AWS - Cloud Practitioner Flashcards

Question

Amazon Chime

Answer 1

Amazon Chime is a communications service that transforms online meetings with a secure, easy-to-use application that you can trust. Amazon Chime works seamlessly across your devices so that you can stay connected

Answer 2

Amazon Elastic Compute Cloud (Amazon EC2) is a web service that provides secure, resizable compute capacity in the cloud. It is designed to make web-scale computing easier for developers.

Answer 3

* On-Demand Instances * Reserved Instances * Spot Instances

Answer 4

Amazon EC2 Auto Scaling helps you maintain application availability and allows you to automatically add or remove EC2 instances according to conditions you define

Answer 5

Amazon Elastic Container Registry (Amazon ECR) is a fully-managed Docker container registry that makes it easy for developers to store, manage, and deploy Docker container images

Answer 6

Amazon Elastic Container Service (Amazon ECS) is a highly scalable, high-performance container orchestration service that supports Docker containers and allows you to easily run and scale containerized applications on AWS.

Answer 7

Amazon Elastic Container Service for Kubernetes (Amazon EKS) makes it easy to deploy, manage, and scale containerized applications using Kubernetes on AWS

Answer 8

Amazon Lightsail is designed to be the easiest way to launch and manage a virtual private server with AWS. Lightsail plans include everything you need to jumpstart your project – a virtual machine, SSD- based storage, data transfer, DNS management, and a static IP address – for a low, predictable price.

Answer 9

AWS Batch enables developers, scientists, and engineers to easily and efficiently run hundreds of thousands of batch computing jobs on AWS.

Answer 10

AWS Elastic Beanstalk is an easy-to-use service for deploying and scaling web applications and services developed with Java, .NET, PHP, Node.js, Python, Ruby, Go, and Docker on familiar servers such as Apache, Nginx, Passenger, and Internet Information Services (IIS).

Answer 11

AWS Fargate is a compute engine for Amazon ECS that allows you to run containers without having to manage servers or clusters.

Answer 12

AWS Lambda lets you run code without provisioning or managing servers. You pay only for the compute time you consume—there is no charge when your code is not running.

Answer 13

The AWS Serverless Application Repository enables you to quickly deploy code samples, components, and complete applications for common use cases such as web and mobile back-ends, event and data processing, logging, monitoring, IoT, and more.

Answer 14

AWS Storage Gateway is a hybrid storage service that enables your on-premises applications to seamlessly use AWS cloud storage.

Answer 15

Amazon S3 Glacier is a secure, durable, and extremely low-cost storage service for data archiving and long-term backup

Answer 16

Amazon Elastic File System (Amazon EFS) provides a simple, scalable, elastic file system for Linux-based workloads for use with AWS Cloud services and on-premises resources. Amazon EFS is a regional service storing data within and across multiple Availability Zones (AZs) for high availability and durability. You can access your file systems across AZs and regions and share files between thousands of Amazon EC2 instances and on-premises servers via AWS Direct Connect or AWS VPN.

Answer 17

Amazon Elastic Block Store (Amazon EBS) provides persistent block storage volumes for use with Amazon EC2 instances in the AWS Cloud.

Answer 18

Amazon Simple Storage Service (Amazon S3) is an object storage service that offers industry-leading scalability, data availability, security, and performance.

Answer 19

AWS WAF is a web application firewall that helps protect your web applications from common web exploits that could affect application availability, compromise security, or consume excessive resources.

Answer 20

AWS Single Sign-On (SSO) is a cloud SSO service that makes it easy to centrally manage SSO access to multiple AWS accounts and business applications

Answer 21

AWS Shield is a managed Distributed Denial of Service (DDoS) protection service that safeguards web applications running on AWS.

Answer 22

AWS Secrets Manager helps you protect secrets needed to access your applications, services, and IT resources. The service enables you to easily rotate, manage, and retrieve database credentials, API keys, and other secrets throughout their lifecycle.

Answer 23

AWS Organizations has four main benefits: 1) Centrally manage access polices across multiple AWS accounts. 2) Automate AWS account creation and management. 3) Control access to AWS services 4) Consolidate billing across multiple AWS accounts.

Answer 24

AWS Key Management Service (KMS) makes it easy for you to create and manage keys and control the use of encryption across a wide range of AWS services and in your applications.

