S3

Question 1

What is Snowball?

Answer 1

Snowball Is a secure portable device used to transfer huge amount of data in & out of AWS.

Question 2

What is S3 Availability?

Answer 2

99.99%

Question 3

How to securely store objects in a bucket?

Answer 3

To securely store objects in a S3 bucket we have to use “Encryption at rest”.

Question 4

What is Governance Mode

Answer 4

In governance mode User cant overwrite or delete a version or alter lock settings without special permissions.

Question 5

How AWS implement Transfer Acceleration?

Answer 5

Transfer Acceleration is implemented using aws CloudFront service through edge locations.

Question 6

What is Cross Region Replication in S3

Answer 6

Cross region replication means transfer of s3 object from one region to another.

Question 7

In what scenario we can use S3 Standard tire

Answer 7

In S3 Standard Tier Data stored will be frequently accessed.

Data is be stored redundant on multiple facility to withstand 2 facility loss.”

Question 8

What is S3 object Lock

Answer 8

S3 Object Lock achieve WORM based storage model.

S3 Object Lock prevent objects from delete / overwrite for a fixed amount of time or indefinitely.

Question 9

What are the two S3 Object Lock Modes:

Answer 9

Governance Mode

Compliance Mode

Question 10

Can we move one file version to another s3 tier?

Answer 10

Yes; S3 life cycle mgt support Versioning ; we can transfer certain files version to another s3 tier.

Question 11

What is Storage Gateway?

Answer 11

Storage gateway connect on-premise IT application with AWS Storage.

Question 12

In what scenarios we can use S3-IA

Answer 12

In S3 IA Data stored will be infrequently accessed.

Data is be stored redundant on multiple facility to withstand 2 facility loss.”

Question 13

what is the max size of s3 object

Answer 13

5 TB

Question 14

What is CloudFront - Distribution

Answer 14

Cloud front distribution is a CDN - Collection of Edge Location

Question 15

Can we see who accessed s3 objects?

Answer 15

yes s3 can maintain access log for who access the objects.

Question 16

What is AWS Organizations?

Answer 16

AWS Organization is an Account Management service.

It helps us combine multiple AWS accounts into an organization.

Question 17

if new bucket is created; does every one have access?

Answer 17

No; In new bucket Block public access will be enabled by default.

Question 18

What is S3 Byte range Fetches?

Answer 18

S3 Byte range Fetches allows you to download huge files from S3.
It downloads huge files parallelly by specifying byte range.
This improves download performance to a greater extent.
If there is any failure it would be only specific byte range.”

Question 19

What is Compliance Mode

Answer 19

In compliance mode Even Root User cant overwrite or delete a version or alter lock settings.

Question 20

What is min retrieval time for S3 Glacier?

Answer 20

For S3 glacier Min retrieval time is 1 min to 1 hr

Question 21

What are the S3 limitations on KMS?

Answer 21

We use AWS KMS service to encrypt S3 object at rest; We call AWS KMS service every time during upload/download.
AWS KMS service has max request limits per second at regional level.
Like 5500,10000 & 30000 etc.
You cant increase request limits.”

Question 22

In what scenarios we can use S3 Glacier

Answer 22

S3 Glacier is Used for cheap data archive

Question 23

What is CloudFront - Origin

Answer 23

Cloud front origin is the Source location of file that CDN distribute;
Origin can be S3 Bucket, EC2, Elastic Load Balancer or Route 53”

Question 24

How to restrict public access for all objects in a bucket?

Answer 24

To restrict public access we have to use “Block Public Access” option at bucket level.

Question 25

What is Glacier Vault Lock

Answer 25

Glacier Vault Lock allows you to place compliance controls for individual Glacier object

Question 26

What is Management Account?

Answer 26

In AWS Organization Management Account manages billing & payment of multiple member accounts. It does not have any access to any service

Question 27

In what scenarios we can use S3 Glacier Deep Archive

Answer 27

S3 Glacier Deep Archive is Used for much cheaper data archives.

Question 28

What is S3 Prefixes?

Answer 28

S3 Prefixes are similar to a directory names. This enables you to group similar objects together in a bucket. If you read from 2 folder; you can achieve 11000 request per second. If you read from 4 folder; you can achieve 22000 request per second."

Question 29

In what scenarios we can use S3 Intelligent Tiering

Answer 29

S3 intelligent tier is used to optimize cost by moving data to cheaper tier according to usage.

Question 30

How to maintain all file modification for objects in a bucket?

Answer 30

To maintain all file modification of S3 objetcs we have to use "Versioning" option.

Question 31

What is snowmobile?

Answer 31

Snow mobile is a hexabyte scale data transfer.

Question 32

What is S3 Select?

Answer 32

"S3 select allows you to run sql query directly on S3 objects. we can download specific set of object from S3. Using S3 Select we can achieve 400% performance increase

Question 33

How Encryption at rest is achieved?

Answer 33

"S3 keys AWS KMS Customer keys Client side encryption"

Question 34

3 ways to share S3 bucket across accounts?

