Key Terms Flashcards

Question

bucket

Answer 1

The storage unit for an Amazon S3 object.

Answer 2

A resource policy that is assigned directly to a storage entity such as an Amazon S3 bucket.

Answer 3

The ability of a storage unit or a compute instance to increase processing power for a short period of time.

Answer 4

Performance credits that make it possible to burst above a defined performance baseline.

Answer 5

A measure of Amazon DynamoDB performance in terms of either reading or writing.

Answer 6

A company or an entity that validates the identities of websites or domains using cryptographic public/private keys.

Answer 7

A group that logs information in near real time.

Answer 8

The body of source code for a software program or application.

Answer 9

Infrequently accessed storage.

Answer 10

Special rule in a permission policy.

Answer 11

The process of deregistering (removing) a registered instance from a load balancer target group.

Answer 12

A defined time period when no changes are allowed.

Answer 13

Tags that are used to categorize and track AWS costs displayed with monthly and hourly cost allocation reports.

Answer 14

Tracks your AWS usage and provides estimated charges associated with your account for the current month.

Answer 15

A definition of how data records are either the same or not the same due to replication.

Answer 16

Incoming (ingress) and outgoing (egress) packet flow.

Answer 17

Deployment of multiple security controls (physical, administrative, and technical) to protect a hosted workload.

Answer 18

Cloud services, applications, servers, and various technology components that depend upon each other when providing a business solution.

Answer 19

A user session for which user state information is held in a separate durable storage location.

Answer 20

Dynamic Host Configuration Protocol

Answer 21

Amazon Elastic Block Storage (EBS).

Answer 22

Amazon Elastic Compute Cloud (EC2).

Answer 23

Elastic Container Registry

Answer 24

Elastic Container Service

Answer 25

Amazon Elastic File System (EFS) EFS can provide a simple NFS mount point. These mount points can be accessed and mounted from outside the VPC, either in another region, via VPN or VPC peering, or over a Direct Connect or VPN connection to an on-premises location

Answer 26

A one-way gateway connection for EC2 instances with IPv6 addresses.

Answer 27

Elastic Kubernetes Service

Answer 28

A static public IP address that is created and assigned to your AWS account.

Answer 29

A location where communication is made; a private connection from a VPC to AWS services.

Answer 30

Elastic Network Interface

Answer 31

Temporary local block storage.

Answer 32

Communications about changes in the application stack.

Answer 33

A user that has authenticated outside Amazon before requesting access to AWS resources.

Answer 34

Federal Risk and Authorization Management Program, establishes the security requirements for usage of cloud services for federal government agencies.

Answer 35

A status check for availability.

Answer 36

A group of compute resources that continue functioning even when some of the components fail.

Answer 37

A group of AWS IAM users.

Answer 38

A permission policy that provides temporary access to AWS resources.

Answer 39

AWS Identity and Access Management (IAM).

Answer 40

During deployment and updates components are replaced rather than changed.

Answer 41

Input-Output Operations per Second A performance specification that defines the rate of input and output per second when storing and retrieving data.

Answer 42

An AWS connection to the Internet for a virtual private cloud (VPC).

Answer 43

AWS Key Management Service (KMS).

Answer 44

An item of data where the key is the name and the value is the data.

Answer 45

A custom-created function to control ingress and egress Amazon CloudFront traffic.

Answer 46

A set of detailed EC2 instance installation and configuration instructions.

Answer 47

A custom action to be performed before or after an Amazon EC2 instance is added to or removed from an Auto Scaling Group.

Answer 48

A set of rules for controlling the movement of Amazon S3 objects between S3 storage classes.

Answer 49

Rules that allow customers to transition backups that are stored in warm storage to cheaper cold storage.

Answer 50

A load balancer process that checks for connection requests using the defined protocols and ports.

Answer 51

Defines the maximum resource consumed calculated on new connections, active, connections, bandwidth, and rule evaluations.

Answer 52

A single deployment of compute, storage, and select services close to a large population center.

Answer 53

Data collected for an AWS CloudWatch variable.

Answer 54

A logical connection to a directory in a file system; a method to attach Amazon EFS storage to a Linux workload.

Answer 55

Authentication that involves multiple factors, such as something you have and something you know.

Answer 56

An upload in which multiple parts of a file are synchronously uploaded.

Answer 57

Network Access Control Lists A stateless subnet firewall that protects both inbound and outbound subnet traffic.

Answer 58

Network Address Translation

Answer 59

A service that provides indirect Internet access to Amazon EC2 instances that are located on private subnets.

Answer 60

The latest AWS hypervisor, which replaces the Xen hypervisor and provides faster networking, compute, encryption, and management services.

Answer 61

A database that does not follow SQL rules and architecture, hence the name “no” SQL.

Answer 62

Non-Volatile Memory Express, a standard hardware interface for SSD drives connected using PCI Express bus.

Answer 63

Data storage as a distinct object with associated metadata containing relevant information.

Answer 64

A special AWS IAM user account that is provided the permission to access the files in an Amazon S3 bucket.

Answer 65

An alternate data source location for Amazon CloudFront distributions.

Answer 66

A policy containing global password settings for AWS account IAM users.

Answer 67

A private networking connection between two VPCs or two transit gateways.

Answer 68

An active/passive disaster recovery design that involves maintaining a limited set of compute and data records to be used in case of a disaster to the primary application resources. The compute records are turned off until needed, but the data records are active and are kept up-to-date.

Answer 69

The primary copy of database records.

