B,C B - It's sort of obvious, that it is customer responsibility what to store. But as a proof take a look at the oracle provided chart about shared-security responsibilities: https://www.oracle.com/webfolder/s/assets/ebook/oracle-cloud-infrastructure-security/part3.html C - Lets read what is Local NVMe and what is protected (source: https://docs.oracle.com/en-us/iaas/Content/Compute/References/nvmedeviceinformation.htm). they are individual devices locally installed on your instance. Oracle Cloud Infrastructure does not take images, back up, or use RAID or any other methods to protect the data on NVMe devices. It is your responsibility to protect and manage the durability the data on these devices. For sure A is incorrect. Object Storage is an OCI service and data durability inside that service is responsibility of Oracle.

BC is correct as Local NVMe data persistency is customer responsibility

B and C. Client data and local NVMe are client's responsiblity

B&C https://docs.oracle.com/en-us/iaas/Content/Compute/References/nvmedeviceinformation.htm --> NVMe

B&C is correct. Local NVMe Peristence is the responsibility of customer as Local NVMe is designed to be Non-persistent and for high performance local storage.

BC Host Infrastructure Security: You are responsible for securely configuring and managing your compute (virtual hosts, containers), storage (object, local storage, block volumes), and platform (database configuration) services. NVNe is a locally attached device. https://docs.oracle.com/en-us/iaas/Content/Security/Concepts/security_overview.htm

Local NVMe, OCI provides no RAID, snapshots, backups capabilities for these devices and customers are responsibility for data durability. https://www.oracle.com/a/ocom/docs/cloud/block-volume-100.pdf. Ans B&C

Object storage is encrypted and stored across multiple ADs. Local NVMEs data is not encrypted at rest but sent encrypted over wire. Most logical answer will be B,C.

How about E.?? I found below information that E is also customer’s responsibility. “Oracle shares responsibility with you to ensure that the service is optimally configured and secured. This responsibility includes hypervisor security and the configuration of permissions and network access controls.” - https://docs.oracle.com/en-us/iaas/Content/Security/Concepts/security_overview.htm Please let me know you guys thinking.

B and C are the corect answers. NVMe devices are not protected in any way; they are individual devices locally installed on your instance. Oracle Cloud Infrastructure does not take images, back up, or use RAID or any other methods to protect the data on NVMe devices. It is your responsibility to protect and manage the durability of the data on these devices. https://docs.oracle.com/en-us/iaas/Content/Compute/References/nvmedeviceinformation.htm

AB. as we will decide on durability and of course data that is going to store

correct answer is AB

When creating OSS Buckets, you need to config the retention rule, in days, months, years, or infinite, so Objects Storage Data Durability and Customer Data are correct.

Local NVMe data persistence can not be customer responsibility, it is Oracle responsibility to provide data persistence, so A and B

A - Local NVMe are not protected at all by OCI and B - customer is reposnible for app data

B & C are correct. https://docs.cloud.oracle.com/en-us/iaas/Content/Compute/References/nvmedeviceinformation.htm

Answer A & B is correct