Glossary 113+ service liên quan SAA-C03

Host + backend (Auth, Data, Storage) cho frontend dev.

REST/HTTP/WebSocket API managed.

Khi dùng: Expose Lambda/HTTP backend.

Exam tip: REST full feature $ vs HTTP cheap; WebSocket cho 2-chiều; throttle 10k/s.

Envoy-based service mesh managed.

Khi dùng: Microservice cần observability + traffic shaping nội bộ.

Deploy container/image với 1 bước.

Lift-and-shift EC2 từ on-prem/VMware/cloud khác.

GraphQL + subscription realtime.

Khi dùng: Mobile/web cần data fetching flex.

Query data S3 bằng SQL không cần load.

Khi dùng: Ad-hoc analysis log/parquet/csv S3.

Chuẩn hóa evidence cho compliance framework.

MySQL/Postgres compatible, 5x/3x performance.

Khi dùng: High-scale SQL, serverless v2, Global Database.

Exam tip: Storage 10-128TB; 15 replica; Global DB 5 secondary region; Backtrack 72h.

Centralize backup cho nhiều service.

Khi dùng: Policy 1 chỗ cho EBS/RDS/EFS/DynamoDB/Storage Gateway/FSx/EC2.

Orchestrate batch job trên EC2/Fargate/Spot.

Khi dùng: Scientific compute, image rendering, ML offline.

Cost/usage/RI coverage alert.

IaC bằng code (TS/Python/Java/Go).

Phát cert TLS free cho AWS service.

Khi dùng: HTTPS cho CloudFront/ALB/API GW/App Runner.

Exam tip: Public cert chỉ us-east-1 cho CloudFront; Private CA có phí.

OpenVPN-based cho user cá nhân.

Khi dùng: Remote worker truy cập VPC/on-prem.

Map tên service → IP/ARN động.

Khi dùng: Service discovery cho ECS/EKS/EC2 dynamic.

JSON/YAML template khai báo resource.

Khi dùng: IaC chuẩn AWS.

CDN 600+ PoP với WAF/cache.

Khi dùng: Static + dynamic content toàn cầu.

Exam tip: OAC thay OAI; Signed URL/Cookie; Functions vs Lambda@Edge.

HSM tenant single, FIPS 140-2 level 3.

Khi dùng: Compliance yêu cầu HSM độc quyền.

Audit trail mọi API call.

Khi dùng: Compliance audit, security investigation.

Exam tip: Management event default 90 ngày, data event opt-in $.

Observability: metric, log, alarm, event, dashboard.

Khi dùng: Mọi thứ monitoring.

Build container managed pay-per-minute.

Git repo quản bởi AWS.

Blue/green, rolling cho EC2/ECS/Lambda.

Pipeline source → build → test → deploy.

User Pool (auth) + Identity Pool (authz IAM temp).

Khi dùng: Mobile/web app sign-in, social federation.

Sentiment, entity, topic modelling.

ML recommendation rightsize EC2/ASG/EBS/Lambda/ECS.

Inventory + change + compliance rule.

Khi dùng: Drift detection, compliance.

Multi-account best-practice setup.

Visualize cost theo tag, service, thời gian.

Marketplace dataset bên thứ ba.

Move file on-prem → S3/EFS/FSx.

Khi dùng: Large file migration tăng tốc 10x.

Phân tích, visualize security finding.

Khi dùng: Forensic investigation.

1/10/100 Gbps dedicated tới AWS.

Khi dùng: Bandwidth lớn, latency ổn định, compliance.

Exam tip: Không mã hóa native → VPN over DX nếu cần encrypt.

Microsoft AD, Simple AD, AD Connector.

Khi dùng: EC2 Windows cần AD, FSx Windows.

Migrate DB engine (heterogeneous OK).

Khi dùng: Oracle → Aurora Postgres, on-prem → RDS.

MongoDB 4.0/5.0 compatible, Aurora storage.

Khi dùng: App Mongo cần managed.

Key-value/document, single-digit ms.

Khi dùng: Session, cart, IoT, gaming.

Exam tip: Item 400KB; TX 100 item/4MB; GSI 20 / LSI 5; DAX cache µs; Global Tables.

Block storage gắn vào EC2 (1 AZ).

Khi dùng: OS volume, DB data volume.

Exam tip: gp3 baseline 3k IOPS / 125 MB/s; io2 Block Express 256k IOPS; snapshot incremental.

