Master AWS Certified Developer – Associate (DVA-C02) Exam/

...

Summary and Quiz

Summarize what you’ve learned in the security, monitoring, and troubleshooting chapter and test yourself with a simple quiz.

We'll cover the following...

Encryption
- AWS Key Management Service (KMS)
- Types of encryption based on location
Secrets and configuration management
CloudWatch
- AWS CloudTrail
- AWS X-Rays
Test yourself

Let’s summarize what we have learned in this chapter.

Encryption

Data protection is as crucial as writing performant and reliable code in cloud-native applications.

We learned about two main types of encryption:

Symmetric encryption: This method uses a single key to encrypt and decrypt data.
Asymmetric encryption: This method generates a public key for encryption and a corresponding private key for decryption.

Regarding data states, data at rest (data stored) is encrypted using keys, while data in transit (data moving across networks) is secured using SSL/TLS certificates.

AWS Key Management Service (KMS)

AWS provides a centralized managed repository for encryption keys called the Key Management Service (KMS). KMS offers three types of encryption keys:

Customer-managed keys: With these keys, AWS provides the repository, but customers manage the key creation, rotation, and policies.
AWS managed keys: AWS handles the provisioning and management of these keys, though we can modify their ...

Learn AWS CLI—From Zero to Hero

Applying Multilayer API Security Using Cognito and WAF

Managing Users with Amazon Cognito User Pool and Identity Pool

Understanding Cloud Computing Essentials— From Zero to Hero

Creating an Image Pipeline with EC2 Image Builder

Deploying Web Applications Using Elastic Beanstalk

Deploy Elastic Container Registry Image with Elastic Beanstalk

Getting Started with Amazon ECS

Create an EKS Cluster and Deploy an Application

Understanding AWS Storage Options—From Zero to Hero

Managing Instance Volumes Using EBS

Managing Storage Lifecycle using Amazon S3 Lifecycle Policies

Processing Amazon S3 Events Using AWS Lambda

Managing Data Access with Amazon S3 Access Points

Implement Advanced DynamoDB Features in Social Media Application

Understanding AWS Database Options—From Zero to Hero

Getting Started with DynamoDB Accelerator (DAX)

Improving Database Performance with Amazon ElastiCache for Redis

Building Custom AWS Lambda Runtimes

Build a Fanout Serverless Architecture using SNS, SQS, and Lambda

Securing APIs and Creating Usage Plans on AWS API Gateway

Decoupling Serverless Applications with Amazon EventBridge

Dynamically Process SQS Messages Using Step Functions

Step Functions Application Patterns for Lambda Orchestration

Mastering Service Integration Patterns with AWS Step Functions

Building a CI/CD Pipeline with AWS CodePipeline

Building a CI/CD Pipeline in AWS Using Terraform

Deploying a CI/CD Pipeline on EKS Using Terraform

Creating an Amazon ECS Service Using a Blue/Green Deployment

Getting Started with Virtual Private Cloud (VPC) in AWS

Controlling VPC Traffic Using Network ACLs

Managing Peer Connections between Amazon Virtual Private Clouds

Connecting Multiple VPCs Using Transit Gateway

Configuring a Static Website with S3 and CloudFront

Managing Application Traffic Using Elastic Load Balancers

Understanding Auto Scaling Group (ASG) in AWS

Attach an Application Load Balancer to EC2 Auto Scaling Group

Getting Started with AWS Key Management Service (KMS)

Encrypting S3 Buckets and EBS Volumes Using KMS

Managing Aurora DB Credentials and API Keys Using Secrets Manager

Getting Started with AWS Systems Manager Parameter Store

Monitoring EC2 Instances Using AWS CloudWatch

Debugging Microservice-based Applications using AWS X-Ray

Analyzing S3 Data and CloudTrail Logs Using Amazon Athena

Create a Data Lake with Lake Formation and Analyze It with Athena

Building a Logs Processing Pipeline with Amazon Kinesis

Using Amazon OpenSearch Service for Data Ingestion

Practice Exam

Summary and Quiz

Encryption

AWS Key Management Service (KMS)