In the shared responsibility model for infrastructure services, such as Amazon Elastic Compute Cloud, which of the below two are customers responsibility?

Answer options:

A.Network infrastructure
B.Amazon Machine Images (AMIs)
C.Virtualization infrastructure
D.Physical security of hardware
E.Policies and configuration

Answer: B, E
In the shared responsibility model, AWS is primarily responsible for “Security of the Cloud.” The customer is responsible for “Security in the Cloud.” In this scenario, the mentioned AWS product is IAAS (Amazon EC2) and AWS manages the security of the following assets:
- Facilities
- Physical security of hardware
- Network infrastructure
- Virtualization infrastructure
Customers are responsible for the security of the following assets:
- Amazon Machine Images (AMIs)
- Operating systems
- Applications
- Data in transit
- Data at rest
- Data stores
- Credentials
- Policies and configuration
Option A is incorrect. Refer to the explanation above and link in the references for more details.
Option B is Correct. Refer to the explanation above and link in the references for more details.
Option C is incorrect. Refer to the explanation above and link in the references for more details.
Option D is incorrect. Refer to the explanation above and link in the references for more details.
Option E is correct. Refer to the explanation above and link in the references for more details.
 References:
https://docs.aws.amazon.com/whitepapers/latest/aws-security-best-practices/know-the-aws-shared-responsibility-model.html