1 min to Understand AWS Shared Responsibility Model
What is AWS shared responsibility model?
AWS cloud introduces the shared responsibility model for the developer to understand what area people should be aware of when they use AWS cloud. AWS shared responsibility model has two major parts: AWS responsibility for Security of the Cloud and Customer responsibility for Security in the Cloud.
AWS responsibility:
AWS takes care of the infrastructure that provides the service to the customer. For instance, Global infrastructure, physical data center, Edge locations.
Customer responsibility:
Customers need to take care of how they are going to use those services. For instance, encryption of customers’ data, employee access management, network monitoring.
Explain the shared responsibility model to a 5-year-old:
Here is a simple analogy for the responsibility: AWS is a car manufacturer and they take care of building a good car for you to drive, but as a customer, you need to maintain your car regularly and keep your car key in a safe place.
Monitoring and logging:
There are a lot of services that the customer can use to keep monitoring their application status in the cloud. For instance, Amazon CloudWatch, AWS CloudTrail. Amazon CloudWatch can collect the data from the AWS services that users use, such as Amazon EC2 instances, Amazon EBS volumes, and Amazon RDS DB instances. Amazon CloudTrail can help you to monitor account activity, for instance, someone login to the AWS service or some resource is modified by someone.
