Review Deck Flashcards

Question 1

Q

Amazon Macie

Answer

A

AI/ML security service that helps prevent data loss by automatically discovering, classifying, and protecting sensitive data stored in Amazon S3.

Machine Learning to recognize sensitive data (e.g., PII, intellectual property, etc.), assigns a business value, and provides visibility into where this data is stored and how it is being used in your organization.

Macie continuously monitors data access activity for anomalies, and delivers alerts when it detects risk of unauthorized access or data leak.

Macie can detect global access permissions set on sensitive data, detect upload of API keys inside source code, and verify data is stored and accessed according to customer compliance standards.

Question 2

Q

Lambda@Edge

Answer

A

Lets you run Lambda functions to customize the content that CloudFront delivers, executing the functions in AWS locations closer to the viewer. Lambda@Edge functions run in response to CloudFront events, without provisioning or managing servers.

Question 3

Q

You can use Lambda functions to change CloudFront requests and responses at the following points:

Answer

A

– After CloudFront receives a request from a viewer (viewer request)

– Before CloudFront forwards the request to the origin (origin request)

– After CloudFront receives the response from the origin (origin response)

– Before CloudFront forwards the response to the viewer (viewer response)

Question 4

Q

HTTP 504

Answer

A

Gateway timeout error, usually results when a server is down.

Question 5

Q

Amazon MQ

Answer

A

Message broker that supports industry-standard APIs and protocols so you can switch from any standards-based message broker without rewriting messaging code in existing applications.

Question 6

Q

TRUE/FALSE: Step Scaling & Simple Scaling both require you to create CloudWatch alarms.

Question 7

Q

Step Scaling & Simple Scaling both require you to define whether to…

Answer

A

…add or remove instances, and how many, or set the group to an exact size.

Question 8

Q

Step Scaling and Simple Scaling policies Both require you to…

Answer

A

…specify the high and low thresholds for the alarms.

Question 9

Q

Simple vs Step Scaling Policies

Answer

A

The main difference is the step adjustments you get with step scaling policies. Step adjustments increase or decrease capacity of an Auto Scaling group based on the size of the alarm breach.

Question 10

Q

Target Tracking Scaling Policy

Answer

A

Increase or decrease capacity of an Auto Scaling group based on a target value for a specific metric, adding/removing capacity to keep the metric at/near the specified target value.

In addition, a target tracking scaling policy also adjusts to changes in the metric due to a changing load pattern.

Helps resolve over-provisioning of your resources.

Question 11

Q

Suspend and Resume scaling…

Answer

A

…is used to temporarily pause scaling activities triggered by scaling policies and scheduled actions.

Question 12

Q

Cooldown periods…

Answer

A

…help to prevent the initiation of additional scaling activities before the effects of previous activities are visible.

Question 13

Q

This policy must wait for a scaling activity or health check replacement to complete and a cooldown period to expire before responding to additional alarms.

Answer

A

Simple Scaling

Question 14

Q

Use cases for signed URLs:

Answer

A

– RTMP distribution–signed cookies aren’t supported for RTMP distributions

– Restrict access to individual files

– Use when cookies aren’t supported by users’ clients

Question 15

Q

Use cases for signed cookies:

Answer

A

– Provide access to multiple restricted files

– To avoid changing existing URLs

Question 16

Q

Match Viewer

Answer

A

An Origin Protocol Policy which configures CloudFront to communicate with your origin using HTTP or HTTPS, depending on the protocol of the viewer request. CloudFront caches the object only once even if viewers make requests using both HTTP and HTTPS protocols.

Question 17

Q

Field-Level Encryption…

Answer

A

…allows secure user-submitted uploads of sensitive information to a web server.

Question 18

Q

TRUE/FALSE: To use signed urls will require changes to existing urls?

Question 19

Q

TRUE/FALSE: Amazon RDS provides metrics in real time for the operating system (OS) that your DB instance runs on.

Question 20

Q

Two ways you can view metrics for an RDS DB instance:

Answer

A

By using the console

2. View Enhanced Monitoring JSON output from CloudWatch Logs in a monitoring system of your choice

Question 21

Q

By default, Enhanced Monitoring metrics are stored in the CloudWatch Logs for…

Answer

A

…30 days

Question 22

Q

To modify the amount of time the metrics are stored in the CloudWatch Logs…

Answer

A

…change the retention for the RDSOSMetrics log group in the CloudWatch console.

