RDS: Relational Database Service

A managed DB service for DB use SQL a query

It allows you to create databases in the cloud that are

Advantages of RDS over deploying a database in EC2

RDS Read replicas for read scalability

RDS Multi AZ (Disaster Recovery)

RDS Backups

Backups are automatically enabled in RDS
Automated backups:
- Daily full snapshot of the database
- Capture transaction logs in real time
- Ability to restore to any point in time
- 7 days retention (can be increased to 35 days)
DB Snapshots:
- Manually triggered by the user
- Retention of backup for as long as you want

RDS Encryption

Encryption at rest capability with AWS KMS - AES-256 encryption
SSL certificates to encrypt data to RDS in flight
To enforce SSL:
- PostgreSQL: rds.force_ssl=1 in the AWS RDS Console (parameter groups)
TO connect using SSL:
- Provide the SSL Trust certificate (can be downloaded from AWS)
- Provide SSL options when connection to the database

RDS Security

RDS databases are usually deployed within a private subnet, not in a public one
RDS Security works by leveraging security groups (the same concept as for EC2 instances) - it controls who can communicate with RDS
IAM policies help control who can manage RDS
Traditional username and password can be used to login to the database
IAM users can now be used too (for MySQL / Aurora - New)

RDS vs. Aurora

Aurora is a proprietary technology from AWS (not open sourced)
Postgres and MySQL are both supported as Aurora DB (that means you r drivers will work as if Aurora was a Postgres or MySQL database)
Aurora is “AWS cloud optimized” and claims 5x performance improvements over MySQL on RDS, over 3x the performance of Postgres on RDS
Aurora storage automatically grows in increments of 10GB, up to 64 TB
Aurora can have 15 replicas while MySQL has 5, and the replication process is faster (sub 10 ms replica lag)
Failover in Aurora is instantaneous. It’s HA native.
Aurora costs more than RDS (20% more) - but is more efficient

Provide feedback