AWS Certified Cloud Practioner

CCP exam is proctored by PSI and Pearson Vue.

Cost 145 AUD, Exam Duration: 90 Minutes, Total Questions: 65, Passing Score: 75%, Validitiy: 3 years

Exam Guide - Content Outline

Cloud Concepts - 28%, Security - 24%, Technology - 36%, Billing and Pricing - 12%

Exam Guid - White Papers

  • Overview of AWS
  • Architecting for the Cloud
  • How AWS pricing works
  • Cost Management in the AWS Cloud

What is Cloud Computing?

Cloud computing are typically hardware (infrastructure) and application services provided over the internet (could be any network). Cloud services companies provide resources (i.e., compute, network, storage and database) as a service so that customers do not have to incur the cost of acquiring and managing the required components.

Major Parts of an Application

  • Compute - CPU, Memory, RAM makes the brain of the Computer
  • Storage - Actual data is saved - local Hard Drive or Cloud Storage
  • Database - Stores data in a structured way and can be retrieved on demand
  • Network - Devices on same network can communicate with each other via switches (OSI Datalink layer). Devices on different network can communicate with each other via Routers (OSI - Network layer). Domain Name Server (DNS) translates Uniform Resource Locators (URLs) into public IPs of the webservers hosting a particular website.

Major Challenges of Local Data Centers

Three major business challenges were observed

  1. Cost Control - capital expenditures for equipment purchases (life cycle of equipment is three to five years). Also data center challenges including Server Sprawl - data centers running out of floor space, Increase in power consumption, arranging redundant power supply and Increase in cooling requirements
  2. Distributed Workforce - Many organizations have remote offices as well as employees who travel and/or work from home. So people needs to access organization's network remotely.
  3. Slow provisioning - The time to test, prepare and provision servers and applications can slow business initiatives.

On-Premise

  • You own the servers, data storage and networking hardware
  • You hire the IT people for managing and processing data, hardware and software applications
  • You own the data center or lease/rent it
  • You take all the risks

Cloud Providers

  • Someone else own the servers, data storage and network hardware
  • Someone else hire the IT people
  • Someone own or rents the data center
  • You are responsible for your configuring cloud services and code

Benefits of Cloud Computing

  1. Ease of use. E.g. AWS Management Console, AWS CLI.
  2. Elasticity: The ability to easily scale up or down in size, capacity , and/or scope when required (usually based on demand).
  3. Highly available and Fault Tolerant: When an environment is fault tolerant, it is able to withstand the loss of a component within the infrastructure while remaining functional. High availability is the ability of a system to remain in an operational state for a long period of time. Highly available systems are able to stay operational during maintenance and system failure.
  4. Cost-Effectiveness: Stop spending money on running and maintaining data centers. Also pay only for the amount of services we need. There are no long-term contracts or up-front commitments. Discounts are provided for certain services reserved for a minimum period of time.
  5. Flexibility: Choose as many Cloud services as needed. We receive a virtual platform from Cloud provider and we load the software services we need to support our applications.

Types of Cloud Computing

SaaS - Software as a Service:

A complete product, application or software that is run and managed by the service provider. e.g. Salesforce, Microsoft Office 365, Google Apps

PaaS - Platform as a Service:

Focus on the deployment and management of your applications. No need to worry about underlying infrastructure management. Hypervisor is used to convert existing compute equipment into virtual machines. One advantage of using virtual machines is to easily migrate them to new hardware.

IaaS - Infrastructure as a Service:

Part or all of an infrastructure platform access (networking, computers, servers, database storage) is provided by a third party.

Cloud Computing Deployment Models

Cloud: Fully utilizing Cloud Computing. E.g. Startups, SaaS offerings, New projects and companies

Hybrid: Using both cloud and On-Premise. E.g. Banks, Fintech, Investment Management, Large professional service providers, Legacy on-premise

On-Premise: Deploying resources on-premises, using virtualization and resource management tools. Also called Private Cloud. E.g. Public Sector, Governments, Supersensitive data such as hospitals, large enterprise with heavy regulation e.g. Insurance companies

AWS Global Infrastructure

Where does all this cloud computing run?

69 Availability Zones within 22 Geographic Regions

AWS serves over a million active customers in more than 190 countries

Steadily expanding global infrastructure to help customers achieve lower latency and higher throughput

Regions: a geographically distinct physical locations in the world with multiple Availability Zones (AZs) i.e. multiple data centers. Each region is physically isolated from and independent of every other region in terms of location, power, water supply etc.

Each region has at least two AZs. AWS largest region is US-EAST. Not all services are available in all regions. US-EAST-1 is the region where you see all your billing information.

Availability Zones: An AZ is a data center owned and operated by AWS in which AWS services run. AZs are represented by a region code, followed by a letter identifier e.g. us-east-1a.

Multi-AZ: Distributing your instances across multiple AZs allows failover configuration for handling requests when one goes down. Offers <10ms latency between AZs.

Edge Location or Points of Presence: A data center owned by a trusted partner of AWS which has a direct connection to the AWS network.

These locations serve requests for CloudFront and Route 53. Requests going to either of these services will be routed to the nearest edge location automatically. S3 transfer acceleration traffic and API Gateway endpoint traffic also use the AWS Edge network. This allows for low latency no matter where the end user is geographically located.

Network: AWS offers highly reliable, low latency and high throughput network connectivity. This is achieved with a fully redundant 100 Gpbs network that circles the globe via trans-oceanic cables that run over tens of thousands of kilometers and up to ten kilometers under the sea.

  • AWS manages and operates its network and controls it exclusively. This provides greater operational control and avoids network interconnect capacity conflicts.
  • The network is designed to be highly redundant, have no single points of failure and are designed to survive many concurrent link failures.
  • Companies can connect their existing data centers or offices to AWS network by using AWS Direct Connect which makes it easy to establish a direct, dedicated network connection to AWS.

GovCloud Regions: AWS GovCloud allow customers to host sensitive Controlled Unclassified Information and other types of regulated workloads.

GovCloud Regions are only operated by employees who are US citizens on US soil. They are only accessible to US entities and root account holders who pass a screening process. Customers can architect secure cloud solutions that comply with:

  • FedRAMP High Baseline
  • DOJ's Criminal Justice Information Systems (CJIS) Security Policy
  • US International Traffic in Arms Regulations (ITAR)
  • Export Administration Regulations (EAR)
  • Department of Defense (DoD) Cloud Computing Security Requirements Guide

Major Cloud Components

  • Compute: Elastic Compute Cloud (EC2), Lambda (serverless) etc
  • Storage: Simple Storage Service (S3) and Glacier
  • Networking: connect Virtual Private Cloud (VPC) in AWS using Direct Connect or Route53.

Continue to page 2