Question: 1/50
A developer is writing code that stores user-uploaded images in an Amazon S3 bucket. The developer wants newly uploaded objects to be encrypted automatically without changing the application code. Which solution meets this requirement with the LEAST effort?
Enable default encryption on the S3 bucket using SSE-S3
Modify the application to use the AWS Encryption SDK before uploading objects
Attach a bucket policy that denies any request that does not include the x-amz-server-side-encryption header
Enable S3 Object Lock in governance mode on the bucket