AWS Certified Security - Specialty
Get started today
Ultimate access to all questions.
Comments
Loading comments...
Ultimate access to all questions.
A company utilizes an Amazon S3 bucket to store images for their website, which are served to end users through Amazon CloudFront. Recently, the company identified that these images are being accessed from countries without a distribution license. To address this security concern and restrict access to authorized regions, what two measures should the company implement?
A
Update the S3 bucket policy to restrict access to a CloudFront origin access control (OAC).
B
Update the website DNS record to use an Amazon Route 53 geolocation record deny list of countries where the company lacks a license.
C
Add a CloudFront geo restriction deny list of countries where the company lacks a license.
D
Update the S3 bucket policy with a deny list of countries where the company lacks a license.
E
Enable the Restrict Viewer Access option in CloudFront to create a deny list of countries where the company lacks a license.