AWS has a shared security model, meaning they commit to looking after part of the environment while you must look after the rest. We can generalize & say that AWS look after all of the bits of the environment that they can touch.
AWS are responsible for the physical security in their own facilities. This includes controlling the movements of individuals, restricting access to only those people that absolutely require access and keeping exact AWS data centre locations a closely guarded secret.
They’re responsible for the physical security of the underlying hardware and host operating system of EC2 and non-managed database instances. They [...]
Kinesis is a real time data processing service provided by AWS. It continuously captures and stores large amounts of data that power real time streaming dashboards.
A benefit of Kinesis is that in addition to real-time processing, we can also enable parallel processing which enables multiple Kinesis apps to process the same stream of data at the same time.
Kinesis is scalable as all AWS services are, durable as it replicates data to three availability zones and stores it for 24 hours by default (can be increased to 7 days).
Kinesis can be used for:Gaming: taking user input, processing them in real-time and providing live feedback to those inputs Real time [...]
The VPN connectivity with AWS enables us to combine resources from our on-premise environment with those in our AWS environment.
The VPN enables you to extend a subnet from one geographic location to another, across two separate networks. Each side of the VPN (on premise and AWS) can communicate with all resources on the other side – no public IP addresses or internet gateways are required to facilitate this communication.
VPN’s add additional security by encrypting traffic that is sent using the VPN.
The VPN’s have two parallel routes (IPSEC Tunnels) for redundancy.Component Description Virtual Private Gateway (VPG) This is the [...]