Which tasks are responsibilities of the customer, according to the AWS shared responsibility model?
(Choose two.)
Secure the virtualization layer.
Encrypt data and maintain data integrity.
Patch the Amazon RDS operating system.
Maintain identity and access management controls.
Secure Availability Zones.
Explanations:
Securing the virtualization layer is the responsibility of AWS. AWS manages the underlying infrastructure, including the hypervisors and physical servers that run the services. Customers do not have control over this layer.
Encrypting data and maintaining data integrity are the customer’s responsibilities. Customers must implement their encryption strategies for data at rest and in transit to ensure security and compliance.
Patching the Amazon RDS operating system is the responsibility of AWS. Amazon RDS is a managed service, and AWS handles the underlying operating system, including patching and updates. Customers focus on managing their databases rather than the underlying OS.
Maintaining identity and access management controls is the customer’s responsibility. Customers must manage user permissions, access policies, and roles within their AWS account to secure their resources effectively.
Securing Availability Zones is primarily the responsibility of AWS. AWS manages the physical and network security of its data centers and Availability Zones, while customers focus on securing their applications and data within those zones.