AWS handles some parts of security, and you handle others. Knowing where the line is drawn is essential for cloud security.
1Security OF the Cloud (AWS)
AWS is responsible for protecting the infrastructure that runs all of the services offered in the AWS Cloud. This infrastructure is composed of the hardware, software, networking, and facilities that run AWS Cloud services.
2Security IN the Cloud (Customer)
Customer responsibility is determined by the AWS Cloud service that a customer selects. This determines the amount of configuration work the customer must perform as part of their security responsibilities. Customers are responsible for managing their data (including encryption), classifying their assets, and using IAM tools to apply the appropriate permissions.
