Basics

Question 1

6 Advantages of Cloud Computing

Answer 1

1. No upfront costs, pay as you consume
2. Economies of Scale
3. No need to guess capacity.
4. Speed. Only a few clicks to increase size
5. No paying for physical data centers
6. Global with ease.

Question 2

Types of Cloud Computing

Answer 2

1. Software as a Service (SaaS)
   - Office 365, Gmail etc
2. Platform as a Service (PaaS)
   - Heroku etc
3. Infrastructure as a Service (Iaas)
   - AWS, Azure, GCP

Question 3

Cloud Deployment Models

Answer 3

Cloud - For Startups
Hybrid - For Banks
On-Premise - For Gov and other super sensitive areas like hospitals

Question 4

What is GovCloud

Answer 4

A region or regions that only allows customers that pass a screening process, and are operated by US citizens on US soil. For government information

Question 5

The four EC2 Pricing Models

Answer 5

1. On-Demand
2. Spot
3. Reserved Instances (RI) (aka savings plan)
4. Dedicated

Question 6

What is the EC2 pricing model with the least commitment?

Answer 6

On-Demand. It is low-cost and flexible. Pay per hour. Short-term.

Question 7

Which EC2 pricing model is the best long-term value?

Answer 7

RI. Stead and predictable. Can resell unused RI in the RI Market Place. 1 or 3 year. Payment options. Class offerings (different options for flexibility)

Question 8

Which EC2 pricing model offers the biggest savings?

Answer 8

Spot. These are discounted because AWS isn’t using them for a regular customer, but once they are needed, AWS can terminate them from you. f

Question 9

Which EC2 pricing model is the most expensive?

Answer 9

Dedicated. You have dedicated hardware to yourself.

Question 10

What are the 4 AWS Support Plans?

Answer 10

1. Basic - Free
2. Developer - $20 /month
3. Business - $100 /month
4. Enterprise - $15,000/month

Question 11

Of the 4 AWS Support Plans, which ones have third party support?

Answer 11

Business and Enterprise

Question 12

Of the 4 AWS Support Plans, which ones have Tech Support via chat or phone 24/7

Answer 12

Business and Enterprise

Question 13

Of the 4 AWS Support Plans, which ones have a personal concierge and TAM (Technical Account Manager)

Answer 13

Enterprise

Question 14

Of the 4 AWS Support Plans, which ones have only 7 trusted advisor checks?

Answer 14

Basic and Developer

Question 15

In the AWS Support Plans, what are the response times for General Guidance?

Answer 15

<24 Hours (All but Basic plan)

Question 16

In the AWS Support Plans, what are the response times for System Impaired?

Answer 16

<12 Hours (All but Basic plan)

Question 17

In the AWS Support Plans, what are the response times for Production System Impaired

Answer 17

<4 Hours (Business and Enterprise Only)

Question 18

In the AWS Support Plans, what are the response times for Production System Down?

Answer 18

<1 Hour (Business and Enterprise Only)

Question 19

In the AWS Support Plans, what are the response times for Business-Critical System Down?

Answer 19

<15 Minutes (Enterprise Only)

Question 20

What does the AWS Basic support plan have included?

Answer 20

Email support only for Billing and Account

Question 21

What are the 5 categories a Trusted Advisor can help you with?

Answer 21

1. Cost Optimization
2. Security
3. Performance
4. Fault Tolerance
5. Service Limites

Question 22

What is the AWS Networking Hierarchy?

Answer 22

AWS Account>Region>VPC>Availability Zone>Subnets&Security Group>Services (EC2, RDS etc)

Question 23

What are the database services?

Answer 23

DynamoDB - NoSQL key/value database
DocumentsDB - NoSQL Document database. MongoDB compatible
RDS (Relational Database Service)
- Aurora - MySQL and PSQL database, fully managed
- Aurora Serverless - only runs when you need it, like lamda
Neptune - managed graph database
Redshift - columnar database, petabyte warehouse
ElastiCache - Redis or Memcached database

Question 24

What is provisioning?

Answer 24

The allocation or creation of resources and services to a customer

Question 25

What are some AWS Provisioning services?

