AWS Shared Responsibility Model: Customer Responsibilities | Exam CLF-C01

Customer Responsibilities under AWS Shared Responsibility Model

Question

Which of the following is a customer responsibility under AWS Shared Responsibility Model?

Answers

Explanations

Click on the arrows to vote for the correct answer

A. B. C. D.

Correct Answer - D.

Under the AWS shared responsibility model, AWS takes care of infrastructure configuration & management while customers must take care of the resources they launched within AWS.

Option A is incorrect.

Amazon S3 is part of the infrastructure layer & Patching of host OS/Configuration for Amazon S3 is responsibility of AWS.

Option B is incorrect.

AWS has the responsibility for the Logical Access controls for the underlying infrastructure.

Option C is incorrect.

Physical Security of the facilities is AWS responsibility.

For more information on Shared responsibility model, refer to the following URL:

https://aws.amazon.com/compliance/shared-responsibility-model

The AWS Shared Responsibility Model defines the division of security and compliance responsibilities between AWS and its customers. Under this model, AWS is responsible for the security of the cloud infrastructure, while customers are responsible for security in the cloud, such as the security of their applications and data.

Among the options given, the correct answer is D: Patching of guest OS deployed on Amazon EC2 instance.

This is because AWS is responsible for the security of the underlying infrastructure of EC2 instances, including the physical security of the facilities, as well as the logical access controls for the infrastructure. However, customers are responsible for managing and securing the operating systems and applications running on the EC2 instances, which includes keeping the guest OS up to date with security patches and updates.

Option A, patching of host OS deployed on Amazon S3, is incorrect because S3 is an object storage service and does not have a host OS.

Option B, logical access controls for underlying infrastructure, is incorrect because AWS is responsible for this aspect of security, including network and infrastructure security controls.

Option C, physical security of the facilities, is also incorrect because AWS is responsible for the physical security of its data centers and infrastructure, including measures like surveillance, access controls, and environmental controls.