Answer 25

AWS Firewall Manager is a security management service that makes it easier to centrally configure and manage AWS WAF rules across your accounts and applications.

Answer 26

AWS Directory Service for Microsoft Active Directory, also known as AWS Managed Microsoft AD, enables your directory-aware workloads and AWS resources to use managed Active Directory in the AWS Cloud.

Answer 27

AWS CloudHSM is a cloud-based hardware security module (HSM) that enables you to easily generate and use your own encryption keys on the AWS Cloud.

Answer 28

AWS Certificate Manager is a service that lets you easily provision, manage, and deploy Secure Sockets Layer/Transport Layer Security (SSL/TLS) certificates for use with AWS services and your internal connected resources and establish the identity of websites over the Internet as well as resources on private networks.

Answer 29

AWS Artifact is your go-to, central resource for compliance-related information that matters to you. It provides on-demand access to AWS’ security and compliance reports and select online agreements.

Answer 30

Amazon Macie is a security service that uses machine learning to automatically discover, classify, and protect sensitive data in AWS.

Answer 31

Amazon Inspector is an automated security assessment service that helps improve the security and compliance of applications deployed on AWS. Amazon Inspector automatically assesses applications for exposure, vulnerabilities, and deviations from best practices.

Answer 32

Amazon GuardDuty is a threat detection service that continuously monitors for malicious or unauthorized behavior to help you protect your AWS accounts and workloads. It monitors for activity such as unusual API calls or potentially unauthorized deployments that indicate a possible account compromise. GuardDuty also detects potentially compromised instances or reconnaissance by attackers.

Answer 33

AWS Identity and Access Management (IAM) enables you to securely control access to AWS services and resources for your users. Using IAM, you can create and manage AWS users and groups, and use permissions to allow and deny their access to AWS resources.

Answer 34

Amazon Cloud Directory enables you to build flexible, cloud-native directories for organizing hierarchies of data along multiple dimensions. With Cloud Directory, you can create directories for a variety of use cases, such as organizational charts, course catalogs, and device registries.

Answer 35

AWS Security Hub gives you a comprehensive view of your high-priority security alerts and compliance status across AWS accounts

Answer 36

AWS Ground Station is a fully managed service that lets you control satellite communications, downlink and process satellite data, and scale your satellite operations quickly, easily and cost-effectively without having to worry about building or managing your own ground station infrastructure

Answer 37

AWS RoboMaker is a service that makes it easy to develop, test, and deploy intelligent robotics applications at scale.

Answer 38

Elastic Load Balancing (ELB) automatically distributes incoming application traffic across multiple targets, such as Amazon EC2 instances, containers, and IP addresses.

Answer 39

AWS Cloud Map is a cloud resource discovery service. With Cloud Map, you can define custom names for your application resources, and it maintains the updated location of these dynamically changing resources. This increases your application availability because your web service always discovers the most up-to-date locations of its resources.

Answer 40

AWS App Mesh makes it easy to monitor and control microservices running on AWS. App Mesh standardizes how your microservices communicate, giving you end-to-end visibility and helping to ensure high-availability for your applications.

Answer 41

AWS Transit Gateway is a service that enables customers to connect their Amazon Virtual Private Clouds (VPCs) and their on-premises networks to a single gateway

Answer 42

Amazon API Gateway is a fully managed service that makes it easy for developers to create, publish, maintain, monitor, and secure APIs at any scale.

Answer 43

AWS Global Accelerator is a networking service that improves the availability and performance of the applications that you offer to your global users

Answer 44

AWS Direct Connect makes it easy to establish a dedicated network connection from your premises to AWS.

Answer 45

AWS PrivateLink simplifies the security of data shared with cloud-based applications by eliminating the exposure of data to the public Internet.

Answer 46

Amazon Route 53 is a highly available and scalable cloud Domain Name System (DNS) web service.

Answer 47

Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds, all within a developer-friendly environment.

Answer 48

Amazon Virtual Private Cloud (Amazon VPC) lets you provision a logically isolated section of the AWS Cloud where you can launch AWS resources in a virtual network that you define.

Answer 49

AWS AppSync | AWS AppSync is a serverless back-end for mobile, web, and enterprise applications.

Answer 50

AWS Device Farm is an app testing service that lets you test and interact with your Android, iOS, and web apps on many devices at once, or reproduce issues on a device in real time.