Answer 25

Elastic Beanstalk 
OpsWorks
CloudFormation
AWS QuickStart
AWS Marketplace

Question 26

AWS Computing Services

Answer 26

EC2 (Elastic Compute Cloud)
ECS (Elastic Container Service)
Fargate
EKS (Kubernetes as a Service)
Lamda
Elastic Beanstalk
AWS Batch

Question 27

AWS Storage Services

Answer 27

S3 - Simple Storage Service
S3 Glacier - Like S3, but cheaper and much slower
Storage Gateway - Hybrid cloud storage with local caching
EBS (Elastic Block Storage) - virtual harddrive in the cloud you attach to EC2 instances
EFS (Elastic File Storage) - file storage that can attached to multiple EC2 instances at the same time
Snowball - Physically migrate lots of data via a computer suitcase 50-80 TB
- Snowball Edge - better version of snowball 100TB
- Snowmobile - Shipping container, pulled by a semi trailer 100PB

Question 28

Business Centric Services

Answer 28

Amazon Connect - Call center
WorkSpaces - virtual remote desktop
WorkDocs - Content creation and collaboration service
Chime - online meetings and video conferencing
WorkMail - business email
Pinpoint - marketing, sending targeted email, sms, etc
SES - Simple email service
QuickSight - connect multiple datasources quickly and visualize data in the form of graphs

Question 29

Enterprise Integration Services

Answer 29

Direct Connect - dedicated gigabit network connection from your premises to AWS
VPN - secure connection to your AWS network
Storage gateway - hybrid storage service that enables you to use your on premises apps to use AWS
Active Directory - enables your directory-aware workloads and AWS resources to use managed Active Directory in the AWS Cloud

Question 30

AWS Logging Services

Answer 30

CloudTrail - logs all API calls. Know who did what with the AWS services. (who can we blame?)
CloudWatch - collection of multiple services
- CW Logs - performance data about AWS service
- CW Metrics - time ordered set of data points
- CW Events - trigger event based on condition
- CW Alarms - triggers notification based on metrics
- CW Dashboard - create visualizations based on metrics

Question 31

Shared Responsibility Model

Answer 31

Customers are responsible for security IN the cloud (data, config).

AWS is responsible for security OF the cloud (hardware, operation of managed services, global infrastructure)

Question 32

AWS Compliance Programs

Answer 32

Things like HIPPA and PCI

https://aws.amazon.com/compliance/programs/

Question 33

AWS Artifact

Answer 33

No cost, self service portal for on-demand access to AWS compliance reports

Question 34

Amazon Inspector

Answer 34

How to prove an EC2 instance is harden. (hardening is the act of eliminating as many security risks as possible). Runs a security benchmark.

Question 35

AWS WAF

Answer 35

WAF = Web Application Firewall. Can be attached to either CloudFront or an Application Load Balancer. Protects web apps from attacks covered in the OWASP top 10 most dangerous attacks. Can write your own rules or buy a ruleset

Question 36

AWS Shield

Answer 36

Managed DDoS protection. The standard level is free for all customers and automatically enabled when you route your traffic through route 53 or CloudFront

Shield Advanced is 3000 a year and is used for protection against larger/more sophisticated attacks. Not available for all AWS services like standard is.

https://aws.amazon.com/shield/getting-started/

Question 37

Penetration Testing

Answer 37

Authorized simulated cyber-attack on a computer system to evaluate security of the system.

Question 38

GuardDuty

Answer 38

A threat detection service that monitors for suspicious activity.

Question 39

Key Management Service (KMS)

Answer 39

A managed service that makes it easy for you to create and control the encryption keys used to encrypt your data

• KMS is a multi-tenant HSM (hardware security model)
• Many AWS services are integrated with KMS
• KMS uses envelope encryption

Question 40

Amazon Macie

Answer 40

Macie is a fully managed service that continuously monitors S3 data access activity for anomalies, and generates detailed alerts when it detects risk of unauthorized access or inadvertent data leaks.

Question 41

Security Groups vs NACLS

Answer 41

Security Groups - Firewall at instance level. Denies everything unless you say otherwise

NACLs - Firewall at subnet level. You say what is allowed and what isn’t allowed.

