test from brainwork Flashcards
customer security responsibilities
1- Data encryption (at rest and in transit)
2- Setting up access control
3- Monitoring user activity
4- Applying MFA
5- Using advanced managed security services such as Amazon Macie.
aws organizations
) Centrally manage access polices across multiple AWS accounts.
2) Automate AWS account creation and management.
3) Control access to AWS services.
4) Consolidate billing across multiple AWS accounts.
5) Configure AWS services across multiple accounts.
aws cloud directory
loud-native, highly scalable, high-performance directory service that provides web-based directories to make it easy for you to organize and manage all your application resources such as users, groups, locations, devices, and policies, and the rich relationships between them.
Amazon Cognito
lets customers add user sign-up, sign-in, and access control to their web and mobile apps quickly and easily. Amazon Cognito scales to millions of users and supports sign-in with social identity providers, such as Facebook, Google, and Amazon, and enterprise identity providers via SAML 2.0.
aws x-ray
- Review request behavior:
Discover application issues:
Improve application performance
chime
Amazon Chime is an AWS communications service that is used for online meetings, video conferencing, calls, and chat.
AWS Glue
AWS Glue is a fully-managed, pay-as-you-go, extract, transform, and load (ETL) service that automates the time-consuming steps of data preparation for analytics.
aws serveless
Compute: AWS Lambda, AWS Fargate
Messaging: Amazon SNS, Amazon SQS
Database: Amazon DynamoDB, Amazon Aurora Serverless
Orchestration: AWS Step Functions
Amazon Simple Queue Service
s a fully managed message queuing service that enables you to decouple and scale microservices, distributed systems, and serverless applications. Amazon SQS offers a reliable, highly-scalable hosted queue for storing messages as they travel between applications or microservices. It moves data between distributed application components and helps you decouple these components.
“Amazon CloudSearch
Amazon CloudSearch is a managed service in the AWS Cloud that makes it simple and cost-effective to set up, manage, and scale a search solution for your website or application.
Amazon Polly
Amazon Polly is a service that turns text into lifelike speech.
AWS Key Management Service
is a managed service that enables customers to easily create and control the keys used for cryptographic operations. The service provides a highly available key generation, storage, management, and auditing solution for customers to encrypt or digitally sign data within their applications or to control the encryption of data across AWS services.
AWS Application Load Balancer
s part of the AWS Elastic Load Balancing family that is specifically designed to handle HTTP and HTTPS traffic.
Access Keys
Access keys are long-term credentials for an IAM user or the AWS account root user. Customers can use access keys to sign programmatic requests to the AWS CLI or AWS API (directly or using the AWS SDK).
“AWS CloudHSM
AWS CloudHSM is a cloud-based hardware security module (HSM) that enables customers to easily generate and use their own encryption keys on the AWS Cloud.
