Study Guide, Glossary Flashcards
Google Cloud Certified Professional Cloud Architect Study Guide, 2nd Edition by Dan Sullivan
A test designed to show a client that the features of a system or application meet their business needs.
acceptance test
Rules that authorize users to perform operations on objects and systems.
access controls
Methods of software development that stress incremental and iterative development.
agile methodologies
Automated notifications in response to events detected in time-series metric data, logs, or other monitoring data.
alerting
GCP’s PaaS for building and deploying web applications in a serverless environment.
App Engine
A feature of an application that accepts pro-grammatic requests or data.
application programming interface (API)
A class of Cloud Storage that provides long-term storage for objects that need to be accessed less than once per year.
Archive storage
Service calls that do not wait for an operation to complete before returning.
asynchronous calls
The process of reviewing the structure and configuration of systems often to determine compliance with policy or regulations.
auditing
An automated response to a problem with a health check.
autohealing
The automated process of adding or removing instances based on workload.
autoscaling
A fraction of time that services are functioning correctly and accessible to users.
availability
Roles in GCP that existed prior to IAM.
basic roles
A petabyte-scale data warehousing and analytics service managed by GCP that uses tables to organize data and SQL as the query language.
BigQuery
A deployment strategy that uses two identically configured environments.
Blue/Green deployment
The ability to use a license you have already purchased to run an application in the cloud.
bring-your-own-license (BYOL)
A structure for grouping objects in Cloud Storage.
bucket
The process of planning for a large-scale service disruption, such as extreme weather or long-term power outages.
business continuity planning
When a small portion of a systems workload is routed to a new version of the software, allowing developers and administrators to test code under production conditions without exposing all users to new code.
canary deployment
When a failure causes a falling domino effect of distributed system failures, one after the other.
cascading failure
The practice of introducing random failures into a system to under-stand the consequences of those failures better and identifying unanticipated failure modes.
chaos engineering
A US federal law that requires the US Federal Trade Commission to define and enforce regulations regarding children’s online privacy.
Children’s Online Privacy Protection Act (COPPA)
A design pattern that uses an object that monitors the results of a function or service call.
Circuit Breaker pattern
A wide-column, NoSQL database for high-volume writes and low-latency reads (less than 10 ms).
Cloud Bigtable
A GCP service that provides software building services and is integrated with other GCP services, such as Cloud Source Repository.
Cloud Build
A managed service for processing streaming and batch data sets using Java, SQL, and Python APIs.
Cloud Dataflow
A managed service providing Apache Hadoop and Apache Spark platforms.
Cloud Dataproc
A serverless, managed NoSQL document database used for storing, syn-chronizing, and querying mobile and web application data.
Cloud Firestore
A serverless, event-driven computing service for executing functions in response to events within the cloud.
Cloud Functions
A GCP identity-as-a-service (IdaaS) offering that allows for centralized identity management.
Cloud Identity
Network connectivity between on-premises infrastructure and Google’s infrastructure.
Cloud Interconnect
A managed service in GCP that enables customers to generate and store keys in GCP.
Cloud KMS
A managed service providing Redis and Memcached memory caching that implements submillisecond data access.
Cloud Memorystore
A set of services for monitoring, logging, tracing, and debugging infrastructure and applications in GCP and other platforms.
Cloud Operations
A managed message queue for implementing stream and event processing applications, which can write messages to topics or subscribe to topics to receive messages.
Cloud Pub/Sub
GCP’s version control system and source code repository based on Git.
Cloud Source Repository
A managed, horizontally scalable, global relational database designed for distributed applications requiring strong consistency.
Cloud Spanner
A managed service providing MySQL, SQL Server, and PostgreSQL databases.
Cloud SQL
An object storage service providing web access to scalable storage.
Cloud Storage
An open source adapter that allows users to mount Cloud Storage buckets as simulated filesystems on Linux and macOS platforms.
Cloud Storage FUSE
A GCP service that provides VPNs between GCP and on-premises networks.
Cloud VPN
A class of Cloud Storage that provides long-term storage for objects that need to be accessed less than once per 90 days.
Coldline storage
Software that is purchased instead of built in-house.
commercial off-the-shelf (COTS) product
The infrastructure-as-a-service (IaaS) offering of GCP.
Compute Engine
A package of application code, operating system, and dependencies that can run in a container runtime, such as Docker or containerd.
container
A global network of servers with distributed points of presence across the globe.
content delivery network (CDN)
The process of incorporating code into a baseline of software, testing it, and, if the code passes tests, releasing it for use.
continuous integration/continuous delivery (CI/CD)
A role defined by GCP users and assigned a set of permissions needed to enable entities with the role to perform tasks.
custom roles
A key management model where keys are generated and kept on premises and used by GCP services to encrypt the customer’s data.
customer-supplied keys
A key associated with a chunk of data, used to encrypt and decrypt that chunk of data.
data encryption key (DEK)
The state of accuracy and consistency of data over its entire lifecycle.
data integrity
The use of multiple security measures to protect data and systems.
defense in depth
Documentation designed for software engineers who will be working with code.
developer documentation
The practice of combining the responsibilities of software development and IT operations.
DevOps
A process of change in businesses as they adopt information technologies to develop new products, improve customer service, optimize operations, and make other major improvements enabled by technology.
digital transformation
A network connection type where information does not travel over the public internet when going from on-premises systems to Google Cloud.
Dedicated Interconnect
A form of network peering that allows customers to connect their networks to a Google network point of access.
direct peering
The practice of recovering data and services after a large-scale outage or loss of data.
disaster recovery (DR)
A measurement given as a percentage that describes the likelihood that a stored object will be retrievable in the future.
durability
The process of encoding data in a way that yields a coded version of data that cannot practically be converted back to the original form without a key.
encryption
Encryption of data when stored on persistent storage, such as a disk or SSD drive.
encryption at rest
Encryption of data during transmission, such as over a network.
encryption in motion/transit
The practice of encrypting data encryption keys with a second encryption key, known as a key encryption key.
envelope encryption
Notifications provided by an alert system that do not warrant intervention.
false alerts
A deployment method that allows developers to release new capabilities and features selectively to users, without having to deploy software updates.
feature flags
A firewall configuration that allows or denies traffic.
firewall rules
A regulation that standardizes privacy protections across the European Union (EU), grants controls to individuals over their private information, and specifies security practices required for organizations holding private information of EU citizens.
General Data Protection Regulation (GDPR)
A high-capacity storage device that enables users to transfer and securely ship data to a Google upload and then the data is uploaded to Google Cloud Storage.
Google Transfer Appliance
A service that allows for the transfer of data from an HTTP/S location, an AWS S3 bucket, or a Cloud Storage bucket to a Cloud Storage bucket.
Google Transfer Service
A set of Google accounts and service accounts with an associated email address.
group
A multithreaded command-line utility used to transfer on-premises data to Google Cloud and perform other operations on Cloud Storage.
gsutil