Máy ảo IaaS, tuỳ biến OS/CPU/RAM.

Khi dùng: Cần control OS, license BYOL, hoặc workload đặc biệt.

Exam tip: Phân biệt On-Demand/Reserved/Savings Plans/Spot/Dedicated Host.

Orchestrator container AWS-native.

Khi dùng: Container app không muốn K8s complexity.

Exam tip: ECS on EC2 vs Fargate; task role vs execution role.

NFS shared multi-AZ elastic.

Khi dùng: Content, home dir, CMS, ECS bind mount.

Exam tip: Throughput 50 MB/s per TB; storage class Standard vs IA.

Managed Kubernetes control plane.

Khi dùng: Team đã có toolchain K8s, multi-cloud portable.

Exam tip: EKS on EC2 vs EKS on Fargate; control plane cost $0.10/h.

Deploy app web với config tự động (EC2/ALB/ASG).

Khi dùng: Dev team không muốn quản infrastructure.

Exam tip: Ít khi hỏi sâu nhưng biết là PaaS.

Redis hoặc Memcached managed.

Khi dùng: Session store, leaderboard, cache read-heavy DB.

Exam tip: Redis: persist, pub/sub, cluster mode; Memcached: multi-thread, no persist.

ALB/NLB/GWLB/CLB.

Khi dùng: Distribute traffic tới EC2/ECS/Lambda.

Exam tip: ALB L7 HTTP; NLB L4 TCP/UDP + static IP; GWLB L3 appliance.

Hadoop/Spark/Hive cluster managed.

Khi dùng: Big data processing scale lớn.

Event routing + SaaS partner + schedule.

Khi dùng: Event-driven architecture, replace cron.

Chạy container không cần quản server.

Khi dùng: Utilisation biến động, muốn billing per use.

Exam tip: Billing vCPU-sec + GB-sec.

Policy WAF/SG/DNS Firewall/Shield Advanced org-wide.

Windows SMB / Lustre HPC / NetApp ONTAP / OpenZFS.

Khi dùng: Workload cụ thể cần file system đặc thù.

Exam tip: Windows: AD integration. Lustre: HPC + S3 link.

2 anycast IP + AWS backbone + region failover.

Khi dùng: TCP/UDP cần static IP hoặc failover nhanh.

Data Catalog + Spark ETL + crawler.

Khi dùng: Serverless ETL cho data lake.

ML phát hiện anomaly từ CloudTrail/VPC/DNS/EKS/S3/Malware.

Khi dùng: Security monitoring baseline.

User/Group/Role/Policy.

Khi dùng: Mọi tác vụ access control.

Exam tip: Thứ tự evaluate policy; SCP vs Boundary vs Session.

SSO + permission sets cho Org.

Khi dùng: Quản user access nhiều account.

CVE cho EC2, ECR image, Lambda.

Khi dùng: Continuous vulnerability scan.

MQTT broker + device shadow + rule engine.

Khi dùng: IoT fleet management.

Cassandra-compatible serverless.

Khi dùng: Workload Cassandra không muốn cluster tự quản.

Shard-based stream + replay.

Khi dùng: Real-time analytics, CDC.

Managed load → S3/Redshift/OpenSearch.

Khi dùng: ETL đơn giản, no-code, buffer 1MB/1min.

Tạo, quản, dùng cryptographic key.

Khi dùng: Encrypt-at-rest cho mọi service.

Exam tip: Key policy root; ViaService; Multi-Region Key; rotation 1 năm.

Permission + audit cho data lake S3.

Chạy code theo sự kiện, ms billing.

Khi dùng: Event-driven, <15 phút, spiky.

Exam tip: 15 phút, 10 GB RAM, 10 GB image; 1000 concurrent default; 6 MB sync payload.

BYOL license enforcement.

VPS giá cố định cho SMB.

Khi dùng: Dự án nhỏ, WordPress, bundled pricing.

AWS compute gần metro lớn (city-level).

Khi dùng: Latency < 10ms tới thành phố, real-time gaming/media.

Phát hiện PII/sensitive data trong S3.

Khi dùng: Compliance privacy.

Redis API + durability 11 9's.

Khi dùng: Primary DB không chỉ cache.

Theo dõi tiến độ migration đa tool.

Managed ActiveMQ/RabbitMQ.

Khi dùng: Lift-and-shift JMS/AMQP/STOMP/MQTT.

Apache Kafka managed.

Khi dùng: Workload Kafka đã có.

