The infrastructure shared responsibility model is probably the most common model that AWS engineers are aware of today. It looks as in the following table and covers Infrastructure as a Service (IaaS) services, such as Amazon Elastic Compute Cloud (EC2):
Let me break this down a bit further to help explain what this table represents. The table is split into two very distinct sections—a green area and a yellow area. This color-split defines the division of responsibility between the customer (green) and AWS (yellow).
We can also see that the customer is responsible for maintaining security in the cloud and AWS maintains the security of the cloud. But what does that mean?
Let's take a look at what AWS is responsible for:
- AWS Global Infrastructure: You can see that AWS provides security for the global infrastructure, including regions, availability zones, edge locations, and regional edge caches. This global...