Study Guide, Glossary Flashcards

Google Cloud Certified Professional Cloud Architect Study Guide, 2nd Edition by Dan Sullivan

1
Q

A test designed to show a client that the features of a system or application meet their business needs.

A

acceptance test

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Rules that authorize users to perform operations on objects and systems.

A

access controls

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Methods of software development that stress incremental and iterative development.

A

agile methodologies

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Automated notifications in response to events detected in time-series metric data, logs, or other monitoring data.

A

alerting

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

GCP’s PaaS for building and deploying web applications in a serverless environment.

A

App Engine

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

A feature of an application that accepts pro-grammatic requests or data.

A

application programming interface (API)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

A class of Cloud Storage that provides long-term storage for objects that need to be accessed less than once per year.

A

Archive storage

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Service calls that do not wait for an operation to complete before returning.

A

asynchronous calls

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

The process of reviewing the structure and configuration of systems often to determine compliance with policy or regulations.

A

auditing

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

An automated response to a problem with a health check.

A

autohealing

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

The automated process of adding or removing instances based on workload.

A

autoscaling

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

A fraction of time that services are functioning correctly and accessible to users.

A

availability

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

Roles in GCP that existed prior to IAM.

A

basic roles

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

A petabyte-scale data warehousing and analytics service managed by GCP that uses tables to organize data and SQL as the query language.

A

BigQuery

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

A deployment strategy that uses two identically configured environments.

A

Blue/Green deployment

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

The ability to use a license you have already purchased to run an application in the cloud.

A

bring-your-own-license (BYOL)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
17
Q

A structure for grouping objects in Cloud Storage.

A

bucket

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
18
Q

The process of planning for a large-scale service disruption, such as extreme weather or long-term power outages.

A

business continuity planning

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
19
Q

When a small portion of a systems workload is routed to a new version of the software, allowing developers and administrators to test code under production conditions without exposing all users to new code.

A

canary deployment

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
20
Q

When a failure causes a falling domino effect of distributed system failures, one after the other.

A

cascading failure

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
21
Q

The practice of introducing random failures into a system to under-stand the consequences of those failures better and identifying unanticipated failure modes.

A

chaos engineering

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
22
Q

A US federal law that requires the US Federal Trade Commission to define and enforce regulations regarding children’s online privacy.

A

Children’s Online Privacy Protection Act (COPPA)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
23
Q

A design pattern that uses an object that monitors the results of a function or service call.

A

Circuit Breaker pattern

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
24
Q

A wide-column, NoSQL database for high-volume writes and low-latency reads (less than 10 ms).

A

Cloud Bigtable

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
25
Q

A GCP service that provides software building services and is integrated with other GCP services, such as Cloud Source Repository.

A

Cloud Build

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
26
Q

A managed service for processing streaming and batch data sets using Java, SQL, and Python APIs.

A

Cloud Dataflow

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
27
Q

A managed service providing Apache Hadoop and Apache Spark platforms.

A

Cloud Dataproc

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
28
Q

A serverless, managed NoSQL document database used for storing, syn-chronizing, and querying mobile and web application data.

A

Cloud Firestore

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
29
Q

A serverless, event-driven computing service for executing functions in response to events within the cloud.

A

Cloud Functions

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
30
Q

A GCP identity-as-a-service (IdaaS) offering that allows for centralized identity management.

A

Cloud Identity

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
31
Q

Network connectivity between on-premises infrastructure and Google’s infrastructure.

A

Cloud Interconnect

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
32
Q

A managed service in GCP that enables customers to generate and store keys in GCP.

A

Cloud KMS

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
33
Q

A managed service providing Redis and Memcached memory caching that implements submillisecond data access.

A

Cloud Memorystore

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
34
Q

A set of services for monitoring, logging, tracing, and debugging infrastructure and applications in GCP and other platforms.

A

Cloud Operations

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
35
Q

A managed message queue for implementing stream and event processing applications, which can write messages to topics or subscribe to topics to receive messages.

A

Cloud Pub/Sub

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
36
Q

GCP’s version control system and source code repository based on Git.

A

Cloud Source Repository

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
37
Q

A managed, horizontally scalable, global relational database designed for distributed applications requiring strong consistency.

A

Cloud Spanner

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
38
Q

A managed service providing MySQL, SQL Server, and PostgreSQL databases.

A

Cloud SQL

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
39
Q

An object storage service providing web access to scalable storage.

A

Cloud Storage

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
40
Q

An open source adapter that allows users to mount Cloud Storage buckets as simulated filesystems on Linux and macOS platforms.

A

Cloud Storage FUSE

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
41
Q

A GCP service that provides VPNs between GCP and on-premises networks.

A

Cloud VPN

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
42
Q

A class of Cloud Storage that provides long-term storage for objects that need to be accessed less than once per 90 days.