Question 42

AWS VPN

Answer 42

Lets you establish a secure and private tunnel from your network or device to the AWS global network

• Site to Site: connect on-premises network or branch office site to VPC
• Client VPN: connect users to AWS or on-premises networks

Question 43

Cloud * Services (similar names, different services)

Answer 43

• Cloud Formation: infrastructure as code
• Cloud Trail: logs all api calls (who did what)
• Cloud Front: Content distribution network. Creates a cached copy of your website and copies to servers located near those trying to download your site
• Cloud Watch: Collection of multiple services like logs, metrics, events, alarms, dashboard
• Cloud Search: Search engine you can add

Question 44

• Connect Services (similar names, different services)

Answer 44

Direct Connect - dedicated fiber optic connection from your datacenter to aws

Amazon Connect - call center service

Media Convert - converts videos to different video types

Question 45

Elastic Transcoder vs Media Convert

Answer 45

Elastic Transcoder - The old way. Transcodes videos to streaming formats

Media Convert - New way. Also can overlay images, insert video clips. Extracts captions data. Robust UI

Question 46

SNS vs SQS

Answer 46

Both connect apps via messages

SNS - Simple Notifications Service: Sends notifications to subscribers of topics. Usually plain text emails (but can also do http, sqs, sms). (eg Billing alarms)

SQS - Queues messages. Good for delayed tasks, queuing up emails

Question 47

Inspector vs Trusted Advisor

Answer 47

Inspector - Audits a single EC2 instance (Generates a report)

Trusted Advisor - Gives holistic view of recommendations across multiple services. (Doesn’t generate a PDF report)

Question 48

Load Balancers: Application vs Network vs Classic

Answer 48

Application LB: Layer 7 requests. HTTP and HTTPS traffic. Routing Rules to use this one LB for more things. Can attach WAF (web app firewall)

Network LB: Layer 4 protocol data. TCP and TLS traffic. Ultra low latencies while having millions of requests per second. Optimized for sudden & volatile traffic (video games)

Classic LB: Old. Layer 4 and 7. Intended for apps that were built within the EC2-Classic Network. Doesn’t use target groups

Question 49

SNS vs SES

Answer 49

SNS - Simple Notifications Service: Sends notifications to subscribers of topics. Usually plain text emails (but can also do http, sqs, sms). (eg Billing alarms)

SES - Simple Email Service: Sends html emails, can receive inbound emails. custom domain name. Mostly for professional or marketing emails.

Question 50

Artifact vs Inspector

Answer 50

Both compile out PDF reports
Artifact - Why should an enterprise trust AWS? Does it have compliance?

Inspector - Runs a script to analyze an EC2 instance then PDF tells you which security checks passed.

Question 51

Which of the following compute services would you use if you wanted to have control over the OS and be able to manage everything?
A: EC2
B: Lamda
C: Fargate

Answer 51

EC2

Question 52

Which of the following compute services would you use if you didn’t want to have to worry about control over the OS or any management?
A: EC2
B: Lamda
C: Fargate

Answer 52

Lamda

Question 53

Which of the following compute services would you use if you wanted to use Docker functions and not worry about managing everything else?
A: EC2
B: Lamda
C: Fargate

Answer 53

Fargate

Question 54

What is Route 53?

Answer 54

DNS (Domain Name Service). Translates URLs into IP addresses

Can also register domain names

Question 55

The four Route 53 routing policies are?

Answer 55

Latency-based routing
Geolocation DNS - routed based on user location
Geoproximity routing
Weighted Round Robin

Question 56

What are block-level storage volumes?

Answer 56

Block-level storage volumes behave like physical hard drives.

An instance store provides temporary block-level storage for an Amazon EC2 instance. An instance store is disk storage that is physically attached to the host computer for an EC2 instance, and therefore has the same lifespan as the instance. When the instance is terminated, you lose any data in the instance store.

Question 57

What is Amazon Elastic Block Storage (Amazon EBS)?

Answer 57

Amazon Elastic Block Store (Amazon EBS) is a service that provides block-level storage volumes that you can use with Amazon EC2 instances. If you stop or terminate an Amazon EC2 instance, all the data on the attached EBS volume remains available.

To create an EBS volume, you define the configuration (such as volume size and type) and provision it. After you create an EBS volume, it can attach to an Amazon EC2 instance.

Because EBS volumes are for data that needs to persist, it’s important to back up the data. You can take incremental backups of EBS volumes by creating Amazon EBS snapshots.

Question 58

What are Amazon EBS Snapshots?

Answer 58

An EBS snapshot is an incremental backup. This means that the first backup taken of a volume copies all the data. For subsequent backups, only the blocks of data that have changed since the most recent snapshot are saved.

Incremental backups are different from full backups, in which all the data in a storage volume copies each time a backup occurs. The full backup includes data that has not changed since the most recent backup.

Question 59

What is Amazon Simple Storage Service (S3)?

Answer 59

Allows you to store objects into buckets

Question 60

What are the S3 storage classes?

