AWS Overview PDF
Document Details
Uploaded by ConvenientOnyx4014
Tags
Summary
This document provides an overview of Amazon Web Services (AWS), covering topics such as cloud computing, its advantages, different types of cloud computing, the global AWS infrastructure, security, compliance, and specific AWS services.
Full Transcript
Overview of Amazon Web Services AWS Whitepaper Overview of Amazon Web Services AWS Whitepaper Overview of Amazon Web Services: AWS Whitepaper Copyright © Amazon Web Services, Inc. and/or its affiliates. All rights reserved. Amazon's trademarks and trade dress ma...
Overview of Amazon Web Services AWS Whitepaper Overview of Amazon Web Services AWS Whitepaper Overview of Amazon Web Services: AWS Whitepaper Copyright © Amazon Web Services, Inc. and/or its affiliates. All rights reserved. Amazon's trademarks and trade dress may not be used in connection with any product or service that is not Amazon's, in any manner that is likely to cause confusion among customers, or in any manner that disparages or discredits Amazon. All other trademarks not owned by Amazon are the property of their respective owners, who may or may not be affiliated with, connected to, or sponsored by Amazon. Overview of Amazon Web Services AWS Whitepaper Table of Contents Overview of Amazon Web Services....................................................................................................... 1 Abstract.................................................................................................................................... 1 Introduction.............................................................................................................................. 1 What Is Cloud Computing?.................................................................................................................. 2 Six Advantages of Cloud Computing..................................................................................................... 3 Types of Cloud Computing.................................................................................................................. 4 Cloud Computing Models............................................................................................................ 4 Infrastructure as a Service (IaaS).......................................................................................... 4 Platform as a Service (PaaS)................................................................................................ 4 Software as a Service (SaaS)................................................................................................ 4 Cloud Computing Deployment Models.......................................................................................... 4 Cloud................................................................................................................................ 4 Hybrid.............................................................................................................................. 5 On-premises...................................................................................................................... 5 Global Infrastructure.......................................................................................................................... 6 Security and Compliance..................................................................................................................... 7 Security.................................................................................................................................... 7 Benefits of AWS Security.................................................................................................... 7 Compliance............................................................................................................................... 7 Amazon Web Services Cloud............................................................................................................... 9 AWS Management Console.......................................................................................................... 9 AWS Command Line Interface..................................................................................................... 9 Software Development Kits....................................................................................................... 10 Analytics................................................................................................................................. 10 Amazon Athena............................................................................................................... 10 Amazon CloudSearch........................................................................................................ 10 Amazon Elasticsearch Service............................................................................................. 11 Amazon EMR................................................................................................................... 11 Amazon FinSpace............................................................................................................. 11 Amazon Kinesis................................................................................................................ 11 Amazon Kinesis Data Firehose............................................................................................ 12 Amazon Kinesis Data Analytics........................................................................................... 12 Amazon Kinesis Data Streams............................................................................................ 12 Amazon Kinesis Video Streams........................................................................................... 12 Amazon Redshift.............................................................................................................. 12 Amazon QuickSight.......................................................................................................... 13 AWS Data Exchange......................................................................................................... 13 AWS Data Pipeline............................................................................................................ 13 AWS Glue........................................................................................................................ 13 AWS Lake Formation........................................................................................................ 14 Amazon Managed Streaming for Apache Kafka (Amazon MSK)............................................... 14 Application Integration............................................................................................................. 14 AWS Step Functions......................................................................................................... 15 Amazon AppFlow............................................................................................................. 15 Amazon EventBridge......................................................................................................... 15 Amazon Managed Workflows for Apache Airflow (MWAA)...................................................... 15 Amazon MQ.................................................................................................................... 16 Amazon Simple Notification Service................................................................................... 16 Amazon Simple Queue Service........................................................................................... 16 Amazon Simple Workflow Service...................................................................................... 16 AR and VR............................................................................................................................... 16 Amazon Sumerian............................................................................................................ 17 Blockchain............................................................................................................................... 17 Amazon Managed Blockchain............................................................................................. 17 iii Overview of Amazon Web Services AWS Whitepaper Business Applications................................................................................................................ 17 Alexa for Business............................................................................................................ 18 Amazon Chime................................................................................................................. 18 Amazon SES.................................................................................................................... 18 Amazon WorkDocs............................................................................................................ 18 Amazon WorkMail............................................................................................................ 18 Cloud Financial Management..................................................................................................... 19 AWS Application Cost Profiler............................................................................................ 19 AWS Cost Explorer............................................................................................................ 19 AWS Budgets................................................................................................................... 19 AWS Cost & Usage Report................................................................................................. 19 Reserved Instance (RI) Reporting........................................................................................ 20 Savings Plans................................................................................................................... 20 Compute Services..................................................................................................................... 20 Amazon EC2.................................................................................................................... 20 Amazon EC2 Auto Scaling................................................................................................. 21 Amazon EC2 Image Builder............................................................................................... 21 Amazon Lightsail.............................................................................................................. 22 AWS App Runner.............................................................................................................. 22 AWS Batch...................................................................................................................... 22 AWS Elastic Beanstalk....................................................................................................... 22 AWS Fargate.................................................................................................................... 22 AWS Lambda................................................................................................................... 23 AWS Serverless Application Repository................................................................................ 