Which of the following are correct statements with policy evaluation logic in AWS Identity and Acces

Which of the following are correct statements with policy evaluation logic in AWS Identity
and Access Management? Choose 2 answers

A.
An explicit deny does not override an explicit allow

B.
By default, all request are allowed

C.
An explicit allow overrides default deny.

D.
An explicit allow overrides an explicit deny

E.
By default, all requests are denied