AWS Certified Cloud Practitioner / Question #1217 of 719

Question #1217

A company is evaluating its responsibilities under the AWS shared responsibility model regarding Amazon EC2 instances. Which tasks are the company's responsibility? (Choose two.)

Maintain the virtualization layer.

Manage application security.

Replace faulty physical hardware.

Configure security group rules.

Ensure availability of EC2 services.

Explanation

The correct answers are B and D. In the AWS shared responsibility model:
- B: Manage application security is the customer's responsibility. This includes securing applications, data, and access controls.
- D: Configure security group rules falls under network security, which customers must manage by defining inbound/outbound traffic rules.

Other options are AWS's responsibility:
- A: Virtualization layer (AWS manages the hypervisor).
- C: Physical hardware maintenance (AWS handles hardware replacements).
- E: EC2 service availability (AWS ensures infrastructure reliability).

Key takeaway: Customers handle logical access, data, and application security; AWS manages physical infrastructure and foundational services.

Answer

The correct answer is: BD