AWS Certified Cloud Practitioner (CLF-C02) — Question 502

What does "security of the cloud” refer to in the AWS shared responsibility model?

Answer options

• A. Availability of AWS services such as Amazon EC2
• B. Security of the cloud infrastructure that runs all the AWS services
• C. Implementation of password policies for IAM users
• D. Security of customer environments by using AWS Network Firewall partners

Correct answer: B

Explanation

Under the AWS shared responsibility model, "security of the cloud" is the responsibility of AWS, which encompasses securing the physical infrastructure, hardware, software, and networking that run AWS services. In contrast, "security in the cloud" is the customer's responsibility, which includes managing data, configuring IAM password policies, and securing their own network configurations.