A company is deploying a new web application on AWS and is using Amazon Elastic Compute Cloud (EC2) instances to host its web servers. The company wants to ensure it follows security best practices. Which of the following actions is the company solely responsible for?
Installing the latest hypervisor security patches on the host system where the EC2 instances are running
Configuring security groups for the EC2 instances correctly to ensure only authorized traffic can access the web servers
Implementing disaster recovery mechanisms for the underlying EC2 service in case of a region failure
Ensuring physical security of the data centers where the EC2 instances are hosted
In the AWS shared responsibility model, AWS is responsible for protecting the infrastructure that runs AWS services in the AWS Cloud, while the customer is responsible for securing the data they put into the cloud services and the configurations of the services they use. In this scenario, configuring security groups correctly is under the customer’s purview as part of 'Security in the Cloud.' Security groups act as a virtual firewall for instances to control inbound and outbound traffic. Patch management of the EC2 instances, including the operating system, is also a customer responsibility, but more related to managing the guest OS, not directly related to the application they are running. Protecting the underlying infrastructure (data centers, hardware, etc.) and disaster recovery for AWS services are AWS’s responsibility.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is AWS's shared responsibility model?
Open an interactive chat with Bash
How do security groups work in Amazon EC2?
Open an interactive chat with Bash
What is the customer responsible for when configuring EC2 instances?
Open an interactive chat with Bash
AWS Cloud Practitioner CLF-C02
Security and Compliance
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99
$19.99/mo
Billed monthly, Cancel any time.
3 Month Pass
$44.99
$14.99/mo
One time purchase of $44.99, Does not auto-renew.
MOST POPULAR
Annual Pass
$119.99
$9.99/mo
One time purchase of $119.99, Does not auto-renew.
BEST DEAL
Lifetime Pass
$189.99
One time purchase, Good for life.
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .