Cloud Computing Flashcards

1
Q

What is cloud computing?

A

Cloud Computing is the on-demand delivery of compute, database, storage, application, and other IT resources.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Name the 5 pillars of a Well-Architected Framework

A
  1. Cost Optimization
  2. Reliability
  3. Operational Excellence
  4. Performance Efficiency
  5. Security
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Define a Well-Architected Framework

A

This framework helps Cloud Architects build secure, fault-resilient, efficient, high-performing IT infrastructure

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What are the 6 major advantages of cloud computing?

A
  1. Trade capital expense for variable expense
  2. Benefit from massive economics of scale
  3. Stop guessing about capacity
  4. Increase speed & agility
  5. Stop spending money running & maintaining datacentres
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Name 3 types of Cloud Computing;

“___ as a Service”

A
  1. Software as a service (SaaS) - Completed product ran & managed by a service provider (GMail)
  2. Infrastructure as a Service (IaaS) - Building blocks for cloud IT (Physical server)
  3. Platform as a Service (PaaS) - Deploy & manage apps without worrying about hardware infrastructure (Godaddy, Shopify)
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Name 3 Types of Cloud Computing Deployments

A
  1. Cloud - Fully deployed on the Cloud
  2. Hybrid - Mix of cloud & on-prem
  3. On-Premises - Own data centre
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Virtual Network

A

VPC

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Virtual server

A

EC2 - Elastic Cloud Computing

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Balance incoming traffic loads

A

Elastic Load Balance (ELB)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Object storage

A

S3 - Simple Storage Solution

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Speedy websites - uses Edge Locations

A

CloudFront

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

Templates to form cloud services

A

CloudFormation

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

Track trails of action/audit logs

A

CloudTrail

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

Watch/Monitor AWS

A

CloudWatch

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

Route domains to services/IPs

A

Route 53

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

Block storage/ Virtual drive

A

Elastic Block Store

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
17
Q

Relational Database (Aurora, Redshift)

A

RDS = Relational Database Service

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
18
Q

Non-relational DB (No SQL)

A

DynamoDB

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
19
Q

Business Intelligence (RDS)

