Which security measures fall under the responsibility of AWS?

By: study aws cloud

On: December 31, 2024

Tagged: Cloud Practitioner

With: 0 Comments

A web application is hosted on AWS using an Elastic Load Balancer, multiple Amazon EC2 instances, and Amazon RDS.

Which security measures fall under the responsibility of AWS?

(Choose two.)

Running a virus scan on EC2 instances

Protecting against IP spoofing and packet sniffing

Installing the latest security patches on the RDS instance

Encrypting communication between the EC2 instances and the Elastic Load Balancer

Configuring a security group and a network access control list (NACL) for EC2 instances

Explanations:

Running virus scans on EC2 instances falls under the user’s responsibility as it involves instance-level management.

AWS is responsible for protecting the underlying infrastructure, including measures against IP spoofing and packet sniffing.

AWS manages the security of RDS instances, including installing security patches to maintain the database environment.

While AWS provides options for encryption, configuring the encryption of data in transit is the user’s responsibility.

Security group and NACL configuration is part of the network configuration, which is the user’s responsibility on AWS.

Previous Post: Which solution will meet these requirements with the LEAST operational overhead?

Next Post: What should a solutions architect do to process the events from Amazon S3 in a scalable way?

Leave a Reply Cancel reply