Answer 60

Standard - for frequent data access. Stored in >3 availability zones

Standard Infrequent Access (IA) - Lower storage cost, and higher retrieval costs

Intelligent Tiering - For changing access patterns. additional fee

Glacier - Low cost. Slower to retrieve. For long term, non-needed data

Glacier Deep Archive - Lowest cost. Slowest retrieval time.

Question 61

Would you host the following on S3 or EBS?

App that compares client photo with millions of other photos to see which animal they look like.

Answer 61

S3 since it’s already web enabled, regionally distributed, cost savings, serverless (no ec2 instance needed)

Question 62

Would you host the following on S3 or EBS?

You need to edit an 80gb video file

Answer 62

EBS. Since S3 is object storage, a single edit to the video would mean the entire video has to be reuploaded. EBS is block storage, which breaks the video into blocks, and only those blocks that are edited need to be reuploaded

Question 63

What is Amazon Elastic File System (Amazon EFS)?

Answer 63

File Storage

In file storage, multiple clients (such as users, applications, servers, and so on) can access data that is stored in shared file folders. In this approach, a storage server uses block storage with a local file system to organize files. Clients access data through file paths.

Compared to block storage and object storage, file storage is ideal for use cases in which a large number of services and resources need to access the same data at the same time.

Amazon Elastic File System (Amazon EFS) is a scalable file system used with AWS Cloud services and on-premises resources. As you add and remove files, Amazon EFS grows and shrinks automatically. It can scale on demand to petabytes without disrupting applications.
Comparing Amazon EBS and Amazon EFS

Amazon EBS

An Amazon EBS volume stores data in a single Availability Zone. 

To attach an Amazon EC2 instance to an EBS volume, both the Amazon EC2 instance and the EBS volume must reside within the same Availability Zone.

Amazon EFS

Amazon EFS is a regional service. It stores data in and across multiple Availability Zones. 

The duplicate storage enables you to access data concurrently from all the Availability Zones in the Region where a file system is located. Additionally, on-premises servers can access Amazon EFS using AWS Direct Connect.

Question 64

What is Amazon Relational Database Service (Amazon RDS)?

Answer 64

In a relational database, data is stored in a way that relates it to other pieces of data. Relational databases use structured query language (SQL) to store and query data. This approach allows data to be stored in an easily understandable, consistent, and scalable way. For example, the coffee shop owners can write a SQL query to identify all the customers whose most frequently purchased drink is a medium latte.
Amazon Relational Database Service (Amazon RDS) is a service that enables you to run relational databases in the AWS Cloud.

Question 65

What is Amazon Aurora?

Answer 65

Amazon Aurora is an enterprise-class relational database. It is compatible with MySQL and PostgreSQL relational databases. It is up to five times faster than standard MySQL databases and up to three times faster than standard PostgreSQL databases.

Question 66

What is Amazon DynamoDB?

Answer 66

Nonrelational Database.

Serverless

DynamoDB is serverless, which means that you do not have to provision, patch, or manage servers. 

You also do not have to install, maintain, or operate software.

Automatic Scaling

As the size of your database shrinks or grows, DynamoDB automatically scales to adjust for changes in capacity while maintaining consistent performance. 

This makes it a suitable choice for use cases that require high performance while scaling.

Question 67

RDS or DynamoDB?

You have a sales supply chain management system that you have to analyze for weak spots.

Answer 67

RDS. It is built for business analytics.

Question 68

RDS or DynamoDB?

Anything that doesn’t need complex relationships? ie Employee contact list and their attributes. (id#, address, phone number etc)

Answer 68

DynamoDB. You don’t need to compare id numbers of different employees, so no relation needed.

Question 69

What is Amazon Redshift?

Answer 69

Amazon Redshift is a data warehousing service that you can use for big data analytics. It offers the ability to collect data from many sources and helps you to understand relationships and trends across your data.

Question 70

Amazon Database Migration Service (DMS)?

Answer 70

Migrate a database to AWS with no downtime during migration. Can also use to test migrations, replicate databases, or consolidate multiple databases into one.

Question 71

Amazon DocumentDB

Answer 71

Amazon DocumentDB is a document database service that supports MongoDB workloads. (MongoDB is a document database program.)

Question 72

Amazon Neptune

Answer 72

Amazon Neptune is a graph database service.

You can use Amazon Neptune to build and run applications that work with highly connected datasets, such as recommendation engines, fraud detection, and knowledge graphs.

