Shared Responsibility Model

aws/security aws/governance aws/concept

💡 Definition

The AWS Shared Responsibility Model defines what AWS is responsible for (security of the cloud) and what the customer is responsible for (security in the cloud).

🔑 Key Concepts

⚙️ How it Works

It's a framework that clarifies the security duties of both parties when using AWS services. For example, for an EC2 instance (IaaS), AWS manages the underlying virtualization, but you are responsible for the guest OS, applications, and Security Group rules. For S3 (SaaS/PaaS-like), AWS manages the storage infrastructure, but you configure bucket policies and data encryption.

🎯 Use Cases

💰 Pricing Model

📝 Exam Tips (CLF-C02)


See Also: * IAM * Compliance * Security Group * NACL