Scriptorium

[AWS] High Performance Computing (HPC)

High Performance Computing (HPC) is used for the areas that require high computing powers such as financial analysis, machine learning, and weather prediction.

[AWS] AWS Shield

AWS Shield is a managed service to protect DDoS (Distributed Denial of Service) attacks.

AWS Shield provides always-on detection and mitigation service to minimize application downtime and latency.

[AWS] AWS WAF (Web Application Firewall)

WAF (Web Application Firewall) is a firewall service to protect web applications from common web exploit attacks such as SQL injection or Cross-Site Scripting. You can setup the rules to filter out malicious traffic.

[AWS] Key Management Service (KMS)

Key Management Service (KMS) is a regional secure key management service (FIPS 140-2 level 2 validated) that provides encryption and decryption. KMS is integrated with most of other AWS services.

[AWS] Connecting VPCs

There are a couple of ways to connect instances and services in one VPC with other VPCs. – VPC Peering, Open VPC to the Internet, or AWS PrivateLink.

[AWS] AWS Directory Service

AWS Directory Service is a managed service that connects AWS resources with on-premise Active Directory (AD).

Existing cooperate credentials are used to access AWS resources using Single Sign-On (SSO).

[AWS] IDF, Cognito, and SSO

IDF (Identity Federation) is an architecture where the identities of an external identity provider (IDP) are recognized.

Types of IDF

Cross-account roles: A remote account is allowed to assume a role and access your account’s resources,
SAML 2.0 IDF: It allows users of SAMAL compatible system such as Active Directory (AD) to log in to the AWS services.
Web Identity Federation: External web-based IDPs (Google, Facebook) are allowed to assume roles.

[AWS] DataSync

DataSync is an online data transfer service that automates transferring large amounts of data to and from AWS storage services over the internet or AWS Direct Connect (DX) in a simple way.