Here’s a cheat sheet for Amazon S3 (Simple Storage Service) with a focus on concepts that are relevant for the AWS Certified Solutions Architect – Professional exam:Amazon S3 (Simple Storage Service) Cheat Sheet for Solutions Architect Professional
1. S3 Basics
- S3 is object storage designed to store and retrieve any amount of data.
- Objects consist of data, a key (unique within a bucket), and metadata.
- Buckets are containers for objects, and bucket names must be globally unique.
- S3 is highly durable and available with 99.999999999% (11 nines) durability.
2. Data Consistency
- Read-after-write consistency for PUTS and DELETES.
- Eventual consistency for overwrite PUTS and DELETES.
3. S3 Storage Classes
- S3 Standard: General-purpose storage with high durability and availability.
- S3 Intelligent-Tiering: Automatically moves objects between two access tiers.
- S3 Standard-IA (Infrequent Access): Lower storage cost with retrieval fees.
- S3 One Zone-IA: Stores data in a single availability zone.
- S3 Glacier: Low-cost archive storage with a retrieval delay.
- S3 Glacier Deep Archive: Lowest-cost archive storage for long-term retention.
4. S3 Data Transfer Acceleration
- Uses Amazon CloudFront’s globally distributed edge locations to accelerate uploads and downloads.
- Ideal for frequently accessed data across the globe.
5. S3 Versioning
- Enables versioning for objects in a bucket.
- Protects against accidental deletion or overwrites.
- All versions are retained, increasing storage costs.
6. S3 Lifecycle Policies
- Automates object transitions between storage classes or deletion.
- Cost-effective management of object lifecycles.
7. S3 Cross-Region Replication
- Replicates objects from one source bucket to a destination bucket in another region.
- Versioning must be enabled on both source and destination buckets.
8. S3 Transfer Acceleration
- Accelerates transfers to and from S3 using Amazon CloudFront’s edge locations.
- Utilizes a unique endpoint format.
9. S3 Data Encryption
- Data at rest: Use Server-Side Encryption (SSE) with SSE-S3, SSE-KMS, or SSE-C.
- Data in transit: Use SSL/TLS (HTTPS).
10. S3 Access Control – Bucket Policies: Define access policies at the bucket level. – Access Control Lists (ACLs): Granular control over object access. – IAM Policies: Define permissions for users and groups.
11. S3 Event Notifications – Trigger AWS Lambda functions, SQS queues, or SNS topics when objects are created or deleted. – Useful for automating workflows based on S3 events.
12. S3 Static Website Hosting – Host static websites directly from S3 buckets. – Configure index and error documents.
13. S3 Select – Retrieve specific data within an object using SQL-like queries. – Reduces data transfer costs and speeds up data retrieval.
14. S3 Object Lock – Ensures objects cannot be deleted or overwritten for a specified retention period. – Protects against data tampering or accidental deletions.
15. S3 Data Access Logging – Logs all requests made to S3 objects. – Helpful for security, compliance, and auditing purposes.
16. S3 Replication and Disaster Recovery – Cross-region replication for disaster recovery and compliance. – Same-region replication for log aggregation and real-time analytics.
17. S3 Batch Operations – Allows you to perform large-scale batch operations on S3 objects. – Useful for tasks like data transformations and deletions.
18. S3 Inventory Reports – Provides scheduled reports about your objects for audit and compliance purposes. – Helps in managing large-scale storage.
19. S3 Data Lake Architectures – Use S3 as a foundation for data lakes, storing structured and unstructured data. – Analyze data with services like Amazon Athena, Glue, and Redshift.
Remember that for the AWS Certified Solutions Architect – Professional exam, you should have a deep understanding of these S3 concepts and how they integrate with other AWS services to architect highly available, scalable, and cost-effective solutions. Good luck with your exam preparation!