S3 101

Question 1

What is S3?

Answer 1

S3 (Simple Storage Service) provides developers and IT teams with secure, durable, highly scalable object storage, ie you can upload files.

Question 2

What is the Max and Min file size that can be stored in S3?

Answer 2

Max: 5TB
Min: 0 Bytes

Question 3

What is the S3 storage limit?

Answer 3

There is no limit

Question 4

True or False: S3 is a universal namespace.

Answer 4

True; names must be unique Globally.

Question 5

What is the syntax of an S3 bucket web address?

Answer 5

For the default region (Northern VA): https://bucketname.S3.amazonaws.com
For other regions:
https://bucketname.regionname.amazonaws.com

Question 6

What is the Status Code for successful uploads to S3?

Answer 6

HTTP 200

Question 7

What is MFA Delete?

Answer 7

Multi Factor Authentication Delete allows you to protect your files from accidental deletion by requiring an MFA code to delete objects from the bucket.

Question 8

What is the Data Consistency Model for S3?

Answer 8

1. Read after Write consistency for PUTS of new Objects.
2. Eventual Consistency for overwrite PUTS and DELETES (can take some time to propagate).

This is important to consider if a program needs access to a file to perform an operation.

Question 9

What is the S3 Standard Availability?

Answer 9

99.99%

Question 10

What is the S3 Standard Durability?

Answer 10

99.99999999999%

ie 11x9s of durability

Question 11

What is S3 Standard?

Answer 11

This is the standard S3 storage class. It has 99.99% Availability and 11x9s of Durability. Stores data redundantly across multiple devices in multiple facilities, and is designed to sustain the loss of 2 facilities concurrently.

Question 12

What is S3 - IA?

Answer 12

S3 - IA (Infrequently Accessed) is a storage class for data that is accessed less frequently, but requires rapid access when needed. Lower fee than S3 Standard, but you are charged a retrieval fee.

Question 13

What is S3 One Zone - IA?

Answer 13

S3 One Zone - IA is a storage class for infrequently accessed data that does not require multiple Availability Zones for resiliency, but requires rapid access. A lower cost option to S3 - IA.

Question 14

What is S3 - Intelligent Tiering?

Answer 14

S3 - Intelligent Tiering is a storage class designed to optimize costs by automatically moving data to the most cost effective access tier without performance impact or operational overhead.

Question 15

What is S3 Glacier?

Answer 15

S3 Glacier is a secure, durable, and low cost storage class for data archiving. Retrieval times are configurable from minutes to hours.

Question 16

What is S3 Glacier Deep Archive?

Answer 16

S3 Glacier Deep Archive is S3’s lowest cost storage class where a retrieval time of 12 hours is acceptable.

Question 17

What is the Availability of S3 - Intelligent Tiering?

Answer 17

99.9%

Question 18

What is the Availability of S3 - IA

Answer 18

99.9%

Question 19

What is the Availability of S3 One Zone - IA?

Answer 19

99.5%

Question 20

What is S3 Transfer Acceleration?

Answer 20

Transfer Acceleration takes advantage of Amazon CloudFront’s globally distributed edge locations. As data arrives at an edge location, data is routed to S3 over an optimized network path in the edge network.

Question 21

What is an ACL?

Answer 21

Access Control Lists allow users to limit access down to the individual file level.

Question 22

What is a Bucket Policy?

Answer 22

Bucket Policies allow users to limit access at the bucket level, whereas ACLs limit at the file level.

Question 23

What is the S3 Standard Use Case?

Answer 23

General purpose storage for any type of data, typically used for frequently access data.

Question 24

What is the S3 Intelligent Tiering Use Case?

Answer 24

Automatic cost savings for data with unknown or changing access patterns. Unless you have thousands or millions of objects.

Question 25

What is the S3 - IA Use Case?

Answer 25

For long lived but infrequently accessed data that needs millisecond access.

Question 26

What is the S3 One Zone -IA Use Case?

Answer 26

For re-creatable infrequently accessed data that needs millisecond access.

Question 27

What is the S3 Glacier Use Case?

Answer 27

For long term backups and archives with retrieval option from 1 minute to 12 hours.

Question 28

What is the S3 Glacier Deep Archive Use Case?

Answer 28

For long term data archiving that is accessed once or twice in a year and an be restored within 12 hours.

Question 29

True or False: All newly created buckets are public?

Answer 29

False: all new buckets are Private by default.

Question 30

How can you track who is accessing the files in a bucket?

Answer 30

S3 buckets can be configured to create access logs to log all requests made to the S3 bucket. This can be sent to another bucket, or even another bucket in another account.

Question 31

Encryption in Transit is achieved by?

Answer 31

Requests sent from your computer to the server are Encrypted in Transit with SSL/TLS.

Question 32

Encryption at Rest is achieved by?

Answer 32

Server Side: 
1. S3 Managed Keys
2. AWS Key Mgmt Service
3. Encryption with Customer 
    Provided Provided Keys.
Client Side Encryption: 
    Encrypting on the user 
    side and upload it to S3.

Question 33

True or False: Versioning cannot be disabled on an S3 bucket.

Answer 33

True; once it is enabled, versioning cannot be disabled, only suspended.

Question 34

How many versions of an object does S3 store?

Answer 34

It stores all versions of an object, including all writes and even if you delete an object,

Question 35

True of False: S3 Versioning allows MFA Delete,

Answer 35

True; MFA Delete can be enabled to prevent accidental object deletion.

Question 36

True or False: Uploading a new version of an object will keep the same permissions as the object being replaced.

Answer 36

False; if an object is publicly available and a new version is uploaded, the version will not be publicly available. Versions also fall under Eventual Consistency.

Question 37

What is S3 Lifecycle Management?

Answer 37

It automates moving objects between the different storage tiers based on rules. Ex. after 12 mos move to Glacier. Life Cycle Management can also be applied to current and previous versions.

Question 38

What is AWS Organizations?

Answer 38

It is an account management service that enables you to consolidate multiple AWS accounts into an organization that you create and centrally manage.

Question 39

What is AWS Organization’s Consolidated Billing?

Answer 39

Consolidated Billing allows you combine the billing from multiple accounts into one master account. This saves money since the used resources are combined as well.

Question 40

What are the 3 ways to share S3 buckets across accounts?

Answer 40

1. Using Bucket Policies and IAM (applies across the entire bucket). Will only have Programmatic access.
2. Using Bucket ACLs and IAM (individual objects). Will only have Programmatic access.
3. Cross account IAM Roles. Will have Programmatic and Console access.

Question 41

How can you enable or disable AWS services for an Organizational Unit?

Answer 41

Using Service Control Policies.

Question 42

What is Cross Region Replication?

Answer 42

CRR replicates the S3 contents into another Region to prevent data loss.

Question 43

True or False: Cross Region Replication requires Versioning to be turned on.

Answer 43

True; it must be enabled on both the Source and the Destination buckets. Delete markers are not replicated.

Question 44

True or False: Existing files in a bucket are automatically replicated with CRR.

Answer 44

False; existing files need to be manually uploaded to the destination bucket.