption SSE-KMS uses a key generated and managed by AWS KMS

Question 29

How does client-side encryption work in regards to S3?

Answer 29

You encrypt objects using your own local encryption process before uploading to S3

Question 30

Amazon S3 encrypts objects before saving them to disk and decrypts them when

Answer 30

Amazon S3 encrypts objects before saving them to disk and decrypts them when the objects are downloaded

Question 31

S3 Event Notifications can possibly be sent to which three AWS services?

Answer 31

• Simple Notification Service (SNS) topics
• Simple Queue Service (SQS) queues
• AWS Lambda

Question 32

S3 Multipart Upload can be used for objects from _____ up to _____

Answer 32

S3 Multipart Upload can be used for objects from 5 MB up to 5 TB

Question 33

S3 Transfer Acceleration leverages Amazon __________ ____ Location

Answer 33

S3 Transfer Acceleration leverages Amazon CloudFront Edge Location

Question 34

S3 Transfer Acceleration is used to accelerate object uploads to S3 over ____ ________ to minimize _____

Answer 34

S3 Transfer Acceleration is used to accelerate object uploads to S3 over long distances to minimize latency

Question 35

S3 Transfer Acceleration is as secure as a ______ upload to S3

Answer 35

S3 Transfer Acceleration is as secure as a direct upload to S3

Question 36

With S3 Transfer Acceleration, you are charged only if there was a ______ in ______ times

Answer 36

With S3 Transfer Acceleration, you are charged only if there was a benefit in transfer times

Question 37

For S3 Transfer Acceleration, to work you need to _____ transfer acceleration on the __ _____

Answer 37

For S3 Transfer Acceleration, to work you need to enable transfer acceleration on the S3 bucket

Question 38

S3 Copy API objects up to __ GB in size

Answer 38

S3 Copy API objects up to 5 GB in size

Question 39

S3 Copy API can be used to (3)

• Move objects across AWS ______
• Change object _______
• ______ objects

Answer 39

• Move objects across AWS ∫regions
• Change object metadata
• Rename objects

Question 40

S3 Copy API can be used to change the copy’s ________ class or __________ at rest status

Answer 40

S3 Copy API can be used to change the copy’s storage class or encryption at rest status

Question 41

Server Access Logging provides ________ records for the ______ that are made to a bucket

Answer 41

Server Access Logging provides detailed records for the requests that are made to a bucket

Question 42

Server Access Logging is ______ by default

Answer 42

Server Access Logging is disabled by default

Question 43

Server Access Logging only pay for the ______ _____ used

Answer 43

Server Access Logging only pay for the storage space used

Question 44

Server Access Logging must grant _____ permissions to the Amazon S3 log delivery group on the __________ bucket

Answer 44

Server Access Logging must grant write permissions to the Amazon S3 log delivery group on the destination bucket

Question 45

S3 Performance Optimizations increase ____ and _____ performance by _________ reads

Answer 45

S3 Performance Optimizations increase read or write performance by parallelizing reads

Question 46

S3 Performance Optimizations retry requests for _______-Sensitive _________

Answer 46

S3 Performance Optimizations retry requests for Latency-Sensitive Applications

Question 47

S3 Performance Optimizations combine Amazon __ and Amazon ___ in the Same AWS ______

Answer 47

S3 Performance Optimizations combine Amazon S3 and Amazon EC2 in the Same AWS Region

Question 48

S3 Glacier Deep Archive retrieval time is within __ hours, which makes it the ______ cost storage class

Answer 48

S3 Glacier Deep Archive retrieval time is within 12 hours, which makes it the lowest cost storage class

Question 49

S3 Glacier Deep Archive is Ideal for highly-regulated industries that need to retain data for

__-__ years or longer to meet _________ compliance requirements.

Answer 49

S3 Glacier Deep Archive is Ideal for highly-regulated industries that need to retain data for

7-10 years or longer to meet regulatory compliance requirements.

