Security And Compliance

Question 1

AWS shared responsibility model

Answer 1

Customer (security in the cloud)

> Customer data
platform, applications, Identity and Access management.
Operating systems, Network & Firewall configurations
Client side data encryption and data integrity authentication , Sever side encryption ( files systems and data), Network traffic protection (encryption, integrity, identity)

AWS (Security of the cloud)

> Software
Compute, Storage, Database, Networking
Hardware/AWS Global infrastructure
Regions, AZ, Edge locations

Question 2

AWS Artifacts

Answer 2

On demand security and compliance report.

AWS Artifact is your go-to, central resource for compliance-related information that matters to you. It provides on-demand access to AWS’ security and compliance reports and select online agreements. Reports available in AWS Artifact include our Service Organization Control (SOC) reports, Payment Card Industry (PCI) reports, and certifications from accreditation bodies across geographies and compliance verticals that validate the implementation and operating effectiveness of AWS security controls. Agreements available in AWS Artifact include the Business Associate Addendum (BAA) and the Nondisclosure Agreement (NDA).

Question 3

AWS Config

Answer 3

Access, audit and evaluate the «» of AWS resources.

> > > added to show that its for configuration.

Question 4

AWS Cloudtrail

Answer 4

risk auditing by continuous monitoring

Logs API Calls

Question 5

AWS Cloud watch

Question 6

AWS inspector

Answer 6

Runs security inspections on AWS EC2 instances

Question 7

AWS WAF

Answer 7

web application firewall is a firewall which can filter the requests any parts such as

IP address
IP headers
HTTP Body
URI strings (which prevents sqi injection)

Question 8

AWS Trusted advisors

Question 9

AWS Marketplace

Answer 9

Third-party security softwires for AWS

Question 10

Security, Identity, and Compliance on AWS

Answer 10

https://aws.amazon.com/products/security/?nc=sn&loc=2