How should the application use AWS credentials to access the 53 bucket securely?

You have an application running on an EC2 Instance which will allow users to download fl ies from a private 53 bucket using a pre-assigned URL. Before generating the URL the application should verify the existence of the fi le in 53.

How should the application use AWS credentials to access the 53 bucket securely?
A . Use the AWS account access Keys the application retrieves the credentials from the source code of the application.
B . Create an lAM user for the application with permissions that allow list access to the 53 bucket launch the instance as the lAM user and retrieve the lAM user’s credentials from the EC2 instance user data.
C . Create an lAM role for EC2 that allows list access to objects in the 53 bucket. Launch the instance with the role, and retrieve the role’s credentials from the EC2 Instance metadata
D . Create an lAM user for the application with permissions that allow list access to the 53 bucket. The application retrieves the lAM user credentials from a temporary directory with permissions that allow read access only to the application user.

Answer: C

Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments