Study Guide Terms - Definitions First

Question 1

Definition - A capability of AWS Systems Manager, used to create, manage, and quickly deploy application configurations (collections of settings that influence the behavior of your application).

Use Case - Application tuning, from refining basic processes, to carefully introducing updates, and to toggleable and/or subscription features.

Answer 1

[Management and Governance] AWS AppConfig

Question 2

Definition - A toolkit that improves the developer experience of building and running serverless applications on AWS. The two main parts are its template specification and its own CLI for building and running the applications.

Use Case - Creation of serverless applications using syntax built on and extending AWS CloudFormation, allowing for easy infrastructure definition and subsequent automatic provisioning.

Answer 2

[Compute] AWS Serverless Application Model (AWS SAM)

Question 3

Definition - AWS managed container image registry service that is secure, scalable, and reliable. Supports private repositories with resource-based permissions using AWS IAM.

Use Case - Storage of container images for easier access control and lifecycle management.

Answer 3

[Containers] Amazon Elastic Container Registry (Amazon ECR)

Question 4

Definition - Browser-based, pre-authenticated shell that you can launch directly from the AWS Management Console

Use Case - Run AWS CLI commands in your preferred shell without downloading/installing the AWS CLI. Comes with a compute environment, a variety of tools, and session persistence.

Answer 4

[Developer Tools] AWS CloudShell

Question 5

Definition - Cloud-based service for creating, managing, and working with software development projects on AWS. Projects built on this service allow for quick development, build, and deployment of applications.

Use Case - Quick setup of a new software project following a template. Allows for easy access management and provides project dashboards and development toolchains.

Answer 5

[Developer Tools] AWS CodeStar

Question 6

Definition - Connect applications and services to data and events with secure, serverless and high-performing GraphQL and Pub/Sub APIs.

Use Case - Create GraphQL API endpoints that can access data from many sources, merge multiple GraphQL APIs into one, and publish real time data updates to applications.

Answer 6

[Application Integration] AWS AppSync

Question 7

Definition - Continuous delivery service you can use to model, configure, visualize, and automate the steps required to release your software.

Use Case - Help manage and automate your release processes alongside metrics, logging, and other AWS services. Helps with release consistency and speed.

Answer 7

[Developer Tools] AWS CodePipeline

Question 8

Definition - Data stream service for rapid and continuous real time data intake and aggregation.

Use Case - Collection of accelerated, real time, and complex data into data streams for easier processing, analysis, and reporting.

Answer 8

[Analytics] Amazon Kinesis

Question 9

Definition - Deployment service that automates application deployments to Amazon EC2 instances, on-premises instances, serverless Lambda functions, or Amazon ECS services. Basically all kinds of application content are allowed.

Use Case - Best for concurrent deployments on different platforms. Allows for easy management and automation of deployments, along with control over errors and updates to help minimize downtime.

Answer 9

[Developer Tools] AWS CodeDeploy

Question 10

Definition - Durable, in-memory database service that delivers ultra-fast performance. It is purpose-built for modern applications with microservices architectures.

Use Case - Ideal for workloads requiring an ultra-fast primary database. Works well with Redis and can replace a database + cache system to lower complexity and cost.

Answer 10

[Database] MemoryDB for Redis

Question 11

Definition - Enables you to launch AWS resources in a logically isolated virtual network that you’ve defined. Similar to a network for an on-premises data center, but with AWS infrastructure.

Use Case - Customizable and scalable connectivity for your applications.

Answer 11

[Networking and Content Delivery] Amazon VPC

Question 12

Definition - Firewall that you can use to monitor web requests that end users send to your applications and to control access to your content. Works with AWS Shield and AWS Firewall Manager for a comprehensive security solution.

Use Case - Provide protection and manage access control for your content and resources, such as CloudFront, APIs, ALBs, and user pools. Has a variety of customizable rules to allow/block/count web requests. Includes the ability to run Captcha checks.

Answer 12

[Security, Identity, and Compliance] AWS Web Application Firewall (AWS WAF)

Question 13

Definition - Fully managed build service in the cloud. Helps with source code compilation, unit testing, and artifact production. Prepackaged with popular languages and build tools and is highly scalable.

