Answer-first summary for fast verification
Answer: Leverage IAM policies in Amazon Cognito to enforce user-specific folder access in S3.
The correct answer is D. Leveraging IAM policies within Amazon Cognito identity pools allows for fine-grained access control, ensuring users can only access their own files in Amazon S3. This method provides the highest level of security by using AWS's built-in identity and access management features. Options A, B, and C introduce more complexity and potential security risks, as they either rely on external validation processes or require additional infrastructure and custom code to enforce access controls.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
In an application utilizing Amazon Cognito for user and identity management, a developer is tasked with securely integrating file upload and download functionalities with Amazon S3. The requirement is to ensure secure file storage and retrieval, with access limited to each user's own files, accommodating file sizes from 3 KB to 300 MB. Identify the most secure method to achieve this:
A
Utilize S3 Event Notifications for validating file operations and updating the UI.
B
Maintain a record of uploaded files in an Amazon DynamoDB table, using it to filter the UI list based on user ID correlation.
C
Employ Amazon API Gateway and AWS Lambda for file operations, with Lambda validating requests before proceeding.
D
Leverage IAM policies in Amazon Cognito to enforce user-specific folder access in S3.
No comments yet.