AWS Definitions Flashcards
A document that defines who can access a particular
bucket or object.
Access Control List (ACL)
A service that lets you easily provision, manage, and deploy Secure Sockets Layer/Transport Layer Security (SSL/TLS) certificates for use with AWS services.
AWS Certificate Manager (ACM)
Use this to route to services that are hosted on shared clusters with dynamic port assignment (like ECS or Mesos).
Application Load Balancer (ALB)
Helps maintain application availability and allows scaling of EC2 capacity up or down automatically according to defined conditions.
Auto-Scaling Group (ASG)
An isolated location inside a region.
Availability Zones (AZ)
A fully managed continuous integration service that compiles source code, runs tests, and produces software packages that are ready to deploy.
CodeBuild (CB)
This is a fully managed deployment service that automates software deployments to a variety of compute services such as Amazon EC2, AWS Fargate, AWS Lambda, and your onpremises servers.
CodeDeploy (CD)
A Global CDN that integrates with other AWS products to give developers and businesses an easy way to distribute content to end users with low latency, high data transfer speeds, and no minimum usage.
CloudFront
This provides a common language for you to describe and provision all the infrastructure resources in your cloud environment.
CloudFormation (CFN)
This is a fast CDN service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds, all within a developer-friendly environment.
CloudFront
The sort of new name for the regular old ELBs, as opposed to new ALBs. But most people still just call them ELBs
Classic Load Balancer
A unified downloadable and configurable tool for managing AWS services.
AWS Command Line Interface
This tool can migrate your data to and from the most widely used commercial and open-source databases with zero downtime.
Database Migration Service
Designed to give developers and businesses an extremely reliable and cost effective way to route end users to Internet applications by translating names into numeric IP addresses that computers use to connect to each other.
Domain Name Server (Route 53)
This AWS CodePipeline is a fully managed continuous delivery service that helps you automate your release pipelines for fast and reliable application and infrastructure updates.
ElasticBeanstalk
Provides block level storage volumes for use with Amazon EC2 instances in the AWS Cloud.
Elastic Block storage
A web service that provides resizable compute capacity in the cloud and is designed to make web-scale cloud computing easier for developers.
Elastic Compute Cloud (EC2)
A fully managed Docker container registry that makes it easy for developers to store manages and deploy Docker container images.
EC2 Container Registry
A highly scalable, fast, container management service that makes it easy to run, stop, and manage Docker containers on a cluster of EC2 instances.
EC2 Container Service
A file storage service for Amazon EC2 instances.
Elastic File System
A managed service that makes it easy for you to run Kubernetes on AWS without needing to install and operate your own Kubernetes clusters.
Amazon Elastic Container Service
for Kubernetes
Automatically Distributes incoming application traffic across multiple Amazon EC2 instance in the cloud.
Elastic Load Balancing
A web service that makes it easy to quickly and cost-effectively process vast amounts of data.
Elastic MapReduce
Media transcoding in the cloud.
Elastic Transcoder (ETS)
Helps meet corporate, contractual and regulatory compliance requirements for data security.
Hardware Security Module
Enables you to securely control access to AWS services and resources for your users.
Identity and Access Management
System that monitors environment; alerting to detect intrusions.
Intrusion Detection System
A managed cloud platform that lets connected devices easily and securely interact with cloud applications and other devices.
Internet of Things
Controls keys that allows S3, EBS, and Redshift to encrypt data at rest.
Key Management Service
Simple best practice that adds an extra layer of protection on top of your username and password.
Multi-Factor Authentication
A document that defines who can access a particular bucket or object.
Machine Learning
This is a configuration management service that provides managed instances of Chef and Puppet.
OpsWorks
This is a highly available and scalable cloud DNS web service.
It routes end users to Internet applications by translating names into IP addresses.
Route 53
Makes it easy to set up, operate and scale a relational database in the cloud.
Relational Database Service
An Amazon S3 storage option that enables customers to store noncritical, reproducible data at lower levels of redundancy than Amazon S3’s standard storage.
Reduced Redundancy Storage
Provides developers and IT teams with secure, durable, highlyscalable cloud storage.
Simple Email Service
Acts as a virtual firewall that controls the traffic for one or more instances.
Security Group
An agentless service which makes it easier and faster for you to migrate thousands of on-premises workloads to AWS.
