An application stores financial statements in an Amazon S3 bucket.A recent security audit found that the bucket does not comply with company standards.Currently, several IAM policies allow encrypted calls and unencrypted calls to the bucket.The company needs to create a bucket policy that forces all requests to the bucket to use encrypted connections.
Which solution will meet this requirement?
Add a bucket policy with a condition of “aws:SecureTransport”: “true” and an effect of “Allow.”
Add a bucket policy with a resource of “am:aws:s3:::https/bucketname” and an effect of “Allow.”
Add a bucket policy with a condition of “aws:SecureTransport”: “false” and an effect of “Deny.”
Add a bucket policy with a resource of “arn:aws:s3:::http/bucketname” and an effect of “Deny.”
Based on what I know, the answer is:
Add a bucket policy with a condition of “aws:SecureTransport”: “false” and an effect of “Deny.”