you have a popular web application that accesses data stored in an amazon simple storage service (s3) bucket. developers use the sdk to maintain the application and add new features. security compliance requests that all new objects uploaded to s3 be encrypted using sse-s3 at the time of upload. which of the following headers must the developers add to their request?