A marketing company is storing CSV files in an Amazon $3 bucket for statistical analysis An application on an Amazon EC2 instance needs permission to efficiently process the CSV data stored in the $3 bucket.
Which action will MOST securely grant the EC2 instance access to the S3 bucket?
A. Attach a resource-based policy to the S3 bucket
B. Create an IAM user for the application with specific permissions to the S3 bucket
C. Store AWS credentials directly on the EC2 instance for applications on the instance to use for API calls
D. Associate an IAM role with least privilege permissions to the EC2 instance profile
