Illustrated AWS Cloud - Jen Looper, Denise Yu Blick ins Buch

Illustrated AWS Cloud (eBook)

A Guide to Help You on Your Cloud Practitioner Journey

, (Autoren)

eBook Download: EPUB
2023 | 1. Auflage
192 Seiten
Wiley (Verlag)
978-1-394-22556-9 (ISBN)

Lese- und Medienproben

Illustrated AWS Cloud - Jen Looper, Denise Yu
Ebook-Leseprobe (EPUB)
Systemvoraussetzungen
16,99 inkl. MwSt
  • Download sofort lieferbar
  • Zahlungsarten anzeigen

An intuitive, fully illustrated guide to Amazon Web Services for the visually oriented

In The Illustrated AWS Cloud: A Guide to Help You On Your Cloud Practitioner Journey, a team of veteran tech educators delivers a visual and entertaining guide to Amazon Web Services cloud concepts. The authors focus on the job role and responsibilities of an AWS cloud practitioner, guiding readers through choosing the best AWS services for specific use cases.

In addition to general cloud concepts, security and compliance, technology, and billing and pricing topics, you'll find:

  • High-resolution, black-and-white illustrations clearly explaining critical technical concepts
  • Comprehensive coverage of working with an AWS account and understanding the AWS environment
  • Complete chapters on each of the main categories of AWS services, including Compute, Storage, Database, and Networking

The authors also provide bonus content on their companion website at https://illustratedaws.cloud/. Perfect for anyone looking for an easy-to-follow and visual introduction to the Amazon Web Services cloud, including those considering a career as a cloud administrator or technical support person, The Illustrated AWS Cloud is an effective resource for business, finance, sales, and marketing professionals who support and collaborate with AWS tech professionals.

ABOUT THE AUTHORS

JEN LOOPER is the Head of Academic Advocacy at AWS with over 23 years of experience as a web and mobile developer, specializing in creating cross-platform mobile and web apps. A published author, Jen has written Computer Science for Kids (Wiley, 2023), a book aligned to CSTA standards for grades 6-8. Visit www.cs4kids.club for more information. Jen's area of focus is curriculum development and the application of sound pedagogy to technical topics. Visit Jen's personal site at www.jenlooper.com.

DENISE YU is a software engineering manager and occasional illustrator. She has spoken at conferences around the world on topics ranging from distributed computing to competitive debating. She holds an MSc in Social Policy from the London School of Economics and a BA in Economics from Columbia University. You can learn more about Denise at https://deniseyu.io.

An intuitive, fully illustrated guide to Amazon Web Services for the visually oriented In The Illustrated AWS Cloud: A Guide to Help You On Your Cloud Practitioner Journey, a team of veteran tech educators delivers a visual and entertaining guide to Amazon Web Services cloud concepts. The authors focus on the job role and responsibilities of an AWS cloud practitioner, guiding readers through choosing the best AWS services for specific use cases. In addition to general cloud concepts, security and compliance, technology, and billing and pricing topics, you ll find: High-resolution, black-and-white illustrations clearly explaining critical technical concepts Comprehensive coverage of working with an AWS account and understanding the AWS environment Complete chapters on each of the main categories of AWS services, including Compute, Storage, Database, and NetworkingThe authors also provide bonus content on their companion website at https://illustratedaws.cloud/. Perfect for anyone looking for an easy-to-follow and visual introduction to the Amazon Web Services cloud, including those considering a career as a cloud administrator or technical support person, The Illustrated AWS Cloud is an effective resource for business, finance, sales, and marketing professionals who support and collaborate with AWS tech professionals.

ABOUT THE AUTHORS JEN LOOPER is the Head of Academic Advocacy at AWS with over 23 years of experience as a web and mobile developer, specializing in creating cross-platform mobile and web apps. A published author, Jen has written Computer Science for Kids (Wiley, 2023), a book aligned to CSTA standards for grades 6-8. Visit www.cs4kids.club for more information. Jen's area of focus is curriculum development and the application of sound pedagogy to technical topics. Visit Jen's personal site at www.jenlooper.com. DENISE YU is a software engineering manager and occasional illustrator. She has spoken at conferences around the world on topics ranging from distributed computing to competitive debating. She holds an MSc in Social Policy from the London School of Economics and a BA in Economics from Columbia University. You can learn more about Denise at https://deniseyu.io.