Graph với Gremlin/SPARQL/openCypher.

Khi dùng: Fraud detection, knowledge graph, social.

Stateful firewall tại VPC boundary.

Khi dùng: Deep packet inspection, egress filter.

Elasticsearch fork managed + Kibana.

Khi dùng: Log analytics, search.

Exam tip: UltraWarm + Cold storage giảm cost.

OU, SCP, consolidated billing.

Khi dùng: Quản nhiều account.

Rack AWS hardware đặt tại on-prem.

Khi dùng: Latency cực thấp tới hệ thống on-prem hoặc compliance data residency.

Giọng nói neural.

Expose service qua NLB cho consumer VPC.

Khi dùng: SaaS provider, cross-account service không qua Internet.

Immutable, cryptographically verifiable.

Khi dùng: Audit log, supply chain.

Serverless BI, SPICE in-memory.

Khi dùng: Dashboard cho business user.

Managed MySQL/Postgres/MariaDB/Oracle/SQL Server.

Khi dùng: Engine SQL truyền thống cần managed.

Exam tip: Multi-AZ (HA) vs Read Replica (scale read); backup 35 ngày.

Columnar PB-scale.

Khi dùng: OLAP, BI reporting.

Exam tip: Spectrum query trực tiếp S3.

Detect object, face, text.

Share resource cross-account (VPC subnet, TGW, Resolver rule).

DNS + health check + traffic routing.

Khi dùng: Domain management, failover, latency routing.

Exam tip: Alias record, 8 routing policy, Resolver Inbound/Outbound.

Object storage bền bỉ, scale không giới hạn.

Khi dùng: Backup, data lake, static website, archive.

Exam tip: Storage classes & lifecycle; multipart 5GB; 3500/5500 req/prefix; encryption SSE-S3/KMS/C.

Archive giá rẻ, retrieval phút → giờ → ngày.

Khi dùng: Compliance log 7 năm, ít truy cập.

Train/deploy ML model managed.

Khi dùng: ML workflow end-to-end.

Lưu secret + rotation tự động.

Khi dùng: DB password, API key cần rotate.

Tổng hợp finding từ GuardDuty/Macie/Inspector/partner.

Khi dùng: Single pane of glass security.

Self-service CloudFormation template cho team.

Standard free L3/4; Advanced L3/4/7 + DRT.

Khi dùng: Advanced cho mission-critical, cost protection.

2 tunnel IPsec qua Internet.

Khi dùng: Quick setup hoặc lúc chờ DX.

Thiết bị vật lý chuyển dữ liệu lớn.

Khi dùng: TB – PB với băng thông hẹp.

Pub/sub fan-out.

Khi dùng: Broadcast tới nhiều subscriber.

Message queue managed.

Khi dùng: Decouple, buffer, retry.

Exam tip: Standard unlimited TPS best-effort; FIFO 300/3k/70k TPS order + dedup.

State machine JSON, Standard 1 năm / Express 5 phút.

Khi dùng: Workflow phức tạp, retry, branch, parallel.

Kéo dài storage on-prem lên AWS (file/volume/tape).

Khi dùng: Backup tape → S3, SMB share cached, iSCSI volume.

Legacy workflow, code-based.

Khi dùng: Hiếm thấy; ưu tiên Step Functions.

Run Command, Session Manager, Patch, Parameter Store.

Khi dùng: Fleet management & automation.

Serverless time-series, auto-tier.

Khi dùng: IoT, DevOps metrics.

ASR streaming/batch.

Managed SFTP etc lên S3/EFS.

Hub kết nối VPC + VPN + DX.

Khi dùng: Scale nhiều VPC, nhiều site.

Exam tip: 5,000 attachment; route table isolation.

Neural MT 70+ ngôn ngữ.

Cost, Perf, Security, Fault Tolerance, Quotas, OpsEx.

Mạng ảo riêng trong AWS.

Khi dùng: Mặc định cho mọi workload.

Exam tip: CIDR, subnet, route table, SG, NACL, endpoint.

Truy cập AWS service không qua Internet.

Khi dùng: Gateway: S3, DDB free. Interface: PrivateLink $.

Rule chặn SQLi/XSS/bot/rate-limit L7.

Khi dùng: CloudFront/ALB/API GW/AppSync/Cognito UP.

Compute AWS trong mạng 5G carrier.

Khi dùng: Ultra-low latency cho mobile app.

Trace request qua service.