IAM & S3 Flashcards
ARN (sections)
begin:
arn:partition:service:region:account_id:
end: resource resource_type/resource resource_type/resource/qualifier resource_type/resource:qualifier resource_type:resource resource_type:resource:qualifier
RAM - acronym
resource account manager
app mesh aurora codebuild ec2 ec2 image ubilder license manager resource group route 53
S3 transfer acceleration
Leverages edge locations to allow users to upload files to S3 faster
Athena
allows you to use SQL to query data stored in S3
serverless
Redshift
data warehouse service
OLAP
Allows you to do
redshift nodes
leader - manages client connections and receives queries
compute - store and perform queries
used advanced compression - compresses columns
redshift backups
attempts to maintain at least 3 copies of your data
can async replicate snapshots to S3 in a different region
redshift retention period
1-35 days
Redshift security considerations
redshift manages keys
- can use HSM to manage your own keys
encrypted at rest (AES-256) and in transit (SSL)
redshift availability
limited to 1 AZ
can restore snapshots to a new AZ