Introduction viii

Chapter 1: Getting Started with Cloud Concepts 1

What Is Cloud Computing? 2

What Are Cloud Economics? 16

How Can You Reduce Costs? 24

How Should You Design Your Cloud Architecture? 30

The Well-Architected Framework 37

Chapter 2: Staying Safe with Security and Compliance 50

Introduction 51

The Shared Responsibility Model 53

Security and Compliance Concepts 60

AWS Access Management Capabilities 69

Identifying Resources for Security Support 81

Chapter 3: Entering the Cloud 88

Introduction 89

Different Ways of Provisioning and Operating in the AWS Cloud 90

Types of Deployment Models 93

Considering Migration Options 98

Identifying Connectivity Options 99

Going Global 104

Living on the Edge 110

Chapter 4: Camping in the Cloud 112

Introduction 113

Compute 114

Storage 123

Networking 132

Databases 139

Machine Learning 146

Getting Help 149

Chapter 5: Being Frugal with Billing and Pricing 156

Pricing Tiers 157

Getting Billing Support and Information 165

Finding Pricing Information on AWS Services 172

Alarms! Alerts! Tags! 174

Conclusion 178

CHAPTER TWO
Staying Safe with Security and Compliance


Welcome to Chapter 2. In this chapter, you learn how to make sure you're building in the Cloud using safe processes with security and compliance well in hand. Specifically, this chapter covers the following topics:

  • The shared responsibility model
  • Security and compliance concepts
  • Access management capabilities
  • AWS Identity and Access Management (IAM)
  • Identifying resources for security support

By the end of this chapter, you will know how to keep security and compliance top of mind as you journey into the Cloud. Let's get started!

Introduction


It shouldn't be a surprise that security and compliance are “job zero” at Amazon, making customer safety the main priority. AWS builds services to help achieve security and compliance, and it builds these practices into their other services. After all, millions of users entrust the AWS Cloud every second with details about their bank information, personal data, shopping preferences, and more.

NOTE: Security refers to the processes and technologies used to secure sensitive data, systems, and assets, while compliance refers to your adherence to regulatory standards to align with contractual or legal requirements.

When on a camping trip, you make sure that safety and security play an important role as you plan the trip's details. You lock your camper's doors, for example, as a security practice. You make sure to store your food in bear-proof containers and practice fire safety, ensuring that you extinguish your fire properly once your meal is done. You also make sure you have a valid pass to use the campground where you've reserved a spot and abide by local rules. By following best practices in the Cloud, you will similarly ensure that your data is transmitted and stored safely, your assets are secure, and your systems are in compliance. Let's discover some of these practices together.

The Shared Responsibility Model


What is shared responsibility? It's the concept that you, as the Cloud practitioner, and AWS share the responsibility to keep systems secure and compliant. But where is that fine line between “mine” and “theirs” drawn?

In general, AWS's responsibility is security of the Cloud while the customer's responsibility is security in the Cloud. This might come as a bit of a relief to someone who is used to handling all the security and compliance of an on-premises data center, but it also merits careful consideration since these responsibilities vary depending on the services used. These services are defined as falling into one of three categories: infrastructure as a service (IaaS), platform as a service (PaaS), and software as a service (SaaS). Services fall into these categories depending on their level of abstraction—how much visibility the customer has into their inner workings.

NOTE: In general, the more abstraction, the more responsibility falls on AWS for security and compliance.

Let's examine the shared responsibility model and look at a few examples of how the line is drawn between the customer's responsibility and that of AWS, depending on the type of service.

The Customer's Responsibility


If the customer is responsible for security in the Cloud, what does that mean, practically speaking? Consider three examples of services that you might select: EC2, Lambda, and RDS.

  • Amazon EC2, or Elastic Compute Cloud, is an example of infrastructure as a service. It is a virtualized device, meaning you deploy software onto the instance that acts the same as software you'd install on a physical device. This means you are responsible for the security of the software that you deploy onto this instance, just as you would have been on a physical device. Any security patches or updates needed by the software or operating systems that you virtualize on this instance need to be made secure and compliant by you. AWS, however, is responsible for the security of the underlying EC2 infrastructure itself, so you're not flying completely solo!
  • Amazon Lambda is a serverless compute solution that “hides” the server from the customer. In this way it qualifies as a platform as a service that allows you to run code in response to certain events, such as when an order is placed and a push notification needs to be sent to the client. Because Lambda lets you run code that you write as Lambda functions, it's your job to ensure that the code is secure and compliant. But AWS will ensure that the underlying infrastructure, operating system, and application platform powering Lambda are kept up-to-date in terms of security. It's on you to maintain the security of your code.
  • AWS Relational Database Service (RDS) is a service that allows you to set up a relational database in the Cloud. It lets you install your favorite relational database—such as Maria DB, Microsoft SQL Server, Oracle, PostgreSQL, or MySQL—on top of AWS-managed infrastructure. Like the previously mentioned services, the shared responsibility model of RDS means you are responsible for the security of the databases that you install on RDS. It's also up to you to manage the username and password strategies, often with tools such as IAM or AWS Secrets Manager. You use the tools provided by RDS to ensure that your data is secure. AWS will ensure that the infrastructure underlying RDS is secure and compliant.

NOTE: You could say that while AWS is responsible for the database, the customer is responsible for the data and the access to it.

AWS's Responsibility


Now that you know that AWS's responsibility lies in making every element of the AWS Cloud safe, secure, and compliant, let's think about how this actually works. AWS takes responsibility for the security and compliance of the infrastructure of the Cloud, including its hardware, software, and networking.

One of the best-known AWS services—Simple Storage Service (S3)—offers an infrastructure layer, operating systems, and platforms with which customers can interact. AWS ensures the security of these aspects of the service, and customers manage the security and compliance of their data, its encryption, and IAM permissions to ensure proper permissions are assigned to the various assets stored on S3.