Answer 51

Amazon Pinpoint makes it easy to send targeted messages to your customers through multiple engagement channels.

Answer 52

Amazon Cognito lets you add user sign-up, sign-in, and access control to your web and mobile apps quickly and easily. With Amazon Cognito, you also have the option to Amazon Web Services – Overview of Amazon Web Services Page 63 authenticate users through social identity providers such as Facebook, Twitter, or Amazon, with SAML identity solutions, or by using your own identity system

Answer 53

AWS Amplify makes it easy to create, configure, and implement scalable mobile applications powered by AWS.

Answer 54

AWS Transfer for SFTP is a fully managed service that enables the transfer of files directly into and out of Amazon S3 using the Secure File Transfer Protocol (SFTP)—also known as Secure Shell (SSH) File Transfer Protocol.

Answer 55

AWS DataSync is a data transfer service that makes it easy for you to automate moving data between on-premises storage and Amazon S3 or Amazon Elastic File System (Amazon EFS).

Answer 56

AWS Snowmobile is an exabyte-scale data transfer service used to move extremely large amounts of data to AWS. You can transfer up to 100 PB per Snowmobile, a 45- foot long ruggedized shipping container, pulled by a semi-trailer truck.

Answer 57

AWS Snowball Edge is a data migration and edge computing device that comes in two options: Storage Optimized (well suited for local storage and large scale data transfer) and Compute Optimized (for use cases such as advanced machine learning and full motion video analysis in disconnected environments)

Answer 58

AWS Snowball is a petabyte-scale data transport solution that uses secure appliances to transfer large amounts of data into and out of AWS.

Answer 59

AWS Server Migration Service (SMS) is an agentless service which makes it easier and faster for you to migrate thousands of on-premises workloads to AWS.

Answer 60

AWS Database Migration Service helps you migrate databases to AWS easily and securely. The source database remains fully operational during the migration, minimizing downtime to applications that rely on the database.

Answer 61

AWS Application Discovery Service helps enterprise customers plan migration projects by gathering information about their on-premises data centers. AWS Application Discovery Service collects and presents configuration, usage, and behavior data from your servers to help you better understand your workloads.

Answer 62

AWS Migration Hub provides a single location to track the progress of application migrations across multiple AWS and partner solutions.

Answer 63

AWS Elemental MediaTailor lets video providers insert individually targeted advertising into their video streams without sacrificing broadcast-level quality-of-service

Answer 64

AWS Elemental MediaStore is an AWS storage service optimized for media. It gives you the performance, consistency, and low latency required to deliver live streaming video content.

Answer 65

AWS Elemental MediaPackage reliably prepares and protects your video for delivery over the Internet.

Answer 66

AWS Elemental MediaLive is a broadcast-grade live video processing service. It lets you create high-quality video streams for delivery to broadcast televisions and internetconnected multiscreen devices, like connected TVs, tablets, smart phones, and set-top boxes.

Answer 67

AWS Elemental MediaConvert is a file-based video transcoding service with broadcastgrade features. It allows you to easily create video-on-demand (VOD) content for broadcast and multiscreen delivery at scale.

Answer 68

AWS Elemental MediaConnect is a high-quality transport service for live video. Today, broadcasters and content owners rely on satellite networks or fiber connections to send their high-value content into the cloud or to transmit it to partners for distribution.

Answer 69

Amazon Elastic Transcoder is media transcoding in the cloud. It is designed to be a highly scalable, easy- to-use, and cost-effective way for developers and businesses to convert (or transcode) media files from their source format into versions that will play back on devices like smartphones, tablets, and PCs.

Answer 70

The AWS Well-Architected Tool helps you review the state of your workloads and compares them to the latest AWS architectural best practices.

Answer 71

AWS License Manager makes it easier to manage licenses in AWS and on-premises servers from software vendors such as Microsoft, SAP, Oracle, and IBM.

Answer 72

The AWS Console Mobile Application lets customers view and manage a select set of resources to support incident response while on-the-go.

Answer 73

AWS Managed Services provides ongoing management of your AWS infrastructure so you can focus on your applications

Answer 74

AWS Personal Health Dashboard provides alerts and remediation guidance when AWS is experiencing events that might affect you. While the Service Health Dashboard displays the general status of AWS services, Personal Health Dashboard gives you a personalized view into the performance and availability of the AWS services underlying your AWS resources.