Use Case - Setup and run builds without having to manage servers. Can be accessed via the CodePipeline.

Answer 13

[Developer Tools] AWS CodeBuild

Question 14

Definition - Fully managed container orchestration service that helps you easily deploy, manage, and scale containerized applications. There are three main parts - Provisioning (developer tools), Controller (scheduler), and Capacity (container infrastructure).

Use Case - Deployment of applications which run in containers. Capacity can be in the form of AWS Fargate (serverless), Amazon EC2 instances, or on-premises VMs/servers.

Answer 14

[Containers] Amazon Elastic Container Service (Amazon ECS)

Question 15

Definition - Fully managed NoSQL database service that provides fast and predictable performance with seamless scalability. Lets you offload the administrative burdens of operating and scaling a distributed database.

Use Case - NoSQL database that is easy to manage and scale up or down whenever needed. The database is highly available, durable, and configurable.

Answer 15

[Database] Amazon DynamoDB

Question 16

Definition - Fully managed relational database engine that’s compatible with MySQL and PostgreSQL and can be significantly faster with the right workload. Aurora is a part of Amazon RDS (one of the selectable DB engines).

Use Case - Primarily as a drop-in replacement for either MySQL or PostgreSQL, looking to provide speed and other common AWS benefits with minimal refactoring.

Answer 16

[Database] Amazon Aurora

Question 17

Definition - Helps you securely manage, retrieve, and rotate database credentials, application credentials, OAuth tokens, API keys, and other secrets throughout their lifecycles.

Use Case - Management of secrets with easy configuration and access control. Complies with a variety of standards.

Answer 17

[Security, Identity, and Compliance] AWS Secrets Manager

Question 18

Definition - Highly available and scalable Domain Name System (DNS) web service. Its three main functions are domain registration, DNS routing, and health checking.

Use Case - Use the three main functions in the order they are listed to setup, configure, and monitor your own domain and resources.

Answer 18

[Networking and Content Delivery] Amazon Route 53

Question 19

Definition - IDE that offers a rich code-editing experience with support for several programming languages and runtime debuggers, and a built-in terminal. It contains a collection of tools for software release to the cloud.

Use Case - Work with an IDE running in a web browser which connects to a cloud environment and project file storage that can be local and/or remote.

Answer 19

[Developer Tools] AWS Cloud9

Question 20

Definition - Identity platform for web and mobile apps. Serves as a user directory, an authentication server, and an authorization service for OAuth 2.0 access tokens and AWS credentials. Has two main standalone components that can be combined - User pools and Identity pools.

Use Case - User pools allow authorization and authentication of users to your app/API. They are self-service and admin-driven. Identity pools allow authorization and authentication of anonymous users to your AWS resources. They are role-based and attribute-based.

Answer 20

[Security, Identity, and Compliance] Amazon Cognito

Question 21

Definition - Interactive query service to analyze data directly in Amazon S3 using standard SQL.

Use Case - Serverless interactive SQL queries on Amazon S3 data.

Answer 21

[Analytics] Amazon Athena

Question 22

Definition - Lets you build reliable, scalable, cost-effective applications in the cloud with the considerable expressive power of a programming language.

Use Case - Define cloud infrastructure as code; the output of this code is a CloudFormation template. Currently supported languages are TypeScript, JavaScript, Python, Java, C#/.Net, and Go.

Answer 22

[Management and Governance] AWS Cloud Development Kit (AWS CDK)

Question 23

Definition - Managed service that makes it easy to create and control the cryptographic keys that are used to protect your data. Uses Hardware Security Modules (HSM) for protection and FIPS 140-2 for validation.

Use Case - Easy management of your cryptographic keys from creation, to access control, to organization, and to use. Integrates with most other AWS services dealing with encryption.

Answer 23

[Security, Identity, and Compliance] AWS Key Management Service (AWS KMS)

Question 24

Definition - Managed service that makes it easy to deploy, operate, and scale OpenSearch clusters in the AWS Cloud. OpenSearch is an Apache-based search and analytics engine that uses the REST API for cluster interaction.

Use Case - Manage OpenSearch clusters to search data, analyze data, and monitor applications in real time.