NOTE: It's worthwhile to note that compliance regulations can vary region to region. A good example is GDPR, which regulates how data is stored in Europe. You need to understand and act on the ramifications of storing data in a region with specific regulations.

Table 2.1 outlines the shared responsibility model.

Table 2.1 The Shared Responsibility Model

On-Premises IaaS PaaS SaaS
Applications Applications Applications Applications
Customer data Customer data Customer data Customer data
Runtime Runtime Runtime Runtime
Middleware Middleware Middleware Middleware
Operating system Operating system Operating system Operating system
Virtualization Virtualization Virtualization Virtualization
Networking Networking Networking Networking
Storage Storage Storage Storage
Servers Servers Servers Servers

Note: Italics indicates the user/customer responsibility. Bold indicates the provider responsibility.

Security and Compliance Concepts


This next section looks at security and compliance, which relate to each other like making sure that the brakes on your camper work and ensuring that you've passed all your emissions inspections before hitting the road!

Finding AWS Compliance Information


Security is essential to the health of your business, and so is compliance. Compliance sounds like a scary thing, but in fact it's simply following established rules to keep your data, assets, and code safe, as well as making sure your systems are available and performant. And there are lots of rules! AWS supports 143 security standards and compliance certifications as of the publication of this book.

Some of these you might recognize, such as HIPAA, SOC, PCI-DSS Level 1, and GDPR. But there are many others, such as FedRAMP, FIPS 140-2, and NIST 800-171. Compliance requirements vary depending on your business’s geographic location,...

Erscheint lt. Verlag 19.10.2023
Sprache englisch
Themenwelt Mathematik / Informatik Informatik Netzwerke
Technik Elektrotechnik / Energietechnik
Schlagworte AWS • Cloud Computing • Computer Science • Computer Science Special Topics • Grid & Cloud Computing • Grid- u. Cloud-Computing • Informatik • Spezialthemen Informatik
ISBN-10 1-394-22556-3 / 1394225563
ISBN-13 978-1-394-22556-9 / 9781394225569
Haben Sie eine Frage zum Produkt?
EPUBEPUB (Adobe DRM)
Größe: 44,5 MB

Kopierschutz: Adobe-DRM
Adobe-DRM ist ein Kopierschutz, der das eBook vor Mißbrauch schützen soll. Dabei wird das eBook bereits beim Download auf Ihre persönliche Adobe-ID autorisiert. Lesen können Sie das eBook dann nur auf den Geräten, welche ebenfalls auf Ihre Adobe-ID registriert sind.
Details zum Adobe-DRM

Dateiformat: EPUB (Electronic Publication)
EPUB ist ein offener Standard für eBooks und eignet sich besonders zur Darstellung von Belle­tristik und Sach­büchern. Der Fließ­text wird dynamisch an die Display- und Schrift­größe ange­passt. Auch für mobile Lese­geräte ist EPUB daher gut geeignet.

Systemvoraussetzungen:
PC/Mac: Mit einem PC oder Mac können Sie dieses eBook lesen. Sie benötigen eine Adobe-ID und die Software Adobe Digital Editions (kostenlos). Von der Benutzung der OverDrive Media Console raten wir Ihnen ab. Erfahrungsgemäß treten hier gehäuft Probleme mit dem Adobe DRM auf.
eReader: Dieses eBook kann mit (fast) allen eBook-Readern gelesen werden. Mit dem amazon-Kindle ist es aber nicht kompatibel.
Smartphone/Tablet: Egal ob Apple oder Android, dieses eBook können Sie lesen. Sie benötigen eine Adobe-ID sowie eine kostenlose App.
Geräteliste und zusätzliche Hinweise

Buying eBooks from abroad
For tax law reasons we can sell eBooks just within Germany and Switzerland. Regrettably we cannot fulfill eBook-orders from other countries.

Andere eBook-Ausgabe
PDF (Adobe DRM)
16,99 €
Print-Ausgabe
Buch | Softcover
23,65 €
Mehr entdecken
aus dem Bereich
PC-Netzwerke - Martin Linten; Axel Schemberg; Kai Surendorf
PC-Netzwerke
Das umfassende Handbuch

von Martin Linten; Axel Schemberg; Kai Surendorf

eBook Download (2023)
Rheinwerk Computing (Verlag)
29,90
Raspberry Pi - Michael Kofler; Charly Kühnast; Christoph Scherbeck
Raspberry Pi
Das umfassende Handbuch

von Michael Kofler; Charly Kühnast; Christoph Scherbeck

eBook Download (2024)
Rheinwerk Computing (Verlag)
44,90
Technik der IP-Netze - Anatol Badach; Erwin Hoffmann
Technik der IP-Netze
Grundlagen der IPv4- und IPv6-Kommunikation

von Anatol Badach; Erwin Hoffmann

eBook Download (2022)
Carl Hanser Verlag GmbH & Co. KG
69,99
auf Facebook teilen
bei Twitter
Link zu dieser Seite kopieren