Answer 75

AWS Trusted Advisor is an online resource to help you reduce cost, increase performance, and improve security by optimizing your AWS environment.

Answer 76

AWS OpsWorks is a configuration management service that provides managed instances of Chef and Puppet. Chef and Puppet are automation platforms that allow you to use code to automate the configurations of your servers.

Answer 77

AWS Config is a fully managed service that provides you with an AWS resource inventory, configuration history, and configuration change notifications to enable security and governance

Answer 78

AWS CloudTrail is a web service that records AWS API calls for your account and delivers log files to you. The recorded information includes the identity of the API caller, the time of the API call, the source IP address of the API caller, the request parameters, and the response elements returned by the AWS service.

Answer 79

AWS CloudFormation gives developers and systems administrators an easy way to create and manage a collection of related AWS resources, provisioning and updating them in an orderly and predictable fashion.

Answer 80

AWS Systems Manager gives you visibility and control of your infrastructure on AWS. Systems Manager provides a unified user interface so you can view operational data from multiple AWS services and allows you to automate operational tasks across your AWS resources.

Answer 81

AWS Control Tower automates the set-up of a baseline environment, or landing zone, that is a secure, well-architected multi-account AWS environment.

Answer 82

AWS Auto Scaling monitors your applications and automatically adjusts capacity to maintain steady, predictable performance at the lowest possible cost.

Answer 83

Amazon CloudWatch is a monitoring and management service built for developers, system operators, site reliability engineers (SRE), and IT managers.

Answer 84

AWS Inferentia is a machine learning inference chip designed to deliver high performance at low cost.

Answer 85

The AWS Deep Learning AMIs provide machine learning practitioners and researchers with the infrastructure and tools to accelerate deep learning in the cloud, at any scale.

Answer 86

AWS DeepLens helps put deep learning in the hands of developers, literally, with a fully programmable video camera, tutorials, code, and pre-trained models designed to expand deep learning skills.

Answer 87

Amazon Personalize is a machine learning service that makes it easy for developers to create individualized recommendations for customers using their applications.

Answer 88

Amazon Textract is a service that automatically extracts text and data from scanned documents. Amazon Textract goes beyond simple optical character recognition (OCR) to also identify the contents of fields in forms and information stored in tables.

Answer 89

Amazon Forecast is a fully managed service that uses machine learning to deliver highly accurate forecasts.

Answer 90

Amazon Transcribe is an automatic speech recognition (ASR) service that makes it easy for developers to add speech-to-text capability to their applications

Answer 91

Amazon Translate is a neural machine translation service that delivers fast, highquality, and affordable language translation

Answer 92

Amazon Rekognition is a service that makes it easy to add image analysis to your applications. With Rekognition, you can detect objects, scenes, and faces in images.

Answer 93

Amazon Polly is a service that turns text into lifelike speech. Polly lets you create applications that talk, enabling you to build entirely new categories of speech-enabled products.

Answer 94

Amazon Lex is a service for building conversational interfaces into any application using voice and text. Lex enables you to build applications with highly engaging user experiences and lifelike conversational interactions.

Answer 95

Amazon Comprehend is a natural language processing (NLP) service that uses machine learning to find insights and relationships in text. No machine learning experience required.

Answer 96

Amazon SageMaker is a fully-managed platform that enables developers and data scientists to quickly and easily build, train, and deploy machine learning models at any scale. Amazon SageMaker removes all the barriers that typically slow down developers who want to use machine learning.

Answer 97

The AWS Partner Device Catalog helps you find devices and hardware to help you explore, build, and go to market with your IoT solutions.

Answer 98

AWS IoT Things Graph is a service that makes it easy to visually connect different devices and web services to build IoT applications.

Answer 99

AWS IoT SiteWise is a managed service that makes it easy to collect and organize data from industrial equipment at scale

Answer 100

AWS IoT Device Management makes it easy to securely onboard, organize, monitor, and remotely manage IoT devices at scale.

Answer 101

AWS IoT Device Defender is a fully managed service that helps you secure your fleet of IoT devices.

Answer 102

The AWS IoT Button is a programmable button based on the Amazon Dash Button hardware. This simple Wi-Fi device is easy to configure, and it’s designed for developers to get started with AWS IoT Core, AWS Lambda, Amazon DynamoDB, Amazon SNS, and many other Amazon Web Services without writing device-specific code.