A

Coldline storage

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
43
Q

Software that is purchased instead of built in-house.

A

commercial off-the-shelf (COTS) product

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
44
Q

The infrastructure-as-a-service (IaaS) offering of GCP.

A

Compute Engine

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
45
Q

A package of application code, operating system, and dependencies that can run in a container runtime, such as Docker or containerd.

A

container

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
46
Q

A global network of servers with distributed points of presence across the globe.

A

content delivery network (CDN)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
47
Q

The process of incorporating code into a baseline of software, testing it, and, if the code passes tests, releasing it for use.

A

continuous integration/continuous delivery (CI/CD)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
48
Q

A role defined by GCP users and assigned a set of permissions needed to enable entities with the role to perform tasks.

A

custom roles

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
49
Q

A key management model where keys are generated and kept on premises and used by GCP services to encrypt the customer’s data.

A

customer-supplied keys

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
50
Q

A key associated with a chunk of data, used to encrypt and decrypt that chunk of data.

A

data encryption key (DEK)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
51
Q

The state of accuracy and consistency of data over its entire lifecycle.

A

data integrity

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
52
Q

The use of multiple security measures to protect data and systems.

A

defense in depth

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
53
Q

Documentation designed for software engineers who will be working with code.

A

developer documentation

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
54
Q

The practice of combining the responsibilities of software development and IT operations.

A

DevOps

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
55
Q

A process of change in businesses as they adopt information technologies to develop new products, improve customer service, optimize operations, and make other major improvements enabled by technology.

A

digital transformation

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
56
Q

A network connection type where information does not travel over the public internet when going from on-premises systems to Google Cloud.

A

Dedicated Interconnect

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
57
Q

A form of network peering that allows customers to connect their networks to a Google network point of access.

A

direct peering

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
58
Q

The practice of recovering data and services after a large-scale outage or loss of data.

A

disaster recovery (DR)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
59
Q

A measurement given as a percentage that describes the likelihood that a stored object will be retrievable in the future.

A

durability

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
60
Q

The process of encoding data in a way that yields a coded version of data that cannot practically be converted back to the original form without a key.

A

encryption

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
61
Q

Encryption of data when stored on persistent storage, such as a disk or SSD drive.

A

encryption at rest

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
62
Q

Encryption of data during transmission, such as over a network.

A

encryption in motion/transit

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
63
Q

The practice of encrypting data encryption keys with a second encryption key, known as a key encryption key.

A

envelope encryption

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
64
Q

Notifications provided by an alert system that do not warrant intervention.

A

false alerts

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
65
Q

A deployment method that allows developers to release new capabilities and features selectively to users, without having to deploy software updates.

A

feature flags

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
66
Q

A firewall configuration that allows or denies traffic.

A

firewall rules

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
67
Q

A regulation that standardizes privacy protections across the European Union (EU), grants controls to individuals over their private information, and specifies security practices required for organizations holding private information of EU citizens.

A

General Data Protection Regulation (GDPR)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
68
Q

A high-capacity storage device that enables users to transfer and securely ship data to a Google upload and then the data is uploaded to Google Cloud Storage.

A

Google Transfer Appliance

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
69
Q

A service that allows for the transfer of data from an HTTP/S location, an AWS S3 bucket, or a Cloud Storage bucket to a Cloud Storage bucket.

A

Google Transfer Service

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
70
Q

A set of Google accounts and service accounts with an associated email address.

A

group

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
71
Q

A multithreaded command-line utility used to transfer on-premises data to Google Cloud and perform other operations on Cloud Storage.

A

gsutil

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
72
Q

A US federal act that extended the application of HIPAA to business associates of healthcare providers and insurers.

A

Health Information Technology for Economic and Clinical Health (HITECH)

73
Q

A federal law in the United States that protects individuals’ healthcare information.

A

Health Insurance Portability and Accountability Act (HIPAA)

74
Q

The continuous operations of a system at sufficient capacity to meet the demands of ongoing workloads.

A

high availability

75
Q

A global load balancer available in GCP.

A

HTTP/S load balancer

76
Q

A cloud is considered to have a hybrid network if it is made up of some combination of an on-premises data center and clouds such as GCP.

A

hybrid-cloud networking

77
Q

An entity that represents a person or other agent that performs actions on a GCP resource.

A

identity

78
Q

A GCP service for implementing fine-grained access controls on resources.

A

Identity and Access Management (IAM)

79
Q

A software service that manages user identities across a system.

A

identity-as-a-service (IDaaS)

80
Q

A disruption that causes a service to be degraded or unavailable due to single or multiple failures and errors.

A

incident

81
Q

A type of cloud service that provides compute, storage, and networking services.

A

infrastructure-as-a-service (IaaS)

82
Q

An object that controls external access to services running in a Kubernetes cluster.