Question 73

Amazon Quantum Ledger Database (Amazon QLDB)

Answer 73

Amazon Quantum Ledger Database (Amazon QLDB) is a ledger database service.

You can use Amazon QLDB to review a complete history of all the changes that have been made to your application data.

Question 74

Amazon Managed Blockchain

Answer 74

Amazon Managed Blockchain is a service that you can use to create and manage blockchain networks with open-source frameworks.

Blockchain is a distributed ledger system that lets multiple parties run transactions and share data without a central authority.

Question 75

Amazon ElastiCache

Answer 75

Amazon ElastiCache is a service that adds caching layers on top of your databases to help improve the read times of common requests.

It supports two types of data stores: Redis and Memcached.

Question 76

Amazon DynamoDB Accelerator

Answer 76

Amazon DynamoDB Accelerator (DAX) is an in-memory cache for DynamoDB.

It helps improve response times from single-digit milliseconds to microseconds.

Question 77

Shared Responsibility Model

Answer 77

AWS manages the security of the physical infrastructure that hosts your resources, which include:

Physical security of data centers

Hardware and software infrastructure

Network infrastructure

Virtualization infrastructure

Question 78

AWS Organizations

Answer 78

You can use AWS Organizations to consolidate and manage multiple AWS accounts within a central location.

Question 79

AWS Organizational Units

Answer 79

In AWS Organizations, you can group accounts into organizational units (OUs) to make it easier to manage accounts with similar business or security requirements. When you apply a policy to an OU, all the accounts in the OU automatically inherit the permissions specified in the policy.

Question 80

AWS Artifact

Answer 80

AWS Artifact is a service that provides on-demand access to AWS security and compliance reports and select online agreements. AWS Artifact consists of two main sections: AWS Artifact Agreements and AWS Artifact Reports.

Question 81

AWS Key Management Service (AWS KMS)

Answer 81

enables you to perform encryption operations through the use of cryptographic keys.

Question 82

AWS WAF

Answer 82

a web application firewall that lets you monitor network requests that come into your web applications.

Question 83

Amazon Inspector

Answer 83

Amazon Inspector helps to improve the security and compliance of applications by running automated security assessments. It checks applications for security vulnerabilities and deviations from security best practices, such as open access to Amazon EC2 instances and installations of vulnerable software versions.

Question 84

Amazon GuardDuty

Answer 84

is a service that provides intelligent threat detection for your AWS infrastructure and resources. It identifies threats by continuously monitoring the network activity and account behavior within your AWS environment.

Question 85

Amazon CloudWatch

Answer 85

is a web service that enables you to monitor and manage various metrics and configure alarm actions based on data from those metrics.

Question 86

AWS CloudTrail

Answer 86

records API calls for your account. The recorded information includes the identity of the API caller, the time of the API call, the source IP address of the API caller, and more. You can think of CloudTrail as a “trail” of breadcrumbs (or a log of actions) that someone has left behind them.

Question 87

AWS Trusted Advisor

Answer 87

is a web service that inspects your AWS environment and provides real-time recommendations in accordance with AWS best practices.

Question 88

AWS Cloud Adoption Framework (AWS CAF)

Answer 88

At the highest level, the AWS Cloud Adoption Framework (AWS CAF) organizes guidance into six areas of focus, called Perspectives. Each Perspective addresses distinct responsibilities. The planning process helps the right people across the organization prepare for the changes ahead.

In general, the Business, People, and Governance Perspectives focus on business capabilities, whereas the Platform, Security, and Operations Perspectives focus on technical capabilities.

Question 89

CAF Business Perspective

Answer 89

The Business Perspective ensures that IT aligns with business needs and that IT investments link to key business results.

Use the Business Perspective to create a strong business case for cloud adoption and prioritize cloud adoption initiatives. Ensure that your business strategies and goals align with your IT strategies and goals.

Question 90

CAF People Perspective

Answer 90

The People Perspective supports development of an organization-wide change management strategy for successful cloud adoption.

Use the People Perspective to evaluate organizational structures and roles, new skill and process requirements, and identify gaps. This helps prioritize training, staffing, and organizational changes.

Question 91

CAF Governance Perspective

Answer 91

The Governance Perspective focuses on the skills and processes to align IT strategy with business strategy. This ensures that you maximize the business value and minimize risks.

Use the Governance Perspective to understand how to update the staff skills and processes necessary to ensure business governance in the cloud. Manage and measure cloud investments to evaluate business outcomes.

