Security
The security pillar encompasses the ability to protect information, systems, and assets to take advantage of cloud technologies designed to improve your security. It provides an overview of design principles, best practices, and questions to ask. This pillar helps you understand how to apply the shared responsibility model during the three migration phases. You can find additional prescriptive guidance on implementation details in the security pillar whitepaper.
At AWS, security is our top priority. As an AWS customer, you
benefit from a data center and network architecture that are built
to meet the requirements of the most security-sensitive
organizations. Security is a shared responsibility between AWS and
you. The
shared
responsibility model
-
Security of the cloud: AWS is responsible for protecting the infrastructure that runs AWS services in the AWS Cloud. This infrastructure is composed of the hardware, software, networking, and facilities that run AWS Cloud services. The effectiveness of our security is regularly tested and verified by third-party auditors as part of the AWS compliance programs
-
Security in the cloud: Your responsibility is determined by the AWS services you use. You are also responsible for other factors including data management, your organization's security and compliance requirements, and applicable laws and regulations.