nerdexam
Amazon

DVA-C02 · Question #159

A company has an Amazon S3 bucket containing premier content that it intends to make available to only paid subscribers of its website. The S3 bucket currently has default permissions of all objects b

The correct answer is B. Generate a pre-signed object URL for the premier content file when a paid subscriber requests a. By generating a pre-signed object URL for the main content file when a paid subscriber requests a download, the company can control who can download the file. The pre-signed object URL will be valid for a limited period of time and can only be used by the paid subscriber who requ

Submitted by lucia.co· Mar 5, 2026Security

Question

A company has an Amazon S3 bucket containing premier content that it intends to make available to only paid subscribers of its website. The S3 bucket currently has default permissions of all objects being private to prevent inadvertent exposure of the premier content to non-paying website visitors. How can the company limit the ability to download a premier content file in the S3 bucket to paid subscribers only?

Options

  • AApply a bucket policy that allows anonymous users to download the content from the S3 bucket.
  • BGenerate a pre-signed object URL for the premier content file when a paid subscriber requests a
  • CAdd a bucket policy that requires multi-factor authentication for requests to access the S3 bucket
  • DEnable server-side encryption on the S3 bucket for data protection against the non-paying

How the community answered

(49 responses)
  • A
    6% (3)
  • B
    84% (41)
  • C
    2% (1)
  • D
    8% (4)

Explanation

By generating a pre-signed object URL for the main content file when a paid subscriber requests a download, the company can control who can download the file. The pre-signed object URL will be valid for a limited period of time and can only be used by the paid subscriber who requested

Community Discussion

No community discussion yet for this question.

Full DVA-C02 Practice