Question 92

CAF Platform Perspective

Answer 92

The Platform Perspective includes principles and patterns for implementing new solutions on the cloud, and migrating on-premises workloads to the cloud.

Use a variety of architectural models to understand and communicate the structure of IT systems and their relationships. Describe the architecture of the target state environment in detail.

Question 93

CAF Security Perspective

Answer 93

The Security Perspective ensures that the organization meets security objectives for visibility, auditability, control, and agility.

Use the AWS CAF to structure the selection and implementation of security controls that meet the organization’s needs.

Question 94

CAF Operations Perspective

Answer 94

The Operations Perspective helps you to enable, run, use, operate, and recover IT workloads to the level agreed upon with your business stakeholders.

Define how day-to-day, quarter-to-quarter, and year-to-year business is conducted. Align with and support the operations of the business. The AWS CAF helps these stakeholders define current operating procedures and identify the process changes and training needed to implement successful cloud adoption.

Question 95

Migration Strategies

Answer 95

When migrating applications to the cloud, six of the most common migration strategies that you can implement are:

Rehosting

Replatforming

Refactoring/re-architecting

Repurchasing

Retaining

Retiring

Question 96

Rehosting Migration

Answer 96

also known as “lift-and-shift” involves moving applications without changes.

Question 97

Replatforming Migration

Answer 97

also known as “lift, tinker, and shift,” involves making a few cloud optimizations to realize a tangible benefit. Optimization is achieved without changing the core architecture of the application.

Question 98

Refactoring/re-architecting Migration

Answer 98

Refactoring (also known as re-architecting) involves reimagining how an application is architected and developed by using cloud-native features. Refactoring is driven by a strong business need to add features, scale, or performance that would otherwise be difficult to achieve in the application’s existing environment.

Question 99

Repurchasing Migration

Answer 99

Repurchasing involves moving from a traditional license to a software-as-a-service model.

For example, a business might choose to implement the repurchasing strategy by migrating from a customer relationship management (CRM) system to Salesforce.com.

Question 100

Retaining Migration

Answer 100

Retaining consists of keeping applications that are critical for the business in the source environment. This might include applications that require major refactoring before they can be migrated, or, work that can be postponed until a later time.

Question 101

Retiring Migration

Answer 101

Retiring is the process of removing applications that are no longer needed.

Question 102

Snow Family

Answer 102

Snowcone - 8TB
Snowball - 80TB
Snowmobile - 100PB (100,000 TB)

Question 103

AWS WAF (Well Architected Framework)

Answer 103

helps you understand how to design and operate reliable, secure, efficient, and cost-effective systems in the AWS Cloud. It provides a way for you to consistently measure your architecture against best practices and design principles and identify areas for improvement.

Question 104

5 Pillars of the WAF

Answer 104

Operational excellence

Security

Reliability

Performance efficiency

Cost optimization

Question 105

WAF Operational Excellence Pillar

Answer 105

Operational excellence is the ability to run and monitor systems to deliver business value and to continually improve supporting processes and procedures.

Design principles for operational excellence in the cloud include performing operations as code, annotating documentation, anticipating failure, and frequently making small, reversible changes.

Question 106

WAF Security Pillar

Answer 106

The Security pillar is the ability to protect information, systems, and assets while delivering business value through risk assessments and mitigation strategies.

When considering the security of your architecture, apply these best practices:

Automate security best practices when possible.

Apply security at all layers.

Protect data in transit and at rest.

Question 107

WAF Reliability Pillar

Answer 107

Reliability is the ability of a system to do the following:

Recover from infrastructure or service disruptions

Dynamically acquire computing resources to meet demand

Mitigate disruptions such as misconfigurations or transient network issues

Reliability includes testing recovery procedures, scaling horizontally to increase aggregate system availability, and automatically recovering from failure.

Question 108

WAF Performance Efficiency Pillar

Answer 108

Performance efficiency is the ability to use computing resources efficiently to meet system requirements and to maintain that efficiency as demand changes and technologies evolve.

Evaluating the performance efficiency of your architecture includes experimenting more often, using serverless architectures, and designing systems to be able to go global in minutes.

Question 109

WAF Cost Optimization Pillar

Answer 109

Cost optimization is the ability to run systems to deliver business value at the lowest price point.

Cost optimization includes adopting a consumption model, analyzing and attributing expenditure, and using managed services to reduce the cost of ownership.