AWS Solution Architect Associate
UPDATED Exam Questions and CORRECT
Answers
What is S3? - CORRECT ANSWER - AWS' object storage service
What is object-based storage? - CORRECT ANSWER - Stores things like media and text
files; not suitable for storing things like OS
Key characteristics of S3 - CORRECT ANSWER - - a key-value store for objects
- 99.99% availability
- 99.999999999% (11 nines) durability
- allows for versioning control
- supports multiple types of encryption
- can store files up to 5TB
- Storage space is unlimited
- Each bucket has a universal namespace
- Sends an HTTP 200 code upon successful upload
What information comprise an S3 object? - CORRECT ANSWER - - Key (name of the
object)
- Value (the data that makes up the object)
- Version ID for versioning control
- Metadata for organizing and describing the object
- Access control lists
- torrent information
,What is the data consistency model for S3? - CORRECT ANSWER - - Read after write
consistency for new object PUTS
- eventual consistency for overwrite PUTS and DELETES
What are the 4 AWS storage tiers? - CORRECT ANSWER - - S3 Standard
- S3 IA
- S3 One Zone IA
- Glacier
Characteristics of S3 Standard - CORRECT ANSWER - - 99.99% availability
- 99.9^11% durability
- stored redundantly across multiple devices in multiple facilities
- designed to sustain the loss of 2 concurrent facilities
Characteristics of S3 IA - CORRECT ANSWER - - 99.99% availability
- 99.9^11% durability
- stored redundantly across multiple devices in multiple facilities
- designed to sustain the loss of 2 concurrent facilities
- Cheaper than S3
- Charges a data retrieval fee
- Objects must be 128KB minimum
Characteristics of S3 One Zone IA - CORRECT ANSWER - - 99.99% availability
- 99.9^11% durability
- stored redundantly across multiple devices in multiple facilities
- designed to sustain the loss of 2 concurrent facilities
,- Cheaper than S3 IA
- Charges a data retrieval fee
- Objects must be 128KB minimum
- Uses only one AZ (reduces data resilience)
Characteristics of Glacier - CORRECT ANSWER - - very cheap archival storage
- has a retrieval fee per GB
- has 3 storage models that determine data retrieval times
What are the 3 Glacier storage models? - CORRECT ANSWER - - Expedited: get data
within a few minutes
- Standard: get data within 3-5 hours
- Bulk: get data within 5-12 hours
What does it mean that S3 is a universal namespace? - CORRECT ANSWER - Any S3
bucket name must be globally unique (like a username)
How are customers charged for AWS storage services? - CORRECT ANSWER - - Data
stored
- Retrieval requests
- Storage management pricing
- data transfer pricing
- Transfer Acceleration (WATCH THIS PART OF THE VIDEO AGAIN)
What is Transfer Acceleration? - CORRECT ANSWER - - A service that enables fast,
easy, secure file transfers over long distances between end users and S3 buckets
- Uses CloudFront edge locations to move data quickly (REVIEW THIS)
, What type of verification do you receive upon successful upload to an S3 bucket? - CORRECT
ANSWER - HTTP 200 code
What are the methods available for securing S3 buckets? - CORRECT ANSWER - -
Client side encryption
- Server side encryption
- Bucket ACLs
- Bucket Policies (WHAT'S THE DIFF BW ACL AND POLICIES?)
