AWS Cloud Practitioner CLF-C02 Practice Question

In the AWS shared responsibility model, AWS is responsible for the security 'of' the cloud, meaning the infrastructure that runs all of the services offered in the AWS Cloud. This infrastructure is composed of the hardware, software, networking, and facilities that run AWS Cloud services. When using Amazon RDS, AWS manages the database infrastructure, including database setup, patching, and backups. However, the customer is responsible for managing the data (including encryption at rest), setting appropriate permissions, and using parameter groups to manage the database engine configuration. Although AWS manages the underlying infrastructure security and the database engine, the customer must secure the data itself, hence, encryption and managing credentials are their responsibility.