Answer 103

AWS IoT Analytics is a fully-managed service that makes it easy to run and operationalize sophisticated analytics on massive volumes of IoT data without having to worry about the cost and complexity typically required to build an IoT analytics platform.

Answer 104

AWS IoT 1-Click is a service that enables simple devices to trigger AWS Lambda functions that can execute an action.

Answer 105

AWS IoT Greengrass seamlessly extends AWS to devices so they can act locally on the data they generate, while still using the cloud for management, analytics, and durable storage.

Answer 106

Amazon Lumberyard is a free, cross-platform, 3D game engine for you to create the highest-quality games, connect your games to the vast compute and storage of the AWS Cloud, and engage fans on Twitch.

Answer 107

Amazon GameLift is a managed service for deploying, operating, and scaling dedicated game servers for session-based multiplayer games.

Answer 108

AWS X-Ray helps developers analyze and debug distributed applications in production or under development, such as those built using a microservices architecture.

Answer 109

AWS Cloud9 is a cloud-based integrated development environment (IDE) that lets you write, run, and debug your code with just a browser. It includes a code editor, debugger, and terminal.

Answer 110

AWS CodeStar enables you to quickly develop, build, and deploy applications on AWS. AWS CodeStar provides a unified user interface, enabling you to easily manage your software development activities in one place.

Answer 111

AWS CodePipeline is a fully managed continuous delivery service that helps you automate your release pipelines for fast and reliable application and infrastructure updates. CodePipeline automates the build, test, and deploy phases of your release process every time there is a code change, based on the release model you define.

Answer 112

AWS CodeDeploy is a service that automates code deployments to any instance, including EC2 instances and instances running on premises.

Answer 113

AWS CodeBuild is a fully managed build service that compiles source code, runs tests, and produces software packages that are ready to deploy.

Answer 114

AWS CodeCommit is a fully-managed source control service that hosts secure Gitbased repositories. It makes it easy for teams to collaborate on code in a secure and highly scalable ecosystem.

Answer 115

Amazon AppStream is a fully managed, secure application streaming service that allows you to stream desktop applications from AWS to any device running a web browser, without rewriting them

Answer 116

Amazon WorkSpaces is a fully managed, secure cloud desktop service. You can use Amazon WorkSpaces to provision either Windows or Linux desktops in just a few minutes and quickly scale to provide thousands of desktops to workers across the globe

Answer 117

Amazon Timestream is a fast, scalable, fully managed time series database service for IoT and operational applications that makes it easy to store and analyze trillions of events per day at 1/10th the cost of relational databases.

Answer 118

Amazon QLDB is a fully managed ledger database that provides a transparent, immutable, and cryptographically verifiable transaction log owned by a central trusted authority.

Answer 119

Amazon Neptune is a fast, reliable, fully-managed graph database service that makes it easy to build and run applications that work with highly connected datasets

Answer 120

Amazon ElastiCache is a web service that makes it easy to deploy, operate, and scale an in-memory cache in the cloud. The service improves the performance of web applications by allowing you to retrieve information from fast, managed, in-memory caches, instead of relying entirely on slower disk-based databases. Redis and Memcache caching engines are supported

Answer 121

Amazon DynamoDB is a key-value and document database that delivers single-digit millisecond performance at any scale. It's a fully managed, multiregion, multimaster database with built-in security, backup and restore, and in-memory caching for internet-scale applications.

Answer 122

Amazon Relational Database Service (Amazon RDS) makes it easy to set up, operate, and scale a relational database in the cloud.

Answer 123

Amazon Aurora is a MySQL and PostgreSQL compatible relational database engine that combines the speed and availability of high-end commercial databases with the simplicity and cost-effectiveness of open source databases.

Answer 124

Amazon Simple Email Service (Amazon SES) is a cloud-based email sending service designed to help digital marketers and application developers send marketing, notification, and transactional emails.

Answer 125

Amazon Connect is a self-service, cloud-based contact center service that makes it easy for any business to deliver better customer service at lower cost.

Answer 126

AWS Outposts bring native AWS services, infrastructure, and operating models to virtually any data center, co-location space, or on-premises facility.

