CCP Terminology Flashcards
Access Control List (ACL)
A firewall/security layer on the subnet level
Auto Scaling
Automates the process of adding or removing EC2 instances based on traffic demand for your application
CloudFront
Content delivery network (CDN) that allows you to store your content at “edge locations” located all around the world, allowing customers to access your content more quickly
CloudTrail
Allows you to monitor all actions taken by IAM users
CloudWatch
Service that allows you to monitor various elements of your AWS account
Elastic Block Store (EBS)
Provides persistent block storage volumes for use of EC2 instances
Elastic Compute Cloud (EC2)
A virtual computer, very similar to a desktop/laptop computer
Elastic Load Balancing (ELB)
Evenly distributes traffic between EC2 instances that are associated with it
ElastiCache
Data caching service used to help improve the speed/performance of web applications running on AWS
Elasticity
The ability of a system to increase and decrease in size
Fault Tolerance
Property that enables a system to continue operating properly in the event of the failure of one or more components
Firewall
A type of software that either allows or blocks certain kinds of internet traffic to pass through it
IAM Users
Individuals who have been granted access to an AWS account
Identity and Access Management (IAM)
Service where AWS user accounts and their access to various AWS services are managed
Throughput
The measure of the amount of data transferred from/to a storage device in a second
Object Durability
Percent over a one-year time period that a file stored in S3 will not be lost
Object Lifecycle
Set rules to automatically transfer objects between storage classes at defined time intervals
Object Sharing
Ability to make any object publicly available via a URL link
Object Versioning
Automatically keep multiple versions of an object (when enabled)
Organizations
Allow you or your company access to manage billing and access to multiple AWS accounts in one user interface
Relational Database Service (RDS)
SQL database service that provides a wide range of SQL database options to select from
Amazon RedShift
Data warehouse database service designed to handle petabytes of data for analysis
Roles
How different AWS services are granted permission to communicate and share data
Route 53
Where you configure and manage web domains for websites or applications you host on AWS
Scalability
The ability of a system to easily increase in size and capacity in a cost-effective way
Security Group (SG)
Firewall/security layer on the server/instance level
Simple Notification Service (SNS)
AWS service that allows you to automate the sending of email or text messaging notifications based on events that happen in your AWS account
Virtual Private Cloud (VPC)
A private subsection of AWS you control and in which you can place AWS resources
Security groups are stateful and deny
all inbound traffic by default.
but you can add custom rules to fit your operational and security needs.
A Network Access Control List: is an optional layer of security that acts as a firewall for controlling traffic
in and out of one or more subnets
A Network Access Control List by default perform
stateless packet filtering when initially created
By default, your account’s default network ACL
allows all inbound and outbound traffic, but you can modify it by adding your own rules.
EC2 Instance Type: General Purpose: provide a balance of compute, memory, and networking resources. You can use them for a variety of workloads such as
application servers
gaming servers
backend servers for enterprise applications
small and medium databases
S3 Standard Infrequent Access has a lower storage price but a
higher retrieval price
An EBS snapshot is
an incremental backup.
When you modify a file in block storage, only the pieces that are changed are updated. When a file in object storage is modified,
the entire object is updated.
Amazon EFS is a regional service that stores data
across multiple Availability Zones.
DynamoDB is serverless, which means that you do not have to
provision, patch, or manage servers.
DynamoDB is a “NoSQL databases” because they use structures like
key and value pairs other than rows and columns to organize data
Amazon Aurora is an
enterprise-class relational database.
ElastiCach is a Database accelerator service that adds
caching layers on top of your databases to help improve the read times of common requests.
Amazon Redshift is a
data warehousing service that you can use for big data analytics
In the Shared Responsibility Model AWS is responsible for
- host operating system
- the virtualization layer
- physical security of the data centers