The most important AWS services at a glance with a brief description.
The Amazon Elastic Compute Cloud (Amazon EC2) web service provides secure, scalable computing capacity in the cloud. The service is designed to make cloud computing easier for developers. Amazon EC2’s simple web service interface makes it easy to manage and configure capacity. You have complete control over your computing resources and run in Amazon’s proven computing environment.
Create a hybrid cloud without custom hardware – detailed information can be found here.
The Amazon EC2 Container Service (ECS) is a cloud service from Amazon Web Services (AWS) that can be used to manage containers. The Amazon EC2 Container Service enables applications and micro-services to run on server clusters of EC2 instances via API calls and task definitions. Amazon ECS is a scalable service that can be accessed through the AWS Management Console and Software Development Kits (SDKs).
With AWS Lambda, you can execute code without deploying and managing servers. You only pay for the time actually spent. AWS Lambda allows you to execute code for virtually any type of application or back-end service without administration. Just upload your code and Lambda will do everything it takes to run and scale your code for high availability. You can set up your code to be triggered automatically by other AWS services, or you can call it indirectly from any Web or mobile app.
Amazon Aurora is a MySQL and PostgreSQL-compatible relational database for the cloud that combines the performance and availability of traditional enterprise databases with the simplicity and cost effectiveness of open source databases. Amazon Aurora is up to five times faster than standard MySQL databases and three times faster than standard PostgreSQL databases. It offers the security, availability, and reliability of commercial databases at one-tenth the cost. Amazon Aurora is fully managed by Amazon Relational Database Service (RDS), which automates time-consuming administrative tasks such as hardware provisioning, database setup, patching, and backups.
Amazon Redshift is a data warehouse service from the cloud. The data warehouse can store data in the petabyte range and is provided by Amazon in a cloud infrastructure. Amazon Redshift is characterized by high speed and good scalability, which can accelerate the processing and analysis of large amounts of data. Queries are possible on SQL basis, among others. ODBC and JDBC interfaces are also available, which enable business intelligence tools to connect to the data warehouse.
With Amazon RDS (Relational Database Service), you can easily set up, manage and scale a relational database in the cloud. This service provides cost-effective and customizable capacity and automates time-consuming management tasks such as provisioning hardware, setting up databases, patching, and backups. You can focus on your applications and make sure they meet performance, high availability, security, and compatibility requirements. Amazon RDS is available for different database instance types – optimized for memory, commons, or I/O – and offers you six popular database modules to choose from, including Amazon Aurora, PostgreSQL, MySQL, MariaDB, Oracle Database, and Microsoft SQL Server. With the AWS Database Migration Service, you can easily migrate or replicate your existing databases to Amazon RDS.
With Amazon Virtual Private Cloud (VPC), you can provide a logically isolated area of the AWS cloud where you can run AWS resources on a virtual network of your choice. You have complete control over your virtual network environment, including selecting your own IP address range, creating subnets, and configuring routing tables and network gateways. You can use both IPv4 and IPv6 for your VPC for secure and easy access to resources and applications. The network configuration of your Amazon VPC can be easily customized. For example, you can set up a publicly accessible subnet for your web server with Internet access. You can also use your backend systems, such as databases or application servers, on a private subnet without Internet access. You can use multiple layers of security, including security groups and network access control lists that control access to Amazon EC2 instances on each subnet.
Amazon Route 53 is a highly available and scalable DNS (Domain Name System) web service for the cloud. It provides developers and businesses with a highly reliable and cost-effective way to route end users to Internet applications. It does this by translating names such as www.ExampleWebsite.com into numeric IP addresses such as 192.0.2.1, which computers use to interconnect. Amazon Route 53 is also fully compatible with IPv6.
Amazon CloudFront is a fast content delivery service (CDN) that securely delivers data, video, applications and APIs with low latency, high speed and in a developer-friendly environment to customers around the world. CloudFront is integrated with AWS – both at physical locations directly connected to the global AWS infrastructure and at other AWS services. CloudFront works seamlessly with services such as AWS Shield to protect against DDoS attacks, Amazon S3, Elastic Load Balancing or Amazon EC2 as the source for your applications, and Lambda @ Edge to keep custom code close to the customer’s user and execute the user experience.
AWS Direct Connect is a cloud services solution that allows you to easily establish a dedicated network connection between your site and AWS. With AWS Direct Connect, you can establish a private connection between AWS and your data center, branch office or colocation environment, which in many cases can reduce network costs, increase bandwidth throughput and provide more consistent network functionality than Internet-based connections.
