AWS Certified Cloud Practitioner (CLF-C02) — Question 346

Which of the following is entirely the responsibility of AWS, according to the AWS shared responsibility model?

Answer options

• A. Security awareness and training
• B. Development of an IAM password policy
• C. Patching of the guest operating system
• D. Physical and environmental controls

Correct answer: D

Explanation

According to the AWS shared responsibility model, AWS is entirely responsible for the infrastructure that runs all of the services offered in the AWS Cloud, which includes physical and environmental controls of data centers. Customers are responsible for security 'in' the cloud, such as patching guest operating systems and defining IAM password policies. Security awareness and training is a shared responsibility where both parties must train their own respective personnel.