4.4 Introduction to AWS Storage

Video Activity
Join over 3 million cybersecurity professionals advancing their career
Sign up with

Already have an account? Sign In »

2 hours 49 minutes
Video Transcription
Hello, everybody. And welcome to this lecture and it's like we're gonna be covering the introduction to eight of us Storage. This is a theoretical lecture. And let's go ahead and begin. So to start off, I wanted to introduce one of the more popular service is with eight of us. This is probably gonna be one of the more tested
service is that you will encounter when taking the
certified cloud practitioner exam.
This is the AWS s three. So
what is s3 s3? It stands for a simple sort service. Um,
basically, as through provides developers and I t teams with a secure, durable, highly scalable object storage.
Amazon s3 is very easy to use. You can integrate with your applications, you can do things within the AWS cli
or you can very well use their online Web interface, which will actually get a chance to play with in the next video.
But very easy, very intuitive. And let's go ahead and learn a little bit more about what AWS history is.
as three is a universal name space meaning that when you create a folder or a bucket is what they call it when you create a bucket and s three. It is the only bucket of its kinds. Meaning that's whatever you name that bucket.
No one else. Kaname it the same as you did. And in the same sense, you can't actually rename another bucket the same name.
It it is one and done. It is universal, and ah, it will stay that way. So Esther is a universal service. It is a global service. And your s three buckets are not going to be named the same.
Let's say in Europe as you have it named in ah, America. So if you have one bucket in America, you cannot name another bucket. That same name in Europe hope that makes sense. Let's talk a little bit more about the background details of s3. S3 is a universal name space. And what does that mean?
if you have an s three bucket or folder and United States, you cannot have another bucket and Europe with the same name as the one that you named in United States. Why,
Because it's universal is globally unique. Thes buckets are actually things that could be Internet accessible and just like a domain name, you can't have two people with the same domains.
Uh, you cannot have two people. The same buckets. It's That's the best way to put it, I think, to help everybody kind of understand, but yeah. So it is globally unique. Make sure you remember that.
Um so the details on the inner workings with S3 is that
it is an object based storage, and
objects contain things called keys, values, version, ideas, metadata and sub resource is
objects or files. And just like you have a file on your computer, you're gonna give that file a name. Well, that's your key for an object. The value of the data. If it's if your files an Excel spreadsheet or Power point presentation,
that is the value that is the data that makes up the file. That is what the file is. And that's the value. So when you have an object, you're gonna have a key, which is the name, and then you're of course gonna have the data of the file, which is the value of that object. The third thing that you're going to have is a version i d.
One thing that you can enable with an s3 is version ing basically meaning that
if you upload a file initially and the site to make modifications to it later and you don't change the name
and you upload that file Amazon has three is going to keep both files. They're gonna keep both versions. Although you only see one file in your bucket, you will get to see two versions. So if you decide
later you don't like that new version, you can always revert back to the original. The fourth point within objects is metadata. The best way to describe metadata is it's the data about data. So it helps. Your other service is it helps you identify what you were file is gonna be about where your object is gonna be about or what your buck it's gonna be about.
That's basically what made it
metadata is, and then you have sub resource is which we don't really have to go into. It's not really in the scope of the cloud certify practitioner exam, but to help you understand, it allows you to do things like encryption, torrent, eating stuff like that. And like I said, not really something. You need to focus for this exam.
So we're not gonna go into that.
Interviews s three offers a safe file storage. It is highly redundant. Highly available.
They allow objects to be uploaded anywhere from zero bites to five terabytes and size. I know. When I was taking my first AWS exam, that was actually a question I face, So I would be on the lookout. Make sure you remember that the object object size can be anywhere from zero bites to five terabytes. You will be
asked. That's I know some of you will be asked that for sure.
The data is spread across multiple devices and facilities. There is an unlimited amount of storage available to you and files are stored and things called buckets, which out by now you would understand that buckets are basically folders
in S three in the cloud. So
the next thing I want to talk about is data consistency.
What is that?
data consistency basically means that whenever you make a new file or you make a model modification to a file or you delete a file, how soon is that data going to be
updated and available for you to read
after the changes have been made
for s three new puts our read after right consistency. And what that means is that as soon as you upload a file into s three, it is available for you to be able to read it or access it or whatever you need to do to it.
However, if you're making over rights or you're the leading
those puts are gonna be eventual consistency. Now, we're not talking days. It really is pretty fast within seconds normally,
but it is eventual. So
if you have an application that is depending on its be instantaneous, you may want to keep that in mind. This isn't really something we can modify. This is just how it ISS if you if you are overriding ah, file or you're deleting a file, it's gonna take a minute before it is
