Question 7
Domain 1: Design Secure ArchitecturesSebuah perusahaan menyimpan **log files** di S3. Log lama (> 90 hari) jarang diakses, dan log yang sangat lama (> 1 tahun) hampir tidak pernah diakses tapi harus disimpan untuk compliance selama 7 tahun. Konfigurasi S3 Lifecycle mana yang paling cost-optimal?
Correct answer: D
Explanation
S3 Lifecycle policies are used for “data access, lifecycle, and protection,” so tiering logs by access frequency minimizes storage cost while meeting retention. Moving from S3 Standard to Standard-IA and then to Glacier Flexible Retrieval matches the rule that colder data should use cheaper storage, and deleting after 7 years satisfies the compliance retention period.
Why each option is right or wrong
A. Simpan semua log di S3 Standard selamanya untuk akses cepat kapanpun
B. Hapus semua log setelah 90 hari untuk hemat biaya
C. Pindahkan ke S3 Glacier Instant Retrieval setelah 30 hari
D. **Gunakan S3 Lifecycle Policy bertingkat**: S3 Standard (0–90 hari) → S3 Standard-IA (90–365 hari) → S3 Glacier Flexible Retrieval (365 hari–7 tahun) → Delete setelah 7 tahun; setiap tier lebih murah dari sebelumnya untuk storage cost
S3 Lifecycle configuration is the AWS-native mechanism for automated transition and expiration of objects, and the question’s access pattern maps directly to the storage classes’ cost/availability tradeoff: Standard for frequent access, Standard-IA for infrequent access, and Glacier Flexible Retrieval for archival retention. The exact retention requirement is 7 years, so the lifecycle must expire the objects at 7 years (about 2,555 days) after creation; moving logs at 90 days and again at 365 days minimizes storage cost while still keeping them retrievable for compliance until deletion.