Architecture Fundamentals

Question 1

LAMP means…

Answer 1

Linux
Apache
Mysql
PHP

Question 2

MEAN means…

Answer 2

Mongo database
ExpressJs
AngularJs
NodeJs

Question 3

Serverless, in AWS context means…

Answer 3

Using API gateway and Lambda to replace logic tiers.

Question 4

LAMP and MEAN are logic tiers. True or false?

Answer 4

True.

Question 5

Explain Microservices

Answer 5

Microservices mean each part of an application is decoupled and independently deployed.

Question 6

The three tiers that typically make up the multi tier architecture are…

Answer 6

Presentation Tier
Logic Tier
Data Tier

Question 7

Each AZ is its own distinct data center. True or false?

Answer 7

True.

Question 8

What’s a monolithic application?

Answer 8

The opposite of a decoupled application

Question 9

Define decoupled architecture

Answer 9

Layered and independent.

All components are independent of each other.

Question 10

Define event driven architecture

Answer 10

Architecture driven by events inside the application

Question 11

Event driven architecture. Explain the producer.

Answer 11

The element that triggers an even, and pushes it to a router.

Question 12

Event driven architecture. Explain The Router

Answer 12

Takes required action as a result of an event.

Question 13

Event driven architecture. Explain the consumer

Answer 13

Processes items on the queue.

Question 14

Explain none relational databases.

Answer 14

Databases without a table schemer, that support none structured data.

Simpler than a relational database.

Question 15

Why might you take manual backups of a database?

Answer 15

To protect against data corruption
Long term regulatory compliance
Testing

Question 16

What does HA mean?

Answer 16

High Availabilty

Question 17

What does SAML mean?

Answer 17

Security assertion markup language

Question 18

What are IAM roles?

Answer 18

They allow users and other AWS services to temporarily have permission to access other resources.

Question 19

What are the four types of IAM roles?

Answer 19

AWS Service Role
AWS Service Linked Role
Role for cross account access
Role for identity provider access

Question 20

AWS IAM has service roles can have their permissions modified?

Answer 20

True

Question 21

AWS IAM service linked role. Can have it’s permissions modified?

Answer 21

False

Question 22

IAM role for cross account access. Explain trusting account and trusted account.

Answer 22

The trusting account contains the resources, which users in the trusted account want to access.

Question 23

For the IAM role type “rules for identity provider access” there are three types available. What are they?

Answer 23

Grant access for web identify providers
Grant single sign on to SAML providers
Grant API access to SAML providers

Question 24

ARN means…

Answer 24

Amazon Resource Name

Question 25

API means.

Answer 25

Application Programming Interface.

Question 26

Cipher Text is

Answer 26

Encrypted strings

Question 27

SSE means

Answer 27

Server side encryption

Question 28

UTC means

Answer 28

Universal Time Co-Ordinated

Question 29

What is envelope encryption?

Answer 29

The process of having one key encrypt another.

Question 30

What key type, uses a private and a public key?

Answer 30

Assymetric

Question 31

What is block storage?

Answer 31

Data is stored in chunks known as blocks. And blocks are stored on a volume.

Question 32

Is block storage low or Hugh latency?

Answer 32

Low

Question 33

What is file storage?

Answer 33

Data is stored as separate files with a series of directories in a file system.

Question 34

Utility based metering is

Answer 34

The concept that you pay for the cloud resources you use, and not resource ownership.

Question 35

High powered gaming would require what kind of servers?

Answer 35

Ones with high GPu

Question 36

What does HDD mean?

Answer 36

Hard disk drive

Question 37

In terms of speed. The lower the latency the ….. it is.

Answer 37

Faster

Question 38

In terms of speed. The higher the latency the ….. it is.

Answer 38

Slower

Question 39

Block stores, allow you to access single bytes in a file?

Answer 39

True

Question 40

In decouple architecture. If you need a response from a service you should use a …. if you don’t. You should use a ….

Answer 40

Load balancer

Queue

Question 41

Define Fault Tolerance

Answer 41

Fault tolerant means your environment will operate correctly during a fault. The end user remains in effected.

Question 42

In a HA setup. Might a user be effected by an outage?

Answer 42

Yes.

If the user is not to be effected by an outage. You need a fault tolerant setup.

Question 43

HA vs Fault Tolerant

Answer 43

In high availability a user may be effected by an outage. In fault tolerance, they will not.

Question 44

Expect everything to fail and design accordingly. Is this an important principle?

Answer 44

Yes

Question 45

If you need HA. Is a single AZ solution ever appropriate?

Answer 45

No

Question 46

If you need HA. Are self managed services the best option, or AWS fully managed services?

Answer 46

AWS fully managed.

Question 47

Define multi tier architecture?

Answer 47

Architecture that is made up of separate, isolated tiers.

Question 48

What does blast radius mean?

Answer 48

The reach of faulty config failure / software failure / hack

Question 49

Define Random Access

Answer 49

The process of transferring information to or from memory in which every memory location can be accessed directly rather than being accessed in a fixed sequence.

Question 50

Define Sequential Access

Answer 50

Where data must be read in the order it is stored

Question 51

Random access is sometimes known as

Answer 51

Direct access

Question 52

Are traditional HDDs random or sequential access?

Answer 52

Sequential

Question 53

Are SSDs random or sequential access

Answer 53

Random

Question 54

Scaling up and down. Refers to …… scaling.

Answer 54

Vertical

Question 55

Scaling in and out refers to …… scaling

Answer 55

Horizontal

Question 56

Define operational excellence

Answer 56

The ability to run and monitor systems and deliver business value, and continually improve supporting process and procedure.

