AWS Security Flashcards

1
Q

Who has complete access to all the AWS services and resources in the account?

A

AWS Root User

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What enables you to manage access to AWS services and resources securely?

A

AWS Identity and Management (IAM)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What is a JSON document that allows or denies permissions to AWS services and resources?

A

IAM Policy

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What represents the person or application that interacts with AWS services and resources?

A

IAM User

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What is a collection of IAM users?

A

IAM Groups

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What is an identity that you can assume to gain temporary access to permissions?

A

IAM Roles

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What service consolidates and manages multiple AWS accounts within a central location?

A

AWS Organizations

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

What enables you to place restrictions on the AWS services, resources, and individual API actions that users and roles in each account can access?

A

Service Control Policies (SCP)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

True or False. Consolidated billing is a feature of AWS Organizations and allows for bulk discounts.

A

True

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

What do you call the grouping of multiple AWS accounts?

A

Organizational Units

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

What is a service that provides on-demand access to AWS security and compliance reports and select online agreements?

A

AWS Artifacts

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

What allows you to review, accept, and manage agreements for an individual account and for all your accounts in AWS Organizations?

A

AWS Artifact Agreements

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

What provides compliance reports from third-party auditors?

A

AWS Artifact Reports

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

What contains resources to help you learn more about AWS compliance?

A

AWS Compliance Center

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

What is a deliberate attempt to make a website or application unavailable to users?

A

Denial of service

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

What do you call when multiple sources are used to start an attack that aims to make a website or application unavailable?

A

Distributed denial-of-service (DDOS)

17
Q

What is a service that protects applications against DDoS attacks?

A

AWS Shield

18
Q

What enables you to perform encryption operations through the use of cryptographic keys?

A

AWS Key Management Service (KMS)

19
Q

What is a web application firewall that lets you monitor network requests that come into your web applications?

A

AWS WAF

20
Q

What service checks applications for security vulnerabilities and deviations from security best practices, such as open access to Amazon EC2 instances and installations of vulnerable software versions?

A

Amazon Inspector