Answer-first summary for fast verification
Answer: Scanning AWS service endpoints for vulnerabilities, Encrypting traffic on the AWS backbone between global and regional AWS facilities
## Explanation Under the AWS Shared Responsibility Model: **AWS Responsibility (Security OF the Cloud):** - **Scanning AWS service endpoints for vulnerabilities** - AWS is responsible for securing the underlying infrastructure and services - **Encrypting traffic on the AWS backbone between global and regional AWS facilities** - AWS manages the security of the global network infrastructure **Customer Responsibility (Security IN the Cloud):** - **Enabling encryption on an Amazon S3 bucket** - Customer must configure and manage data encryption settings - **Configuring security group rules** - Customer manages network access controls - **Enforcing application access restrictions** - Customer manages application-level security and access controls The shared responsibility model divides security responsibilities where AWS manages the security **of** the cloud infrastructure, while customers manage security **in** the cloud for their applications and data.
Author: Ritesh Yadav
Ultimate access to all questions.
No comments yet.
Which actions are the responsibility of AWS under the AWS shared responsibility model? (Select TWO.)
A
Scanning AWS service endpoints for vulnerabilities
B
Enabling encryption on an Amazon S3 bucket
C
Configuring security group rules
D
Enforcing application access restrictions
E
Encrypting traffic on the AWS backbone between global and regional AWS facilities