23 AWS Outposts.................................................................................................................. 23 AWS Wavelength.............................................................................................................. 23 VMware Cloud on AWS..................................................................................................... 24 Contact Center......................................................................................................................... 24 Amazon Connect.............................................................................................................. 24 Containers............................................................................................................................... 25 Amazon Elastic Container Registry...................................................................................... 25 Amazon Elastic Container Service....................................................................................... 25 Amazon Elastic Kubernetes Service..................................................................................... 25 AWS App2Container......................................................................................................... 25 Red Hat OpenShift Service on AWS.................................................................................... 26 Database................................................................................................................................. 26 Amazon Aurora................................................................................................................ 26 Amazon DynamoDB.......................................................................................................... 26 Amazon ElastiCache.......................................................................................................... 27 Amazon Keyspaces (for Apache Cassandra).......................................................................... 27 Amazon Neptune............................................................................................................. 27 Amazon Relational Database Service................................................................................... 28 Amazon RDS on VMware................................................................................................... 28 Amazon Quantum Ledger Database (QLDB)......................................................................... 28 Amazon Timestream......................................................................................................... 29 Amazon DocumentDB (with MongoDB compatibility)............................................................ 29 Developer Tools....................................................................................................................... 29 Amazon Corretto.............................................................................................................. 29 AWS Cloud9.................................................................................................................... 29 AWS CloudShell............................................................................................................... 30 AWS CodeArtifact............................................................................................................. 30 AWS CodeBuild................................................................................................................ 30 AWS CodeCommit............................................................................................................ 30 AWS CodeDeploy.............................................................................................................. 30 AWS CodePipeline............................................................................................................ 30 AWS CodeStar.................................................................................................................. 31 AWS Fault Injection Simulator............................................................................................ 31 iv Overview of Amazon Web Services AWS Whitepaper AWS X-Ray...................................................................................................................... 31 End User Computing................................................................................................................. 31 Amazon AppStream 2.0.................................................................................................... 32 Amazon WorkSpaces......................................................................................................... 32 Amazon WorkLink............................................................................................................ 32 Front-End Web & Mobile Services............................................................................................... 32 Amazon Location Service.................................................................................................. 33 Amazon Pinpoint.............................................................................................................. 33 AWS Amplify................................................................................................................... 33 AWS Device Farm............................................................................................................. 34 AWS AppSync.................................................................................................................. 34 Game Tech.............................................................................................................................. 34 Amazon GameLift............................................................................................................. 34 Amazon Lumberyard......................................................................................................... 34 Internet of Things (IoT)............................................................................................................. 34 AWS IoT 1-Click............................................................................................................... 35 AWS IoT Analytics............................................................................................................ 35 AWS IoT Button............................................................................................................... 36 AWS IoT Core.................................................................................................................. 36 AWS IoT Device Defender.................................................................................................. 36 AWS IoT Device Management............................................................................................ 37 AWS IoT Events................................................................................................................ 37 AWS IoT Greengrass......................................................................................................... 37 AWS IoT SiteWise............................................................................................................. 37 AWS IoT Things Graph...................................................................................................... 38 AWS Partner Device Catalog.............................................................................................. 38 FreeRTOS........................................................................................................................ 38 Machine Learning..................................................................................................................... 39 Amazon Augmented AI..................................................................................................... 40 Amazon CodeGuru............................................................................................................ 40 Amazon Comprehend....................................................................................................... 40 Amazon DevOps Guru....................................................................................................... 40 Amazon Elastic Inference................................................................................................... 41 Amazon Forecast.............................................................................................................. 41 Amazon Fraud Detector.................................................................................................... 42 Amazon HealthLake.......................................................................................................... 42 Amazon Kendra................................................................................................................ 42 Amazon Lex..................................................................................................................... 42 Amazon Lookout for Equipment......................................................................................... 43 Amazon Lookout for Metrics.............................................................................................. 43 Amazon Lookout for Vision............................................................................................... 43 Amazon Monitron............................................................................................................. 43 Amazon Personalize.......................................................................................................... 44 Amazon Polly................................................................................................................... 44 Amazon Rekognition......................................................................................................... 44 Amazon SageMaker.......................................................................................................... 45 Amazon SageMaker Ground Truth...................................................................................... 45 Amazon Textract.............................................................................................................. 46 Amazon Transcribe........................................................................................................... 46 Amazon Translate............................................................................................................. 46 Apache MXNet on AWS..................................................................................................... 46 AWS Deep Learning AMIs.................................................................................................. 47 AWS DeepComposer......................................................................................................... 47 AWS DeepLens................................................................................................................. 47 AWS DeepRacer................................................................................................................ 47 AWS Inferentia................................................................................................................. 