Question 50

S3 Glacier Flexible Retrieval Features configurable retrieval times, from _______ to _____, with free ____ retrievals

Answer 50

S3 Glacier Flexible Retrieval Features configurable retrieval times, from minutes to hours, with free bulk retrievals

Question 51

S3 Glacier Flexible is ideal for _______ and ________ recovery use cases when large sets of data need to be retrieved in ______, without concern for _____

Answer 51

S3 Glacier Flexible is ideal for backup and disaster recovery use cases when large sets of data need to be retrieved in minutes, without concern for costs

Question 52

S3 Glacier Instant Retrieval provides data with the same speed, durability, and availability as S3 Standard. What is the main difference between the two?

Answer 52

S3 Glacier Instant Retrieval is a fraction of the price

Question 53

S3 Glacier Instant Retrieval is ideal for archival data that needs immediate access such as

Answer 53

medical images, or new media

Question 54

S3 One Zone-IA is ideal for customers who want a lower-cost option for infrequently accessed data but do not require the availability and resilience of which two S3 storage classes?

Answer 54

S3 Standard or S3 Standard Infrequent Access

Question 55

The combination of low cost and high performance makes S3 Standard-IA ideal for? (3)

Answer 55

Long-term storage

Backups

Disaster recovery files

Question 56

If your IAM policies are reaching their size limits you should

Answer 56

switch to using bucket policies

Question 57

What is the max number of objects that can be stored in S3?

Answer 57

Unlimited

Question 58

S3 Lifecycle management automates ________ objects between the different ________ tiers

Answer 58

S3 Lifecycle management automates moving objects between the different storage tiers

Question 59

S3 Lifecycle management can be used in conjunction with versioning which would apply to the _______ and _______ versions

Answer 59

S3 Lifecycle management can be used in conjunction with versioning which would apply to the current and previous versions

Question 60

Use S3 Object Lock to store objects using a Write _____ Read _____ model

Answer 60

Use S3 Object Lock to store objects using a Write Once Read Many (WORM) model

Question 61

Object Lock can be applied to an individual _____ or the entire _____

Answer 61

Object Lock can be applied to an individual object or the entire bucket

Question 62

With Governance mode, users can’t __________ or ______ an object _____ unless they have special permissions.

Answer 62

With Governance mode, users can’t overwrite or delete an object version unless they have special permissions.

Question 63

With Governance mode, users can’t _____ a version ____ settings unless they have special permissions.

Answer 63

With Governance mode, users can’t modify a version lock settings unless they have special permissions.

Question 64

What two modes does object lock come in?

Answer 64

Governance Mode

Compliance Mode

Question 65

With compliance mode an object version can’t be ___________ or _______ by any user including the ____ ____

Answer 65

With compliance mode, an object version can’t be overwritten or deleted by any user including the root user

Question 66

You can get better performance with S3 by spreading reads across different prefixes. For example, if you are using 2 prefixes, you can achieve _____ as many ______ per second

Answer 66

You can get better performance with S3 by spreading reads across different prefixes. For example, if you are using 2 prefixes, you can achieve twice as many requests per second

Question 67

S3 Glacier Deep Archive is used in which three industries?

__________ Services, Healthcare, and _____ Sectors

Answer 67

Financial Services, Healthcare, and Public Sectors

Question 68

S3 One Zone-IA stores data in one AZ while the other S3 Storage Classes store data in a minimum of __ AZs

Answer 68

S3 One Zone-IA stores data in on AZ while the other S3 Storage Classes store data in a minimum of 3 AZs

Question 69

Object Lock can help prevent objects from being deleted or overwritten for a ______ amount of time or ____________

Answer 69

Object Lock can help prevent objects from being deleted or overwritten for a fixed amount of time or indefinitely.

Question 70

Object Lock works only in _________ buckets

Answer 70

Object Lock works only in versioned buckets

Question 71

S3 One Zone Infrequent Access is best used for data that requires ______ access when needed.

Answer 71

S3 One Zone Infrequent Access is best used for data that requires rapid access when needed.

Question 72

S3 One Zone Infrequent Access is a good choice for storing ________ _______ copies

Answer 72

S3 One Zone Infrequent Access is a good choice for storing​ secondary backup copies