AWS CloudTrail is a web service that records activity made on your account and delivers log
files to an Amazon S3 bucket. CloudTrail is for auditing (CloudWatch is for performance
monitoring). CloudTrail is about logging and saves a history of API calls for your AWS
account. Provides visibility into user activity by recording actions taken on your account.
API history enables security analysis, resource change tracking, and compliance auditing
Amazon CloudWatch is a monitoring service for AWS cloud resources and the applications you
run on AWS. CloudWatch is for performance monitoring (CloudTrail is for auditing). Used to
collect and track metrics, collect and monitor log files, and set alarms
Amazon Identity and Access Management is an identity service that provide authentication and
authorization services
AWS CloudHSM is a cloud-based hardware security module (HSM) that enables you to easily
generate and use your own encryption keys on the AWS Cloud