AWS Certified Cloud Practitioner

Explanation

In the AWS Shared Responsibility Model:

AWS Responsibility (Security OF the Cloud):

• Managing the underlying infrastructure
• Hardware and facilities security
• Network infrastructure
• Virtualization layer
• Operating system patches
• Database engine maintenance

Customer Responsibility (Security IN the Cloud):

• Data encryption at rest and in transit
• Network access controls
• Identity and access management
• Application security
• Client-side data protection

For Amazon RDS:

• AWS manages: Hardware, virtualization, operating system patches, database engine maintenance
• Customer manages: Database encryption options, access controls, security groups, IAM policies

Therefore, applying encryption options for the database is the customer's responsibility, while AWS handles the infrastructure, hardware, and patching responsibilities.