Pyongwon Lee

[AWS] EC2 Basics

Elastic Compute Cloud (EC2) provides scalable computing capacity in the AWS Cloud, which you can use to launch virtual servers, configure security and networking, and manage storage.

[AWS] High Performance Computing (HPC)

High Performance Computing (HPC) is used for the areas that require high computing powers such as financial analysis, machine learning, and weather prediction.

[AWS] AWS Shield

AWS Shield is a managed service to protect DDoS (Distributed Denial of Service) attacks.

AWS Shield provides always-on detection and mitigation service to minimize application downtime and latency.

[AWS] AWS WAF (Web Application Firewall)

WAF (Web Application Firewall) is a firewall service to protect web applications from common web exploit attacks such as SQL injection or Cross-Site Scripting. You can setup the rules to filter out malicious traffic.

https://docs.aws.amazon.com/waf

[AWS] Key Management Service (KMS)

Key Management Service (KMS) is a secure key management service (FIPS 140-2 level 2 validated). It helps you to create and control encryption keys that are used to encrypt and decrypt data. KMS also uses a HSM (Hardware Security Module) to protect the security of your keys.

KMS is integrated with most of other AWS services.

[AWS] Connecting VPCs

There are a couple of ways to connect instances and services in one VPC with other VPCs. – VPC Peering, Open VPC to the Internet, or AWS PrivateLink.

[AWS] AWS Directory Service

AWS Directory Service is a managed service that connects AWS resources with Microsoft Active Directory (AD) or Lightweight Directory Access Protocol (LDAP)-aware applications.

Existing cooperate credentials are used to access AWS resources using Single Sign-On (SSO).

[AWS] IDF, Cognito, and SSO

IDF (Identity Federation) is an architecture where the identities of an external identity provider (IDP) are recognized.