AWS are responsible for the “security of the cloud”. This includes protecting the infrastructure
that runs all of the services offered in the AWS Cloud. This infrastructure is composed of the
hardware, software, networking, and facilities that run AWS Cloud services.
The customer is responsible for “security in the cloud”. Customer responsibility depends on the
service consumed but includes aspects such as Identity and Access Management (includes password
policies), encryption of data, protection of network traffic, and operating system, network and
firewall configuration.