Question 23

Q

Why are CloudWatch and Enhanced Monitoring Metrics different?

The differences can be greater if your DB instances use smaller instance classes, because then there are likely more virtual machines (VMs) that are managed by the hypervisor layer on a single physical instance. Enhanced Monitoring metrics are useful when you want to see how different processes or threads on a DB instance use the CPU.

Answer

A

CloudWatch gathers metrics about CPU utilization from the hypervisor for a DB instance, and Enhanced Monitoring gathers metrics from an agent on the instance. Because the hypervisor does additional work CloudWatch accounts for that in its CPU usage calculation.

Question 24

Q

TRUE/FALSE: You can use CloudWatch to monitor CPU Utilization of a database.

Answer

A

False–although you can use CloudWatch to monitor CPU Utilization of a database instance, it will not provide CPU bandwidth usage or total memory consumed by each database process.

Question 25

Q

TRUE/FALSE: CPU% and MEM% metrics are readily available in the Amazon RDS console.

Question 26

Q

CloudTrail Event

Answer

A

The record of an activity in an AWS account.

Question 27

Q

CloudTrail activities can be…

Answer

A

…an action taken by a user, role, or service that is monitorable by CloudTrail.

Question 28

Q

CloudTrail events provide a history of…

Answer

A

…API and non-API account activity in AWS Management Console, AWS SDKs, command-line tools, and other AWS services.

Question 29

Q

Two types of events that can be logged in CloudTrail:

Answer

A

Management events and data events.

Question 30

Q

What events will CloudTrail log by default?

Answer

A

By default, CloudTrail will log management events, but not data events.

Question 31

Q

TRUE/FLASE: A CloudTrail trail can be applied only to a single region.

Answer

A

FALSE–CloudTrail trails can be applied to all regions or a single region.

Question 32

Q

What is considered best practice when creating a CloudTrail trail?

Answer

A

It is considered best practice to create a trails that apply to all regions in the AWS partition you are working.

Question 33

Q

What is the default region setting when you create a trail in the CloudTrail console?

Answer

A

All regions

Question 34

Q

Global services… , events are delivered to any trail that includes global services, and are logged as occurring in US East (N. Virginia) Region.

Answer

A

AWS Identity and Access Management (IAM), AWS STS, Amazon CloudFront, and Route 53 (and maybe others…)

Question 35

Q

CloudTrail can be used to log events most events with the multi-region setting enabled, however…

Answer

A

…it will only cover activity occurring in regional services (EC2, S3, RDS etc.), not global services.

Question 36

Q

In order for CloudTrail to log activity occurring in global services, you have to add what events parameter in your AWS CLI command?

Answer

A

–include-global-service–

Question 37

Q

Amazon Elastic File System (EFS)…

Answer

A

…provides simple, scalable, elastic file storage for use with AWS Cloud services and on-premises resources, and when mounted on Amazon EC2 instances, EFS provides a standard file system interface and access semantics, which seamlessly integrate with existing applications and tools.

Question 38

Q

Can multiple EC2 instances access EFS simultaneously? And what is the benefit?

Answer

A

Yes, when used by multiple EC2 instances, EFS can serve as a common data source and shared file system for multiple workloads and applications on separate EC2 instances, making file sharing much faster.

Question 39

Q

Can multiple EC2 instances share the same EBS Volumes? Across AZs?

Answer

A

Yes, EC2 instances can share EBS volumes, but no, they cannot share EBS volumes across AZs. However, EC2 instances can share an EFS across AZs.

Question 40

Q

Is S3 the best choice for file storage?

Answer

A

No, is mainly used for “object storage”, and S3 does not provide the notion of “folders” too.

Question 41

Q

If you create or update a Lambda function that uses environment variables, does AWS Lambda encrypt them automatically? If so, how?

Answer

A

Yes, The first time you create or update Lambda functions that use environment variables in a region, a default service key is created for you automatically within AWS KMS. This key is used to encrypt environment variables.

Question 42

Q

Can you use the default KMS key to encrypt environment variables after a Lambda function is created?

Answer

A

No, you must create your own KMS key and choose it instead of the default key. The default key will give errors. Creating a new key also offers more flexibility, including the ability to create, rotate, disable, and define access controls, and to audit the encryption keys used to protect your data.

