09. π₯οΈ Shared Responsibility Model for EC2
βοΈ AWS Responsibilitiesβ
AWS is responsible for securing the infrastructure that runs your EC2 instances, including:
- Global network and data center security
- Isolation on physical hosts
- Replacing faulty hardware
- Compliance validation
π©βπ» Your Responsibilitiesβ
You are responsible for securing and managing everything inside and around your EC2 instances, including:
- Configuring Security Groups and network access rules
- Applying operating system patches and updates
- Managing software and utilities installed on your EC2 instances
- Assigning appropriate IAM Roles to EC2 and managing IAM user access
- Ensuring data security on your instance (encryption, backups, access control)
π§ Tip: Treat your EC2 instance like a physical server β youβre responsible for what runs inside it, while AWS secures the infrastructure beneath it.