A company wants to securely share an Amazon S3 object with an external partner. The partner needs to download the object using an HTTP GET request. The object must be accessible for only 24 hours. What is the most secure way to grant access?
Presigned URLs grant temporary access without exposing credentials.
Why this answer
Option A is correct because presigned URLs provide time-limited access to specific S3 objects without sharing AWS credentials. Option B is wrong because making the object public violates security. Option C is wrong because sharing the access key/secret is insecure.
Option D is wrong because presigned URLs already handle access; creating a new user is unnecessary and less secure.