Answer 127

``` Cost of optimization Reliability Operational excellence Performance efficiency Security ```

Answer 128

Stop guessing your capacity needs (autoscaling) Test systems at production scale (pay as you go test environments) Automate to make architectural experimentation easier Allow for evolutionary architecture Drive architecure using data Improve through game days

Answer 129

Free tier offers for new customers and available for 12 months EC2, RDS, S3, CloudFront Free tier offers for all customers and do not expire after 12 months DynamoDB, Glacier, Lambda

Answer 130

``` EC2 cost based on 1. number of hours 2. instance type 3. elastic load balancing 4. number of instances 5. pricing model Following don’t contribute to EC2 cost 1. CloudWatch (basic report) 2. Elastic IP 3. Autoscaling 4. Operating system ```

Answer 131

1. You are charged based on the number of requests for your functions and the time it takes for your code to execute 2. The price depends on the amount of memory you allocate to your function. 3. additional charges if your Lambda function uses other AWS services or transfers data

Answer 132

1. Volume 2. Snapshot 3. Data transfer

Answer 133

S3 cost is based on 1. Storage class 2. Data transfer 3. Storate 4. Requests

Answer 134

1) Clock hours of server time: Resources incur charges when they are running—for example, from the time you launch a DB instance until you terminate it. 2) Database characteristics: The physical capacity of the database you choose will affect how much you are charged. Database characteristics vary depending on the database engine, size, and memory class. 3) Database purchase type: When you use On-Demand DB Instances, you pay for compute capacity for each hour your DB Instance runs, with no required minimum commitments. With Reserved DB Instances, you can make a low, one-time, upfront payment for each DB Instance you wish to reserve for a 1- or 3-year term. 4) Number of database instances: With Amazon RDS, you can provision multiple DB instances to handle peak loads. 5) Provisioned storage: There is no additional charge for backup storage of up to 100 percent of your provisioned database storage for an active DB Instance. After the DB Instance is terminated, backup storage is billed per GB per month. 6) Additional storage: The amount of backup storage in addition to the provisioned storage amount is billed per GB per month. 7) Requests: The number of input and output requests to the database. 8) Deployment type: You can deploy your DB Instance to a single Availability Zone (analogous to a standalone data center) or multiple Availability Zones (analogous to a secondary data center for enhanced availability and durability). Storage and I/O charges vary, depending on the number of Availability Zones you deploy to. 9) Data transfer: Inbound data transfer is free, and outbound data transfer costs are tiered.

Answer 135

There is no additional charge for data transferred between Amazon DynamoDB and other Amazon Web Services within the same Region. Data transferred across Regions (e.g., between Amazon DynamoDB in the US East (Northern Virginia) Region and Amazon EC2 in the EU (Ireland) Region) will be charged on both sides of the transfer.

Answer 136

1) Traffic distribution: Data transfer and request pricing varies across geographic regions, and pricing is based on the edge location through which your content is served. 2) Requests: The number and type of requests (HTTP or HTTPS) made and the geographic region in which the requests are made. 3) Data transfer out: The amount of data transferred out of your Amazon CloudFront edge locations.

Answer 137

If you can predict your need for Amazon DynamoDB read-and-write throughput, Reserved Capacity offers significant savings over the normal price of DynamoDB provisioned throughput capacity

Answer 138

Amazon ElastiCache Reserved Nodes give you the option to make a low, one-time payment for each cache node you want to reserve and, in turn, receive a significant discount on the hourly charge for that node. Amazon

Answer 139

Like Amazon EC2 RIs, Amazon RDS RIs can be purchased using No Upfront, Partial Upfront, or All Upfront terms. All Reserved Instance types are available for Aurora, MySQL, MariaDB, PostgreSQL, Oracle, and SQL Server database engines.