Answer 34

1. Bucket Policy & IAM - Programmatic Access 2. ACL & IAM - Programmatic Access 3. Cross Account IAM Roles - Programmatic Access & Console Access"

Question 35

What is CloudFront - RTMP

Answer 35

Cloud front RTMP is Used for media streaming

Question 36

What is a S3 bucket

Answer 36

S3 bucket is the place where objects are stored;

Question 37

In S3 how the objects are stored?

Answer 37

Objects are stored in buckets

Question 38

What is Athena?

Answer 38

Athena Allows you to query data using sql directly on S3

Question 39

if you upload a object in S3 what would be the response

Answer 39

HTTP 200 Status code

Question 40

How to improve S3 Upload performance?

Answer 40

"if you have a big file to upload in to S3;we have to split the file & upload parallelly; rather than single file upload. This improves upload performance to a greater extent. It is recommended for files >100 mb. It is required for files > 5 gb."

Question 41

Can we have common name across all S3 bucket

Answer 41

No; Every bucket name should be unique at global level

Question 42

What are S3 Tiers?

Answer 42

``` "S3 Standard S3 IA S3 ONCE ZONE IA S3 INTELLIGENT TIER S3 GLACIER S3 GLACIER DEEP ARCHIVE" ```

Question 43

What is Legal Hold?

Answer 43

"S3 object lock allows you to place a legal hold on specific version; once placed object cant be modified or deleted until revoked. There is no specific time period for legal hold like retention period."

Question 44

How Encryption in transit is achieved?

Answer 44

SSL/TSL

Question 45

What are S3 object properties

Answer 45

``` Key Value Version ID Metadata Sub resources: Access control List & Torrent" ```

Question 46

what is min size of s3 object

Answer 46

0 bytes

Question 47

Bucket is blocked from public can we enable public access for a specific file?

Answer 47

No; you have to enable public access for bucket then only we can enable public access for individual files.

Question 48

In what scenarios we can use S3 One Zone IA

Answer 48

In S3 one zone AI Data stored will be infrequently accessed. Data will not be stored redundant on multiple facility."

Question 49

S3 abbreviation

Answer 49

Simple storage service

Question 50

Can we disable versioning?

Answer 50

no versioning can only be suspended.

Question 51

How's to secure S3 object versions from delete?

Answer 51

we can enable MFA for version delete.

Question 52

What are S3 Features?

Answer 52

``` "Tiered Storage Lifecycle Mgt Versioning Encryption MFA Delete Secure data using - Access Control List & Bucket Policy" ```

Question 53

What is S3 Life cycle rules?

Answer 53

S3 life cycle rules is a set of instructions using which we can move S3 objects between S3 tiers.

Question 54

On what basis AWS charge for S3 Service?

Answer 54

``` "Storage No of Request Data Transfer Transfer Acceleration Cross Region Replication" ```

Question 55

Does each version has different access rules?

Answer 55

yes each version has its own access policies. By default latest file rules does not apply to other versions.

Question 56

What is CloudFront - Signed URL

Answer 56

Cloud front signed URL IS Used for authentication & authorization of content 1 authentication URL 1 object"

Question 57

How to control S3 bucket access?

Answer 57

1. Bucket policy | 2. access control list

Question 58

What is S3 Data Consistence model?

Answer 58

S3 Data Consistence model is Read after write consistency In case of any overwrite or delete of an existing object, any subsequent read request immediately receives the latest version of the object."

Question 59

What is Consolidated Billing?

Answer 59

AWS Organization Consolidated Billing allows us to Combine billing & payment of multiple AWS accounts. AWS Organization management account pays for all member accounts.

Question 60

What is Macie?

Answer 60

Macie Allows you to protect sensitive data stored in S3

Question 61

What is Retention period?

Answer 61

"Retention period protect an S3 object version for a fixed amount of time. When you place a retention period on a object version; S3 store a time stamp on version metadata to indicate the retention expiry; after that data version can be modified or deleted."

Question 62

What is CloudFront - Cookie

Answer 62

Cloud front cookie are Used for authentication & authorization of content 1 authentication cookie can be used for many object"

Question 63

What is Glacier Select?

Answer 63

Glacier select allows you to run SQL query directly on Glacier objects. You can download specific set of data from Glacier.

Question 64

What is S3

Answer 64

S3 is a object storage service.

Question 65

What is snowball Edge?

Answer 65

Snowball edge has compute capability in addition to Storage

Question 66

if we transfer files from one bucket to another do we maintain the same security details

Answer 66

Yes.

Question 67

What is CloudFront - Web Distribution

Answer 67

Cloud front web distribution is Used for website

Question 68

What is min retrieval time for S3 Glacier Deep Archive?

Answer 68

S3 Glacier Deep Archive retrieval time is 12 Hrs

Question 69

What is AWS Data Sync?

Answer 69

AWS Data Sync seamlessly sync data between on-premise server & AWS S3 / EFS / FSx

Question 70

What is CloudFront - Edge Location

Answer 70

AWS CloudFront - Edge Location is where data is cached & used for CDN; This is separate from Region & AZ.