AWS Certified Cloud Practitioner — Question 837

What does “security of the cloud” refer to in the AWS shared responsibility model?

Answer options

• A. Availability of AWS services such as Amazon EC2
• B. Security of the cloud infrastructure that runs all the AWS services
• C. Implementation of password policies for IAM users
• D. Security of customer environments by using AWS Network Firewall partners

Correct answer: B

Explanation

Under the AWS shared responsibility model, AWS is responsible for 'security of the cloud,' which entails protecting the infrastructure, hardware, software, networking, and facilities that run AWS services. Conversely, customers are responsible for 'security in the cloud,' which includes managing IAM user password policies and configuring network firewalls. Service availability is a broader operational concept rather than the specific definition of AWS's security obligations.