Migration & Transfer
The Snow Service family offers a range of physical devices and capacity points, some with integrated data processing capabilities. These services facilitate the physical transfer of Exabyte-sized data to and from AWS. The Snow Service family is owned and managed by AWS. The services are integrated with the security, monitoring, storage management, and computing capabilities of AWS.
AWS DataSync enables easy and fast online transfer of large amounts of data between your own local storage and Amazon S3, Amazon EFS (Elastic File System) or Amazon FSx for Windows File Server. Manual tasks can increase the time required to complete the migration and the workload for the IT department. DataSync eliminates or automates many of these tasks, such as scripting tasks, scheduling and monitoring transfers, validating data, and optimizing network usage. The DataSync software agent connects to your Network File System (NFS) and Server Message Block (SMB) storage so you don’t have to customize your applications. DataSync can transfer hundreds of terabytes and millions of files over the Internet or AWS Direct Connect at speeds up to ten times faster than open source tools. With DataSync, you can migrate active records or archives to AWS, transfer them to the cloud for rapid analysis and processing, or replicate them to AWS for business continuity.
The AWS Server Migration Service (SMS) is an agentless service that simplifies and accelerates the migration of thousands of local processing loads to AWS. With AWS SMS, you can automate, schedule, and monitor incremental replications of live server volumes, making it easy to coordinate large server migrations.
With the AWS Database Migration Service, you can migrate databases to AWS quickly and securely. The source database remains fully functional during the migration, minimizing downtime for database-dependent applications. The AWS Database Migration Service can migrate your data to and from the most popular commercial and open source databases.
Amazon SageMaker is a fully managed service that allows any developer or data scientist to quickly create, train and deploy machine learning (ML) models. SageMaker eliminates heavy lifting at every step of the machine learning process to simplify the development of high-quality models.
Amazon Recognition makes it easy to add image and video analytics to your applications using proven, highly scalable deep learning technology that does not require machine learning skills. With Amazon Recognition, you can identify objects, people, text, scenes and activities in images and videos and identify inappropriate content. Amazon Recognition also provides highly accurate face analysis and face search capabilities that allow you to identify, analyze, and compare faces for a variety of user reviews, people counts, and public safety use cases.
Based on the same technology as Amazon.com, Amazon Forecast uses machine learning to combine time series data with additional variables to create forecasts. No prior machine learning experience is required to use Amazon Forecast. All you need to do is provide historical data and additional data that you believe may affect forecasts. For example, demand for a shirt in a particular color may vary depending on the season and location of the store. This complex web of relationships is difficult to determine on its own. However, machine learning technology is perfect for identifying this network. Once you have provided the data in Amazon Forecast, it is automatically checked for its informative value. A forecast model is then created that is up to 50% more accurate than if only time series data were displayed.
Amazon Polly is a service that transforms text into realistic speech, allowing you to develop talking applications and entirely new categories of speech-enabled products. Amazon Polly’s text-to-speech (TTS) service uses advanced deep learning technologies to synthesize speech that sounds like a human voice.
Amazon Lex is a service for creating conversation interfaces for speech and text in any application. Amazon Lex provides the advanced deep learning capabilities of automatic speech recognition (ASE) to convert speech to text, and natural language comprehension (NSD) to detect text intention. This allows you to develop applications that deliver a superior user experience and realistic conversational interactions. The same deep learning technologies that are at the core of Amazon Alexa are available to every developer. This allows you to quickly and easily develop complex voice bots (“chat bots”) that can be used to conduct conversations in a realistic manner.
Amazon Textract is a service that automatically extracts text and data from scanned documents. Amazon Textract goes beyond simple optical character recognition (OCR) to identify the contents of fields in forms and information in tables.
Amazon Simple Storage Service (Amazon S3) is an object storage service that provides industry-leading scalability, data availability, security, and performance. Customers of all sizes and industries can use this service to store and back up any amount of data for a variety of use cases including Web sites, mobile applications, backup and recovery, archiving, business applications, IoT devices, and big data analysis. Amazon S3’s easy-to-use management features help you organize your data and configure sophisticated access controls to meet your unique business, organizational, and compliance requirements. Designed for 99.999999999 percent durability, Amazon S3 stores data for millions of applications from organizations around the world.
Amazon Elastic Block Store (EBS) is an easy-to-use, high-performance block storage service designed for use with Amazon Elastic Compute Cloud (EC2) for throughput- and transaction-intensive workloads of all sizes. A variety of workloads, including relational and non-relational databases, enterprise applications, containerized applications, big-data analysis engines, file systems, and media workflows, are commonly used in Amazon EBS.
