AWS Certified Solutions Architect Associate SAA-C03 Practice Question
Your company has recently deployed a web application in the AWS Cloud. As the Solutions Architect, you must ensure that security responsibilities are properly assigned. According to the AWS shared responsibility model, which ONE of the following tasks is the responsibility of AWS (not the customer)?
Patching the guest operating system running on your Amazon EC2 instances.
Applying security group rules to your EC2 instances.
Maintaining the underlying hypervisor security for EC2 instances.
Enabling encryption for EBS volumes attached to EC2 instances.
In the AWS shared responsibility model, AWS is responsible for maintaining the security of the cloud-that is, the infrastructure that runs AWS services. This includes the data-center facilities, physical servers, networking equipment, hypervisor, and other foundational software that supports services such as Amazon EC2. Customers, on the other hand, are responsible for security in the cloud, including the guest operating system for EC2, application software, data, IAM configuration, and resource-level settings such as security groups or EBS encryption. Therefore, keeping the underlying hypervisor that hosts EC2 instances secure is AWS's job, whereas configuring security groups, patching the guest OS, or choosing to encrypt EBS volumes are customer responsibilities.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is the AWS shared responsibility model?
Open an interactive chat with Bash
What is a hypervisor in AWS and why is it important?
Open an interactive chat with Bash
What are security groups in AWS, and how do they work?