Assigment 7 week 7 – BD308-2481410985-Salman Hakiki

pertanyaan:

  1. Explain the “Shared Responsibility Model.” What is the cloud provider responsible for, and what is the business (customer) responsible for?
  2. What is a cloud misconfiguration, and can you provide an example (e.g., a public S3 bucket)?
  3. Why are Identity and Access Management (IAM) policies so critical in a cloud environment?

status: 100%

keterangan: saya sudah mengerjakan dengan baik dan benar

bukti:

1.The Shared Responsibility Model is a cloud security framework that explains how security duties are split between a cloud provider and the customer. The key idea is that the provider secures the cloud infrastructure itself, while the customer secures what they build and store inside that cloud.Cloud providers such as Amazon Web Services, Microsoft Azure, and Google Cloud are responsible for the security of the cloud. This includes the physical data centers, servers, storage hardware, networking equipment, and the core software that runs the cloud platform. They also handle availability, redundancy, and protection against large-scale infrastructure failures or attacks. In short, they secure the foundation that everything runs on.

2.A cloud misconfiguration is a security or operational mistake where a cloud service is set up in an unsafe, overly permissive, or incorrect way. These misconfigurations are one of the most common causes of cloud data breaches because they often expose sensitive data or services to the public internet unintentionally.

They usually happen due to:

Default settings that are not secured

Human error during setup

Lack of access control policies

Overly broad permissions (“public”, “*”, or “anyone can access”)

Misunderstanding of cloud security models

3.Identity and Access Management (IAM) policies are critical in a cloud environment because they control who can access what, under which conditions, and with what level of permission. In cloud systems, where resources are highly distributed and internet-accessible by default, IAM is essentially the main security boundary.

Previous Post Previous Post
Newer Post Newer Post

Leave a comment