Answer 24

[Analytics] Amazon OpenSearch Service

Question 25

Definition - Managed service that provides message delivery from publishers (producers) to subscribers (consumers). Publishers asynchronously send messages to a topic which subscribers can subscribe to.

Use Case - Publishing messages to be received by subscribers at a variety of endpoints, including other Amazon services, 3rd party services, and as emails, texts, or push notifications.

Answer 25

[Application Integration] Amazon Simple Notification Service (Amazon SNS)

Question 26

Definition - Managed service that you can use to run Kubernetes on AWS without needing to install, operate, and maintain your own Kubernetes control plane or nodes. Kubernetes is an open-source system for managing containerized applications.

Use Case - All sorts of Kubernetes work within AWS, from running, to scaling, and to integration with other AWS services and Kubernetes community tools.

Answer 26

[Containers] Amazon Elastic Kubernetes Services (Amazon EKS)

Question 27

Definition - Object storage service that offers industry-leading scalability, data availability, customization, security, and performance. Customers of all sizes and industries can store and protect any amount of data for a range of use cases.

Use Case - Storage for things such as data lakes, websites, applications, backup and restoration, archiving, IoT devices, and big data analytics.

Answer 27

[Storage] Amazon S3

Question 28

Definition - Open source tool that enables you to interact with AWS services using commands in your command-line shell.

Use Case - Perform most of the possible AWS service operations from the command line. Many operations can be done faster than on the Console.

Answer 28

[Management and Governance] AWS Command Line Interface (AWS CLI)

Question 29

Definition - Operations hub for your AWS applications and resources, and a secure end-to-end management solution for hybrid and multicloud environments even at scale.

Use Case - Work with a variety of management capabilities over your applications, operational changes, resource nodes, operations/incidents, and shared resources.

Answer 29

[Management and Governance] AWS Systems Manager

Question 30

Definition - Provides a CLI with commands that simplify building, releasing, and operating production-ready containerized applications on Amazon ECS from a local development environment.

Use Case - Command line deployment of ECS applications.

Answer 30

[Containers] AWS Copilot

Question 31

Definition - Provides block level storage volumes (similar to raw, unformatted block drives) for use with EC2 instances. Volumes can be mounted like devices to instances and behave like hard drives.

Use Case - For data that must be quickly accessible and requires long-term persistence. Works well as the primary storage for file systems, databases, and applications that need fine granular updates and access to block-level storage.

Answer 31

[Storage] Amazon Elastic Block Store (Amazon EBS)

Question 32

Definition - Provides serverless, fully elastic file storage so that you can share file data without provisioning or managing storage capacity and performance. Scales on demand and has a simple web service interface.

Use Case - Has a few modes to allow customizability to workloads: General, Elastic (scaling), Max I/O, Provisioned, and Bursting. The service is focused on high scalability, availability, and durability.

Answer 32

[Storage] Amazon Elastic File System (Amazon EFS)

Question 33

Definition - Secure and durable service for low-cost data archiving and long-term backup. You can store your data cost effectively for months, years, or even decades, and you don’t have to worry about the administrative burdens of storage.

Use Case - Three main storage classes: Instant Retrieval for rare access and milliseconds retrieval, Flexible Retrieval for minutes retrieval, and Deep Archive for rare access + default 12 hour retrieval time.

Answer 33

[Storage] Amazon S3 Glacier

Question 34

Definition - Secure, highly scalable, managed artifact repository service that helps organizations store and share software packages for application development. Works with popular build tools and package managers.

Use Case - Organize packages you use into repositories for easier management and access. Works well for multiteam systems since repositories can be organized into configurable domains.

Answer 34

[Developer Tools] AWS CodeArtifact

Question 35

Definition - Serverless orchestration service for integrating with AWS Lambda functions and other AWS services to build business-critical applications. Event-driven steps are organized into a state machine, and lead to tasks which can call other AWS services or APIs.

Use Cases - Sequential functions that can be controlled and ordered to your needs, including orchestration, branching, error handling, and parallel processing.

Answer 35

[Application Integration] AWS Step Functions

Question 36

Definition - Serverless service that uses events to connect application components together, making it easier to build scalable event-driven applications.

Use Case - Routing of events between various services, applications, and APIs using buses, rules, and targets.

