Understanding HA, DR and Security Features For AWS RDS

RDS is an Online Transaction Processing (OLTP) type of database.

RDS Replication: Replication is the continuous copying of data changes from one database (publisher) to another database (subscriber).?

In RDS there are two types of Replication:? Multi-AZ and Read Replica.

Multi-AZ: RDS maintains a synchronous standby replica of the master DB in a different AZ?

Read Replica: allow you to have a read-only copy of your database.?

DR: Use Read Replicas with Multi-AZ as part of a DR strategy for your production databases.

RDS Backup and Restore: ?RDS creates and saves automated backups of your DB instance securely in Amazon S3 for a user-specified retention period.

Automated Backups: RDS automatically creates a storage volume snapshot of your DB instance, backing up the entire DB instance and not just individual databases.??

Point-in-time Restores: You can restore your DB instance to any specific time during the backup retention period.

Database Snapshots: Database snapshots are user-initiated backups of your instance stored in Amazon S3 that are kept until you explicitly delete them.

RDS Security: ? Encryption, Access Control, VPC, Database Activity Streams, Compliance?

• Encryption of Data at Rest & Transit: RDS encrypts your databases using? KMS and Encrypt communications between app &? DB Instance using SSL/TLS.?
• IAM Access Control?
• Network Isolation for DB Instances using VPC and connect using encrypted IPSec VPN from on premise network.
• Database real time Activity Streams provides Protection against DBAs?

Compliance: Use AWS Artifact to access RDS’ audit reports and conduct their assessment.?