AWS Cert: The AWS share model of responsibility and EC2 storage

AWS Cert: The AWS share model of responsibility and EC2 storage

Ok so we now know what is an EC2 instance.

Where is my data stored?

Elastic block store - EBS πŸ“€

The elastic block store is the hard drive in the ECS. It's only available in the same AZ and it has different types:

  • Optimized for High IoPs (Input output operations)
  • Normal SSD and HDD
  • Slower HDD for maximum cost reduction

Cool stuff you can do with EBS 😎

You can create snapshots, they are basically backups of you EC2 instance. With snapshots you can transfer your EC2 between AZs. More interesting than that is creating an Amazon machine image that serves as footprint for you to spawn more servers.

But with all that said, what is actually my responsibility in AWS?

AWS shared responsibility model πŸ—Ώ

Just because AWS handles a lot of the workload of managing your own datacenter it doesn't mean you don't have to take care about certain aspects of you deployment.

To simplify:

Everything that is IN the cloud is your responsibility

As examples, things that would be your responsibility:

  • Your customer data
  • Access to your cloud
  • OS and patches in EC2 instances
  • Networking and firewall setup
  • Encryption of data
  • Network protection
  • Client security

Extra: EFS and FSx

These files systems are supported on AWS and you can create them to share with linux (Elastic file system) and windows machines (FSx - windows file server).