Which of the following is the customer’s responsibility under the AWS shared responsibility model?
(Choose two.)
Maintain the configuration of infrastructure devices.
Maintain patching and updates within the hardware infrastructure.
Maintain the configuration of guest operating systems and applications.
Manage decisions involving encryption options.
Maintain infrastructure hardware.
Explanations:
Maintaining the configuration of infrastructure devices is typically the responsibility of AWS. AWS manages the underlying infrastructure that supports the cloud services, while customers are responsible for their own configurations above that layer.
Patching and updates within the hardware infrastructure are handled by AWS. Customers do not have access to the physical hardware, and therefore, they do not maintain patching for the infrastructure itself.
Customers are responsible for maintaining the configuration of guest operating systems and applications. This includes applying updates, patches, and configurations necessary for the security and performance of their workloads.
Managing decisions involving encryption options falls under the customer’s responsibility. Customers need to choose how to encrypt their data, whether in transit or at rest, and manage their encryption keys and policies.
Maintaining infrastructure hardware is the responsibility of AWS. Customers use the virtualized services provided, while AWS ensures the physical hardware is operational and secure.