AIncorrect
Classification of data input to the application and configuration of access permissions
This is incorrect. Classifying input data and configuring who can access it are the customer's responsibility. They are not areas handled by AWS.
A company is operating a generative AI application on Amazon Bedrock and is organizing the division of responsibilities with AWS for an upcoming security audit. Under the AWS shared responsibility model, which area is MOST appropriately handled by AWS?
1 / 1
Select an answer
CorrectC
Explanation
Identify the area handled by AWS under the shared responsibility model.
- 1「shared responsibility model」Division of responsibilities between AWS (infrastructure) and the customer (user side)
- 2「area is MOST appropriately handled by AWS」Infrastructure, physical security, and model hosting — the cloud infrastructure side
BIncorrect
The policy for handling confidential information included in prompts
This is incorrect. A prompt is the instruction or input text given to a generative AI model. Decisions about what information to include in prompts and how to handle confidential information are the customer's responsibility as the entity supplying the data. They are not areas handled by AWS.
CCorrect
The infrastructure hosting the foundation models and physical security
This is correct. The infrastructure, hardware, and physical security of the data centers that run the foundation models are AWS's responsibility. AWS, as the provider of the cloud infrastructure, handles this. Customers manage data and access on top of that.
DIncorrect
Decisions about how to use the generated outputs in business operations
This is incorrect. How to use and make decisions about generated outputs in business operations is the customer's responsibility as the operator of the application. It is not an area handled by AWS.
Key Takeaway
AWS's responsibility is 'security of the cloud' = infrastructure, hardware, physical facilities, and hosting of foundation models. On the other hand, data, access permissions, the content of prompts, and how outputs are used are all the customer's responsibility. If the option is about 'data/access/output handling,' it is the customer; if it is about 'physical/infrastructure,' it is AWS.