Amazon Elastic File System (Amazon EFS) provides a simple, scalable, fully managed NFS elastic file system for use with AWS cloud services and local resources. It is designed to scale in the petabyte range without disrupting applications. It automatically grows and shrinks as you add or remove files, so there’s no need to provision and manage capacity to accommodate growth.
Amazon S3 Glacier is a secure, durable and highly cost-effective Amazon S3 cloud storage class for data archiving and long-term backups. They offer 99.999999999% reliability and comprehensive security and compliance features that meet even the most stringent regulatory requirements. To keep costs down while still meeting varying retrieval requirements, Amazon S3 Glacier offers three options for accessing archives that can take from a few minutes to several hours.
IT disasters such as data center downtime, server corruption, or cyber attacks can not only disrupt your business operations, but can also lead to loss of data, revenue, and reputation. CloudEndure Disaster Recovery minimizes this downtime and data loss by providing fast, reliable recovery of physical, virtual and cloud-based servers on AWS.
Administration & Governance
Amazon CloudWatch is a transparent monitoring and observation service for DevOps technicians, developers, Site Reliability Engineers (SRE) and IT managers. CloudWatch provides data and key insights to monitor your applications, respond to system-wide performance changes, optimize resource utilization and gain an overall view of operational status. CloudWatch collects monitoring and operational data in the form of logs, metrics and events. This gives you a complete view of AWS resources and applications, as well as services running on AWS and onsite servers. With CloudWatch you can detect abnormal behavior in your environment, configure alerts, visualize logs and metrics in comparisons, take automated actions, correct problems and gain insight to optimize your applications and keep them running smoothly.
Scale different resources to meet requirements – learn more about AWS Auto Scaling here.
AWS CloudTrail is a service that monitors governance, compliance, operations and risks in your AWS account. With CloudTrail, you can log, continuously monitor and store account activity in your AWS infrastructure. CloudTrail provides an event history of your AWS account activity. This includes actions performed through the AWS Management Console, AWS SDKs, command line tools, and other AWS services. Event history simplifies security analysis, resource change tracking, and troubleshooting. You can also use CloudTrail to detect abnormal activity in your AWS accounts. These options simplify operations analysis and troubleshooting.
AWS IoT Core is a managed cloud service that allows connected devices to easily and securely interact with cloud applications and other devices. AWS IoT Core can support billions of devices and trillions of messages, and process and route these messages reliably and securely to AWS endpoints and other devices. With AWS IoT Core, your applications can track and communicate with all your devices at all times, even when they are not connected. AWS IoT Core also simplifies the use of AWS and Amazon services such as AWS Lambda, Amazon S3, Amazon SageMaker, Amazon DynamoDB, Amazon CloudWatch, AWS CloudTrail and Alexa Voice Service. You can use them to create IoT applications to collect, process, analyze, and access data generated by connected devices without having to manage an infrastructure.
AWS IoT Greengrass seamlessly extends AWS to Edge devices, allowing them to access data generated locally while the cloud continues to be used for management, analysis and permanent storage. With AWS IoT Greengrass, connected devices can run AWS lambda functions, docker containers, or both, make predictions with machine learning models, synchronize device data, and securely communicate with other devices – even without an Internet connection.
AWS IoT Device Management enables secure registration, organization, monitoring and remote management of connected IoT devices. With AWS IoT Device Management, you can register your connected devices individually or all at once and easily manage permissions to ensure device security. You can also use it to organize your devices, monitor and troubleshoot device functionality, check the status of all IoT devices in your fleet and send wireless firmware updates (OTA). Because AWS IoT Device Management is independent of device type and operating system, you can manage devices from limited microcontrollers to connected vehicles with the same device. With AWS IoT Device Management, you can scale your fleets and reduce the cost and complexity of managing large and diverse IoT device deployments.
Security, Identity & Compliance
AWS Shield is a managed Distributed Denial of Service (DDoS) protection service that protects applications running on AWS. AWS Shield provides always-on detection and automatic inline migrations that minimize application downtime and latency, so no AWS support activation is required to benefit from DDoS protection. There are two levels of AWS Shield – Standard and Extended.
With AWS Identity and Access Management (IAM), you can securely manage access to AWS services and resources. With IAM, you can create and manage AWS users and groups, and you can use permissions to allow or deny access to AWS resources.
AWS Resource Access Manager (RAM) is a service that allows you to easily and securely share AWS resources with any AWS account or within your AWS organization. You can share AWS Transit gateways, subnets, AWS License Manager configurations and Amazon Route 53 resolver control resources with RAM.