A SysOps Administrator manages an application that stores object metadata in Amazon S3. There is a requirement to have S2 server-side encryption enabled on all new objects in the bucket.
How can the Administrator ensure that all new objects to the bucket satisfy this requirement?
To ensure that all new objects in an Amazon S3 bucket are encrypted with server-side encryption (SSE), the appropriate approach is to enable default bucket encryption. By configuring the bucket's default encryption settings, any new objects uploaded to the bucket will automatically be encrypted using the specified encryption method. This removes the need for users or applications to specify encryption settings for each object manually.
B. https://docs.aws.amazon.com/AmazonS3/latest/dev/bucket-encryption.html
B. Enable default bucket encryption to ensure that all new objects are encrypted.
should be B
The answer is D, Server side encryption is done using authorization header https://docs.aws.amazon.com/AmazonS3/latest/dev/UsingServerSideEncryption.html I choose D :)
B is the answer Enabling default encrypting is enough to attend this requirement
should be C https://docs.aws.amazon.com/AmazonS3/latest/dev/bucket-encryption.html
Definitely B.
If your PUT request headers don't include encryption information, Amazon S3 uses the bucket’s default encryption settings to encrypt the objects. If your PUT request headers include encryption information, Amazon S3 uses the encryption information from the PUT request to encrypt objects before storing them in Amazon S3. answer is B
B. Enable default bucket encryption to ensure that all new objects are encrypted.
B. Enable default bucket encryption to ensure that all new objects are encrypted.
I'll go with B
B. Enable default bucket encryption to ensure that all new objects are encrypted. Seem correct