AmazonAmazon
DEA-C01 · Question #299
DEA-C01 Question #299: Real Exam Question with Answer & Explanation
Sign in or unlock DEA-C01 to reveal the answer and full explanation for question #299. The question stem and answer options stay visible for context.
Data Security and Governance
Question
A company stores time-series data that is collected from streaming services in an Amazon S3 bucket. The company must ensure that only workloads that are deployed within the company's VPC can access the data. Which solution will meet this requirement?
Options
- ACreate an S3 bucket policy that uses a condition to allow access only to traffic that originates from
- BApply a security group to the S3 bucket that allows connections only from the company's VPC
- CDefine an IAM policy that denies access to all users unless the request originates from within the
- DUse a network ACL on the VPC subnets to allow only specific resources to access the S3 bucket.
Unlock DEA-C01 to see the answer
You've previewed enough free DEA-C01 questions. Unlock DEA-C01 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.
Topics
#S3 Bucket Policies#VPC Access Control#Data Security#Resource-Based Policies