Terminology 00 Flashcards
What is an Access control list (ACL)?
A firewall/security layer on the subnet level
ACLs are used to define rules for allowing or denying traffic to and from network resources.
What does Auto scaling do?
Automates the process of adding or removing EC2 instances based on traffic demand for your application
Auto scaling helps maintain application performance and reduce costs.
What are Buckets in the context of AWS?
Root-level ‘folders’
Buckets are used to store objects in Amazon S3.
What is CloudFront?
Content delivery network (CDN) that allows you to store your content at ‘edge locations’ located all around the world, allowing customers to access your content more quickly
This helps improve access speed for customers.
What is the purpose of CloudTrail?
Allows you to monitor all actions taken by IAM users
It provides an audit trail of user activity.
What does CloudWatch do?
Service that allows you to monitor various elements of your AWS account
CloudWatch provides metrics and logs to help manage resources.
What is Consolidated billing?
Allows you to view, manage, and pay bills for multiple AWS accounts in one user interface
This simplifies the billing process for organizations with multiple accounts.
What is a DNS server?
A database of website domains and their corresponding IP addresses
DNS servers translate domain names into IP addresses.
What is DynamoDB?
NoSQL database service that does not provide other NoSQL software options
It is designed for applications that require low-latency data access.
What is Elastic Block Store (EBS)?
Provides persistent block storage volumes for use of EC2 instances
EBS volumes can be attached to EC2 instances for data storage.
What is Elastic Compute Cloud (EC2)?
A virtual computer, very similar to a desktop/laptop computer
EC2 allows users to run applications in the cloud.
What does Elastic Load Balancing (ELB) do?
Evenly distributes traffic between EC2 instances that are associated with it
ELB enhances the availability and fault tolerance of applications.
What is ElastiCache?
Data caching service used to help improve the speed/performance of web applications running on AWS
It supports caching for frequently accessed data.
What is Elasticity in cloud computing?
The ability of a system to increase and decrease in size
Elasticity allows for efficient resource management based on demand.
What is Fault tolerance?
Property that enables a system to continue operating properly in the event of the failure of one or more components
This is critical for maintaining uptime and reliability.
What is a Firewall?
A type of software that either allows or blocks certain kinds of internet traffic to pass through it
Firewalls are essential for network security.
What does the term Folder refer to in AWS?
Any ‘subfolder’ created in a bucket
Folders help organize objects within an S3 bucket.
What does High availability mean?
Refers to systems that are durable and likely to operate continuously without failure for a long time
High availability is crucial for mission-critical applications.
Who are IAM users?
Individuals who have been granted access to an AWS account
IAM users are managed through Identity and Access Management.
What is Identity and Access Management (IAM)?
Service where AWS user accounts and their access to various AWS services are managed
IAM helps secure AWS resources by controlling access.
What is Lambda in AWS?
Serverless computing that will replace EC2 instances, for the most part
Lambda allows users to run code without provisioning servers.
What is Object availability?
Percent over a one-year time period that a file stored in S3 will be accessible
High object availability is critical for user satisfaction.
What is Object durability?
Percent over a one-year time period that a file stored in S3 will not be lost
Object durability ensures data integrity and reliability.
What is Object lifecycle?
Set rules to automatically transfer objects between storage classes at defined time intervals
This helps manage storage costs and data retention.
What is Object sharing?
Ability to make any object publicly available via a URL link
Object sharing is useful for distributing content.
What is Object versioning?
Automatically keep multiple versions of an object (when enabled)
This feature helps recover from accidental deletions or overwrites.
What do Organizations in AWS allow you to do?
Access to manage billing and access to multiple AWS accounts in one user interface
Organizations simplify management for companies with multiple AWS accounts.
What is the Principle of least privilege?
Giving a user only the rights/access to the AWS services and resources they need to do their job and nothing more
This principle enhances security by minimizing access rights.
Who are Publishers in the context of AWS SNS?
Human/alarm/event that gives SNS the message that needs to be sent
Publishers trigger notifications based on specific events.
What is Relational Database Service (RDS)?
SQL database service that provides a wide range of SQL database options to select from
RDS supports various database engines such as MySQL, PostgreSQL, and Oracle.
What is RedShift?
Data warehouse database service designed to handle petabytes of data for analysis
It is optimized for complex queries and large-scale data analysis.
What are Roles in AWS?
How different AWS services are granted permission to communicate and share data
Roles facilitate secure interactions between services.
What is Route 53?
Where you configure and manage web domains for websites or applications you host on AWS
Route 53 includes DNS management and domain registration.
What does Scalability mean?
The ability of a system to easily increase in size and capacity in a cost-effective way
Scalability allows organizations to grow without significant upfront costs.
What is a Security group (SG)?
Firewall/security layer on the server/instance level
Security groups control inbound and outbound traffic for EC2 instances.
What is the Shared responsibility model?
Defines what you and AWS are responsible for when it comes to security and compliance
It delineates the security responsibilities between AWS and the customer.
What is Simple Notification Service (SNS)?
AWS service that allows you to automate the sending of email or text messaging notifications based on events that happen in your AWS account
SNS is used for application alerts and notifications.
What is Simple Storage Service (S3)?
Online bulk storage service you can access from almost any device
S3 is designed for high durability and availability of data.
What is a Storage class in S3?
Represents ‘classification’ assigned to each object in S3 (standard, RRS, S3-IA, Glacier)
Different storage classes optimize cost and access speed.
What is a Subnet?
A subsection of a network and generally includes all the computers in a specific location
Subnets help organize and secure network resources.
What are Subscriptions in AWS SNS?
Endpoints to which a topic sends messages
Subscriptions can be email addresses, phone numbers, or AWS resources.
What are Topics in AWS SNS?
How you label and group different endpoints to which you send messages
Topics allow for organized message distribution.
What is Trusted Advisor?
Service that ‘advises’ and helps you optimize aspects of your AWS account
Trusted Advisor provides insights on cost savings, performance, and security.
What are User credentials in AWS?
IAM user’s username and password for logging in to AWS
User credentials are essential for accessing AWS resources.
What is a Virtual Private Cloud (VPC)?
A private subsection of AWS you control and in which you can place AWS resources
VPCs enhance security and provide network isolation.