Fred has propagated across your bucket and across the global s3 service itself.
The next thing I want to talk about is s3 availability and durability.
S3 guarantees 99.9% availability.
It's been built on the S three platform for that 99.9% availability and AWS guarantees 99.999
times 11 durability for us three. These are important things you want to keep in mind
for the exam. You probably will be asked these questions. What is availability mean and what is their ability? Me. Availability means that it's going to be available to you, regardless if there's downtime. So what they're doing is they are gonna be duplicating your file and secure facilities
that are managed by eight of us across the globe. That way, in case one region happens to go down or one availability zone goes down,
you can still access your information via another availability zone in another region. Remember, availability zones are strategically placed separately so that if one availability zone goes down within a region,
you will not be affected because another availability zone will have your information. And that's what that means. Durability, on the other hand, is going to prevent your information from being altered or destroyed by accident. Is gonna prevent your information from suffering from data loss of any sort of it rot things like that
special features an Amazon s three. You're offered lifecycle management. You're offered version ING encryption, tears, storage, access, control, US and bucket policy. What's going to talk a little bit about what that means.
Lifecycle management basically means that if you have a file that is in us three and you want to hold that file and s three standard for, let's say, 90 days,
you can do that. And you can implement a life cycle policy that moves that file from Amazon
that moves that file from S three standard to an s3 glacier archive. Let's just say to save you money because it's not being access is not being needed. And so the lifecycle policies saying, Okay,
we're automatically gonna do this. You can implement that. You can help your organization save money through life cycle policies.
Version ng we talked a little bit about earlier basically just means that when you upload a file, you modify the file. You can keep both versions in case you make a mistake or you decide I don't need that new um, modification. I want to revert back to the old one version. ING allows that to happen. You do have to enable it, but it is possible
encryption. That's pretty self explanatory. Let's say you have a public s three bucket that's out there. You're hosting a website. But you don't want to have all the files available.
You can encrypt your files,
and that's what encryption allows. Eight MPs does offer several encryption methods. I encourage you to take a look at the S three f A Q and documentation to learn a little bit more about how that works
as three offers tiered storage.
Ah, and when we're talking about lifecycle management, we talked about as three Standard and Glacier and a few seconds we're gonna actually be discussing the other tears that there that there are that are available to you and kind of how their pricing works. That is something that you will need to know going into the exam. I do encourage you to memorize that charts to the best of your abilities.
And then, of course, access control less than bucket policies,
A C l's bucket policies, things like that. These are security controls that you're implementing, basically preventing certain users from accessing the information
and, ah, also preventing certain roles and certain service is from accessing the information of the buckets. This'd is kind of out of the scope for this exam, but I do want to add that in there in case you are asked a question from a very high level perspective. Basically,
can I implement a bucket policy on s3?
The answer, of course, would be yes.
So let's talk a little bit about s3 tears or storage classes. So to start off the most used one is more than likely gonna be s three standard. This is the one you're going to start out with initially. Ah, if you know what you're doing, obviously you can change it.
So Esther Standard does offer 99.99% availability.
They do guarantee 99.9% availability. But keep that in mind. This is forestry standard. The 99.9 times 11
is the durability frustrate standard. It is gonna be stored across multiple devices in various facilities. The data is going to be designed to sustain the loss of two data centers
simultaneously. So your data is in very good hands. Obviously, the chances of this happening is slim to none, but in case it does happen,
you are in good hands. Your data will be safe and secure, and I'm personally, I have never seen or face an issue where I lost data in S3. And it wasn't a user that must made a mistake. Uh, I've never seen it happen on aws aside, so I think you should not Either
s story and frequently access is similar to Esther Standard, but it's actually cheaper,
basically, if you have data in s three, but you know that you're not gonna be accessing it very much. Hence the name
you can use and frequently access and
save a little bit on your corporate costs of your storage.
Ah, but still retain the availability and durability and you'll still be able to rapidly access it. There is a low fee if you need to retrieve that information, so just keep that in mind. But your data is still stored an s3.
And ah,
it is. It is intended to be less frequently access. Of course. The next on our list for storage classes is s3 one's own. Aye, aye. So this is another version of infrequently accessed. But as I had said before, the original and frequently access tear allows you to still keep that availability
and that durability by duplicating your data across multiple daisies
with one's own. You're not gonna be doing that. It's going to be a one zone area. So one
availability zone