Question 57

The three core principles of operational excellence

Answer 57

Prepare
Operate
Evolve

Question 58

Any unused resource is a waste of money. True or false.

Answer 58

True

Question 59

What is an analytical function in regards to SQL

Answer 59

An analytical function computes values over a group of rows and returns a single result for each row.

Question 60

Active-active and active-passive are two types of…

Answer 60

High availability clustering configurations.

Question 61

Explain Active Active HA clustering

Answer 61

You have two identical servers running and traffic is split between them by a load balancer.

Question 62

Explain active passive HA clustering.

Answer 62

You have an active server, and a passive server behind the load balancer.

The passive one must be made active in the event of an issue.

Question 63

When might you be eligible for a SLA service credit from AWS?

Answer 63

When availability is less then 99.95% in a region you use, during a billing period.

Question 64

You want to save money on your development and test environments. Name one easy way to do this.

Answer 64

Switch them off when you are not using them.

Question 65

When is it worth considering over provisioning your resources a little?

Answer 65

When the time to adjust the resources is greater than the saving of running the resources slightly over.

Question 66

What is right sizing?

Answer 66

Using the lowest cost resource that still meets the technical requirement.

Question 67

The key services that support the “right sizing” concept in AWS are

Answer 67

Cloudwatch

Cloudwatch Logs

Question 68

What is data sovereignty?

Answer 68

The idea that data is subject to laws and governance or the country from which is is collected / resides.

Question 69

Pricing in different AWS regions can vary. Because…

Answer 69

Each region operates within local market conditions.

Question 70

True or false. The exact same infrastructure in one region, can be cheaper than the duplicate setup in another region?

Answer 70

True

Question 71

You need to workout if there are cost savings in moving your architecture to another region. What service can help with his?

Answer 71

AWS simple monthly calculator

Question 72

Explain a “buffer” approach to supply and demand of computer power.

Answer 72

You use a queue to accept units of work from a producer. You then process the units of work when you have capacity.

Question 73

You need to decouple the throughput rate of your producers, from that of the consumers. Try a … based approach.

Answer 73

Buffer

Question 74

Define idempotence.

Answer 74

An application logic pattern that allows for items in a queue to be processed multiple times. But if they have been processed more than once, that there is no effect on downstream resources.

Question 75

You want a technical account manager from AWS to help you optimise your account. What kind of support plan do you need?

Answer 75

Enterprise.

Question 76

As AWS releases need services and features. It is best practise to review existing architectural decisions to ensure you are cost effective. This is know as staying …..

Answer 76

Evergreen

Question 77

It is best practise to reduce or eliminate reliance on long term credentials. True or false?

Answer 77

True

Question 78

Describe the “defence in depth” approach

Answer 78

A strategy that seeks to delay rather than prevent the advance of an attacker, buying time and causing additional casualties by yielding space.

Question 79

Do AWS consider password rotation and password policies best practise?

Answer 79

Yes

Question 80

Describe the principle of least privledge

Answer 80

It ensure authenticated users are only permitted to perform the most minimal set of functions nesscary to fulfill a specific task. While balancing usability and efficiency.

Question 81

Can you PEN test all AWS services without permission?

Answer 81

No. You can pen test some services without permission.

Question 82

The five pillars of the well architecture framework are…

Answer 82

Operational Excellence
Security
Reliability
Performance Efficiency
Cost optimisation

Question 83

What does FPGA stand for?

Answer 83

Field Programmable Gayeway Arrays

Question 84

When would you use an FPGA?

Answer 84

For your most demanding workloads

Question 85

Are burstable instances intended for workfloads that regularly use full CPU capacity?

Answer 85

No.

Question 86

….. abstract the execution environment from the code you to to execute.

Answer 86

Functions

Question 87

From a latency perspective. If your data is only accessed by one instance. Then you should consider using …..

Answer 87

Block storage

Question 88

From a throughput perspective. What storage service supports highly parallelised loads?

Answer 88

EFS

Question 89

As a rule of thumb. Use what type of storage for throughput intensive workloads.

Answer 89

HDD

Question 90

As a rule of thumb. Use what kind of storage for boot volumes, databases and transactional workloads.

Answer 90

SSD

Question 91

What does MPP mean?

Answer 91

Massively Parallel Processing

Question 92

What is Snowflake?

Answer 92

Data warehousing.

It can be ran on AWS. But is not a managed service.

Question 93

Use …. when you need SQL operations that will scale

Answer 93

Redshift

Question 94

For data heavy applications. The major bottle neck in latency is then …. is transferred to computing applications.

Answer 94

Data.

Question 95

It is best practise to execute application code as close to the …. as possible.

Answer 95

Data.

Question 96

Define infrastructure as code?

Answer 96

Using services like Route 53 that allow you to document your infrastructure as code. And bring it under version control.

Question 97

Define benchmarking

Answer 97

Using synthetic tests to provide you with data on how components perform.

Question 98

Define load testing.

Answer 98

Using your actual workload so you can see how your whole solution performs in a prod environment.

Question 99

Monitoring solutions generally fall into two categories. They are.

Answer 99

Active monitoring

Passive monitoring.

Question 100

Define active monitoring

Answer 100

Simulating user activity in scripted user journeys across critical paths in your product.

Question 101

Define passive monitoring.

Answer 101

Collecting performance data from the web browser.

Question 102

Monitoring in AWS consists of five distinct phases. They are…

Answer 102

Generation
Aggregation 
Real time processing
Storage
Analytics

Question 103

The base 10.x.x.x address space means you have how many IP addresses?

Answer 103

16,000+

Question 104

TTR means.

Answer 104

Time to recovery

Question 105

What does ROC mean

Answer 105

Recovery Oriented Computing