AWS Certified Cloud Practitioner (CLF-C02) — Question 547

Which task is the customer's responsibility, according to the AWS shared responsibility model?

Answer options

• A. Patch a guest operating system that is deployed on an Amazon EC2 instance.
• B. Control physical access to an AWS data center.
• C. Control access to AWS underlying hardware.
• D. Patch a host operating system that is deployed on Amazon S3.

Correct answer: A

Explanation

Under the AWS shared responsibility model, AWS manages security 'of' the cloud, which includes physical data center security and the underlying hardware infrastructure. The customer is responsible for security 'in' the cloud, meaning they must maintain and patch guest operating systems deployed on Infrastructure as a Service (IaaS) resources like Amazon EC2. AWS handles the patching of the underlying host operating systems for managed services like Amazon S3.