Question 43

Q

Network Access Control List (ACL)…

Answer

A

…is an optional layer of security that acts as a firewall, controlling traffic in and out of a VPC network, protecting one or more subnets. A network ACL is great for temporary or ad hoc protection, because you can easily add and remove restrictions in a matter of minutes.

Question 44

Q

Can IAM policies control network traffic in/out of a VPC?

Question 45

Q

TRUE/FALSE: Adding a rule to a security group can control inbound/outbound VPC network traffic?

Answer

A

FALSE, security groups act as firewalls at the instance-level. Adding a rule to a security group cannot influence traffic in/out of a VPC.

Question 46

Q

Storage Gateway (file gateway)…

Answer

A

…is both a service and a virtual software appliance deployed into an on-premises environment as a virtual machine (VM) using VMware ESXi, Microsoft Hyper-V, or Linux Kernel-based Virtual Machine (KVM) hypervisor. It serves as a file interface into S3, allowing customers to store and retrieve objects using industry-standard protocols, e.g., Network File System (NFS) and Server Message Block (SMB).

Question 47

Q

With a file gateway, you can:

Answer

A

– store and retrieve files directly using the NFS version 3 or 4.1 protocol.

– store and retrieve files directly using the SMB file system version, 2 and 3 protocol.

– access data directly in S3 from any AWS Cloud application or service

– manage S3 data using lifecycle policies, cross-region replication, and versioning

Question 48

Q

Storage Gateway supports which storage standards?

Answer

A

S3 Standard, Amazon S3 Standard-Infrequent Access, Amazon S3 One Zone-Infrequent Access and Amazon Glacier

Question 49

Q

TRUE/FALSE: Lifecycle policies work with storage gateway file shares?

Answer

A

TRUE–Objects stored in any storage class can be transitioned/archived to Glacier using a Lifecycle Policies. Although you can write directly to S3, lifecycle policies are recommended.

Question 50

Q

A DynamoDB stream is…

Answer

A

…an ordered flow of information about changes to items in an Amazon DynamoDB table. When you enable a stream on a table, DynamoDB captures information about every modification to data items in the table.

Question 51

Q

Whenever an application creates, updates, or deletes items in a table, DynamoDB Streams…

Answer

A

…writes a stream record with the primary key attribute(s) of the items that were modified.

Question 52

Q

A DynamoDB stream record…

Answer

A

…contains information about a data modification to a single item in a DynamoDB table. You can also configure streams so that stream records capture additional information, such as the “before” and “after” images of modified items.

Question 53

Q

DynamoDB and Lambda

Answer

A

Amazon DynamoDB is integrated with AWS Lambda so that you can create triggers—pieces of code that automatically respond to events in DynamoDB Streams. With triggers, you can build applications that react to data modifications in DynamoDB tables.

Question 54

Q

If you enable DynamoDB Streams on a table…

Answer

A

…you can associate the stream ARN with a Lambda function that you write. New records appear in the stream immediately after a table item changes. AWS Lambda invokes the Lambda function synchronously when it detects new stream records. The Lambda function can perform any actions you specify, such as sending a notification or initiating a workflow.

Question 55

Q

By default, DynamoDB Streams must be…

Question 56

Q

FSx for Windows File Server…

Answer

A

…is Windows, Linux, and macOS accessible, fully managed Windows file servers and native Windows file system with the features, performance, and compatibility to easily lift and shift enterprise applications to the AWS Cloud. Thousands of compute instances and devices can access a file system concurrently.

Question 57

Q

FSx for Windows File Server…

Answer

A

…provides fully managed Microsoft Windows file servers, backed by a fully native Windows file system. FSx offers features, performance, and compatibility ideal for lift and shift to the AWS Cloud. It is accessible from Windows, Linux, and macOS compute instances and devices. Thousands of compute instances and devices can access a file system concurrently.

Question 58

Q

Server Message Block (SMB) protocol…

Answer

A

…is a network file sharing protocol that allows applications on a computer to read/write to files and request services from server programs in a computer network. The SMB protocol can be used on top of its TCP/IP protocol or other network protocols.

Question 59

Q

AWS Resource Access Manager (RAM)…

Answer

A

…enables you to easily and securely share AWS resources with any AWS account or within your AWS Organization. You can share AWS Transit Gateways, Subnets, AWS License Manager configurations, and Amazon Route 53 Resolver rules resources with RAM.