47 TensorFlow on AWS.......................................................................................................... 48 v Overview of Amazon Web Services AWS Whitepaper Management and Governance.................................................................................................... 48 Amazon CloudWatch......................................................................................................... 48 AWS Auto Scaling............................................................................................................ 49 AWS Chatbot................................................................................................................... 49 AWS Compute Optimizer................................................................................................... 49 AWS Control Tower.......................................................................................................... 49 AWS CloudFormation........................................................................................................ 50 AWS CloudTrail................................................................................................................ 50 AWS Config..................................................................................................................... 50 AWS Launch Wizard.......................................................................................................... 51 AWS Organizations........................................................................................................... 51 AWS OpsWorks................................................................................................................ 51 AWS Proton..................................................................................................................... 51 AWS Service Catalog......................................................................................................... 51 AWS Systems Manager...................................................................................................... 52 AWS Trusted Advisor........................................................................................................ 53 AWS Personal Health Dashboard........................................................................................ 53 AWS Managed Services..................................................................................................... 53 AWS Console Mobile Application........................................................................................ 53 AWS License Manager....................................................................................................... 54 AWS Well-Architected Tool................................................................................................ 54 Media Services......................................................................................................................... 54 Amazon Elastic Transcoder................................................................................................ 55 Amazon Interactive Video Service....................................................................................... 55 Amazon Nimble Studio..................................................................................................... 55 AWS Elemental Appliances & Software............................................................................... 55 AWS Elemental MediaConnect........................................................................................... 55 AWS Elemental MediaConvert............................................................................................ 56 AWS Elemental MediaLive................................................................................................. 56 AWS Elemental MediaPackage........................................................................................... 56 AWS Elemental MediaStore............................................................................................... 56 AWS Elemental MediaTailor............................................................................................... 56 Migration and Transfer.............................................................................................................. 57 AWS Application Migration Service..................................................................................... 57 AWS Migration Hub.......................................................................................................... 57 AWS Application Discovery Service..................................................................................... 57 AWS Database Migration Service........................................................................................ 58 AWS Server Migration Service............................................................................................ 58 AWS Snow Family............................................................................................................ 58 AWS DataSync................................................................................................................. 59 AWS Transfer Family......................................................................................................... 59 Networking and Content Delivery............................................................................................... 60 Amazon API Gateway........................................................................................................ 60 Amazon CloudFront.......................................................................................................... 60 Amazon Route 53............................................................................................................. 60 Amazon VPC.................................................................................................................... 61 AWS App Mesh................................................................................................................ 61 AWS Cloud Map............................................................................................................... 62 AWS Direct Connect......................................................................................................... 62 AWS Global Accelerator..................................................................................................... 62 AWS PrivateLink............................................................................................................... 63 AWS Transit Gateway........................................................................................................ 63 AWS VPN........................................................................................................................ 63 Elastic Load Balancing...................................................................................................... 63 Quantum Technologies............................................................................................................. 64 Amazon Braket................................................................................................................ 64 Robotics.................................................................................................................................. 64 vi Overview of Amazon Web Services AWS Whitepaper AWS RoboMaker............................................................................................................... 64 Satellite.................................................................................................................................. 65 AWS Ground Station......................................................................................................... 65 Security, Identity, and Compliance.............................................................................................. 65 Amazon Cognito.............................................................................................................. 66 Amazon Cloud Directory................................................................................................... 66 Amazon Detective............................................................................................................ 67 Amazon GuardDuty.......................................................................................................... 67 Amazon Inspector............................................................................................................ 67 Amazon Macie................................................................................................................. 68 AWS Artifact.................................................................................................................... 68 AWS Audit Manager.......................................................................................................... 68 AWS Certificate Manager................................................................................................... 68 AWS CloudHSM................................................................................................................ 69 AWS Directory Service...................................................................................................... 69 AWS Firewall Manager...................................................................................................... 69 AWS Identity and Access Management................................................................................ 69 AWS Key Management Service........................................................................................... 70 AWS Network Firewall...................................................................................................... 70 AWS Resource Access Manager........................................................................................... 70 AWS Secrets Manager....................................................................................................... 71 AWS Security Hub............................................................................................................ 71 AWS Shield...................................................................................................................... 71 AWS Single Sign-On......................................................................................................... 72 AWS WAF........................................................................................................................ 72 Storage................................................................................................................................... 72 Amazon Elastic Block Store............................................................................................... 72 Amazon Elastic File System............................................................................................... 73 Amazon FSx for Lustre...................................................................................................... 73 Amazon FSx for Windows File Server.................................................................................. 73 Amazon Simple Storage Service......................................................................................... 