The second model we will cover is the container model. The word container is frequently used to describe software packages that contain code, and all associated dependencies that can be run across a range of different compute environments. Examples of common container technologies include Docker and Kubernetes. However, the word container when used here refers to a slightly different concept.
This model focuses on services that essentially reside on top of infrastructure services, meaning the customer does not have access to some of the infrastructure-level components—for example, the operating system. Examples of services in the container model include the following:
- AWS Elastic MapReduce (EMR)
- AWS Relational Database Service (RDS)
- AWS Elastic Beanstalk
This diagram shows the responsibility model for container services:
As you can see, AWS still maintains the same level of security responsibility as retained from the infrastructure...