Misc. Cloud
These are physical geographic areas usually composed of at least 3 or more Availability Zones or Zones although the specifics vary across provider. Providers currently advertise the following number: AWS:31, Azure:60+, Google:35
What is a Region?
This is the most common cloud deployment model.
What is Hybrid?
The most common cloud computing model.
What is Software as a Service (SaaS)?
This is a characteristic of the cloud that is actually also present in all data centers.
What is broad network access?
This is what the acronym IAM stands for.
What is Identity & Access Management?
This is the name of the all powerful user in an AWS account and should be protected.
What is the root user?
There are 3 ways to use AWS services. This is the one that we will use to complete our labs in class.
What is the AWS Management Console?
What is Community Cloud?
Application developers that want to focus on their application vs. the underlying infrastructure will often select this model.
What is Platform as a Service (PaaS)
This is an advantage of the cloud where customers can benefit from savings due to aggregate usage of resources across customers.
What is economies of scale?
This is the IAM component that policies should be attached to so that they do not have to be attached to individual user components.
What is a Group?
This is the set of permissions that an IAM user is automatically assigned when an account is created.
What is none?
This is who is responsibility for the security in the cloud according the AWS Shared Responsibility Model.
Who is the consumer?
While not a NIST defined deployment model, organizations using both AWS and Azure for their cloud solutions are considered this.
What is Multi-cloud?
This is the model that gives the consumer the least responsibility and amount of control.
What is Software as a Service (SaaS)?
This is the AWS Academy environment that will give you the most flexibility in exploring AWS services.
What is the Learner Lab?
This is the wildcard character used in policy nomenclature.
What is the *?
We have encountered the Shared Responsibility Model in 2 different areas so far in this course. One is Security and this is the other one.
What is the Well Architected Sustainability Pillar?
What are Points of Presence?
What is hybrid?
The main consumers of this computing model are IT professionals to include Network engineers, Systems engineers, Security engineers, and Operators.
What is Infrastructure as a Service (IaaS)?
The name of the organization that published the 5 characteristics of the cloud and definitions for cloud computing and deployment models.
What is NIST?
National Institute of Standards & Technology
This is the effect that always takes precedence in policy writing.
What is Deny?
This is a non cloud specific term that defines what actions you are permitted to perform after you Authenticate into a system.
The considerations when choosing a region for your workload are: regulatory/compliance requirements, proximity to users, cost, and this last consideration.
What is service availability?
An on prem data center that meets all 5 characteristics of the cloud but is restricted to a specific organization is this type of deployment model?
What is private cloud?
Pivotal Cloud Foundry, AWS Elastic Beanstalk, Google App Engine, and Heroku are all examples of this computing model.
What is Platform as a Service (PaaS)
According to the Gartner Magic Quadrant, this provider is gaining on the top 3 in terms of being a visionary with the ability to execute.
This is they type of policy that is attached to a specific service entity in AWS such as an S3 bucket.
What is a resource based policy?
This is the name of the IAM component that provides temporary security credentials.
What is a role?