Cloud Customer Responsibilities

D.

Regardless of which cloud-hosting model is used, the cloud customer always has sole responsibility for the data and its security.

The responsibility of security varies depending on the cloud deployment model being used, which includes Infrastructure-as-a-Service (IaaS), Platform-as-a-Service (PaaS), and Software-as-a-Service (SaaS). Each of these models offers different levels of control, with the customer being responsible for different security aspects.

In general, the cloud service provider is responsible for securing the underlying cloud infrastructure, such as physical servers, storage, networking, and virtualization. On the other hand, the customer is responsible for securing their applications, data, and access to their cloud environment.

Of the options listed, data is the sole responsibility of the cloud customer, regardless of which cloud model is used. This means that customers must ensure that their data is protected throughout its lifecycle, from creation to storage and disposal. This includes implementing appropriate data encryption, access controls, backups, and monitoring to prevent unauthorized access, theft, or loss of data.

While the cloud provider may offer certain security features, such as encryption at rest and in transit, it is ultimately the customer's responsibility to ensure that their data is properly secured. Customers should also be aware of any compliance requirements that apply to their data, such as data privacy regulations or industry-specific standards, and take appropriate measures to comply with them.