What is S3..?

• S3 Stands for Simple Storage Service.

• S3 provides developers and IT teams with Secure, Durable, High-Scalable object
storage.
• Amazon S3 is easy to use with simple web service interface to store and retrieve any
amount of data from anywhere on the web.
S3 - Basic

• S3 is Object based storage.

• In storage terms there are 2 types of storage, Object Based and Block Based Storage.
Object simply things like videos, photos, pdf documents or words documents they called
flat files.
• S3 is not place where you can install OS and run a Database for that we need Block
Based Storage.
S3 - Basic

• Files can be from 0 bytes to 5 TB in size.

• There is unlimited storage.
• Files are stored in bucket.
• S3 is universal namespace i.e. names must be unique globally.
• S3 bucket name always be in lower case characters.
• DNS Address of bucket : https://s3-eu-west-1.amazonaws.com/testbucket
S3 - Basic

• Built for 99.99% availability for the s3 platform.

• Amazon Guarantee 99.9% availability.
• Amazon Guarantee 99.999999999% durability for S3 information. (Remember 11*9’s)
• Durability means simply you don’t lose files.
Topics cover in S3

1. Data consistency model. 7. Events. 14. Object Lock.

2. Storage classes/Tiers. 8. Logging.
3. Versioning. 9. Permissions
4. Cross Region Replication. 10. Tags.
5. Lifecycle Management. 11. Requester Pay.
6. Static Website Hosting. 12. Encryption.
7. Transfer Acceleration 13. Bucket Policy.
Data Consistency Model

1. Read after Write consistency for PUTS of new objects.

2. Eventual consistency for overwrite PUTS and DELETES (can take some time to
propagate).
Storage Classes/Tiers

Storage Class Durability (Designed for) Availability (Designed for)

S3 Standard 99.999999999% 99.99%
S3 Standard - IA 99.999999999% 99.9%
S3 One zone - IA 99.999999999% 99.5%
S3 Intelligent - Tiering 99.99% 99.99%
S3 Glacier 99.999999999% 99.99%
S3 Glacier Deep Archive 99.999999999% 99.99%

https://aws.amazon.com/s3/storage-classes/
S3 – Lifecycle Management

• To manage your objects so that they are stored cost effectively throughout their
lifecycle, configure their lifecycle.
• S3 Lifecycle management help us to move object from one storage class to another after
particular time or delete that objects permanently.
• https://docs.aws.amazon.com/AmazonS3/latest/dev/object-lifecycle-mgmt.html
S3 - Versioning

• Versioning enables you to keep multiple versions of an object in one bucket.

• You can have two objects with the same key but different version IDs such as photo.png
(version 111111) and photo.png (version 22222)
• Versioning-enabled buckets enable you to recover objects from accidental deletion or
overwrite.
• For Example: If you delete an object, instead of removing it permanently, Amazon S3
inserts a delete marker, which becomes the current object version. You can always
restore the previous version.
S3 - Versioning

• If you overwrite an object, it results in a new object version in the bucket. You can
always restore the previous version.
• Great backup tool.
• Once enabled versioning cannot be disabled only suspended.
• https://docs.aws.amazon.com/AmazonS3/latest/dev/Versioning.html
S3 – Cross Region Replication

• Cross region replication is a bucket level feature that enables automatic, asynchronous
copying of objects across buckets in different AWS regions.
• The object replicas in the destination bucket are exact copy of the object in the source
bucket. They have same key names and the metadata – for example creation date, owner,
user-defined metadata, version ID, ACL, storage class.
• Amazon S3 encrypts all data in transit across AWS regions using SSL.
S3 – Cross Region Replication

• You can apply replication on whole bucket or prefix in this bucket.

• You can change destination storage class at the time of replication.
• Replication applies only on objects that are created after you add a replication
configuration on bucket.
• https://docs.aws.amazon.com/AmazonS3/latest/dev/crr.html
S3 – Requirements For Cross Region Replication

• The source and destination buckets must be versioning-enabled.

• The source and destination buckets must be in different AWS regions.
• You can replicate objects from a source bucket to only one destination bucket.
• Amazon S3 must have permission to replicate objects from that source bucket to the
destination bucket on your behalf.
• If you are setting up cross-region replication in a cross-account scenario (where the
source and destination buckets are owned by different AWS accounts), the source bucket
owner must have permission to replicate objects in the destination bucket.
S3 – Static Website Hosting

• You can host a static website on Amazon Simple Storage Service (Amazon S3). On a
static website, individual webpage's include static content.
• Make sure that bucket name is same as the domain name.
• https://docs.aws.amazon.com/AmazonS3/latest/dev/WebsiteHosting.html
S3 – Transfer Acceleration

• Amazon S3 Transfer Acceleration enables fast, easy, and secure transfers of files over
long distances between your client and an S3 bucket.
• Transfer Acceleration takes advantage of Amazon CloudFront’s globally distributed
edge locations.
• https://docs.aws.amazon.com/AmazonS3/latest/dev/transfer-acceleration.html
S3 – Events

• The Amazon S3 notification feature enables you to receive notifications when certain
events happen in your bucket.
• Amazon S3 supports the following destinations where it can publish events:
1. Amazon Simple Notification Service (Amazon SNS) topic
2. Amazon Simple Queue Service (Amazon SQS) queue
3. AWS Lambda
• https://docs.aws.amazon.com/AmazonS3/latest/dev/NotificationHowTo.html
S3 – Object Lock

• With Amazon S3 object lock, you can store objects using a write-once-read-
many (WORM) model.
• You can use it to prevent an object from being deleted or overwritten for a fixed amount
of time or indefinitely.
S3 – Permissions

• Access Control List:

1. Owner access
2. Access for other AWS account
3. Public access
4. S3 log delivery group
• Bucket Policy:
• CORS Configuration
S3 Quiz
1. What is an additional way to secure the AWS accounts of both the root account
and new users alike?

a) Implement Multi-Factor Authentication for all accounts.

b) Store the access key id and secret access key of all users in a publicly accessible plain
text document on S3 of which only you and members of your organisation know the
address to.
c) Configure the AWS Console so that you can only log in to it from a specific IP Address
range
d) Configure the AWS Console so that you can only log in to it from your internal
network IP address range.
Thank You ..!