Answer 140

``` SQS S3 Amazon CloudFront for content delivery ELB for load balancing Amazon DynamoDB for NoSQL databases Amazon CloudSearch for search workloads Amazon Elastic Transcoder for video encoding Amazon Simple Email Service (Amazon SES) for sending and receiving emails ```

Answer 141

Edge caching allows content to be served by infrastructure that is closer to viewers, which lowers latency and gives you the high, sustained data transfer rates necessary to deliver large popular objects to end users at scale.

Answer 142

Amazon DynamoDB Accelerator (DAX) is a fully managed, highly available, in-memory cache for DynamoDB that delivers performance improvements from milliseconds to microseconds, for high throughput. DAX adds in-memory acceleration to your DynamoDB tables without requiring you to manage cache invalidation, data population, or cluster management.

Answer 143

One fault-isolating improvement you can make to traditional horizontal scaling is called sharding. Similar to the technique traditionally used with data storage systems, instead of spreading traffic from all customers across every node, you can group the instances into shards. For example, if you have eight instances for your service, you might create four shards of two instances each (two instances for some redundancy within each shard) and distribute each customer to a specific shard. In this way, you are able to reduce the impact on customers in direct proportion to the number of shards you have.

Answer 144

Share Security Responsibility with AWS Reduce Privileged Access Security as code Real-Time Auditing

Answer 145

1- Perform operations as code 2- Annotated documentation 3- Make frequent, small, reversible changes 4- Refine operations procedures frequently. 5- Anticipate failure 6- Learn from all operational failures

Answer 146

Amazon DevPay is a cloud-based billing and account management service that enables developers to collect payment for their AWS applications.

Answer 147

You can find a paid AMI using the Amazon EC2 console, AWS Marketplace and AWS CLI.

Answer 148

Tags are key-value pairs that allow you to organize your AWS resources into groups. You can use tags to: 1- Visualize information about tagged resources in one place, in conjunction with Resource Groups. 2- View billing information using Cost Explorer and the AWS Cost and Usage report. 3- Send notifications about spending limits using AWS Budgets.

Answer 149

There are three types of EC2 reserved instances(RIs) that you can choose from based on your applications needs: 1- Standard RIs: These provide the most significant discount (up to 75% off On-Demand) and are best suited for steady-state usage. 2- Convertible RIs: These provide a discount (up to 54% off On-Demand) and the capability to change the attributes of the RI as long as the exchange results in the creation of Reserved Instances of equal or greater value. Like Standard RIs, Convertible RIs are best suited for steady-state usage. 3- Scheduled RIs: These are available to launch within the time windows you reserve. This option allows you to match your capacity reservation to a predictable recurring schedule that only requires a fraction of a day, a week, or a month.

Answer 150

An elastic network interface (ENI) is a logical networking component in a VPC that represents a virtual network card.

Answer 151

The AWS Professional Services organization is a global team of experts that can help you realize your desired business outcomes when using the AWS Cloud.

Answer 152

Amazon Kinesis Firehose allows you to ingest massive streams of data and store the data on Amazon S3 (as well as Amazon Redshift and Amazon Elasticsearch).

Answer 153

Read replicas are supported by MySQL, MariaDB, PostgreSQL, and Aurora.

Answer 154

Simple routing policy – Use for a single resource that performs a given function for your domain, for example, a web server that serves content for the example.com website. Failover routing policy – Use when you want to configure active-passive failover. Geolocation routing policy – Use when you want to route traffic based on the location of your users. Geoproximity routing policy – Use when you want to route traffic based on the location of your resources and, optionally, shift traffic from resources in one location to resources in another. Latency routing policy – Use when you have resources in multiple AWS Regions and you want to route traffic to the region that provides the best latency. Multivalue answer routing policy – Use when you want Route 53 to respond to DNS queries with up to eight healthy records selected at random. Weighted routing policy – Use to route traffic to multiple resources in proportions that you specify.

Answer 155

The AWS Security Token Service (STS) is a web service that enables you to request temporary, limited-privilege credentials for AWS Identity and Access Management (IAM) users or for users that you authenticate

Answer 156

Amazon SQS automatically deletes messages that have been in a queue for more than maximum message retention period. The default message retention period is 4 days. However, you can set the message retention period to a value from 60 seconds to 1,209,600 seconds (14 days) using the SetQueueAttributes action.

Answer 157

data transport service used to move large amounts of data into and out of the Amazon Web Services public cloud using portable storage devices for transport. The service also enables a user to perform an export job from Amazon S3, but not from Amazon EBS or Glacier.

Answer 158

A route table contains a set of rules, called routes, that are used to determine where network traffic is directed. Each subnet in your VPC must be associated with a route table; the table controls the routing for the subnet. A subnet can only be associated with one route table at a time, but you can associate multiple subnets with the same route table.

Answer 159

An Amazon VPC endpoint enables you to create a private connection between your Amazon VPC and another AWS service without requiring access over the Internet or through a NAT device, VPN connection, or AWS Direct Connect.