Bash, the Crucial Exams Chat Bot
AI Bot
AWS Security & Compliance Essentials Flashcards
AWS Cloud Practitioner CLF-C02 Flashcards
| Front | Back |
| AWS Artifact | Portal for on demand access to AWS compliance and security reports |
| AWS CloudTrail | Enable governance compliance and risk auditing by logging AWS API calls |
| AWS Config | Service for assessing auditing and evaluating resource configurations |
| AWS GuardDuty | Continuous threat detection service using machine learning to analyze logs |
| AWS identity federation | Use SAML or OIDC to integrate external identity providers |
| AWS KMS purpose | Managed service for creating controlling and using encryption keys |
| AWS Security Hub | Centralized dashboard for security alerts and compliance status |
| AWS shared responsibility model | Defines AWS security of the cloud and customer responsibility for security in the cloud |
| AWS Shield | Managed DDoS protection service for applications |
| AWS WAF | Web application firewall to protect HTTP endpoints |
| Customer managed CMK vs AWS managed CMK | Customer keys offer more control and allow key rotation |
| Envelope encryption | Encrypt data with a data key that is itself encrypted by a master key |
| IAM least privilege principle | Grant only the permissions necessary to perform a task |
| IAM multi factor authentication | MFA adds a second authentication factor to secure user access |
| VPC Flow Logs | Capture IP traffic metadata for monitoring and troubleshooting |
This deck covers core aspects of AWS security, compliance frameworks, data encryption, and identity best practices, helping you understand governance in the AWS environment.