The AWS Shared Responsibility Model describes how responsibilities for security and compliance are divided between an AWS Service (cloud provider) and the customer (you).
- AWS is responsible for the security of the cloud
- The customer is responsible for the security in the cloud
Depending on the AWS service you choose, your responsibilities may vary. But generally, the customer assumes responsibility and management of the guest operating system (including updates and security patches), other associated application software as well as the configuration of the AWS provided security group firewall.