A photo-sharing service stores pictures in Amazon Simple Storage Service (S3) and allows application sign-in
using an OpenID Connect-compatible identity provider. Which AWS Security Token Service approach to
temporary access should you use for the Amazon S3 operations?
A.
SAML-based Identity Federation
B.
Cross-Account Access
C.
AWS Identity and Access Management roles
D.
Web Identity Federation