According to the AWS shared responsibility model, which task is the responsibility of the customer?
Protect the global infrastructure that runs all of the services offered in the AWS Cloud.
Configure logical access controls for resources, and protect account credentials.
Configure the security used by managed services.
Patch and back up Amazon Aurora.
Explanations:
Protecting the global infrastructure is the responsibility of AWS. This includes securing the physical data centers, networking, and hardware. Customers are not responsible for these foundational elements.
Customers are responsible for configuring access controls and protecting their own account credentials. This includes managing IAM users, roles, policies, and ensuring that credentials are kept secure.
While customers can configure some security aspects of managed services, the underlying infrastructure security is managed by AWS. Customers primarily focus on their own applications and data within those services.
AWS manages the patching of the underlying infrastructure and provides backup options for Amazon Aurora, but the customer is responsible for configuring backups and applying any necessary updates to their databases. However, the specific management of the database patching is primarily AWS’s responsibility in a managed service context.