Question #1263
Under the AWS shared responsibility model, which of the following responsibilities belong to AWS? (Choose two.)
Physical security of data centers
Encryption of customer-stored data
Configuration of guest operating systems
Maintenance of network infrastructure
Management of IAM user policies
Explanation
AWS is responsible for the security of the cloud, which includes:
- A. Physical security of data centers: AWS ensures the physical protection of its global infrastructure, including facilities, hardware, and environmental controls.
- D. Maintenance of network infrastructure: AWS manages the underlying network components (e.g., routers, switches) and ensures their availability and performance.
Other options are customer responsibilities:
- B. Encryption of customer-stored data: Customers decide whether to encrypt data and manage encryption keys.
- C. Configuration of guest operating systems: Customers configure and patch OS on EC2 instances or other compute resources.
- E. Management of IAM user policies: Customers define and manage IAM policies to control access to AWS resources.
Key Points: AWS handles global infrastructure security and maintenance; customers manage data, configurations, and access controls.
Answer
The correct answer is: AD