74 Amazon S3 Glacier........................................................................................................... 74 AWS Backup.................................................................................................................... 74 AWS Storage Gateway...................................................................................................... 74 Next Steps....................................................................................................................................... 75 Conclusion............................................................................................................................... 75 Resources........................................................................................................................................ 76 Document Details............................................................................................................................. 77 Contributors............................................................................................................................ 77 Document Revisions.................................................................................................................. 77 AWS glossary................................................................................................................................... 78 vii Overview of Amazon Web Services AWS Whitepaper Abstract Overview of Amazon Web Services Publication date: August 5, 2021 (Document Details (p. 77)) Abstract Amazon Web Services offers a broad set of global cloud-based products including compute, storage, databases, analytics, networking, mobile, developer tools, management tools, IoT, security, and enterprise applications: on-demand, available in seconds, with pay-as-you-go pricing. From data warehousing to deployment tools, directories to content delivery, over 200 AWS services are available. New services can be provisioned quickly, without the upfront capital expense. This allows enterprises, start-ups, small and medium-sized businesses, and customers in the public sector to access the building blocks they need to respond quickly to changing business requirements. This whitepaper provides you with an overview of the benefits of the AWS Cloud and introduces you to the services that make up the platform. Introduction In 2006, Amazon Web Services (AWS) began offering IT infrastructure services to businesses as web services—now commonly known as cloud computing. One of the key benefits of cloud computing is the opportunity to replace upfront capital infrastructure expenses with low variable costs that scale with your business. With the cloud, businesses no longer need to plan for and procure servers and other IT infrastructure weeks or months in advance. Instead, they can instantly spin up hundreds or thousands of servers in minutes and deliver results faster. Today, AWS provides a highly reliable, scalable, low-cost infrastructure platform in the cloud that powers hundreds of thousands of businesses in 190 countries around the world. 1 Overview of Amazon Web Services AWS Whitepaper What Is Cloud Computing? Cloud computing is the on-demand delivery of compute power, database, storage, applications, and other IT resources through a cloud services platform via the Internet with pay-as-you-go pricing. Whether you are running applications that share photos to millions of mobile users or you’re supporting the critical operations of your business, a cloud services platform provides rapid access to flexible and low-cost IT resources. With cloud computing, you don’t need to make large upfront investments in hardware and spend a lot of time on the heavy lifting of managing that hardware. Instead, you can provision exactly the right type and size of computing resources you need to power your newest bright idea or operate your IT department. You can access as many resources as you need, almost instantly, and only pay for what you use. Cloud computing provides a simple way to access servers, storage, databases and a broad set of application services over the Internet. A cloud services platform such as Amazon Web Services owns and maintains the network-connected hardware required for these application services, while you provision and use what you need via a web application. 2 Overview of Amazon Web Services AWS Whitepaper Six Advantages of Cloud Computing Trade capital expense for variable expense – Instead of having to invest heavily in data centers and servers before you know how you’re going to use them, you can pay only when you consume computing resources, and pay only for how much you consume. Benefit from massive economies of scale – By using cloud computing, you can achieve a lower variable cost than you can get on your own. Because usage from hundreds of thousands of customers is aggregated in the cloud, providers such as AWS can achieve higher economies of scale, which translates into lower pay as-you-go prices. Stop guessing capacity – Eliminate guessing on your infrastructure capacity needs. When you make a capacity decision prior to deploying an application, you often end up either sitting on expensive idle resources or dealing with limited capacity. With cloud computing, these problems go away. You can access as much or as little capacity as you need, and scale up and down as required with only a few minutes’ notice. Increase speed and agility – In a cloud computing environment, new IT resources are only a click away, which means that you reduce the time to make those resources available to your developers from weeks to just minutes. This results in a dramatic increase in agility for the organization, since the cost and time it takes to experiment and develop is significantly lower. Stop spending money running and maintaining data centers – Focus on projects that differentiate your business, not the infrastructure. Cloud computing lets you focus on your own customers, rather than on the heavy lifting of racking, stacking, and powering servers. Go global in minutes – Easily deploy your application in multiple regions around the world with just a few clicks. This means you can provide lower latency and a better experience for your customers at minimal cost. 3 Overview of Amazon Web Services AWS Whitepaper Cloud Computing Models Types of Cloud Computing Cloud computing provides developers and IT departments with the ability to focus on what matters most and avoid undifferentiated work such as procurement, maintenance, and capacity planning. As cloud computing has grown in popularity, several different models and deployment strategies have emerged to help meet specific needs of different users. Each type of cloud service and deployment method provides you with different levels of control, flexibility, and management. Understanding the differences between Infrastructure as a Service, Platform as a Service, and Software as a Service, as well as what deployment strategies you can use, can help you decide what set of services is right for your needs. Cloud Computing Models Infrastructure as a Service (IaaS) Infrastructure as a Service (IaaS) contains the basic building blocks for cloud IT and typically provides access to networking features, computers (virtual or on dedicated hardware), and data storage space. IaaS provides you with the highest level of flexibility and management control over your IT resources and is most similar to existing IT resources that many IT departments and developers are familiar with today. Platform as a Service (PaaS) Platform as a Service (PaaS) removes the need for your organization to manage the underlying infrastructure (usually hardware and operating systems) and allows you to focus on the deployment and management of your applications. This helps you be more efficient as you don’t need to worry about resource procurement, capacity planning, software maintenance, patching, or any of the other undifferentiated heavy lifting involved in running your application. Software as a Service (SaaS) Software as a Service (SaaS) provides you with a completed product that is run and managed by the service provider. In most cases, people referring to Software as a Service are referring to end-user applications. With a SaaS offering you do not have to think about how the service is maintained or how the underlying infrastructure is managed; you only need to think about how you will use that particular piece of software. A common example of a SaaS application is web-based email which you can use to send and receive email without having to manage feature additions to the email product or maintain the servers and operating systems that the email program is running on. Cloud Computing Deployment Models Cloud A cloud-based application is fully deployed in the cloud and all parts of the application run in the cloud. Applications in the cloud have either been created in the cloud or have been migrated from an existing infrastructure to take advantage of the benefits of cloud computing. Cloud-based applications can be built on low-level infrastructure pieces or can use higher level services that provide abstraction from the management, architecting, and scaling requirements of core infrastructure. 4 Overview of Amazon Web Services AWS Whitepaper Hybrid Hybrid A hybrid deployment is a way to connect infrastructure and applications between cloud-based resources and existing resources that are not located in the cloud. The most common method of hybrid deployment is between the cloud and existing on-premises infrastructure to extend, and grow, an organization's infrastructure into the cloud while connecting cloud resources to the internal system. For more information on how AWS can help you with your hybrid deployment, visit our Hybrid Cloud with AWS page. On-premises The deployment of resources on-premises, using virtualization and resource management tools, is sometimes called the “private cloud.” On-premises deployment doesn’t provide many of the benefits of cloud computing but is sometimes sought for its ability to provide dedicated resources. In most cases this deployment model is the same as legacy IT infrastructure while using application management and virtualization technologies to try and increase resource utilization. For more information on how AWS can help, see Use case: Cloud services on-premises. 