Answer 36

[Application Integration] Amazon EventBridge (Amazon CloudWatch Events)

Question 37

Definition - Service for creating, publishing, maintaining, monitoring, and securing REST, HTTP, and WebSocket APIs at any scale. Data can be retrieved from the AWS cloud or from other web services.

Use Case - Support stateful and stateless APIs with AWS features, including authentication, deployment, logging, templating, security, and tracing.

Answer 37

[Networking and Content Delivery] Amazon API Gateway

Question 38

Definition - Service helping with quick deployment and management of applications in the AWS Cloud. Automatically handles the details of capacity provisioning, load balancing, scaling, and application health monitoring.

Use Case - Transitioning an application to utilize the AWS Cloud with minimal code refactoring and no initial need to learn AWS infrastructure.

Answer 38

[Compute] AWS Elastic Beanstalk

Question 39

Definition - Service offering a secure, durable, and available hosted queue for integrating and decoupling distributed software systems and components.

Use Case - Storage of messages in a queue with a generic web services API for easier programmatic access. Is often used as a subscriber endpoint for SNS messages.

Answer 39

[Application Integration] Amazon Simple Queue Service (Amazon SQS)

Question 40

Definition - Service providing on-demand, scalable computing capacity in the AWS Cloud.

Use Case - Launch virtual servers/instances with high configurability and dynamic scalability. Requires a decent amount of setup and maintenance in exchange.

Answer 40

[Compute] Amazon EC2

Question 41

Definition - Service that automatically distributes your incoming traffic across multiple targets, such as EC2 instances, containers, and IP addresses, in one or more Availability Zones. Will only route traffic to healthy targets, and scales automatically.

Use Case - Supports traffic balancing at the application, network, and gateway levels. Works closely with other AWS services, such as EC2, ACM, WAF, and Route 53.

Answer 41

[Networking and Content Delivery] Elastic Load Balancing

Question 42

Definition - Service that collects data about requests that your application serves (traces), and provides tools that you can use to view, filter, and gain insights into that data to identify issues and opportunities for optimization.

Use Case - Track the path of a request through your application via maps, charts, and info sheets. Data gathered includes all aspects of the call, especially response time.

Answer 42

[Developer Tools] AWS X-Ray

Question 43

Definition - Service that enables creation of private certificate authority (CA) hierarchies, including root and subordinate CAs, without the costs of operating an on-premises CA.

Use Case - Certificate management for a Public Key Infrastructure (PKI) inside the AWS cloud, intended for private use. These certificates are only trusted within your organization.

Answer 43

[Security, Identity, and Compliance] AWS Certificate Manager Private Certificate Authority

Question 44

Definition - Service that handles the complexity of creating, storing, and renewing public and private SSL/TLS X.509 certificates and keys that protect your AWS websites and applications. Can generate its own certificates or import 3rd party ones.

Use Case - Certificate management for a secure public website with significant traffic requirements. Allows for a secure web presence over TLS.

Answer 44

[Security, Identity, and Compliance] AWS Certificate Manager (ACM)

Question 45

Definition - Service that helps you enable operational and risk auditing, governance, and compliance of your AWS account. Actions taken by a user, role, or an AWS service are recorded as events.

Use Case - View all sorts of detailed activities associated with your AWS account. Can be integrated into applications for further management of trails. Events include AWS Console, CLI, SDK, and API actions.

Answer 45

[Management and Governance] AWS CloudTrail

Question 46

Definition - Service that helps you model and set up your AWS resources so that you can spend less time on resource management and more time on your applications that run in AWS.

Use Case - Define a template that helps you simplify infrastructure management, update, and replication.

Answer 46

[Management and Governance] AWS CloudFormation

Question 47

Definition - Service that lets you run code without provisioning or managing servers. High-availability and optimization of the compute resources is built-in.

Use Case - Ideal for applications wanting to scale up rapidly and scale down to zero when not in use. Uses include data processing, web applications, and serverless backends. There is a 15 minute runtime/10 GB memory limit.

Answer 47

[Compute] AWS Lambda

Question 48

Definition - Service that monitors your AWS resources and the applications you run on AWS in real time. Provides system-wide visibility into resource utilization, application performance, and operational health.

