CLF-C02 Domain 2: Security and Compliance

A security group rule change is an example of:

Multiple choice — select one answer

Answer choices

  1. a. Hypervisor patching by AWS, without preserving cloud audit logs or hunting mailbox rules and delegate permissions
  2. b. Physical security of AWS, while leaving refresh tokens and OAuth consent grants active pending user callback
  3. c. Sensitive data in Amazon S3, using shared credentials instead of individual accountability.
  4. d. Security in the cloud (customer responsibility)

Architectural breakdown & explanation

Customers configure security groups and NACLs for their VPC resources.

Correct answer(s): d. Security in the cloud (customer responsibility)

Exam domain: Domain 2: Security and Compliance (30% weight on the official guide).

Official documentation & study links

Practice this certification

This page is one question from the AWS Certified Cloud Practitioner bank. Run a full timed practice exam with domain-weighted random questions in your browser.