Absolutely Wrong...Correct answer is Customer only. AWS never interfere on the Host OS.They are responsible for managing the underline hardware.. The link which you have provided clearly tells customer has to take care of the guest OS.AWS manages the hardware or drivers responsible for the OS.
Patch Management – AWS is responsible for patching and fixing flaws within the infrastructure, but customers are responsible for patching their guest OS and applications.
Configuration Management – AWS maintains the configuration of its infrastructure devices, but a customer is responsible for configuring their own guest operating systems, databases, and applications.
The 'host' OS is what an instance runs on' The instance is the 'guest' OS which is what the customer is responsible for. Therefor, D is the correct answer.
*D* Straight from the Docks "Security and Compliance is a shared responsibility between AWS and the customer. This shared model can help relieve the customer’s operational burden as AWS operates, manages and controls the components from the host operating system and virtualization layer down to the physical security of the facilities in which the service operates. The customer assumes responsibility and management of the guest operating system (including updates and security patches)"
https://aws.amazon.com/compliance/shared-responsibility-model/#:~:text=Security%20and%20Compliance,and%20security%20patches)
It's option B
It's mentioned as it is here -- https://aws.amazon.com/compliance/shared-responsibility-model/
Customer responsibility “Security in the Cloud” – Customer responsibility will be determined by the AWS Cloud services that a customer selects. This determines the amount of configuration work the customer must perform as part of their security responsibilities. For example, a service such as Amazon Elastic Compute Cloud (Amazon EC2) is categorized as Infrastructure as a Service (IaaS) and, as such, requires the customer to perform all of the necessary security configuration and management tasks. Customers that deploy an Amazon EC2 instance are responsible for management of the guest operating system (including updates and security patches), any application software or utilities installed by the customer on the instances, and the configuration of the AWS-provided firewall (called a security group) on each instance.
When we talk about patching the host operating system of an EC2 instance, this refers to the operating system running inside the instance (which is managed by the customer). It’s not the infrastructure or hypervisor level of the EC2 instance, which AWS does manage.
Correct answer: B. The customer only
Customers that deploy an Amazon EC2 instance are responsible for management of the guest operating system (including updates and security patches), any application software or utilities installed by the customer on the instances, and the configuration of the AWS-provided firewall (called a security group)
https://aws.amazon.com/compliance/shared-responsibility-model/#:~:text=Customers%20that%20deploy%20an%20Amazon,a%20security%20group)%20on%20each
B for sure
According to AWS doc:
For example, a service such as Amazon Elastic Compute Cloud (Amazon EC2) is categorized as Infrastructure as a Service (IaaS) and, as such, requires the customer to perform all of the necessary security configuration and management tasks. Customers that deploy an Amazon EC2 instance are responsible for management of the guest operating system (including updates and security patches), any application software or utilities installed by the customer on the instances, and the configuration of the AWS-provided firewall (called a security group) on each instance.
D. AWS only Most Voted
Even I answered B at first, but to understand why the answer is D, you must understand the difference between guest and host OS.
As steve122 said "GUEST > customer --- HOST > AWS".
This is the first line in the docs: https://aws.amazon.com/compliance/shared-responsibility-model/
"Security and Compliance is a shared responsibility between AWS and the customer. This shared model can help relieve the customer’s operational burden as AWS operates, manages and controls the components from the HOST OPERATING SYSTEM and virtualization layer down to the physical security of the facilities in which the service operates. The CUSTOMER assumes responsibility and management of the GUEST OPERATING SYSTEM (including updates and security patches), other associated application software as well as the configuration of the AWS provided security group firewall."
AWS operates, manages and controls the components from the host operating system and virtualization layer down to the physical security of the facilities in which the service operates
Patch Management – AWS is responsible for patching and fixing flaws within the infrastructure, but customers are responsible for patching their guest OS and applications. So "Host OS" is under it's infrastructure. https://aws.amazon.com/compliance/shared-responsibility-model/
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Steve122
Highly Voted 2 years, 7 months agorockyogi12345
1 year, 7 months agoDRon65
9 months, 1 week agorankocertified
1 year, 5 months agoNotMeAnyWay
2 years, 3 months agodivyaraj123
Highly Voted 1 year, 7 months agoNan_cy
Most Recent 3 weeks, 6 days agoHebaXX
1 month agoHebaXX
1 month agoDipa_2910
2 months, 2 weeks agoDipa_2910
2 months, 3 weeks agoaaRDee777
4 months, 1 week agoKavyaSahithi
4 months, 3 weeks agosonlduet
1 year, 3 months agoManikRoy
1 year, 3 months agoMugundh
1 year, 4 months agoYSJ_VIT
1 year, 4 months agoHOYIITPUCO
1 year, 6 months agoblopa
1 year, 7 months agopetercorn
1 year, 7 months agoManimala_D
1 year, 7 months agoviceman
1 year, 7 months ago