5 Overview of Amazon Web Services AWS Whitepaper Global Infrastructure AWS serves over a million active customers in more than 240 countries and territories. We are steadily expanding global infrastructure to help our customers achieve lower latency and higher throughput, and to ensure that their data resides only in the AWS Region they specify. As our customers grow their businesses, AWS will continue to provide infrastructure that meets their global requirements. The AWS Cloud infrastructure is built around AWS Regions and Availability Zones. An AWS Region is a physical location in the world where we have multiple Availability Zones. Availability Zones consist of one or more discrete data centers, each with redundant power, networking, and connectivity, housed in separate facilities. These Availability Zones offer you the ability to operate production applications and databases that are more highly available, fault tolerant, and scalable than would be possible from a single data center. The AWS Cloud operates in 80 Availability Zones within 25 geographic Regions around the world, with announced plans for more Availability Zones and Regions. For more information on the AWS Cloud Availability Zones and AWS Regions, see AWS Global Infrastructure. Each Amazon Region is designed to be completely isolated from the other Amazon Regions. This achieves the greatest possible fault tolerance and stability. Each Availability Zone is isolated, but the Availability Zones in a Region are connected through low-latency links. AWS provides you with the flexibility to place instances and store data within multiple geographic regions as well as across multiple Availability Zones within each AWS Region. Each Availability Zone is designed as an independent failure zone. This means that Availability Zones are physically separated within a typical metropolitan region and are located in lower risk flood plains (specific flood zone categorization varies by AWS Region). In addition to discrete uninterruptible power supply (UPS) and onsite backup generation facilities, data centers located in different Availability Zones are designed to be supplied by independent substations to reduce the risk of an event on the power grid impacting more than one Availability Zone. Availability Zones are all redundantly connected to multiple tier-1 transit providers. 6 Overview of Amazon Web Services AWS Whitepaper Security Security and Compliance Security Cloud security at AWS is the highest priority. As an AWS customer, you will benefit from a data center and network architecture built to meet the requirements of the most security-sensitive organizations. Security in the cloud is much like security in your on-premises data centers—only without the costs of maintaining facilities and hardware. In the cloud, you don’t have to manage physical servers or storage devices. Instead, you use software-based security tools to monitor and protect the flow of information into and out of your cloud resources. An advantage of the AWS Cloud is that it allows you to scale and innovate, while maintaining a secure environment and paying only for the services you use. This means that you can have the security you need at a lower cost than in an on-premises environment. As an AWS customer you inherit all the best practices of AWS policies, architecture, and operational processes built to satisfy the requirements of our most security-sensitive customers. Get the flexibility and agility you need in security controls. The AWS Cloud enables a shared responsibility model. While AWS manages security of the cloud, you are responsible for security in the cloud. This means that you retain control of the security you choose to implement to protect your own content, platform, applications, systems, and networks no differently than you would in an on-site data center. AWS provides you with guidance and expertise through online resources, personnel, and partners. AWS provides you with advisories for current issues, plus you have the opportunity to work with AWS when you encounter security issues. You get access to hundreds of tools and features to help you to meet your security objectives. AWS provides security-specific tools and features across network security, configuration management, access control, and data encryption. Finally, AWS environments are continuously audited, with certifications from accreditation bodies across geographies and verticals. In the AWS environment, you can take advantage of automated tools for asset inventory and privileged access reporting. Benefits of AWS Security Keep Your Data Safe: The AWS infrastructure puts strong safeguards in place to help protect your privacy. All data is stored in highly secure AWS data centers. Meet Compliance Requirements: AWS manages dozens of compliance programs in its infrastructure. This means that segments of your compliance have already been completed. Save Money: Cut costs by using AWS data centers. Maintain the highest standard of security without having to manage your own facility Scale Quickly: Security scales with your AWS Cloud usage. No matter the size of your business, the AWS infrastructure is designed to keep your data safe. Compliance AWS Cloud Compliance enables you to understand the robust controls in place at AWS to maintain security and data protection in the cloud. As systems are built on top of AWS Cloud infrastructure, 7 Overview of Amazon Web Services AWS Whitepaper Compliance compliance responsibilities will be shared. By tying together governance-focused, audit-friendly service features with applicable compliance or audit standards, AWS Compliance enablers build on traditional programs. This helps customers to establish and operate in an AWS security control environment. The IT infrastructure that AWS provides to its customers is designed and managed in alignment with best security practices and a variety of IT security standards. The following is a partial list of assurance programs with which AWS complies: SOC 1/ISAE 3402, SOC 2, SOC 3 FISMA, DIACAP, and FedRAMP PCI DSS Level 1 ISO 9001, ISO 27001, ISO 27017, ISO 27018 AWS provides customers a wide range of information on its IT control environment in whitepapers, reports, certifications, accreditations, and other third-party attestations. More information is available in the Risk and Compliance whitepaper and the AWS Security Center. 8 Overview of Amazon Web Services AWS Whitepaper AWS Management Console Amazon Web Services Cloud Topics AWS Management Console (p. 9) AWS Command Line Interface (p. 9) Software Development Kits (p. 10) Analytics (p. 10) Application Integration (p. 14) AR and VR (p. 16) Blockchain (p. 17) Business Applications (p. 17) Cloud Financial Management (p. 19) Compute Services (p. 20) Contact Center (p. 24) Containers (p. 25) Database (p. 26) Developer Tools (p. 29) End User Computing (p. 31) Front-End Web & Mobile Services (p. 32) Game Tech (p. 34) Internet of Things (IoT) (p. 34) Machine Learning (p. 39) Management and Governance (p. 48) Media Services (p. 54) Migration and Transfer (p. 57) Networking and Content Delivery (p. 60) Quantum Technologies (p. 64) Robotics (p. 64) Satellite (p. 65) Security, Identity, and Compliance (p. 65) Storage (p. 72) AWS Management Console Access and manage Amazon Web Services through the AWS Management Console, a simple and intuitive user interface. You can also use the AWS Console Mobile Application to quickly view resources on the go. AWS Command Line Interface The AWS Command Line Interface (CLI) is a unified tool to manage your AWS services. With just one tool to download and configure, you can control multiple AWS services from the command line and automate them through scripts. 9 Overview of Amazon Web Services AWS Whitepaper Software Development Kits Software Development Kits Our Software Development Kits (SDKs) simplify using AWS services in your applications with an Application Program Interface (API) tailored to your programming language or platform. Analytics Topics Amazon Athena (p. 10) Amazon CloudSearch (p. 10) Amazon Elasticsearch Service (p. 11) Amazon EMR (p. 11) Amazon FinSpace (p. 11) Amazon Kinesis (p. 11) Amazon Kinesis Data Firehose (p. 12) Amazon Kinesis Data Analytics (p. 12) Amazon Kinesis Data Streams (p. 12) Amazon Kinesis Video Streams (p. 12) Amazon Redshift (p. 12) Amazon QuickSight (p. 13) AWS Data Exchange (p. 13) AWS Data Pipeline (p. 13) AWS Glue (p. 13) AWS Lake Formation (p. 14) Amazon Managed Streaming for Apache Kafka (Amazon MSK) (p. 14) Amazon Athena Amazon Athena is an interactive query service that makes it easy to analyze data in Amazon S3 using standard SQL. Athena is serverless, so there is no infrastructure to manage, and you pay only for the queries that you run. Athena is easy to use. Simply point to your data in Amazon S3, define the schema, and start querying using standard SQL. Most results are delivered within seconds. With Athena, there’s no need for complex extract, transform, and load (ETL) jobs to prepare your data for analysis. This makes it easy for anyone with SQL skills to quickly analyze large-scale datasets. Athena is out-of-the-box integrated with AWS Glue Data Catalog, allowing you to create a unified metadata repository across various services, crawl data sources to discover schemas and populate your Catalog with new and modified table and partition definitions, and maintain schema versioning. Amazon CloudSearch Amazon CloudSearch is a managed service in the AWS Cloud that makes it simple and cost-effective to set up, manage, and scale a search solution for your website or application. Amazon CloudSearch 10 Overview of Amazon Web Services AWS Whitepaper Amazon Elasticsearch Service supports 34 languages and popular search features such as highlighting, autocomplete, and geospatial search. Amazon Elasticsearch Service Amazon Elasticsearch Service makes it easy to deploy, secure, operate, and scale Elasticsearch to search, analyze, and visualize data in real-time. With Amazon Elasticsearch Service, you get easy-to-use APIs and real-time analytics capabilities to power use-cases such as log analytics, full-text search, application monitoring, and clickstream analytics, with enterprise-grade availability, scalability, and security. The service offers integrations with open-source tools like Kibana and Logstash for data ingestion and visualization. It also integrates seamlessly with other AWS services such as Amazon Virtual Private Cloud (Amazon VPC), AWS Key Management Service (AWS KMS), Amazon Kinesis Data Firehose, AWS Lambda, AWS Identity and Access Management (IAM), Amazon Cognito, and Amazon CloudWatch, so that you can go from raw data to actionable insights quickly. Amazon EMR Amazon EMR is the industry-leading cloud big data platform for processing vast amounts of data using open source tools such as Apache Spark, Apache Hive, Apache HBase, Apache Flink, Apache Hudi, and Presto. Amazon EMR makes it easy to set up, operate, and scale your big data environments by automating time-consuming tasks like provisioning capacity and tuning clusters. With EMR you can run petabyte-scale analysis at less than half of the cost of traditional on-premises solutions andover 3x faster than standard Apache Spark. You can run workloads on Amazon EC2 instances, on Amazon Elastic Kubernetes Service (EKS) clusters, or on-premises using EMR on AWS Outposts. Amazon FinSpace Amazon FinSpace is a data management and analytics service purpose-built for the financial services industry (FSI). FinSpace reduces the time you spend finding and preparing petabytes of financial data to be ready for analysis from months to minutes. Financial services organizations analyze data from internal data stores like portfolio, actuarial, and risk management systems as well as petabytes of data from third-party data feeds, such as historical securities prices from stock exchanges. It can take months to find the right data, get permissions to access the data in a compliant way, and prepare it for analysis. FinSpace removes the heavy lifting of building and maintaining a data management system for financial analytics. With FinSpace, you collect data and catalog it by relevant business concepts such as asset class, risk classification, or geographic region. FinSpace makes it easy to discover and share data across your organization in accordance with your compliance requirements. You define your data access policies in one place and FinSpace enforces them while keeping audit logs to allow for compliance and activity reporting. FinSpace also includes a library of 100+ functions, like time bars and Bollinger bands, for you to prepare data for analysis. Amazon Kinesis Amazon Kinesis makes it easy to collect, process, and analyze real-time, streaming data so you can get timely insights and react quickly to new information. Amazon Kinesis offers key capabilities to cost- effectively process streaming data at any scale, along with the flexibility to choose the tools that best suit the requirements of your application. With Amazon Kinesis, you can ingest real-time data such as video, audio, application logs, website clickstreams, and IoT telemetry data for machine learning, analytics, and other applications. Amazon Kinesis enables you to process and analyze data as it arrives and respond instantly instead of having to wait until all your data is collected before the processing can begin. 