AWS Certified Cloud Practitioner — Question 474

Which of the following are customer responsibilities under the AWS shared responsibility model? (Choose two.)

Answer options

• A. Physical security of AWS facilities
• B. Configuration of security groups
• C. Encryption of customer data on AWS
• D. Management of AWS Lambda infrastructure
• E. Management of network throughput of each AWS Region

Correct answer: B, C

Explanation

Under the AWS shared responsibility model, AWS is responsible for the security 'of' the cloud, which includes the physical security of facilities and managing serverless infrastructure like AWS Lambda. The customer is responsible for security 'in' the cloud, which includes configuring security groups to control traffic and encrypting their data both at rest and in transit. Managing regional network throughput is part of the global infrastructure managed entirely by AWS.