Book Image

AWS Certified Solutions Architect ??? Associate Guide

By : Gabriel Ramirez, Stuart Scott
Book Image

AWS Certified Solutions Architect ??? Associate Guide

By: Gabriel Ramirez, Stuart Scott

Overview of this book

Amazon Web Services (AWS) is currently the leader in the public cloud market. With an increasing global interest in leveraging cloud infrastructure, the AWS Cloud from Amazon offers a cutting-edge platform for architecting, building, and deploying web-scale cloud applications. As more the rate of cloud platform adoption increases, so does the need for cloud certification. The AWS Certified Solution Architect – Associate Guide is your one-stop solution to gaining certification. Once you have grasped what AWS and its prerequisites are, you will get insights into different types of AWS services such as Amazon S3, EC2, VPC, SNS, and more to get you prepared with core Amazon services. You will then move on to understanding how to design and deploy highly scalable applications. Finally, you will study security concepts along with the AWS best practices and mock papers to test your knowledge. By the end of this book, you will not only be fully prepared to pass the AWS Certified Solutions Architect – Associate exam but also capable of building secure and reliable applications.

Related Content you might be interested in

Current Title:

Small book image
AWS Certified Solutions Architect ??? Associate Guide
Gabriel Ramirez | Stuart Scott
Oct, 2018 | 626 pages
Small book image
AWS Certified Security – Specialty Exam Guide
Stuart Scott
Sep, 2020 | 558 pages
Small book image
AWS Certified SysOps Administrator ??? Associate Guide
Marko Sluga
Jan, 2019 | 584 pages
Small book image
Mastering AWS Security
Albert Anthony
Oct, 2017 | 252 pages
Table of Contents (26 chapters)
Preface
Preface
Who this book is for
What this book covers
To get the most out of this book
Get in touch
Free Chapter
1
Introducing Amazon Web Services
Introducing Amazon Web Services
Technical requirements
Minimizing complexity
Conway's law
Cloud computing
Cloud design patterns – CDP
AWS Cloud Adoption Framework – AWS CAF
AWS Well-Architected Framework – AWS WAF
Shared security model
Identity and Access Management
Summary
Further reading
2
AWS Global Infrastructure Overview
AWS Global Infrastructure Overview
Technical requirements
Introducing AWS global infrastructure
Regions
Global CDN
Data replication and redundancy with managed services
Hosting a static website with S3 and CloudFront
Summary
Further reading
3
Elasticity and Scalability Concepts
Elasticity and Scalability Concepts
Technical requirements
Sources of failure
Dividing and conquering
Virtualization technologies
LAMP installation
Scaling the web server
Resiliency
EC2 persistence model
Disaster recovery
Cascading deletion
Bootstrapping
Scaling the compute layer
Scaling a database server
Summary
Further reading
4
Hybrid Cloud Architectures
Hybrid Cloud Architectures
Effective migration to the cloud
Extending your data center
Storage gateway use cases
The Database Migration Service
Summary
Further reading
5
Resilient Patterns
Resilient Patterns
Technical requirements
Route 53
Summary
Further reading
6
Event Driven and Stateless Architectures
Event Driven and Stateless Architectures
Technical requirements
Web application hosting
Serverless application architecture
Streaming data architecture
Summary
Further reading
7
Integrating Application Services
Integrating Application Services
Technical requirements
SQS as a reliable broker
Managing 1:N communications with SNS
Authenticating your web and mobile apps with Cognito
WebSockets in AWS
Web app demo
Summary
Further reading
8
Disaster Recovery Strategies
Disaster Recovery Strategies
Technical requirements
Availability metrics
Backup and restore
Pilot light
Warm standby
Multi-site active-active
Summary
Further reading
9
Storage Options
Storage Options
Technical requirements
Relational databases
Object storage
Lifecycle policies
NoSQL
Summary
Further reading
10
Matching Supply and Demand
Matching Supply and Demand
Technical requirements
Elastic Load Balancing
ELB attributes
AWS Auto Scaling
Summary
Further reading
11
Introducing Amazon Elastic MapReduce
Introducing Amazon Elastic MapReduce
Technical requirements
Clustering in AWS
Placement groups
Elastic MapReduce
Summary
Further reading
12
Web Scale Applications
Web Scale Applications
Technical requirements
AWS Lambda
Summary
Further reading
13
Understanding Access Control
Understanding Access Control
Technical requirements
Authentication, authorization, and access control
Authenticating via access control methods
IAM authorization
Summary
Further reading
14
Encryption and Key Management
Encryption and Key Management
Technical requirements
An overview of encryption
EBS encryption
Amazon S3 encryption
RDS encryption
Key Management Service (KMS)
Summary
Further reading
15
An Overview of Security and Compliance Services
An Overview of Security and Compliance Services
Technical requirements
AWS CloudTrail
Amazon Inspector
AWS Trusted Advisor
AWS Systems Manager
AWS Config
Summary
Further reading
16
AWS Security Best Practices
AWS Security Best Practices
Technical requirements
Shared responsibility model
Data protection
Virtual Private Cloud
Identity and Access Management
EC2 security
Security services
Summary
Further reading
17
Web Application Security
Web Application Security
Technical requirements
AWS web application firewall
AWS Shield
AWS Firewall Manager
Summary
Further reading
18
Cost Effective Resources
Cost Effective Resources
Technical requirements
Reserved Instances
Billing and cost management
AWS Organizations
Summary
Further reading
19
Working with Infrastructure as Code
Working with Infrastructure as Code
Technical requirements
AWS CloudFormation
Helper scripts
Multi-tier web app
Summary
Further reading
20
Automation with AWS
Automation with AWS
Technical requirements
Incident Response
Summary
Further reading
21
Introduction to the DevOps practice in AWS
Introduction to the DevOps practice in AWS
Technical requirements
CI / CD pipeline
AWS CodeDeploy
Summary
Further reading
22
Mock Test 1
Mock Test 1
23
Mock Test 2
Mock Test 2
24
Assessment
Assessment
Mock Test 1
Mock Test 2
25
Another Book You May Enjoy
Another Book You May Enjoy
Leave a review - let other readers know what you think

Amazon S3 encryption

Amazon S3 provides an object-level storage solution, allowing you to save objects up to 5 terabytes in size. Being a storage solution, and one of the most commonly used storage services within AWS, S3 provides a variety of encryption mechanisms to suit different requirements and compliance concerns.

There are five different encryption options available to encrypt your S3 objects, as follows:

  • Server-side encryption with S3 managed keys (SSE-S3)
  • Server-side encryption with KMS managed keys (SSE-KMS)
  • Server-side encryption with customer-managed keys (SSE-C)
  • Client-side encryption with KMS managed keys (CSE-KMS)
  • Client-side encryption with customer-managed keys (CSE-C)

The difference between server-side and client-side encryption is fairly simple. With server-side encryption, the encryption algorithm and process is run from the server-side—in this instance...

Previous Section
End of Section 5
Next Section