AWS Certified Cloud Practitioner — Question 562
A company uses Amazon Aurora as its database service. The company wants to encrypt its databases and database backups.
Which party manages the encryption of the database clusters and database snapshots, according to the AWS shared responsibility model?
Answer options
- A. AWS
- B. The company
- C. AWS Marketplace partners
- D. Third-party partners
Correct answer: B
Explanation
According to the AWS shared responsibility model, AWS is responsible for the security of the cloud, while the customer is responsible for security in the cloud, which includes data encryption. Since configuring encryption for Amazon Aurora database clusters and snapshots is a customer-controlled setting, the responsibility lies with the customer (the company). AWS Marketplace and third-party partners do not manage customer data encryption in this model.