AWS Certified Developer - Associate
Get started today
Ultimate access to all questions.
Ultimate access to all questions.
In an application utilizing Amazon Cognito for user and identity management, a developer is tasked with securely integrating file upload and download functionalities with Amazon S3. The requirement is to ensure secure file storage and retrieval, with access limited to each user's own files, accommodating file sizes from 3 KB to 300 MB. Identify the most secure method to achieve this:
Explanation:
The correct answer is D. Leveraging IAM policies within Amazon Cognito identity pools allows for fine-grained access control, ensuring users can only access their own files in Amazon S3. This method provides the highest level of security by using AWS's built-in identity and access management features. Options A, B, and C introduce more complexity and potential security risks, as they either rely on external validation processes or require additional infrastructure and custom code to enforce access controls.