To enable end-to-end HTTPS connections from the user‘s browser to the origin via CloudFront, which of the following option is valid?

• Use self signed certificate in the origin and CloudFront default certificate in CloudFront.
• Use the CloudFront default certificate in both origin and CloudFront
• Use 3rd-party CA certificate in both origin and CloudFront