AWS Certified Solutions Architect - Associate (SAA-C03) glossary
Terms selected for AWS Certified Solutions Architect - Associate (SAA-C03) based on common objective language and practice focus.
Network ACL (NACL)
Stateless subnet-level traffic filter that evaluates ordered allow and deny rules.
Read full term ->Security Group
Stateful virtual firewall attached to AWS resources, controlling allowed inbound and outbound traffic.
Read full term ->Amazon VPC
Logically isolated virtual network in AWS where you define IP ranges, subnets, route tables, and security controls.
Read full term ->Subnet
A segmented IP range inside a VPC, typically scoped to a single Availability Zone.
Read full term ->Internet Gateway (IGW)
VPC component that enables communication between public subnets and the internet.
Read full term ->NAT Gateway
Managed service allowing instances in private subnets to initiate outbound internet access without accepting inbound internet traffic.
Read full term ->Route Table
Set of rules that determines where network traffic from a subnet is directed.
Read full term ->Application Load Balancer (ALB)
Layer 7 load balancer for HTTP/HTTPS traffic with host/path-based routing.
Read full term ->Auto Scaling Group (ASG)
Service that maintains desired instance count and scales compute capacity based on policies and health checks.
Read full term ->RDS Multi-AZ
High-availability deployment where RDS synchronously replicates to a standby in another AZ for failover.
Read full term ->Read Replica
Asynchronous copy of a database used to offload read traffic and improve scalability.
Read full term ->Amazon S3 Storage Classes
Tiered storage options balancing cost, access frequency, and retrieval characteristics.
Read full term ->Amazon CloudFront
Content delivery network that caches content at edge locations to reduce latency and offload origins.
Read full term ->Route 53 Failover Routing
DNS routing policy that directs traffic to a healthy primary endpoint and fails over to secondary when needed.
Read full term ->Amazon SQS vs Amazon SNS
SQS provides durable message queues for pull-based consumers, while SNS provides pub/sub fan-out notifications.
Read full term ->Amazon EventBridge
Event bus service for routing events between AWS services, SaaS apps, and custom applications.
Read full term ->AWS Key Management Service (KMS)
Managed service for creating and controlling cryptographic keys used for data encryption.
Read full term ->Amazon CloudWatch
Monitoring service for metrics, logs, alarms, and dashboards across AWS workloads.
Read full term ->AWS CloudTrail
Service that records API activity and account events for governance, compliance, and security analysis.
Read full term ->RTO and RPO
Recovery objectives where RTO is acceptable downtime and RPO is acceptable data loss window after disruption.
Read full term ->