Terms and Definitions AWS

On-Demand – Pay-as-you-go, flexible use

Reserved – Long-term commitment, cost savings

Spot – Cheapest option, interruptible compute

Dedicated – Isolated hardware, compliance-focused

AWS Config – Tracks and evaluates resource configurations over time (🔄 compliance, audit, drift detection).

AWS CloudWatch – Monitors metrics, logs, and alarms (📊 performance and health).

AWS CloudTrail – Logs API calls and user activity (🕵‍♂️ governance and security auditing).

AWS SNS – Sends notifications (📩 messaging, not for auditing configs).

AWS Inspector – Automated security vulnerability assessment tool.

AWS Auto Scaling – Automatically adjusts compute resources based on demand.

AWS ELB – Distributes traffic among multiple targets.

AWS EC2 – Resizable virtual servers in AWS cloud.

AWS WAF – Web Application Firewall blocking malicious web traffic.

AWS Inspector – Automated security vulnerability assessment service.

AWS Trusted Advisor – Provides cost and best practice recommendations.

AWS Shield – Managed DDoS protection for AWS resources.

AWS Multi-AZ – Automatic standby and failover across zones.

IAM – Manages AWS identities and permissions.

Security group – Instance-level firewall controlling traffic.

ACL – Subnet-level network access control list.IAM – Manages AWS identities and permissions.

Security group – Instance-level firewall controlling traffic.

ACL – Subnet-level network access control list.

PostgreSQL – Advanced, open-source, extensible SQL database.

Amazon Aurora – AWS-managed, high-performance, cloud-optimized database.

MariaDB – Community-driven, open-source MySQL fork database.

Redundancy – Duplication of critical components to ensure system availability.

S3 Transfer Acceleration – Speeds up S3 transfers using edge locations.

AWS Trusted Advisor – Provides cost and best practices recommendations.

AWS Pricing Calculator – Estimates AWS service costs accurately.

AWS EMR – Big data processing using Hadoop/Spark.

AWS Storage Gateway – Hybrid storage for on-premise integration.

AWS Snowball – Physical data transfer appliance.

AWS Redshift – Fully managed cloud data warehouse.

Resource – Object to which permissions apply.

Role – Identity with associated permissions.

Policy – Document defining formal permissions.

Permission – Granted ability to perform actions.

Amazon DynamoDB – Managed NoSQL database service.

Amazon Lambda – Serverless compute; no server access.

Amazon EC2 – Virtual servers with full admin control.

Amazon S3 – Scalable object storage service.

Chef – Configuration management tool using Ruby DSL.

Puppet – Automated configuration management using declarative language.

Container service – Manages containerized applications.

OpsWorks – Configuration management using Chef/Puppet.

Elastic Beanstalk – Easily deploys and manages applications.

CloudFormation – Infrastructure as code for resource provisioning.

AMI (Amazon Machine Image) – Pre-configured template for launching instances.

Security of the Cloud - Amazon

Secruity in the Cloud - Customer

Amazon ElastiCache – In-memory caching service for faster responses.

Amazon Simple Workflow Service – Builds and manages scalable workflows.

Cost Allocation Tags – Metadata for cost tracking and reporting.

Availability Zone – Isolated data center clusters in a region.

Edge Location – Distributed sites delivering cached content.

AWS Snowcone is a portable, rugged, and secure device for edge computing and data transfer.