Shared responsibility model across service tiers
WHAT IT TESTS: who secures what at each service tier. OUTLINE: provider secures the cloud infrastructure; you secure what you put in it; the line shifts with abstraction. For OS patching, you patch IaaS VMs but the provider patches a managed database OS.
WHAT IT TESTS: understanding that the responsibility boundary shifts with the service abstraction. ANSWER OUTLINE: the provider is always responsible for security of the cloud, the physical hardware and core infrastructure, while you are responsible for security in the cloud. With IaaS like EC2, you own the guest OS, patching, configuration, and data. With a managed database like RDS, the provider patches the underlying OS and engine, while you still own data, access control, and network rules.
Read the original → interview
- #shared-responsibility
- #security
- #iaas
- #managed-services
- #cloud
Get five bites like this every day.
Tezvyn delivers a daily feed of 60-second tech bites with quizzes to lock in what you learn.