Server Migration Service
A push messaging service that makes it simple & cost-effective to push to mobile devices and distributed services.
Simple Notification Service
Makes it simple and cost-effective to decouple the components of a cloud application.
Simple Queue Service
It enables users to sign in to a user portal with their existing corporate credentials and access all of their assigned accounts and applications from one place.
AWS Single Sign On
A web service for requesting temporary, limited-privilege credentials for AWS IAM users or for users that you authenticate (federated users).
AWS Security Token Service
Helps developers build, run and scale background jobs that have parallel or sequential steps.
Simple Workflow Service
Lets you provision a logically isolated section of the AWS cloud where you can launch AWS resources in a virtual network that you define.
Virtual Private Cloud
A firewall that helps protect your web applications from common web exploits that could affect application availability, compromise security, or consume excessive resources.
Web Application Firewall
A firewall/security layer on the subnet level
Access control list (ACL)
Automates the process of adding or removing EC2 instances based on traffic demand for your application
Auto scaling
Root-level “folders”
Buckets
Content delivery network (CDN) that allows you to store your content at “edge locations” located all around the world, allowing customers to access your content more quickly
CloudFront
Allows you to monitor all actions taken by IAM users
CloudTrail
Service that allows you to monitor various elements of your AWS account
CloudWatch
Allows you to view, manage, and pay bills for multiple AWS accounts in one user interface
Consolidated billing
A database of website domains and their corresponding IP addresses
DNS server
NoSQL database service that does not provide other NoSQL software options
DynamoDB
Provides persistent block storage volumes for use of EC2 instances.
Elastic Block Store (EBS)
A virtual computer, very similar to a desktop/laptop computer
Elastic Compute Cloud (EC2)
Evenly distributes traffic between EC2 instances that are associated with it
Elastic Load Balancing (ELB)
Data caching service used to help improve the speed/performance of web applications running on AWS
ElastiCache
The ability of a system to increase and decrease in size
Elasticity
Property that enables a system to continue operating properly in the event of the failure of one or more components
Fault tolerance
A type of software that either allows or blocks certain kinds of internet traffic to pass through it
Firewall
Any “subfolder” created in a bucket
Folder
Refers to systems that are durable and likely to operate continuously without failure for a long time
High availability
Individuals who have been granted access to an AWS account
IAM users
Service where AWS user accounts and their access to various AWS services are managed
Identity and Access Management (IAM)
Serverless computing that will replace EC2 instances, for the most part
Lambda
Percent over a one-year time period that a file stored in S3 will be accessible
Object availability
Percent over a one-year time period that a file stored in S3 will not be lost
Object durability
Set rules to automatically transfer objects between storage classes at defined time intervals
Object lifecycle
Ability to make any object publicly available via a URL link
Object sharing
Automatically keep multiple versions of an object (when enabled)
Object versioning
Allow you or your company access to manage billing and access to multiple AWS accounts in one user interface
Organizations
Giving a user only the rights/access to the AWS services and resources they need to do their job and nothing more
Principle of least privilege
Human/alarm/event that gives SNS the message that needs to be sent
Publishers
SQL database service that provides a wide range of SQL database options to select from
Relational Database Service (RDS)
Data warehouse database service designed to handle petabytes of data for analysis
RedShift
How different AWS services are granted permission to communicate and share data
Roles
Where you configure and manage web domains for websites or applications you host on AWS
Route 53
The ability of a system to easily increase in size and capacity in a cost-effective way
Scalability
Firewall/security layer on the server/instance level
Security group (SG)
Defines what you and AWS are responsible for when it comes to security and compliance
Shared responsibility model
AWS service that allows you to automate the sending of email or text messaging notifications based on events that happen in your AWS account
Simple Notification Service (SNS)
Online bulk storage service you can access from almost any device
Simple Storage Service (S3)
Represents “classification” assigned to each object in S3 (standard, RRS, S3-IA, Glacier)
Storage class
A subsection of a network and generally includes all the computers in a specific location
Subnet
Endpoints to which a topic sends messages
Subscriptions
How you label and group different endpoints to which you send messages
Topics
Service that “advises” and helps you optimize aspects of your AWS account
Trusted Advisor
IAM user’s username and password for logging in to AWS
User credentials
A private subsection of AWS you control and in which you can place AWS resources
Virtual Private Cloud (VPC)