where your date is gonna be held, it is cheaper than and frequently access. But you want to keep in mind that if that if that one's own does happen and lose your data, there is no backup. You know, if you don't have a backup, that's it. So just keep that a month. This is Ah, This is cheaper, though. And maybe your data
does not need that availability. Moving on. Let's take a look at s three Intelligent tearing.
This was actually a new service released in 2018. Intelligent tearing basically does was designed to help you optimize your costs by Amazon handling the adjustments between the tears for you. So maybe you don't know
what your data should be classified as you don't know exactly how you're gonna be, um, implementing it just yet, But you have a lot of data and you want to stay cost efficient intelligence. Intelligent hearing might be a way to go about that because they're going to track your usage. They're gonna track your access to that data
and stored in the appropriate here for you. that way you can ultimately save on costs. There is some costs associated with intelligence hearing. So I would encourage you to take a look at that before implementing it into your corporation.
But that is an option. And another thing to note. There is no impact on performance. So moving on into the archiving of s three, these are still considered tears. We have s3 glacier and we have s3 Glacier Deep Archive.
S3 Glacier is going to offer your data archiving It is a very low cost, but there are slow retrieval times, minutes, two hours,
and then if you are going for a glacier deep archive, this is obviously gonna be the cheapest.
However, keep in mind, that's if you're trying to retrieve that data, it may take up to 1/2 a day before you actually get that information. So keep that into consideration,
and if you are going to be using it, you might want to plan ahead before you have to retreat that info. So here we have the extra storage class comparison. This is going to show all the information associate ID
with, um, the durability of the availability. The S L A's availability zones, things like that. I do encourage you to take a very close look at this. I know. When I took my exam, I actually took a couple hours. Not all in one sitting, but, you know, just to take a look. That's making sure that I had this
tested and I knew the information. I made flash cards.
That was very helpful. Ah, and I encourage you to also do the same. So
make sure you study the differences between the tears and the benefits that you get from each of them and have a good understanding of what they offer individually.
And you should be good to go for the exam. So history is going to be charging you on a couple of different things. They are gonna be charging you on the amount of storage, how you manage that storage of data. The data transfers out the requests, the transfer, acceleration and cross region replication.
Some of these elements are not necessary for you to understand entirely for the certified cloud practitioner exam.
Ah, but they are helpful to understand things like transfer acceleration, cross region replication.
Those are some additional costs. So if you do get any questions on that. Make sure you understand that there is a financial cost. The price with using those service is, however, the amount of storage, storage, management, data transfers and requests. I feel like that's pretty self explanatory. Ah, you want to make sure that you
understand that going into s3.
So exam tips s3 as object based files could be zero bites to five terabytes and size. You do get unlimited storage. The files are stored and things called buckets, not folders. They may try to trip you up on the exam. Make sure your answer buckets when they dio
s3 is a universal name space meaning that is globally unique. Make sure that you guys remember how the layout of that you are Ellis
looking here. You're going to see that. You know, here's our protocol. Here is s3, which is the service that we're using, and then we're going to include the region. So this is us East one. It could be us West one or us East to
there are multiple different regions. If you are interested in how that is,
make sure you check out Amazon's Web sites and just, you know, Google Ah region naming for eight of us and you should be able to find it.
And then you're gonna have dots. Amazon eight of us dot com slash your bucket name. When I took my exams, I did see a couple of thes questions where they try to trip you up. Basically, they'll add the bucket name in the fronts and the region in the back.
Or though instead of using hyphens, they might use underscores or periods or or something. This has to be this way. This is how this is. How s three names? Spacing works within the Earl. And chances are you will see a question on this and make sure you understand this. What? What it's helpful for me is I actually took a piece of paper and pen,
and I wrote this out several times until I could remember
the layout of how this world works and that should help for us. Well, s three files are made up of keys and values. Keys are the file name value is the data of the file. And then
you have read after right consistency for puts of new objects and eventual consistency for puts of modifications
Board elites. Make sure you give it time. It may take a couple seconds for that to propagate. And last but not least, make sure you guys review this chart. This is gonna be covering the different S three tiers and the different benefits pros and cons to each of them. You want to have a good understanding of this before going into the exam?
All right, that about wraps up this lecture.
I hope this was super helpful. If you have any questions, feel free to reach out to me. And if not, I'll see you guys in the next lecture.
Up Next
AWS Certified Cloud Practitioner

This AWS Cloud Practitioner training will prepare students to pass the related certification exam. In this course, students will learn the foundational principles of the AWS cloud platform to develop a solid understanding of the AWS cloud.

Instructed By