A

Ingress

83
Q

A measurement of the read and write operations per second for a given storage device.

A

input/output operations per second (IOPS)

84
Q

Clusters of VMs that are managed as a single unit.

A

instance groups

85
Q

A file specifying the configuration of a managed instance group.

A

instance template

86
Q

The testing of a combination of units.

A

integration tests

87
Q

A TCP and UDP load balancer accessible only to internal virtual resources.

A

Internal TCP/UDP load balancer

88
Q

A set of IT service management practices for coordinating IT activities with business goals and strategies.

A

ITIL

89
Q

An open source software automation tool for running software builds.

A

Jenkins

90
Q

A JSON object that is used for security and authorization during transactions between two systems.

A

JSON Web Token (JWT)

91
Q

The encryption key that secures the data encryption key in the envelope method of encryption.

A

key encryption key (KEK)

92
Q

Metrics that provide information about how well a business or organization is achieving an important or key objective.

A

key performance indicators (KPIs)

93
Q

The primary node agent that runs on each node in Kubernetes.

A

kubelet

94
Q

An open source platform initially developed by Google that provides container orchestration services, including deployment and autoscaling functionality.

A

Kubernetes

95
Q

Organized groups of pods that create a functioning version of an application.

A

Kubernetes deployments

96
Q

A managed Kubernetes service offered by Google on GCP.

A

Kubernetes Engine

97
Q

The practice of granting only the minimal set of permissions needed to perform a duty.

A

least privilege

98
Q

Moves VMs to other physical servers when there is a problem with the servers they are running on or scheduled maintenance has to occur.

A

live migration

99
Q

The process of distributing workload across a set of servers.

A

load balancing

100
Q

A stress test that is meant to show how a particular system will perform under a defined set of conditions.

A

load testing

101
Q

The process of recording information about events that occur during processing.

A

logging

102
Q

A configuration of a Compute Engine VM that includes a number of vCPUs and memory.

A

machine type

103
Q

The process of keeping software running and up-to-date with business requirements.

A

maintenance

104
Q

A group of VM instances with the same configuration, which is defined in a managed instance group template.

A

managed instance groups

105
Q

GCP products that do not require users of the services to perform common configuration, monitoring, and maintenance operations.

A

managed services

106
Q

An open source caching system available as a managed service in Cloud Memorystore.

A

Memcached

107
Q

A measure of some aspect of performance of a compute, storage, or network resource.

A

metrics

108
Q

A collection of lightweight software services that specialize in carrying out a small number of functions.

A

microservices

109
Q

The process of collecting metrics, events, and metadata from applications, VMs, and other GCP resources.

A

monitoring

110
Q

A cloud network composed of two or more public clouds.

A

multicloud network

111
Q

Stores replicas of objects in multiple regions, therefore mitigating the risks of regional outages.

A

multiregional storage

112
Q

A class of Cloud Storage that stores objects for archival storage that is accessed less than once a month.

A

Nearline storage

113
Q

The time required for a packet of data to be transmitted over a network from a source to a destination.

A

network latency

114
Q

A network configuration that allows for routing between networks.

A

network peering

115
Q

A type of load balancer that provides regional, non-proxied load balancing.

A

Network TCP/UDP load balancer

116
Q

A group of several types of nonrelational databases, including document databases, such as Firestore and wide-column databases, like Bigtable.

A

NoSQL

117
Q

Facilitates developing code to interface with a relational database; most often used when an app is built using object-oriented design.

A

object-relational mapping (ORM)

118
Q

A storage system that manages data as objects, such as files.

A

object storage

119
Q

Instructions used by system administrators and DevOps engineers to deploy and maintain system operations.

A

operations documentation

120
Q

A networking practice that sends information over a partner’s network, not the public internet.

A

Partner Interconnect

121
Q

The process of simulating an attack on an information system to gain insights into potential vulnerabilities.

A

penetration testing

122
Q

A grant to perform some action on a resource.

A

permission

123
Q

A durable block storage system for GCP.

A

persistent storage

124
Q

A service that provides a platform for developing and managing applications without the need to maintain the software infrastructure behind it.

A

platform-as-a-service (PaaS)

125
Q

A low-level compute abstraction that supports containers in Kubernetes.

A

pods

126
Q

A set of statements that define a combination of users and their roles.

A

policy

127
Q

Groups of projects and programs that collectively implement the strategy of a business or organization.

A

portfolios

128
Q

The analysis of a system failure and the response to it after it has happened.

A

post-mortem analysis

129
Q

A role defined in IAM that has the minimal set of permissions required to carry out the task for which the role was created.

A

predefined role

130
Q

A low-cost VM with a lifespan of less than 24 hours.

A

preemptible virtual machine

131
Q

A service offered by Google that routes account traffic on the Google network instead of routing some traffic over the public internet.

A

Premium Tier network service

132
Q

A review and analysis of a previously completed project or sprint.