11 Overview of Amazon Web Services AWS Whitepaper Amazon Kinesis Data Firehose Amazon Kinesis currently offers four services: Kinesis Data Firehose, Kinesis Data Analytics, Kinesis Data Streams, and Kinesis Video Streams. Amazon Kinesis Data Firehose Amazon Kinesis Data Firehose is the easiest way to reliably load streaming data into data stores and analytics tools. It can capture, transform, and load streaming data into Amazon S3, Amazon Redshift, Amazon Elasticsearch Service, and Splunk, enabling near real-time analytics with existing business intelligence tools and dashboards you’re already using today. It is a fully managed service that automatically scales to match the throughput of your data and requires no ongoing administration. It can also batch, compress, transform, and encrypt the data before loading it, minimizing the amount of storage used at the destination and increasing security. You can easily create a Firehose delivery stream from the AWS Management Console, configure it with a few clicks, and start sending data to the stream from hundreds of thousands of data sources to be loaded continuously to AWS—all in just a few minutes. You can also configure your delivery stream to automatically convert the incoming data to columnar formats like Apache Parquet and Apache ORC, before the data is delivered to Amazon S3, for cost-effective storage and analytics. Amazon Kinesis Data Analytics Amazon Kinesis Data Analytics is the easiest way to analyze streaming data, gain actionable insights, and respond to your business and customer needs in real time. Amazon Kinesis Data Analytics reduces the complexity of building, managing, and integrating streaming applications with other AWS services. SQL users can easily query streaming data or build entire streaming applications using templates and an interactive SQL editor. Java developers can quickly build sophisticated streaming applications using open source Java libraries and AWS integrations to transform and analyze data in real-time. Amazon Kinesis Data Analytics takes care of everything required to run your queries continuously and scales automatically to match the volume and throughput rate of your incoming data. Amazon Kinesis Data Streams Amazon Kinesis Data Streams is a massively scalable and durable real-time data streaming service. KDS can continuously capture gigabytes of data per second from hundreds of thousands of sources such as website clickstreams, database event streams, financial transactions, social media feeds, IT logs, and location-tracking events. The data collected is available in milliseconds to enable real-time analytics use cases such as real-time dashboards, real-time anomaly detection, dynamic pricing, and more. Amazon Kinesis Video Streams Amazon Kinesis Video Streams makes it easy to securely stream video from connected devices to AWS for analytics, machine learning (ML), playback, and other processing. Kinesis Video Streams automatically provisions and elastically scales all the infrastructure needed to ingest streaming video data from millions of devices. It also durably stores, encrypts, and indexes video data in your streams, and allows you to access your data through easy-to-use APIs. Kinesis Video Streams enables you to playback video for live and on-demand viewing, and quickly build applications that take advantage of computer vision and video analytics through integration with Amazon Rekognition Video, and libraries for ML frameworks such as Apache MxNet, TensorFlow, and OpenCV. Amazon Redshift Amazon Redshift is the most widely used cloud data warehouse. It makes it fast, simple and cost- effective to analyze all your data using standard SQL and your existing Business Intelligence (BI) tools. 12 Overview of Amazon Web Services AWS Whitepaper Amazon QuickSight It allows you to run complex analytic queries against terabytes to petabytes of structured and semi- structured data, using sophisticated query optimization, columnar storage on high-performance storage, and massively parallel query execution. Most results come back in seconds. You can start small for just $0.25 per hour with no commitments and scale out to petabytes of data for $1,000 per terabyte per year, less than a tenth the cost of traditional on-premises solutions. Amazon QuickSight Amazon QuickSight is a fast, cloud-powered business intelligence (BI) service that makes it easy for you to deliver insights to everyone in your organization. QuickSight lets you create and publish interactive dashboards that can be accessed from browsers or mobile devices. You can embed dashboards into your applications, providing your customers with powerful self-service analytics. QuickSight easily scales to tens of thousands of users without any software to install, servers to deploy, or infrastructure to manage. AWS Data Exchange AWS Data Exchange makes it easy to find, subscribe to, and use third-party data in the cloud. Qualified data providers include category-leading brands such as Reuters, who curate data from over 2.2 million unique news stories per year in multiple languages; Change Healthcare, who process and anonymize more than 14 billion healthcare transactions and $1 trillion in claims annually; Dun & Bradstreet, who maintain a database of more than 330 million global business records; and Foursquare, whose location data is derived from 220 million unique consumers and includes more than 60 million global commercial venues. Once subscribed to a data product, you can use the AWS Data Exchange API to load data directly into Amazon S3 and then analyze it with a wide variety of AWS analytics and machine learning services. For example, property insurers can subscribe to data to analyze historical weather patterns to calibrate insurance coverage requirements in different geographies; restaurants can subscribe to population and location data to identify optimal regions for expansion; academic researchers can conduct studies on climate change by subscribing to data on carbon dioxide emissions; and healthcare professionals can subscribe to aggregated data from historical clinical trials to accelerate their research activities. For data providers, AWS Data Exchange makes it easy to reach the millions of AWS customers migrating to the cloud by removing the need to build and maintain infrastructure for data storage, delivery, billing, and entitling. AWS Data Pipeline AWS Data Pipeline is a web service that helps you reliably process and move data between different AWS compute and storage services, as well as on-premises data sources, at specified intervals. With AWS Data Pipeline, you can regularly access your data where it’s stored, transform and process it at scale, and efficiently transfer the results to AWS services such as Amazon S3 (p. 74), Amazon RDS (p. 28), Amazon DynamoDB (p. 26), and Amazon EMR (p. 11). AWS Data Pipeline helps you easily create complex data processing workloads that are fault tolerant, repeatable, and highly available. You don’t have to worry about ensuring resource availability, managing inter-task dependencies, retrying transient failures or timeouts in individual tasks, or creating a failure notification system. AWS Data Pipeline also allows you to move and process data that was previously locked up in on-premises data silos. AWS Glue AWS Glue is a fully managed extract, transform, and load (ETL) service that makes it easy for customers to prepare and load their data for analytics. You can create and run an ETL job with a few clicks in the 13 Overview of Amazon Web Services AWS Whitepaper AWS Lake Formation AWS Management Console. You simply point AWS Glue to your data stored on AWS, and AWS Glue discovers your data and stores the associated metadata (e.g. table definition and schema) in the AWS Glue Data Catalog. Once cataloged, your data is immediately searchable, queryable, and available for ETL. AWS Lake Formation AWS Lake Formation is a service that makes it easy to set up a secure data lake in days. A data lake is a centralized, curated, and secured repository that stores all your data, both in its original form and prepared for analysis. A data lake enables you to break down data silos and combine different types of analytics to gain insights and guide better business decisions. However, setting up and managing data lakes today involves a lot of manual, complicated, and time- consuming tasks. This work includes loading data from diverse sources, monitoring those data flows, setting up partitions, turning on encryption and managing keys, defining transformation jobs and monitoring their operation, re-organizing data into a columnar format, configuring access control settings, deduplicating redundant data, matching linked records, granting access to data sets, and auditing access over time. Creating a data lake with Lake Formation is as simple as defining where your data resides and what data access and security policies you want to apply. Lake Formation then collects and catalogs data from databases and object storage, moves the data into your new Amazon S3 data lake, cleans and classifies data using machine learning algorithms, and secures access to your sensitive data. Your users can then access a centralized catalog of data which describes available data sets and their appropriate usage. Your users then leverage these data sets with their choice of analytics and machine learning services, like Amazon EMR for Apache Spark, Amazon Redshift, Amazon Athena, SageMaker, and Amazon QuickSight. Amazon Managed Streaming for Apache Kafka (Amazon MSK) Amazon Managed Streaming for Apache Kafka (Amazon MSK) is a fully managed service that makes it easy for you to build and run applications that use Apache Kafka to process streaming data. Apache Kafka is an open-source platform for building real-time streaming data pipelines and applications. With Amazon MSK, you can use Apache Kafka APIs to populate data lakes, stream changes to and from databases, and power machine learning and analytics applications. Apache Kafka clusters are challenging to setup, scale, and manage in production. When you run Apache Kafka on your own, you need to provision servers, configure Apache Kafka manually, replace servers when they fail, orchestrate server patches