Summary and Quiz

We'll cover the following

Summary
Test your knowledge

This lesson summarizes what we have learned about Simple Storage Service (S3). We'll also test our knowledge through a quiz.

Summary

Here is a summary of key takeaways from the Simple Storage Service (S3) section:

S3 access management: We learned the key security mechanisms to secure an S3 bucket:
- Resource-based policies: These are IAM policies that attach to a bucket and define which IAM user or role is allowed to access the bucket in the principal element.
- ACLs: These are attached to the S3 buckets and their objects as a sub-resource to define the allowed users and allowed actions.
- Access grants: These explicitly grant permissions to entities, such as users, groups, or services, to perform specific actions on S3 buckets and objects. Each Access Grant instance can give up to 100,000 grants.
- Block Public Access Settings: These restrict public access to a bucket. Block public access provides four settings to manage access, which apply to buckets, users, and access points.
- Presigned URLs: S3 offers Presigned URLs to grant temporary access to users to download and upload objects. Presigned URLs reflect the IAM permissions of the generator of the URL.
S3 static website hosting: S3 allows to host static websites designed in HTML, CSS, and JavaScript. These websites are accessible over a unique bucket website URL after enabling static website hosting.
Object versioning: S3 allows us to enable versioning on an S3 bucket to prevent accidental overwriting and deletion of objects. Through S3 Object versioning, we can restore the previous version of an object.
S3 replication: To increase fault tolerance, S3 allows us to replicate objects and original metadata across buckets. S3 replication allows real-time and batch replication across regions and accounts.
S3 object storage classes: S3 offers various storage classes with variable costs and retrieval times. These storage classes can be categorized among four major access tiers.
- Frequent access: The S3 Standard class is the one with the lowest access latency and highest cost. Thus, it is used for the most frequently accessed objects.
- Infrequent access: S3 offers S3 Standard-IA and S3 Standard One Zone Express IA for infrequently accessed objects.
- Archive: S3 offers three storage classes for archival: S3 Glacier Flexible Retrieval. S3 Glacier Instant Retrieval and S3 Glacier Deep Archive. These storage classes vary in cost and the time required to restore the object.
- S3 Intelligent-Tiering: This storage class automates the transition of objects between multiple storage classes based on the access pattern.

Test your knowledge

Solve the quiz below to test the concepts you learned in this chapter.

Get hands-on with 1400+ tech skills courses.

Introduction

AWS Fundamentals

Identity and Access Management

Securing AWS Resources: Managing Access with IAM

Networking

Understanding Networking Services in AWS—From Zero to Hero

Getting Started with Virtual Private Cloud (VPC) in AWS

Managing Peer Connections between Amazon Virtual Private Clouds

Simple Storage Service S3

Configuring a Static Website with S3 and CloudFront

Compute Services

Getting Started with AWS Batch

Getting Started with Amazon ECS

Amazon EC2: Elastic Compute Cloud

Understanding AWS Compute Services — From Zero to Hero

Serverless Computing

Getting to Know AWS Lambda

Mastering Serverless on AWS—From Zero to Hero

Getting Started with Serverless Event-Driven Architectures on AWS

Storage

Understanding AWS Storage Options—From Zero to Hero

Working with AWS S3 Cross-Region Replication

Databases

Working with NoSQL Databases: A Beginner's Guide to AWS DynamoDB

Working with Relational Databases: A Beginner's Guide to AWS RDS

Getting Started with Amazon Aurora Database Engine

Application Integration

Mastering Application Integration Services—From Zero to Hero

Fundamentals of AWS Step Functions

Security and Compliance

Protecting Web Applications Using AWS WAF

Getting Started with AWS Key Management Service (KMS)

Finding Vulnerabilities on EC2 Instances Using AWS Inspector

Analytics

Analyzing S3 Data and CloudTrail Logs Using Amazon Athena

Getting Started with Amazon EMR

Building a Logs Processing Pipeline with Amazon Kinesis

Developer Tools

Mastering AWS Deployment Services—From Zero to Hero

Machine Learning

Understanding Machine Learning Services on AWS—From Zero to Hero

Deploying a Machine Learning Model with Amazon SageMaker

AWS Billing and Cost Management

Customer Engagement

Migration and Transfer

Monitoring and Auditing

Getting to Know Amazon CloudWatch

Getting Started with AWS Config

Management and Governance

Getting Started with AWS Systems Manager Parameter Store

Other AWS Services

Understanding AWS IoT Core with Lambda

Wrap Up

Practice Exam - AWS Certified Cloud Practitioner

Practice Exam Solution - AWS Certified Cloud Practitioner

Summary and Quiz

Summary

Test your knowledge