Answer 70

A redundant storage location for messages and application state data for processing.

Answer 71

One strongly consistent read per second, or two eventually consistent reads per second, for items up to 4 KB in size.

Answer 72

A read-only copy of a linked primary database.

Answer 73

A metric that specifies the acceptable amount of data that can be lost within a specified period.

Answer 74

A metric that specifies the maximum length of time that a service can be down after a failure has occurred.

Answer 75

A set of AWS cloud resources in a geographic area of the world.

Answer 76

A large throughput cache found at an edge location that provides extra cache storage.

Answer 77

A device that provides HTTPS access to AWS services within a defined AWS region.

Answer 78

The reasonable expectation that an application or service is available and performs as expected.

Answer 79

An Amazon EC2 instance for which you have prepaid.

Answer 80

recovery point objective (RPO).

Answer 81

recovery time objective (RTO).

Answer 82

Security Group

Answer 83

To increase compute power automatically.

Answer 84

A policy that describes the type of scaling of compute resources to be performed.

Answer 85

A stateful firewall protecting Amazon EC2 instances’ network traffic.

Answer 86

A network protocol used by Windows systems on the same network to store files.

Answer 87

A type of computing in which compute servers and integrated services are fully managed by AWS.

Answer 88

Encryption of data records at rest by an application or a service.

Answer 89

A commitment between a cloud service provider and a customer indicating the minimum level of service to be maintained.

Answer 90

Indicates the quality of service an end user is receiving at a given time. SLIs are measured as a level of performance.

Answer 91

An agreement defined as part of each service-level agreement. Objectives could be uptime or response time.

Answer 92

A defined limit for AWS services created for AWS accounts.

Answer 93

Scaling instances up or down based on a single AWS CloudWatch metric.

Answer 94

service-level agreement (SLA).

Answer 95

A point-in-time incremental backup of an EBS volume.

Answer 96

A variety of network-attached storage devices that can be used to transfer and receive data records to and from Amazon S3 storage.

Answer 97

A synchronized copy of a primary database that is available in the event of a failure.

Answer 98

Refers to a service that requires knowledge of all internal functions.

Answer 99

Refers to a self-contained redundant service that has no knowledge of its place in the application stack.

Answer 100

Scaling up or down by percentages.

Answer 101

A user session for which communication is maintained with the initial application server for the length of the session. It ensures that a client is bound to an individual backend instance.

Answer 102

The de facto programming language used in relational databases.

Answer 103

A defined IP address range hosted within a VPC.

Answer 104

A key that can both lock and unlock.

Answer 105

An instance provided with a baseline of compute performance.

Answer 106

A virtual structure in which Amazon DynamoDB stores items and attributes.

Answer 107

A group of registered instances that receives specific traffic from a load balancer.

Answer 108

A blueprint that describes how a Docker container should launch.

Answer 109

An EBS hard disk drive (HDD) volume option that provides sustained throughput of 500 Mb/s.

Answer 110

The more you use the less you are charged.

Answer 111

A value that determines the storage time of an Amazon CloudFront cache object.

Answer 112

the percentage of time that a website is able to function during the course of a calendar year.

Answer 113

Data that identifies an end user and the established session between the end user and a hosted application.

Answer 114

A process in which multiple copies of Amazon S3 objects, including the original object, are saved.

Answer 115

A logically isolated virtual network in the AWS cloud.

Answer 116

The AWS side of a VPN connection to a VPC.

Answer 117

An active/passive disaster recovery design that maintains a limited set of compute and data records that are both on and functioning. When the primary application resources fail, the warm standby resources are resized to production values.

Answer 118

One write per second for items up to 1 KB in size.

Answer 119

A security policy that can be deployed on an Amazon S3 bucket or in S3 Glacier storage. The policy indicates that the contents can be read many times but are restricted from any further writes once the policy is enacted.

Answer 120

Refers to an availability zone location.

Answer 121

is a fast and scalable serverless time series database designed to store and analyze trillions of events per day.

Answer 122

allowing you to schedule, copy, tag, and life cycle your DynamoDB on-demand backups automatically.

Answer 123

is to connect two VPCs with low management overhead. VPC peering is perfect for simple VPC connectivity, such as connecting two VPCs. VPC peering works between AWS accounts and regions. Beyond creating the peering relationship and configuring the routing tables, there is no management with this solution.

Answer 124

were created to simplify the use of varying access permissions with the same S3 bucket. You can create a separate S3 access for each group or service that requires access to S3 objects, with each point having its own Access Points policy.

Answer 125

includes FTP, SFTP, and FTPS. Using this service would require no changes for companies accessing the shared data.

Answer 126

can record all changes and alert through AWS Config rules and inventory. AWS Config can also provide relationship details across account resources. AWS Change Control is a made-up service name. Amazon CloudWatch is not designed to provide inventory, relationships, and record changes. AWS CloudTrail will log the API calls but cannot provide inventory

Answer 127

Visualize and manage AWS costs and usage over a daily or monthly granularity.

Answer 128

Top Level Domain

Answer 129

utility is used to request a quota increase through AWS support.

Answer 130

provides the best networking performance, much faster than an elastic network interface.

Answer 131

provides deep discounts for both EC2 instances and containers managed by AWS Fargate.

Answer 132

offers simple pay-per-request pricing for read and write requests so that you only pay for what you use, making it easy to balance costs and performance. For tables using on-demand mode, DynamoDB instantly accommodates customers’ workloads as they ramp up or down to any previously observed traffic level.

Key Terms Flashcards

(156 cards)