Question 60

Q

Single Sign-On (SSO) approach to temporary access…

Answer

A

Authenticating users in an organization’s network, and then providing them access to AWS without creating new AWS identities for them and requiring separate credentials.

Question 61

Q

AWS STS supports…

Answer

A

…open standards like Security Assertion Markup Language (SAML) 2.0, which is compatible with Microsoft AD FS, allowing organizations to leverage existing Microsoft Active Directory. You can also use SAML 2.0 to manage your own solution for federating user identities.

Question 62

Q

Amazon WorkDocs…

Answer

A

…provides users the ability to create, edit, and share content, and stored centrally on AWS, the content is accessible from anywhere on any device.

Question 63

Q

TRUE/FALSE: WorkDocs integrates directly with S3.

Answer

A

FALSE–There is no direct integration between WorkDocs and S3. WorkDocs is simply a managed content creation service.

Question 64

Q

A security group…

Answer

A

…acts as a virtual firewall at the instance-level–NOT the subnet-level–to control inbound and outbound traffic.

Answer 59

A

…one IP address…the entire network.

Answer 60

A

…TCP and port 22.

Answer 61

A

…object storage built to store/retrieve any amount of data from anywhere on the Internet that offers high durability, availability, performance, security, and virtually unlimited scalability at very low cost. S3 is also highly flexible, allowing users to store any volume or type of data; read data a million times or only for emergency disaster recovery; build a simple FTP app or a sophisticated web app; etc.

Answer 62

A

…can speed up content transfers to/from S3 as much as 50-500% for long-distance transfer of larger objects.

Answer 63

A

15 minutes

Answer 64

A

About one week

Answer 65

A

…used to establish a secure connection between an on-premises network and Amazon VPC.

Answer 66

A

…designed for globally distributed applications, allowing a single Amazon Aurora database to span multiple AWS regions. It replicates data with no impact on database performance, enables fast local reads with low latency in each region, and provides disaster recovery from region-wide outages.

Answer 67

A

…sub-1-second storage-based replication latency.

Answer 68

A

…a feature of Aurora Global Database that allows an assigned database in a secondary to be promoted to take over read/write capabilities in less than, in the event of an unplanned outage.

Answer 69

A

…AWS’s NoSQL database.

Answer 70

A

…a networking service that simplifies traffic management and improves application performance.

Answer 71

A

…the storage that keeps frequently accessed data ( hot data ).

Answer 72

A

…the storage that keeps less frequently accessed data ( warm data ).

Answer 73

A

…the storage that keeps rarely accessed data ( cold data ).

Answer 74

A

…the cheaper it is to store, and the costlier it is to access when needed.

Answer 75

A

…a high-performance file system for fast processing of workloads. Lustre is a popular open-source parallel file system which stores data across multiple network file servers to maximize performance and reduce bottlenecks.

Answer 76

A

…is a fully managed Microsoft Windows file system with full support for the SMB protocol, Windows NTFS, Microsoft Active Directory ( AD ) Integration.

Answer 77

A

…a fully-managed file storage service that makes it easy to set up and scale file storage in the Amazon Cloud.

Answer 78

A

…a service that enables governance, compliance, operational auditing, and risk auditing of an AWS account. CloudTrail enables logging, continuous monitorinmg, and retention of account-wide AWS infrastructure activity. CloudTrail is enabled by default on account creation. AWS account activity is recorded as a CloudTrail event. Recent events are easily viewed in the CloudTrail console “Event History”.

Answer 79

A

…AWS account activity, including actions taken through the AWS Management Console, AWS SDKs, command line tools, API calls, and other AWS services. This event history simplifies security analysis, resource change tracking, and troubleshooting.

Answer 80

A

…helps debug and analyze microservices applications with request tracing to find the root cause of issues and poor performance.

Answer 81

A

…a feature of Redshift that enables queries and analysis of all data in Amazon S3 using the open data formats already in use, with no data loading or transformations needed.

Answer 82

A

…an on-demand, auto-scaling configuration for Amazon Aurora. An Aurora Serverless DB cluster is a DB cluster that automatically starts up, shuts down, and scales up or down its compute capacity based on an application’s needs. Aurora Serverless provides a relatively simple, cost-effective option for infrequent, intermittent, sporadic or unpredictable workloads.

