Which solution will meet these requirements with the LEAST operational overhead?
Enable S3 Versioning on the publisher account’s S3 bucket. Configure S3 Same-Region Replication of the objects to the subscriber account’s S3 bucket.
Create an AWS Lambda function that is invoked when objects are published in the publisher account’s S3 bucket. Configure the Lambda function to copy the objects to the subscriber account’s S3 bucket.
Configure Amazon EventBridge (Amazon CloudWatch Events) to invoke an AWS Lambda function when objects are published in the publisher account’s S3 bucket. Configure the Lambda function to copy the objects to the subscriber account’s S3 bucket.
Configure Amazon EventBridge (Amazon CloudWatch Events) to publish Amazon Simple Notification Service (Amazon SNS) notifications when objects are published in the publisher account’s S3 bucket. When notifications are received, use the S3 console to copy the objects to the subscriber account’s S3 bucket.
Explanations:
S3 Same-Region Replication (SRR) allows automatic copying of objects between S3 buckets in the same region. With SSE-C, the publisher’s bucket can replicate objects to the subscriber’s bucket without manual intervention. This solution is fully managed, providing the least operational overhead.
Using an AWS Lambda function introduces additional complexity and operational overhead. It requires manually managing triggers, encryption keys, and handling object copying, which makes it less efficient than SRR.
Using EventBridge with Lambda is an overcomplicated solution. While it could work, it introduces unnecessary overhead by invoking Lambda functions to copy objects. SRR is more straightforward and requires less operational management.
This solution relies on manual steps (using the S3 console to copy objects). It’s not automated and introduces unnecessary operational overhead, which contradicts the requirement for the least overhead.