AWS Fundamentals

Question 1

List 7 server categories of AWS Cloud computing?

Answer 1

• Compute - e.g EC2, Lambda
• Networking - e.g. VPC, AWS Direct Connect
• Storage - e.g. S3 (Simple Storage Service),EBS(Elastic Block Service)
• Analytics - e.g Athen, Redshift
• Development - e.g Cloud 9 , Code Commit
• Security - e.g. IAM , Amazon Macie
• Database - e.g RDS, DynamoDB

Question 2

Name 6 advantages of Cloud computing?

Answer 2

1. Increase speed and agility
2. Trading capital expense for operational expense
3. Stop guessing capacity
4. Benefit from massive economies of scales
5. Focus on your developing your applications vs managing hardware
6. Scale easily

Question 3

What are the 4 Benefits of Cloud computing?

Answer 3

1. High Availability - Low failure rate
2. Elasticity - Scale environment easily (Shrink and Grow) as when required
3. Agility - Innovate faster through leveraging existing services
4. Durability - Long-term data storage protection.

Question 4

Define 3 Cloud Computing Models?

Answer 4

1. Infrastructure as service (Iaas) e.g. EC2
2. Software as a Service (SaaS) e.g. Sagemaker, Gmail
3. Platform as a service (PaaS) e.g. AWS Cloud 9, Hiroki platform

Question 5

Define 3 Cloud deployment models?

Answer 5

1. Private cloud (on premises datacenter)
2. Public Cloud (AWS, AZURE - benefit from Economics of Scale)
3. Hybrid Cloud (Combination of Public and Private) e.g. Through the use of AWS Direct Connect

Question 6

What is an AWS Region?

Answer 6

• It’s a physical location where AWS has data centres.
• A region contains multi Availibility Zones

Question 7

What are the AWS Region Characteristics?

Answer 7

1. Fully independent and Isolated (from other regions)
2. Resource and Service Specific

Question 8

What are AWS Availability zones?

Answer 8

Availability zones consists of one or more separated data centres, each with redundant power, networking and connectivity, housed in separate facilities.

e.g. Region: N.Virginia

Availability Zones:

1. US-EAST-1A
2. US-EAST-1B
3. US-EAST-1C
4. US-EAST-1D
5. US-EAST-1E
6. US-EAST-1F

Question 9

What are Edge Locations?

Answer 9

Edge locations cache content to fast delivery to your users. It’s made possible through AWS CloudFront. It’s recudes latency (Low Latency is good).

NB: Latency: Is the time that passes between a user request and resulting response.

Question 12

What is AWS Management Console?

Answer 12

AWS Management console allows users to access AWS account and manage applications running in the account from a web broswer.

Question 13

What is AWS Command Line Interface (CLI)?

Answer 13

The AWS Command Line Interface (CLI) allows you to access AWS Account through a terminal or command window.

Question 14

What is a AWS Root User?

Answer 14

Root User is automatically created when you create an AWS account.

NB: Root User should be protected with Multi-Factor Authentication (MFA)

Question 15

What is the Shared Responsibility Model?

Answer 15

In the public cloud, there is a shared security responsibility between you and AWS.

• AWS’s responsibility: Security of the Cloud
• Your Responsibility: Security in the Cloud

Question 16

What is AWS’s responsibility “Security Of The Cloud”?

Answer 16

AWS is responsible for protecting and securing their infrastructure.

• AWS Global Infrastructure: AWS is responsible for its global infrastructure elements: Regions, edge locations, and Availability Zones.
• Building Security: AWS controls access to its data centers where your data resides.
• Networking Components:AWS maintains networking components: generators, uninterruptible power supply (UPS) systems, computer room air conditioning (CRAC) units, fire suppression systems, and more.
• Software: AWS is responsible for any managed service like RDS, S3, ECS, or Lambda, patching of host operating systems, and data access endpoints.

Question 17

What is Your responsibility “Security In The Cloud”?

Answer 17

You are responsible for how the services are implemented and managing your application data.

• Application Data: You are responsible for managing your application data, which includes encryption options.
• Security Configuration: You are responsible for securing your account and API calls, rotating credentials, restricting internet access from your VPCs, and more.
• Patching: You are responsible for the guest operating system (OS), which includes updates and security patches.
• Identity and Access Management:You are responsible for application security and identity and access management.
• Network Traffic: You are responsible for network traffic protection, which includes security group firewall configuration.
• Installed Software: You are responsible for your application code, installed software, and more. You should frequently scan for and patch vulnerabilities in your code.

Question 18

What is the Well-Architected Framework?

Answer 18

The 5 pillars of the Well-Architected Framework describe design principles and best practices for running workloads in the cloud.

• Operational Excellence
• Security
• Reliability
• Perfomance Efficiency
• Cost Optimization

NB: https://docs.aws.amazon.com/wellarchitected/latest/framework/welcome.html?did=wp_card&trk=wp_card