Examtopics

AWS Certified Security - Specialty

90
92

Topic 1 Question 91
A company stores images for a website in an Amazon S3 bucket. The company is using Amazon CloudFront to serve the images to end users. The company recently discovered that the images are being accessed from countries where the company does not have a distribution license.

Which actions should the company take to secure the images to limit their distribution?

2 つ選択
- Update the S3 bucket policy to restrict access to a CloudFront origin access control (OAC).
- Update the website DNS record to use an Amazon Route 53 geolocation record deny list of countries where the company lacks a license.
- Add a CloudFront geo restriction deny list of countries where the company lacks a license.
- Update the S3 bucket policy with a deny list of countries where the company lacks a license.
- Enable the Restrict Viewer Access option in CloudFront to create a deny list of countries where the company lacks a license.
ユーザの投票
コメント(9)
- 正解だと思う選択肢: AC
  A so the object requests do not bypass Cloudfront, and C for georestrictions. Careful with this oioi fella 👀
  
  👍 9
  [Removed]2023/11/25
- 正解だと思う選択肢: AC
  https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/georestrictions.html
  
  👍 3
  kejam2023/11/30
- why E is incorrect ?
  
  👍 2
  sema22322024/06/11
シャッフルモード

90
92