and upgrades, architect the cluster for high availability, ensure data is durably stored and secured, setup monitoring and alarms, and carefully plan scaling events to support load changes. Amazon MSK makes it easy for you to build and run production applications on Apache Kafka without needing Apache Kafka infrastructure management expertise. That means you spend less time managing infrastructure and more time building applications. With a few clicks in the Amazon MSK console you can create highly available Apache Kafka clusters with settings and configuration based on Apache Kafka’s deployment best practices. Amazon MSK automatically provisions and runs your Apache Kafka clusters. Amazon MSK continuously monitors cluster health and automatically replaces unhealthy nodes with no downtime to your application. In addition, Amazon MSK secures your Apache Kafka cluster by encrypting data at rest. Application Integration Topics 14 Overview of Amazon Web Services AWS Whitepaper AWS Step Functions AWS Step Functions (p. 15) Amazon AppFlow (p. 15) Amazon EventBridge (p. 15) Amazon Managed Workflows for Apache Airflow (MWAA) (p. 15) Amazon MQ (p. 16) Amazon Simple Notification Service (p. 16) Amazon Simple Queue Service (p. 16) Amazon Simple Workflow Service (p. 16) AWS Step Functions AWS Step Functions is a fully managed service that makes it easy to coordinate the components of distributed applications and microservices using visual workflows. Building applications from individual components that each perform a discrete function lets you scale easily and change applications quickly. Step Functions is a reliable way to coordinate components and step through the functions of your application. Step Functions provides a graphical console to arrange and visualize the components of your application as a series of steps. This makes it simple to build and run multi-step applications. Step Functions automatically triggers and tracks each step, and retries when there are errors, so your application runs in order and as expected. Step Functions logs the state of each step, so when things do go wrong, you can diagnose and debug problems quickly. You can change and add steps without even writing code, so you can easily evolve your application and innovate faster. Amazon AppFlow Amazon AppFlow is a fully managed integration service that enables you to securely transfer data between Software-as-a-Service (SaaS) applications like Salesforce, Zendesk, Slack, and ServiceNow, and AWS services like Amazon S3 and Amazon Redshift, in just a few clicks. With Amazon AppFlow, you can run data flows at enterprise scale at the frequency you choose - on a schedule, in response to a business event, or on demand. You can configure data transformation capabilities like filtering and validation to generate rich, ready-to-use data as part of the flow itself, without additional steps. Amazon AppFlow automatically encrypts data in motion, and allows users to restrict data from flowing over the public Internet for SaaS applications that are integrated with AWS PrivateLink, reducing exposure to security threats. Amazon EventBridge Amazon EventBridge is a serverless event bus that makes it easier to build event-driven applications at scale using events generated from your applications, integrated Software-as-a-Service (SaaS) applications, and AWS services. EventBridge delivers a stream of real-time data from event sources such as Zendesk or Shopify to targets like AWS Lambda and other SaaS applications. You can set up routing rules to determine where to send your data to build application architectures that react in real-time to your data sources with event publisher and consumer completely decoupled. Amazon Managed Workflows for Apache Airflow (MWAA) Amazon Managed Workflows for Apache Airflow (MWAA) is a managed orchestration service for Apache Airflow that makes it easier to set up and operate end-to-end data pipelines in the cloud at scale. Apache Airflow is an open-source tool used to programmatically author, schedule, and monitor sequences of 15 Overview of Amazon Web Services AWS Whitepaper Amazon MQ processes and tasks referred to as “workflows.” With Managed Workflows, you can use Airflow and Python to create workflows without having to manage the underlying infrastructure for scalability, availability, and security. Managed Workflows automatically scales its workflow execution capacity to meet your needs, and is integrated with AWS security services to help provide you with fast and secure access to data. Amazon MQ Amazon MQ is a managed message broker service for Apache ActiveMQ and RabbitMQ that makes it easy to set up and operate message brokers in the cloud. Message brokers allow different software systems–often using different programming languages, and on different platforms–to communicate and exchange information. Amazon MQ reduces your operational load by managing the provisioning, setup, and maintenance of ActiveMQ and RabbitMQ, popular open-source message brokers. Connecting your current applications to Amazon MQ is easy because it uses industry-standard APIs and protocols for messaging, including JMS, NMS, AMQP, STOMP, MQTT, and WebSocket. Using standards means that in most cases, there’s no need to rewrite any messaging code when you migrate to AWS. Amazon Simple Notification Service Amazon Simple Notification Service (Amazon SNS) is a highly available, durable, secure, fully managed pub/sub messaging service that enables you to decouple microservices, distributed systems, and serverless applications. Amazon SNS provides topics for high-throughput, push-based, many-to-many messaging. Using Amazon SNS topics, your publisher systems can fan out messages to a large number of subscriber endpoints for parallel processing, including Amazon SQS queues, AWS Lambda functions, and HTTP/S webhooks. Additionally, SNS can be used to fan out notifications to end users using mobile push, SMS, and email. Amazon Simple Queue Service Amazon Simple Queue Service (Amazon SQS) is a fully managed message queuing service that enables you to decouple and scale microservices, distributed systems, and serverless applications. SQS eliminates the complexity and overhead associated with managing and operating message oriented middleware, and empowers developers to focus on differentiating work. Using SQS, you can send, store, and receive messages between software components at any volume, without losing messages or requiring other services to be available. Get started with SQS in minutes using the AWS console, Command Line Interface or SDK of your choice, and three simple commands. SQS offers two types of message queues. Standard queues offer maximum throughput, best-effort ordering, and at-least-once delivery. SQS FIFO queues are designed to guarantee that messages are processed exactly once, in the exact order that they are sent. Amazon Simple Workflow Service Amazon Simple Workflow Service (Amazon SWF) helps developers build, run, and scale background jobs that have parallel or sequential steps. You can think of Amazon SWF as a fully-managed state tracker and task coordinator in the cloud. If your application’s steps take more than 500 milliseconds to complete, you need to track the state of processing. If you need to recover or retry if a task fails, Amazon SWF can help you. AR and VR Topics 16 Overview of Amazon Web Services AWS Whitepaper Amazon Sumerian Amazon Sumerian (p. 17) Amazon Sumerian Amazon Sumerian lets you create and run virtual reality (VR), augmented reality (AR), and 3D applications quickly and easily without requiring any specialized programming or 3D graphics expertise. With Sumerian, you can build highly immersive and interactive scenes that run on popular hardware such as Oculus Go, Oculus Rift, HTC Vive, HTC Vive Pro, Google Daydream, and Lenovo Mirage as well as Android and iOS mobile devices. For example, you can build a virtual classroom that lets you train new employees around the world, or you can build a virtual environment that enables people to tour a building remotely. Sumerian makes it easy to create all the building blocks needed to build highly immersive and interactive 3D experiences including adding objects (e.g. characters, furniture, and landscape), and designing, animating, and scripting environments. Sumerian does not require specialized expertise and you can design scenes directly from your browser. Blockchain Topics Amazon Managed Blockchain (p. 17) Amazon Managed Blockchain Amazon Managed Blockchain is a fully managed service that makes it easy to create and manage scalable blockchain networks using the popular open source frameworks Hyperledger Fabric and Ethereum. Blockchain makes it possible to build applications where multiple parties can execute transactions without the need for a trusted, central authority. Today, building a scalable blockchain network with existing technologies is complex to set up and hard to manage. To create a blockchain network, each network member needs to manually provision hardware, install software, create and manage certificates for access control, and configure networking components. Once the blockchain network is running, you need to continuously monitor the infrastructure and adapt to changes, such as an increase in transaction requests, or new members joining or leaving the network. Amazon Managed Blockchain is a fully managed service that allows you to set up and manage a scalable blockchain network with just a few clicks. Amazon Managed Blockchain eliminates the overhead required to create the network, and automatically scales to meet the demands of thousands of applications running millions of transactions. Once your network is up and running, Managed Blockchain makes it easy to manage and maintain your blockchain network. It manages your certificates, lets you easily invite new members to join the network, and tracks operational metrics such as usage of compute, memory, and storage resources. In addition, Managed Blockchain can replicate an immutable copy of your blockchain network activity into Amazon Quantum Ledger Database (QLDB), a fully managed ledger database. This allows you to easily analyze the network activity outside the network and gain insights into trends. Business Applications Topics Alexa for Business (p. 18) Amazon Chime (p. 18) 17 Overview of Amazon Web Services AWS Whitepaper Alexa for Business Amazon SES (p. 18) Amazon WorkDocs (p. 18) Amazon WorkMail (p. 18) Alexa for Business Alexa for Business is a service that enables organizations and employees to use Alexa to get more work done. With Alexa for Business, employees can use Alexa as their intelligent assistant to be more productive in meeting rooms, at their desks, and even with the Alexa devices they already have at home. Amazon Chime Amazon Chime is a communications service that transforms online meetings with a secure, easy-to-use application that you can trust. Amazon Chime works seamlessly across your devices so that you can stay connected. You can use Amazon Chime for online meetings, video conferencing, calls, chat, and to share content, both inside and outside your organization. Amazon Chime works with Alexa for Business, which means you can use Alexa to start your meetings with your voice. Alexa can start your video meetings in large conference rooms, and automatically dial