Lalit's Cloud & DevOps notes

AWS Core Services

4 min read

Overview of AWS Core Services — The foundational building blocks for cloud infrastructure.

What Are AWS Core Services?

AWS Core Services are the fundamental building blocks of the AWS Cloud. Every AWS application, from simple websites to complex AI systems, is built on these services.

Key Insight: Learn core services first. They form the base for advanced AWS services, including databases and AI/ML.

The Core Services Landscape

flowchart TB
    subgraph AWS["AWS Core Services"]
        direction TB
        subgraph Foundation["Foundation Layer"]
            IAM["🔐 IAM<br/>Identity & Access"]
            VPC["🌐 VPC<br/>Networking"]
            S3["📦 S3<br/>Storage"]
        end
        subgraph Compute["Compute Layer"]
            EC2["🖥️ EC2<br/>Compute"]
            Lambda["⚡ Lambda<br/>Serverless"]
        end
    end
    
    EC2 --> IAM
    EC2 --> VPC
    EC2 --> S3
    Lambda --> IAM
    Lambda --> VPC
    Lambda --> S3

Core Services Overview

IAM — Identity and Access Management

What it does: Controls who can access what in your AWS account.

ConceptDescription
UsersIndividual identities for people or applications (federation/roles preferred where possible)
GroupsCollections of users with shared permissions
PoliciesJSON documents defining permissions
RolesTemporary credentials for services and cross-account access

Why it matters: IAM is the foundation of AWS security. Every AWS service uses IAM for access control.

Learn more: IAM Overview

S3 — Simple Storage Service

What it does: Object storage with unlimited scalability and 11 nines durability.

Storage ClassUse Case
S3 StandardFrequently accessed data
S3 Intelligent-TieringUnknown access patterns
S3 Standard-IAInfrequently accessed data
Glacier Instant RetrievalRarely accessed, need immediate access
Glacier Deep ArchiveLong-term archival (12+ months)

Why it matters: S3 is the most widely used AWS service — the backbone of data storage for everything from websites to AI data lakes.

Learn more: Amazon S3

VPC — Virtual Private Cloud

What it does: Your isolated network in the AWS Cloud.

ComponentPurpose
SubnetsSegments of your VPC (public or private)
Security GroupsStateful firewall (instance-level)
NACLsStateless firewall (subnet-level)
Internet GatewayEnables internet access for public subnets
NAT GatewayEnables outbound internet for private subnets

Why it matters: VPC provides the network isolation and security that every AWS resource runs within.

Learn more: Amazon VPC

EC2 — Elastic Compute Cloud

What it does: Virtual servers in the AWS cloud.

Pricing ModelSavingsUse Case
On-DemandNoneShort-term, spiky workloads
ReservedUp to 75%Steady-state, predictable usage
SpotUp to 90%Fault-tolerant, flexible workloads
Savings PlansUp to 72%Flexible compute commitment

Why it matters: EC2 is the IaaS foundation of AWS — giving you full control over virtual machines.

Learn more: Amazon EC2

Lambda — Serverless Compute

What it does: Run code without managing servers.

FeatureValue
PricingPer request ($0.20/million) + compute time
Free Tier1M requests + 400K GB-seconds/month
TimeoutMax 15 minutes
TriggersAPI Gateway, S3, SNS, DynamoDB Streams, EventBridge

Why it matters: Lambda enables event-driven architectures and automatic scaling without managing infrastructure.

Learn more: AWS Lambda

How Core Services Work Together

Example: Web Application Architecture

flowchart TD
    Internet["🌐 Internet"]
    IGW["Internet Gateway<br/><i>VPC Component</i>"]
    ALB["Application Load Balancer"]
    Web["🖥️ EC2 Web Servers"]
    App["🖥️ EC2 App Servers"]
    RDS["🗄️ RDS Database"]
    S3["📦 S3 Assets"]
    CW["📊 CloudWatch"]
    
    Internet --> IGW
    IGW --> ALB
    ALB --> Web
    ALB --> App
    Web --> App
    App --> RDS
    RDS --> S3
    RDS --> CW

All access controlled by IAM Policies

Learning Path

Beginner

  1. Start with IAM — Understand how AWS access control works
  2. Learn S3 — Store your first objects
  3. Explore VPC — Understand network isolation

Intermediate

  1. Master EC2 — Launch and manage virtual machines
  2. Learn Lambda — Build serverless applications

Advanced

  1. Integrate services — Build architectures combining all core services

TL;DR

  • Core Services = Foundational AWS services
  • IAM = Identity and access control (who can do what)
  • S3 = Object storage (unlimited, 11 nines durability)
  • VPC = Your isolated network (security + connectivity)
  • EC2 = Virtual servers (IaaS)
  • Lambda = Serverless compute (event-driven)
  • All work together = Every AWS application uses these services
ServiceDescription
IAM OverviewUsers, Groups, Policies, Roles
Amazon S3Object storage + storage classes
Amazon VPCNetworking + security
Amazon EC2Virtual machines + pricing models
AWS LambdaServerless compute + event triggers

4 items under this folder.