Topic 1 Question 110
A company is providing read access to objects in an Amazon S3 bucket for different customers. The company uses IAM permissions to restrict access to the S3 bucket. The customers can access only their own files.
Due to a regulation requirement, the company needs to enforce encryption in transit for interactions with Amazon S3.
Which solution will meet these requirements?
Add a bucket policy to the S3 bucket to deny S3 actions when the aws:SecureTransport condition is equal to false.
Add a bucket policy to the S3 bucket to deny S3 actions when the s3:x-amz-acl condition is equal to public-read.
Add an IAM policy to the IAM users to enforce the usage of the AWS SDK.
Add an IAM policy to the IAM users that allows S3 actions when the s3:x-amz-acl condition is equal to bucket-owner-read.
ユーザの投票
コメント(3)
- 正解だと思う選択肢: A
This solution enforces encryption in transit for interactions with Amazon S3 by denying access to the S3 bucket if the request is not made over an HTTPS connection. This condition can be enforced by using the "aws:SecureTransport" condition key in a bucket policy.
👍 8MrTee2023/04/22 - 正解だと思う選択肢: A👍 1rlnd20002023/05/15
- 正解だと思う選択肢: A
To enforce encryption in transit for interactions with Amazon S3, you can add a bucket policy to the S3 bucket that denies S3 actions when the aws:SecureTransport condition is equal to false. This condition checks whether the requests to S3 are made over a secure (HTTPS) connection.
👍 1loctong2023/05/17
シャッフルモード