A company is using a centralized AWS account to store log data in various Amazon S3 buckets. A solutions architect needs to ensure that the data is encrypted at rest before the data is uploaded to the S3 buckets. The data also must be encrypted in transit. Which solution meets these requirements?
AUse client-side encryption to encrypt the data that is being uploaded to the S3 buckets.
BUse server-side encryption to encrypt the data that is being uploaded to the S3 buckets.
CCreate bucket policies that require the use of server-side encryption with S3 managed encryption keys (SSE-S3) for S3 uploads.
DEnable the security option to encrypt the S3 buckets through the use of a default AWS Key Management Service (AWS KMS) key.