Shared Responsibility Model Flashcards

1
Q

What is AWS responsible for?

A

Security OF the cloud:
AWS Global Infrastructure
Building Security (Data centers)
Networking Components
Software

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What are YOU responsible for?

A

Security IN the cloud:
Application Data
Security Configuration
Patching
IAM
Network Traffic
Installed Software

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What are the AWS Global Infrastructure elements for which AWS is responsible?

A

Regions
edge Locations
Availability Zones

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What are the AWS networking components for which AWS is responsible?

A

Generators
Uninterruptible power supply (UPS)
Computer room air conditioning (CRAC) units
Fire suppression systems
etc

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What software is AWS responsible for?

A

Any managed service, like RDS, S3, Lambda,E CS
Patching of host operating systems
Data Access Endpoints

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Who is responsible for Encryption options? Provide an example

A

YOU
Encryption of EBS volumes

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What are YOU responsible for as far as security?

A

Securing your account and API calls
Rotating credentials
Restricting Internet access from your VPC’s
etc

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Who is responsible for updating and applying patches to the Guest operating system? Provide an example

A

YOU
Patching the guest OS for EC2

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

How are you responsible for Network traffic?

A

You are responsible for network traffic protection, which includes security group firewall configuration

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Who is responsible for taking DB backups in RDS?

A

YOU

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Describe EC2 shared responsibility for YOU

A

Installed Apps
Patching guest OS
Security Controls

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

Describe EC2 shared responsibility for AWS

A

EC2 service
Patching host OS
Security of the physical server

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

Describe Lambda shared responsibility for YOU

A

Security of code
Storage of sensitive data
IAM for permissions

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

Describe Lambda shared responsibility for AWS

A

Lambda service
upgrading Lambda languages
Lambda endpoints
OS
Underlying infrastructure
Software dependencies

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

What responsibilities are shared?

A

Patching: AWS-> infrastructure; YOU-> guest OS and apps
Config Mgmt: AWS-> config infra devices; YOU-> config DB’s and
apps
Awareness & training of employees

How well did you know this?
1
Not at all
2
3
4
5
Perfectly