A

Redshift

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
20
Q

Serverless code

A

Lambda

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
21
Q

Provide access

A

IAM - Identity & Access Management

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
22
Q

Web App Firewall

A

WAF

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
23
Q

DDoS Protection

A

Shield

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
24
Q

Automated security assessment for EC2

A

Inspector

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
25
Optimize infrastructure (performance, cost optimization, fault tolerance)
Trusted Advisor
26
Billing BDBE - TAM
- Basic (Free) - Developer ($29 per month) - Business ($100 per month) - Enterprize ($15 000 per month & TAM)
27
Design principles: CROPS
``` C - Cost Optimization R - Reliability O - Operational Excellence P - Performance S - Security ```
28
Relational Database - SQL
RDS - Aurora | Redshift (data warehouse, business intelligence)
29
Non-relational Database - No SQL
Lots of data but no links between the data DynamoDB (No SQL)
30
Dynamically monitors & can react to changes / triggers
CloudWatch
31
Audit logs
CloudTrail
32
Gateway to connect to on-prem with cloud
Storage Gateway
33
Transfer huge amounts of data to AWS
Snowball
34
AWS is responsible for security __ the cloud. | The customer is responsible for security __ the cloud.
AWS is responsible for security OF the cloud. | The customer is responsible for security IN the cloud.
35
Shared Responsibility Model: Customer: - CD - P, A, IAM - OS, N & FC Encryption: CS Data SS NTP
Customer is responsible for security IN the cloud - Customer Data - Platform, Apps, Identity & Access Management - Operating System, Network & Firewall Config Encryption: Customer-Side Data Encryption & Integrity Server-Side Encryption Network Traffic Protection
36
Shared Responsibility Model AWS: S - C, S, DB, N H & GI - R, AZ, EL
AWS is responsible for security OF the cloud Software - Compute, Storage, Database, Networking Hardware & Global Infrastructure - Regions, Availability Zones, Edge Locations
37
SRM Shared Controls PM, CM, A&T
Patch Management Config Management Awareness & Training
38
What is fully controlled by AWS? What is fully controlled by Customer?
AWS - Physical & Environmental Controls Customer - Service & Comms Protection/Zone Security
39
What re the 5 security pillars of AWS Well-Architected Framework? - DC - IAM - IP - DP - IP
- Detective Controls - Identity & Access Management - Infrastructure Protection - Data Protection - Incident Response
40
AWS Cloud Compliance? - C & A - L, R, P - A & F
- Certificates & Attestations - Laws, Regulations, Privacy - Alignments & Frameworks
41
Allows you to provide very granular access permissions to resources within the infrastructure.
Identity & Access Management
42
Protects your web app from common web exploits that could compromise security, availability & resource consumption of your AWS infrastructure
Web App Firewall | WAF
43
Protects your wen apps from DDoS attacks with an always-on detection & auto handling of any potential DDoS attcks
AWS Shield
44
An automated security assessment service to help improve security and compliance of apps deployed on the Cloud
Inspector
45
Helps you optimize your environment by reducing cost, increasing performance & improving security
Trusted Advisor
46
Name 3 ways to access AWS
- AWS Management Console - Command Line (CL) - Software Developer Kit (SDK)
47
Provides safe, secure, highly-scalable object based storage on the cloud
Amazon S3 - Simple Storage Solution
48
With S3, what is CRR (Cross-Region Replication)
For redundancy, you can have contents replicated automatically
49
What is the availability & durability of S3?
Availability is 99.99% Durability is 99,.999999999& (eleven 9s)
50
What is the data consistency mode for S3? - RAW - EC
- Read-After-Write Consistency | - Eventual Consistency
51
Name the 4 Storage Classes of S3: - S - S-IA - OZ-IA - G
- Standard - Standard - Infrequently Accessed - Onezone - Infrequently Accessed - Glacier
52
What are the 3 retrieval options if Glacier (S3)? - ER - SR - BR
- Expedited Retrieval (few mins) - Standard Retrieval ( 3 - 5 hours) - Bulk Retrieval (5 - 12 hours)
53
You can upload unlimited no. of files up to 5TB each in size. But you are charged for some things: - S - Rq - Rt - ED - SM - DT - TA - BW
- Storage - Requests - Retrievals - Early deletes - Storage Management - Data Transfer - Transfer Acceleration - Bandwidth
54
What are the 2 types of Encryption? ``` CS Encryption SS Encryption - S3 MK - KMS - CPK ```
Client Side Encryption Server Side Encryption - S3 Managed Keys - Key Management System - Customer Provided Key
55
What is the default access control on S3?
All buckets & objects are set to be private
56
What is a PETABYTE-scale data migration solution to transport A LOT of data from your on-prem environment into the AWS cloud?
Amazon Snowball A physical device is mailed to you, once you've transferred the data you ship it back & the data will be transferred into S3
57
Name 4 common use cases for Amazon Snowball - CM - DR - DC D - CD
- Cloud Migration - Disaster Recover - Data Centre Decom - Content Distribution
58
List the 3 types of Snowball & their sizes
- Snowball (50 TB / 80 TB) - Snowball Edge (100 TB) - Snowmobile (100 PB) - truck
59
What are the 4 tiers to AWS Support Plans and monthly pricing?
- Basic (Free) - Developer ($29 per month) - Business ($200 per month) - Enterprize ($15 000 per month & TAM)
60
What are the 4 types of charges for AWS Support Plans? C S DO
- Compute - Storage - Data Out
61
Cost Calculators 1. Calculates the cost of your entire AWS infrastructure to get a monthly bill? 2. Analyze costs & usage data to identify trends, cost drivers & detect anomalies? 3. Compare total cost of running your infrastructure on-prem vs on AWS?
1. AWS Simple Monthly Calculator 2. AWS Cost Explorer 3. Total Cost of Ownership Calculator (TCO)
62
Name the 5 best practices of Trusted Advisor: - CO - FT - P - SL - S
- Cost Optimization - Fault Tolerance - Performance - Service Limits - Security
63
Name the 5 types of Compute ``` E E E E L ```
``` EC2 - Elastic Cloud Computing EFS - Elastic File System Elastic Beanstalk Elastic Load Balancing Lambda ```
64
Name 5 types of storage offered in AWS ``` E E S S SG ```
``` EBS - Elastic Block Storage Elastic File System S3 - Simple Storage Solution Snowball (Data migration) Storage Gateway (Connects on-prem to cloud) ```
65
Name 4 types of AWS Databases: D DDB RDS R
AWS Databases DynamoDB Relational Database (RDS) Redshift (Data Warehouse)
66
Name the 3 Networking & Content Delivery available on AWS CF R53 V
CloudFront Route 53 Virtual Private Cloud (VPC)
67
Name the 6 security services offered by AWS: ``` IAM I SRM S TA W ```
- Identity & Access Management - Inspector - Shared Responsibility Model - Shield - Trusted Advisor - WAF (Web App Firewall)
68
AWS Storage Gateway is a hybrid cloud storage service that gives you on-prem access to virtually unlimited cloud storage. Name the 3 types of gateways
Tape Gateway - Backup & restore (virtual tape) File Gateway - For hybrid cloud workloads Volume Gateway - Disaster Recovery on AWS
69
A cloud service solution that makes it easy to establish a dedicated network connection from your premises to AWS.
AWS Direct Connect