Question 21
Domain 2: Security and ComplianceWhen comparing managed database services to compute services where the customer provisions virtual servers, which statement correctly summarizes the shift in operational responsibility?
Correct answer: C
Explanation
AWS says, "AWS has the responsibility OF the cloud" while the customer has responsibilities "IN the cloud." With managed database services like RDS, AWS handles more operational tasks such as patching, maintenance, and infrastructure management than when customers provision EC2 virtual servers themselves.
Why each option is right or wrong
A. The level of responsibility for the customer and AWS remains constant whether using managed database services or compute services where the customer maintains virtual servers.
B. Customers are responsible for physical hardware maintenance with compute services, whereas AWS assumes this responsibility with its managed database offerings.
C. With managed database services, AWS takes on more of the database management tasks typically handled by the customer with compute services where they control virtual servers.
AWS’s Shared Responsibility Model distinguishes between services where the customer manages the guest OS and server stack versus managed services where AWS assumes more operational control. Under EC2, the customer is responsible for patching and maintenance of the guest operating system and the virtual server they provision, whereas for RDS AWS handles the database engine administration tasks such as backups, patching, and infrastructure maintenance as part of the service. This aligns with the model’s division of responsibilities and explains why the managed database shifts more database-management work to AWS.
D. AWS’s responsibility is diminished with managed database services, as the customer must oversee patching and upgrades, just as they would with provisioned compute services.