Question #1501
A company needs to migrate 80 GB of backup data from an on-premises data center to an Amazon S3 bucket. The on-premises environment has a 200 megabits per second (Mbps) internet connection. The data must be encrypted during transit, and the solution must minimize operational complexity. New data will be written directly to Amazon S3 moving forward. Which approach BEST meets these requirements?
Use AWS CLI's s3 cp command with the --ssl flag to transfer data directly to the S3 bucket
Configure AWS DataSync to transfer the data from the on-premises location to the S3 bucket
Ship an AWS Snowcone device to the on-premises location, load the data, and return it to AWS for S3 upload
Establish a Direct Connect connection between the on-premises network and AWS, then use s3 sync to transfer the data
Explanation
The correct answer is B because AWS DataSync is designed for secure, efficient, and automated data transfers between on-premises and AWS. It encrypts data in transit using TLS, minimizes operational complexity by handling retries and optimizations, and integrates directly with S3.
- Option A (CLI with --ssl) requires manual scripting and lacks built-in resilience for network issues.
- Option C (Snowcone) introduces logistical delays and is better suited for larger datasets or poor connectivity.
- Option D (Direct Connect) involves lengthy setup and is overkill for a one-time 80 GB transfer.
Key Points: DataSync simplifies transfers, ensures encryption, and scales automatically, aligning with the requirements of minimal complexity and secure transit.
Answer
The correct answer is: B