Which solution will meet these requirements?
Add geographic restrictions to the content in CloudFront by using an allow list. Set up a custom error message.
Set up a new URL tor restricted content. Authorize access by using a signed URL and cookies. Set up a custom error message.
Encrypt the data for the content that the company distributes. Set up a custom error message.
Create a new URL for restricted content. Set up a time-restricted access policy for signed URLs.
Explanations:
Adding geographic restrictions using an allow list in CloudFront allows the company to specify which countries can access the content. This effectively prevents viewers outside the designated countries from viewing the content. Setting up a custom error message enhances the user experience by providing feedback to users who are denied access.
While using signed URLs and cookies can restrict access to content, this option does not inherently control access based on geographical location. This means that viewers outside the allowed countries may still access the content if they obtain the signed URL or cookie. Additionally, a custom error message does not address the geographic restriction requirement.
Encrypting data may protect content from unauthorized access, but it does not prevent users in restricted countries from accessing the content if they have the proper URL. A custom error message alone does not enforce geographical access control, making this option insufficient for the requirement.
Creating a new URL for restricted content and setting a time-restricted access policy for signed URLs can manage content access in terms of timing, but it does not restrict access based on the geographical location of the users. Therefore, users in countries that are not supposed to access the content may still gain access if they acquire the signed URL before the expiration.