What are the 3 types of encryption S3 supports? - CORRECT ANSWER - - S3 Managed
Keys (SSE-S3)
- Key Managed Service (SSE-KMS)
- Customer Provided Keys (SSE-C)
What is an Envelope Key? - CORRECT ANSWER - A master key that encrypts your data
encryption keys
What is Server Side Encryption with S3 Managed Keys (SSE-S3)? - CORRECT
ANSWER - - Encrypts every object with a unique key
- Keys are then encrypted with rotating envelope key
- AWS manages data key AND envelope key
What is Server Side Encryption with Customer Provided Keys (SSE-C)? - CORRECT
ANSWER - - The customer manages both the data key and the envelope key
What is Server Side Encryption with Key Managed Service (SSE-KMS)? - CORRECT
ANSWER - - Same features as SSE-S3, plus:
- provides an audit trail for encryption key use
- AWS manages data key and customer manages envelope key in AWS' KMS environment
UPDATED Exam Questions and CORRECT
Answers
What is S3? - CORRECT ANSWER - AWS' object storage service
What is object-based storage? - CORRECT ANSWER - Stores things like media and text
files; not suitable for storing things like OS
Key characteristics of S3 - CORRECT ANSWER - - a key-value store for objects
- 99.99% availability
- 99.999999999% (11 nines) durability
- allows for versioning control
- supports multiple types of encryption
- can store files up to 5TB
- Storage space is unlimited
- Each bucket has a universal namespace
- Sends an HTTP 200 code upon successful upload
What information comprise an S3 object? - CORRECT ANSWER - - Key (name of the
object)
- Value (the data that makes up the object)
- Version ID for versioning control
- Metadata for organizing and describing the object
- Access control lists
- torrent information
,What is the data consistency model for S3? - CORRECT ANSWER - - Read after write
consistency for new object PUTS
- eventual consistency for overwrite PUTS and DELETES
What are the 4 AWS storage tiers? - CORRECT ANSWER - - S3 Standard
- S3 IA
- S3 One Zone IA
- Glacier
Characteristics of S3 Standard - CORRECT ANSWER - - 99.99% availability
- 99.9^11% durability
- stored redundantly across multiple devices in multiple facilities
- designed to sustain the loss of 2 concurrent facilities
Characteristics of S3 IA - CORRECT ANSWER - - 99.99% availability
- 99.9^11% durability
- stored redundantly across multiple devices in multiple facilities
- designed to sustain the loss of 2 concurrent facilities
- Cheaper than S3
- Charges a data retrieval fee
- Objects must be 128KB minimum
Characteristics of S3 One Zone IA - CORRECT ANSWER - - 99.99% availability
- 99.9^11% durability
- stored redundantly across multiple devices in multiple facilities
- designed to sustain the loss of 2 concurrent facilities
,- Cheaper than S3 IA
- Charges a data retrieval fee
- Objects must be 128KB minimum
- Uses only one AZ (reduces data resilience)
Characteristics of Glacier - CORRECT ANSWER - - very cheap archival storage
- has a retrieval fee per GB
- has 3 storage models that determine data retrieval times
What are the 3 Glacier storage models? - CORRECT ANSWER - - Expedited: get data
within a few minutes
- Standard: get data within 3-5 hours
- Bulk: get data within 5-12 hours
What does it mean that S3 is a universal namespace? - CORRECT ANSWER - Any S3
bucket name must be globally unique (like a username)
How are customers charged for AWS storage services? - CORRECT ANSWER - - Data
stored
- Retrieval requests
- Storage management pricing
- data transfer pricing
- Transfer Acceleration (WATCH THIS PART OF THE VIDEO AGAIN)
What is Transfer Acceleration? - CORRECT ANSWER - - A service that enables fast,
easy, secure file transfers over long distances between end users and S3 buckets
- Uses CloudFront edge locations to move data quickly (REVIEW THIS)
, What type of verification do you receive upon successful upload to an S3 bucket? - CORRECT
ANSWER - HTTP 200 code
What are the methods available for securing S3 buckets? - CORRECT ANSWER - -
Client side encryption
- Server side encryption
- Bucket ACLs
- Bucket Policies (WHAT'S THE DIFF BW ACL AND POLICIES?)
What are the 3 types of encryption S3 supports? - CORRECT ANSWER - - S3 Managed
Keys (SSE-S3)
- Key Managed Service (SSE-KMS)
- Customer Provided Keys (SSE-C)
What is an Envelope Key? - CORRECT ANSWER - A master key that encrypts your data
encryption keys
What is Server Side Encryption with S3 Managed Keys (SSE-S3)? - CORRECT
ANSWER - - Encrypts every object with a unique key
- Keys are then encrypted with rotating envelope key
- AWS manages data key AND envelope key
What is Server Side Encryption with Customer Provided Keys (SSE-C)? - CORRECT
ANSWER - - The customer manages both the data key and the envelope key
What is Server Side Encryption with Key Managed Service (SSE-KMS)? - CORRECT
ANSWER - - Same features as SSE-S3, plus:
- provides an audit trail for encryption key use
- AWS manages data key and customer manages envelope key in AWS' KMS environment