Answer 83

A

…it automatically starts up, scales compute capacity to match your application’s usage and shuts down when it’s not in use.

Answer 84

A

…provisioned DB cluster.

Answer 85

A

…users define DB instance class size and create Aurora Replicas to increase read throughput. When workload changes, the user can modify the DB instance class size and change the number of Aurora Replicas…the database workload is predictable, because you can adjust capacity manually based on the expected workload.

Answer 86

A

…workloads are intermittent and unpredictable, when heavy traffic may last a few minutes or it may last hours, or there may be long periods of light or no activity (e.g., retail websites with intermittent sales events, databases used for reports as-needed, dev/test environments, applications with uncertain requirements).

Answer 87

A

…users can create a database endpoint without specifying the instance class size. Setting the minimum and maximum capacity, the database endpoint connects to a proxy fleet that routes the workload to a fleet of auto scaling resources. Connections are continuous as Aurora Serverless scales based on specified capacity limits.

Answer 88

A

…it uses a pool of “warm” resources that are always ready for service requests.

Answer 89

A

To allow processing to scale down to zero, so accounts only pay for storage when compute isn’t needed.

Answer 90

A

…for massively scaled, global applications requiring a fully managed, multi-region, multi-master database with fast, local, read/write performance.

Answer 91

A

…best used for online analytical processing (OLAP) and not for online transactional processing (OLTP).

Answer 92

A

…a Redshift feature that automatically and elastically scales a Redshift cluster’s query processing power to ensure consistently fast performance for hundreds of concurrent queries.

Answer 93

A

…CloudFront, the Application Load Balancer (ALB), API Gateway, and AppSync – services commonly used for content delivery to websites and applications.

Answer 94

A

…rules run in all AWS Edge Locations, located around the world closer to end-users so the added security doesn’t compromise security. Requests are blocked before they reach web servers.

Answer 95

A

…rules run in the same region and can be used to protect both internet-facing and internal resources.

Answer 96

A

…track the rate of requests from each originating IP address and trigger action on IPs with request rates exceeding a specified limit, which is set as the number of requests per 5-minute time span. This type of rule can be used to block temporarily requests from an IP address sending excessive requests.

Answer 97

A

Regular and Rate-Based

Answer 98

A

If using multiple AZs instances will be terminated in the AZ with the most running instances. If more than one AZ have the same number of instances, scale in will favor the AZ with instances running the oldest launch configuration.

Answer 99

A

…allows users to setup notifications in response to certain events in an S3 bucket.

Answer 100

A

…add a notification configuration to identify the events S3 should publish and destinations S3 should send those notifications, and store the configuration in the notification sub-resource associated with a bucket.

Answer 101

A

– Simple Notification Service (SNS) topic

– Simple Queue Service (SQS) queue

– Lambda

Answer 102

A

…when a message published to an SNS topic is replicated and pushed to multiple endpoints, such as SQS, HTTP(S) endpoints, or Lambda functions, which allows parallel asynchronous processing.

Answer 103

A

An application publishes a message to an SNS topic when an order is placed, then all subscribed SQS queues receive identical notifications of the order. EC2 instances attached to the SQS queues process the order.

Answer 104

A

…a combination of SNS and SQS can be used. The SNS message fanout feature allows multiple SQS queues to subscribe to an SNS topic, so when SNS receives an event notification, it will publish the message to both subscribers.

Answer 105

A

FALSE–S3 event notifications are designed to be delivered to one destination only; event notifications will not go to more than one destination. SNS receives event notifications and republishes them to resources subscribed to the relevant SNS topic.

Answer 106

A

…provide strict message ordering and message deduplication. SNS and SQS FIFO capabilities work together, acting as a fully managed service that integrates distributed applications that require near-real-time data consistency.

Answer 107

A

FALSE–SQS can’t poll SNS, SQS queues are configured to subscribe to SNS topics.

Answer 108

A

…a fully managed, highly available, in-memory cache that can reduce DynamoDB response times from milliseconds to microseconds, even at millions of requests per second.

Answer 109

A

…an app testing service that lets you test and interact with your Android, iOS, and web apps on many devices at once, or reproduce issues on a device in real time.

Answer 110

A

…automate capacity management for your tables and global secondary indexes.