into online meetings in smaller huddle rooms and from your desk. Amazon SES Amazon Simple Email Service (Amazon SES) is a cost-effective, flexible, and scalable email service that enables developers to send mail from within any application. You can configure Amazon SES quickly to support several email use cases, including transactional, marketing, or mass email communications. Amazon SES's flexible IP deployment and email authentication options help drive higher deliverability and protect sender reputation, while sending analytics measure the impact of each email. With Amazon SES, you can send email securely, globally, and at scale. Amazon WorkDocs Amazon WorkDocs is a fully managed, secure enterprise storage and sharing service with strong administrative controls and feedback capabilities that improve user productivity. Users can comment on files, send them to others for feedback, and upload new versions without having to resort to emailing multiple versions of their files as attachments. Users can take advantage of these capabilities wherever they are, using the device of their choice, including PCs, Macs, tablets, and phones. Amazon WorkDocs offers IT administrators the option of integrating with existing corporate directories, flexible sharing policies and control of the location where data is stored. You can get started using Amazon WorkDocs with a 30-day free trial providing 1 TB of storage per user for up to 50 users. Amazon WorkMail Amazon WorkMail is a secure, managed business email and calendar service with support for existing desktop and mobile email client applications. Amazon WorkMail gives users the ability to seamlessly access their email, contacts, and calendars using the client application of their choice, including Microsoft Outlook, native iOS and Android email applications, any client application supporting the IMAP protocol, or directly through a web browser. You can integrate Amazon WorkMail with your existing corporate directory, use email journaling to meet compliance requirements, and control both the keys that encrypt your data and the location in which your data is stored. You can also set up interoperability with Microsoft Exchange Server, and programmatically manage users, groups, and resources using the Amazon WorkMail SDK. 18 Overview of Amazon Web Services AWS Whitepaper Cloud Financial Management Cloud Financial Management Topics AWS Application Cost Profiler (p. 19) AWS Cost Explorer (p. 19) AWS Budgets (p. 19) AWS Cost & Usage Report (p. 19) Reserved Instance (RI) Reporting (p. 20) Savings Plans (p. 20) AWS Application Cost Profiler AWS Application Cost Profiler provides you the ability to track the consumption of shared AWS resources used by software applications and report granular cost breakdown across tenant base. You can achieve economies of scale with the shared infrastructure model, while still maintaining a clear line of sight to detailed resource consumption information across multiple dimensions. With the proportionate cost insights of shared AWS resources, organizations running applications can establish the data foundation for accurate cost allocation model, and ISV selling applications can better understand your profitability and customize pricing strategies for your end customers. AWS Cost Explorer AWS Cost Explorer has an easy-to-use interface that lets you visualize, understand, and manage your AWS costs and usage over time. Get started quickly by creating custom reports (including charts and tabular data) that analyze cost and usage data, both at a high level (e.g., total costs and usage across all accounts) and for highly-specific requests (e.g., m2.2xlarge costs within account Y that are tagged “project: secretProject”). AWS Budgets AWS Budgets gives you the ability to set custom budgets that alert you when your costs or usage exceed (or are forecasted to exceed) your budgeted amount. You can also use AWS Budgets to set RI utilization or coverage targets and receive alerts when your utilization drops below the threshold you define. RI alerts support Amazon EC2, Amazon RDS, Amazon Redshift, and Amazon ElastiCache reservations. Budgets can be tracked at the monthly, quarterly, or yearly level, and you can customize the start and end dates. You can further refine your budget to track costs associated with multiple dimensions, such as AWS service, linked account, tag, and others. Budget alerts can be sent via email and/or Amazon Simple Notification Service (SNS) topic. Budgets can be created and tracked from the AWS Budgets dashboard or via the Budgets API. AWS Cost & Usage Report The AWS Cost & Usage Report is a single location for accessing comprehensive information about your AWS costs and usage. The AWS Cost & Usage Report lists AWS usage for each service category used by an account and its IAM users in hourly or daily line items, as well as any tags that you have activated for cost allocation purposes. You can also customize the AWS Cost & Usage Report to aggregate your usage data to the daily or monthly level. 19 Overview of Amazon Web Services AWS Whitepaper Reserved Instance (RI) Reporting Reserved Instance (RI) Reporting AWS provides a number of RI-specific cost management solutions out-of-the-box to help you better understand and manage your RIs. Using the RI Utilization and Coverage reports available in AWS Cost Explorer, you can visualize your RI data at an aggregate level or inspect a particular RI subscription. To access the most detailed RI information available, you can leverage the AWS Cost & Usage Report. You can also set a custom RI utilization target via AWS Budgets and receive alerts when your utilization drops below the threshold you define. Savings Plans Savings Plans is a flexible pricing model offering lower prices compared to On-Demand pricing, in exchange for a specific usage commitment (measured in $/hour) for a one or three-year period. AWS offers three types of Savings Plans – Compute Savings Plans, EC2 Instance Savings Plans, and Amazon SageMaker Savings Plans. Compute Savings Plans apply to usage across Amazon EC2, AWS Lambda, and AWS Fargate. The EC2 Instance Savings Plans apply to EC2 usage, and Amazon SageMaker Savings Plans apply to Amazon SageMaker usage. You can easily sign up a 1- or 3-year term Savings Plans in AWS Cost Explorer and manage your plans by taking advantage of recommendations, performance reporting, and budget alerts. Compute Services Topics Amazon EC2 (p. 20) Amazon EC2 Auto Scaling (p. 21) Amazon EC2 Image Builder (p. 21) Amazon Lightsail (p. 22) AWS App Runner (p. 22) AWS Batch (p. 22) AWS Elastic Beanstalk (p. 22) AWS Fargate (p. 22) AWS Lambda (p. 23) AWS Serverless Application Repository (p. 23) AWS Outposts (p. 23) AWS Wavelength (p. 23) VMware Cloud on AWS (p. 24) Amazon EC2 Amazon Elastic Compute Cloud (Amazon EC2) is a web service that provides secure, resizable compute capacity in the cloud. It is designed to make web-scale computing easier for developers. The simple web interface of Amazon EC2 allows you to obtain and configure capacity with minimal friction. It provides you with complete control of your computing resources and lets you run on Amazon’s proven computing environment. Amazon EC2 reduces the time required to obtain and boot new server instances (called Amazon EC2 instances) to minutes, allowing you to quickly scale capacity, both up and down, as your computing requirements change. Amazon EC2 changes the economics of computing by allowing you to pay only for capacity that you actually use. Amazon EC2 provides developers and system administrators the tools to build failure resilient applications and isolate themselves from common failure scenarios. 20 Overview of Amazon Web Services AWS Whitepaper Amazon EC2 Auto Scaling Instance Types Amazon EC2 passes on to you the financial benefits of Amazon’s scale. You pay a very low rate for the compute capacity you actually consume. See Amazon EC2 Instance Purchasing Options for a more detailed description. On-Demand Instances— With On-Demand instances, you pay for compute capacity by the hour or the second depending on which instances you run. No longer-term commitments or upfront payments are needed. You can increase or decrease your compute capacity depending on the demands of your application and only pay the specified per hourly rates for the instance you use. On-Demand instances are recommended for: Users that prefer the low cost and flexibility of Amazon EC2 without any up-front payment or long- term commitment Applications with short-term, spiky, or unpredictable workloads that cannot be interrupted Applications being developed or tested on Amazon EC2 for the first time Spot Instances—Spot Instances are available at up to a 90% discount compared to On-Demand prices and let you take advantage of unused Amazon EC2 capacity in the AWS Cloud. You can significantly reduce the cost of running your applications, grow your application’s compute capacity and throughput for the same budget, and enable new types of cloud computing applications. Spot instances are recommended for: Applications that have flexible start and end times Applications that are only feasible at very low compute prices Users with urgent computing needs for large amounts of additional capacity Reserved Instances—Reserved Instances provide you with a significant discount (up to 72%) compared to On-Demand instance pricing. You have the flexibility to change families, operating system types, and tenancies while benefitting from Reserved Instance pricing when you use Convertible Reserved Instances. Savings Plans—Savings Plans are a flexible pricing model that offer low prices on EC2 and Fargate usage, in exchange for a commitment to a consistent amount of usage (measured in $/hour) for a 1 or 3 year term. Dedicated Hosts—A Dedicated Host is a physical EC2 server dedicated for your use. Dedicated Hosts can help you reduce costs by allowing you to use your existing server-bound software licenses, including Windows Server, SQL Server, and SUSE Linux Enterprise Server (subject to your license terms), and can also help you meet compliance requirements. Amazon EC2 Auto Scaling Amazon EC2 Auto Scaling helps you maintain application availability and allows you to automatically add or remove EC2 instances according to conditions you define. You can use the fleet management features of Amazon EC2 Auto Scaling to maintain the health and availability of your fleet. You can also use the dynamic and predictive scaling features of Amazon EC2 Auto Scaling to add or remove EC2 instances. Dynamic scaling responds to changing demand and predictive scaling automatically schedules the right number of EC2 instances based on predicted demand. Dynamic scaling and predictive scaling can be used together to scale faster. Amazon EC2 Image Builder EC2 Image Builder simplifies the building, testing, and deployment of Virtual Machine and container images for use on AWS or on-premises. Keeping Virtual Machine and container images up-to-date can be time consuming, resource intensive, and error-prone. Currently, customers either manually update and snapshot VMs or have teams that build automation scripts to maintain images. 21 Overview of Amazon Web Services AWS Whitepaper Amazon Lightsail Image Builder significantly reduces the effort of keeping images up-to-date and secure by providing a sim