A

project post-mortem

133
Q

Allows a service to request and read a message from the topic using Cloud Pub/Sub.

A

pull subscription

134
Q

Allows message data to be sent by HTTP POST request to a push endpoint URL using Cloud Pub/Sub.

A

push subscription

135
Q

A formal plan of action for restoring normal business functions after a loss of information or an outage.

A

recovery plan

136
Q

The time in which a service should be restored after a loss of information or an outage.

A

recovery time objective

137
Q

An open source caching system.

A

Redis

138
Q

The practice of deploying multiple entities, such as VMs and disks, so that loss of one does not cause a loss of service.

A

redundancy

139
Q

Stores multiple copies of an object in multiple zones in a single region.

A

regional storage

140
Q

A test designed to ensure that bugs that have been corrected in the past are not reintroduced to the system.

A

regression test

141
Q

Highly structured data stores that are designed to store data in a way that minimizes the risk of data anomalies and to support a comprehensive query language.

A

relational databases

142
Q

The practice of deploying code and configuration changes to environments, such as production, test, staging, and development environments.

A

release management

143
Q

A measure of the probability that a service will continue to function under some load for a period of time.

A

reliability

144
Q

The set of organization, folders, and projects that are used to group and structure GCP resources.

A

resource hierarchy

145
Q

Entities that exist in the Google Cloud platform and can be accessed by users.

A

resources

146
Q

Resource-oriented APIs that use HTTP requests.

A

REST APIs

147
Q

A retention policy uses the Bucket Lock feature of Cloud Storage buckets to enforce object retention.

A

retention policies

148
Q

Measures the value, or return, of making an investment.

A

return on investment (ROI)

149
Q

A set of permissions that allows users and service accounts with that role to perform the specified actions.

A

role

150
Q

An incremental updating of a group of servers.

A

rolling deployment

151
Q

Documentation that provides instructions on how to set up and run a service or application.

A

runbook

152
Q

A US federal law designed to protect the public from fraudulent accounting practices in publicly traded companies.

A

Sarbanes-Oxley Act (SOX)

153
Q

The ability of a service to adapt its infrastructure to the load of the system.

A

scalability

154
Q

Software that plays an integral part in protecting information in a system.

A

safety-critical software

155
Q

The practice of limiting the responsibilities of a single individual to prevent the person from successfully acting alone in a way detrimental to the organization.

A

separation of duties

156
Q

A type of identity that is associated with applications and instances for the purpose of assigning roles.

A

service account

157
Q

An agreement between a provider of a service and a customer using the service.

A

service-level agreement (SLA)

158
Q

A metric that reflects how well a service-level objective is being met.

A

service-level indicators (SLIs)

159
Q

An agreed-upon target for a measurable attribute of a service that is specified in a service-level agreement.

A

service-level objectives (SLOs)

160
Q

VPCs within a single organization that can share resources.

A

Shared VPCs

161
Q

VM instances with enhanced security controls, such as secure boot.

A

Shielded VMs

162
Q

A series of steps that software engineers follow to create, deploy, and maintain complicated software systems.

A

software development lifecycle (SDLC)

163
Q

Ensures that VMs run on physical servers with other VMs from the same project.

A

sole tenancy

164
Q

A load balancer that terminates SSL (TLS) connections and then routes traffic to VMs in the load-balanced cluster.

A

SSL Proxy load balancer

165
Q

A service offered by Google that routes account traffic on the public internet instead of routing it on Google’s internal network.

A

Standard Tier

166
Q

Service calls that wait for the operation to complete before returning, such as most credit card purchases.

A

synchronous calls

167
Q

An open source tool supporting infrastructure-as-code.

A

Terraform

168
Q

A kind of development process that incorporates testing early in the development process.

A

test-driven development

169
Q

The combination of all expenses related to maintaining a service or component.

A

total cost of ownership (TCO)

170
Q

The time remaining before an object is deleted.

A

time to live (TTL)

171
Q

A set of metrics recorded with a time stamp.

A

time series

172
Q

A database designed to handle time-series data, such as streaming metrics created by a monitoring system.

A

time-series database

173
Q

The process of testing the smallest unit of testable code for bugs.

A

unit test

174
Q

A set of VMs that may not be identical and are not created from an instance template.

A

unmanaged instance groups

175
Q

Documents that explain how to use an application.

A

user documentation

176
Q

The ability of a system to increase its available resources by moving to hardware with more computational power, such as greater CPU power or more memory.

A

vertical scalability

177
Q

A software implementation of an emulated physical server.

A

virtual machine (VM)

178
Q

A logical organization of cloud resources isolated from other resources on the same cloud.

A

virtual private cloud (VPC)

179
Q

A virtual module for storing encryption keys and other secure information.

A

Virtual Trusted Platform Module (vTPM)