Answer 111

A

E.g., ad hoc queries; online analytical processing

Answer 112

A

E.g., web-scale applications like social networks, gaming platforms, media sharing, and IoT

Answer 113

A

…well defined schemas that normalize data in tables, organizing variables in rows and columns.

Answer 114

A

…is schema-less. Each table has a primary key to uniquely identify each data element, but non-key attributes should not share any similar constraints. DynamoDB can manage structured or non-structured data, including JSON documents.

Answer 115

A

…Structured Query Language

Answer 116

A

…storage, so performance depends on the disk subsystem. Performance is optimized by managing queries, indexes, and table structures.

Answer 117

A

…compute, so performance is a function of the hardware and network latency, but it’s a managed service, so customer applications are insulated from these implementation details.

Answer 118

A

…migrating to faster hardware, or it is also possible to leverage a distributed system and configuring tables to span across multiple hosts, but RDbs have constraints on the number and size of files, limiting scalability.

Answer 119

A

…distributed hardware clusters, which allows for increased throughput w/o impacting latency. Customers simply specify throughput requirements and DynamoDB allocates resources to meet those requirements. There are no limits on the number of table items or the total size of a table.

Answer 120

A

– Normalize data and stores multiple tables and require multiple queries to write to disk

– Generally incur performance costs of ACID-compliant transaction systems

– Use expensive joins to reassemble required views of query results

Answer 121

A

– Its schema flexibility lets DynamoDB store complex hierarchical data within a single item

– Composite key design lets it store related items close together on the same table

Answer 122

A

No, the very definition of a schema is just the model or structure of data. Data in DynamoDB has a structure.

Answer 123

A

…a fully managed service that makes publishing, maintaining, monitoring, and securing APIs easier at any scale, using AWS Management Console to create APIs that act as the “front door” for applications to access data, business logic, or functionality from back-end services. API Gateway handles all tasks involved in accepting and processing up to hundreds of thousands of concurrent API calls, including traffic management, authorization and access control, monitoring, and API version management.

Answer 124

A

API Gateway provides throttling at multiple levels, including global and by service call, that can be set for standard rates and bursts. For example, API owners can set a rate limit of 1,000 requests per second for a specific method in their REST APIs, and also configure Amazon API Gateway to handle a burst of 2,000 requests per second for a few seconds.

Answer 125

A

…increased protection against attacks targeting applications running on EC2, ELB, CloudFront, and Route 53 resources, beyond the network and transport layer protections that come with Standard. Shield Advanced provides additional detection and mitigation against large and sophisticated DDoS attacks, near real-time visibility into attacks, integration with AWS WAF, 24×7 access to the AWS DDoS Response Team (DRT), and protection against charges caused by DDoS related spikes in EC2, ELB, CloudFront, and Route 53 resource activity.

Answer 126

A

…simplify your AWS WAF administration and maintenance tasks across multiple accounts and resources.

Answer 127

A

…SQL injection or cross-site scripting…sophisticated DDoS attacks, for which customers should use Shield Advanced.

Answer 128

A

…combines the control provided by CloudHSM with KMS’s ease of integration, allowing customers to configure and maintain a CloudHSM cluster authorized for use by KMS as a dedicated key store into which KMS will generate key material, so the key material will never be exposed as plaintext.

Answer 129

A

…a fully managed cryptographic service for creating and maintaining hardware security modules (HSMs) in the AWS environment.

Answer 130

A

…computing devices that process cryptographic operations and provide secure storage for cryptographic keys.

Answer 131

A

…offload SSL/TLS processing for web servers, protect private keys linked to an issuing certificate authority (CA), or enable Transparent Data Encryption (TDE) for Oracle databases.

Answer 132

A

Generate, store, import, export, and manage cryptographic keys, including symmetric keys and asymmetric key pairs
Use symmetric and asymmetric algorithms to encrypt and decrypt data
Use cryptographic hash functions to compute message digests and hash-based message authentication codes (HMACs)
Sign data (including code signing) and verify signatures
Generate secure random data

Answer 133

A

…FIPS 140-2 validated cryptographic modules

Answer 134

A

…operational events such as DB instance events, DB parameter group events, DB security group events, and DB snapshot events…using native functions or stored procedures.

Brainscape's Knowledge GenomeTM

Review Deck Flashcards

Brainscape's Knowledge Genome^TM