Use Case - Create custom dashboards that display custom metrics of your applications. Alarms can be set up by thresholding metric values. Integrates closely with a variety of AWS services.

Answer 48

[Management and Governance] Amazon CloudWatch

Question 49

Definition - Service that uses machine learning to collect runtime performance data from live applications and provide recommendations that can help you fine-tune your application performance. Can also help you find your most expensive lines of code and suggest ways you can improve efficiency and remove CPU bottlenecks.

Answer 49

[Developer Tools] Amazon CodeGuru Profiler

Question 50

Definition - Service that uses machine learning to detect potential defects that are difficult for developers to find and offers suggestions for improving your Java and Python code.

Answer 50

[Developer Tools] Amazon CodeGuru Reviewer

Question 51

Definition - Service that uses machine learning to detect security policy violations and vulnerabilities. It provides recommendations for addressing security risks and generates metrics so you can track the security health of your applications.

Answer 51

[Developer Tools] Amazon CodeGuru Security

Question 52

Definition - Service to monitor, store, and access centralized log files from Amazon EC2 instances, AWS CloudTrail, Route 53, and other sources.

Use Case - Use logs to monitor the health of services and connections for your application. Logs are queryable, can be masked for sensitive data, and have configurable retention/archive settings.

Answer 52

[Management and Governance] Amazon CloudWatch Logs

Question 53

Definition - Set of purpose-built tools and features that enables frontend web and mobile developers to quickly and easily build full-stack applications on AWS. Provides two services: Hosting and Studio.

Use Case - Hosting supports the common Single Page Application frameworks and helps with app-related setup and operations. Studio is a visual IDE that can be used to build an entire full stack application.

Answer 53

[Developer Tools] AWS Amplify

Question 54

Definition - Suite of services that use machine learning to help with a variety of coding aspects.

Use Case - Use machine learning to help optimize your code by detecting issues and offering recommendations on the aspects of security, performance, and defect avoidance.

Answer 54

[Developer Tools] Amazon CodeGuru

Question 55

Definition - Version control service hosted by AWS that you can use to privately store and manage assets in the cloud. Works as a secure, highly scalable, managed source control service that hosts private Git repositories.

Use Case - Use Git to manage code alongside common AWS benefits and services.

Answer 55

[Developer Tools] AWS CodeCommit

Question 56

Definition - Web service that helps you securely control access to AWS resources. Allows for central management of user authentication and authorization (permissions) to control which users can access which AWS resources.

Use Case - Shared access to your AWS account with the ability to grant granular permissions and secure access in a variety of ways.

Answer 56

[Security, Identity, and Compliance] AWS Identity and Access Management (IAM)

Question 57

Definition - Web service that makes it easier to set up, operate, and scale a relational database in the AWS Cloud. AWS is responsible for most management tasks, allowing you to focus on optimizing your application.

Use Case - Allows for database setup with a variety of engines, classes (computation + memory capacity), and storage.

Answer 57

[Database] Amazon RDS

Question 58

Definition - Web service that makes it easy to set up, manage, and scale a distributed in-memory data store or cache environment in the cloud. Works with both the Redis and Memcached engines.

Use Case - Caching service; Memcached is best for simple models, large multicore nodes, dynamic scaling, and object caching. There are a variety of “for Redis” versions with different specializations.

Answer 58

[Database] Amazon ElastiCache

Question 59

Definition - Web service that speeds up distribution of static and dynamic web content, such as .html, .css, .js, and image files, to users. Uses edge locations to route requests to the nearest location for low latency.

Use Case - Accelerate and customize content delivery, serve video-on-demand and live stream content, and add encryption on top of HTTPS to your content.

Answer 59

[Networking and Content Delivery] Amazon CloudFront

Question 60

Definition - Web service to create and provide trusted users with temporary security credentials that can control access to your AWS resources. They are short-term, generated dynamically, and provided only when requested.

Use Case - Implement Single Sign-On (SSO) or web identity federation, which allows for network or 3rd party authentication without needing to generate unique sign-on credentials for everyone. Can also be used in cross-account access (delegation).

Answer 60

[Security, Identity, and Compliance] AWS Security Token Service (AWS STS)