Amazon S3

Amazon S3 (Simple Storage Service) is a widely used, scalable, and reliable object storage service in the cloud.

Standard: General-purpose storage for frequently accessed data.
Intelligent-Tiering: Automatically moves data to the most cost-effective storage tier based on usage.
Standard-Infrequent Access (Standard-IA): Lower storage cost, suitable for data that is accessed less frequently.
One Zone-Infrequent Access (One Zone-IA): Same as Standard-IA but stored in a single Availability Zone, suitable for data that can be easily recreated.
Glacier: Low-cost storage for long-term data archiving, with retrieval times ranging from minutes to hours.
Glacier Deep Archive: Even lower cost than Glacier, with retrieval times of up to 12 hours.

Data in S3 is stored in buckets, which act as containers for objects.
Objects are the individual files stored in S3 and can range from 0 bytes to 5 terabytes.
Objects consist of data and metadata (key-value pairs that describe the data).

Versioning: Allows you to keep multiple versions of an object in the same bucket. Useful for protecting against accidental deletions and overwrites.
Object Lock: Prevents objects from being deleted or overwritten for a fixed amount of time (Retention mode) or indefinitely (Legal hold).
Object Lifecycle Policies: Automated management of objects, such as transitioning them to different storage classes or expiring them after a specified period.

Access Control: Can be managed using Bucket Policies, Access Control Lists (ACLs), IAM Policies, and S3 Block Public Access settings.
Encryption: Supports encryption at rest (SSE-S3, SSE-KMS, SSE-C) and in transit (SSL/TLS).
Bucket Policies: JSON-based policies that grant permissions to objects in a bucket.

Presigned URLs: Temporarily grant time-limited access to objects in a bucket.
S3 Transfer Acceleration: Speeds up uploads by using Amazon CloudFront’s global network of edge locations.
Multipart Upload: Allows uploading large objects in parts, which can be uploaded independently and in parallel.

Server Access Logs: Enable logging of requests made to S3, useful for auditing and analyzing access patterns.
S3 Event Notifications: Trigger notifications or AWS Lambda functions on specific events, such as object creation or deletion.
AWS CloudTrail: Records API calls made to S3 for governance, compliance, and operational auditing.
S3 Storage Lens: Provides visibility into storage usage and activity trends with metrics and actionable insights.

Charges for S3 usage include storage, data transfer, requests, and data retrieval (for certain storage classes).
Data Transfer: Data transfer within the same region is generally free, but transferring data out of S3 incurs charges.
Intelligent Lifecycle Policies: Can help manage costs by automatically moving data to cheaper storage classes based on access patterns.

S3 Console: AWS Management Console provides a user-friendly interface for managing S3.
AWS CLI: Command-line interface for scripting and automation.
SDKs and APIs: AWS provides various SDKs (e.g., for Python, Java, Node.js) to interact with S3 programmatically.

AWS Lambda: Can trigger functions based on S3 events (e.g., object upload).
AWS CloudFront: Can be used to distribute content stored in S3 globally with low latency.
Amazon Athena: Allows querying data stored in S3 using SQL.
AWS Glue: Useful for cataloging data in S3 for ETL processes.

Use versioning and MFA Delete to protect data from accidental deletion.
Implement server-side encryption (SSE-S3, SSE-KMS) for data security.
Use Bucket Policies to set the correct permissions and prevent unauthorized access.
Implement Lifecycle Policies to manage storage costs efficiently.
Monitor access logs and use CloudTrail for audit trails and compliance.