Skip to content

hands-on lab

Query Encrypted Amazon S3 Data with Amazon Athena
Beginner
1h 20m
2,783
4.6/5
Start lab
Get guided in a real environmentPractice with a step-by-step scenario in a real, provisioned environment.
Learn and validateUse validations to check your solutions every step of the way.
See resultsTrack your knowledge and monitor your progress.
Lab description

Amazon Simple Storage Service (S3) is a web service from AWS that enables you to store data at scale in the cloud. Amazon S3 supports encrypting data at rest. Amazon Athena is a query service that integrates with Amazon S3 allowing you to easily access and analyze your data.

By combining Amazon S3 and Amazon Athena you can achieve end-to-end security:

  • Data is stored encrypted in Amazon S3 (at rest)
  • All communications within AWS are encrypted (in transit)
  • Amazon Athena query results are encrypted (at rest)

In this hands-on lab, you will upload data files to Amazon S3. Configure one of the files to be stored encrypted. And you will use Amazon Athena to query both files.

Note: Due to updates by AWS, starting January 5, 2023, all new object uploads to Amazon S3 are automatically encrypted at no additional cost and with no impact on performance. However, it would still be beneficial for students to understand the concepts behind S3 encryption.

Learning Objectives

Upon completion of this lab you will be able to:

  • Encrypt data on S3
  • Define a schema in order to create a database and table in Amazon Athena
  • Perform basic queries in Athena
  • Encrypt the query results

Prerequisites

Familiarity with the following will be beneficial but is not required:

  • Amazon S3
  • Amazon Athena

The following courses can be used to fulfill the prerequisites:

Lab Environment

After completing the lab instructions the environment should look similar to:

Updates

July 20th, 2023 - Updated the instructions and screenshots to reflect the latest UI

May 12th, 2023 - Updated the instructions and screenshots to reflect the latest UI

April 14th, 2022 - Updated the instructions and screenshots to reflect the latest UI

January 21st, 2022 - Updated the instructions and screenshots to reflect the latest UI

December 21, 2021 - Updated grammar.

October 5, 2021 - Added a note about changes to the interface and how to access the previous interface.

January 10th, 2019 - Added a validation Lab Step to check the work you perform in the Lab

 

About the author
Avatar
Greg DeRenne
Lab Research dev
Students
75,897
Labs
8

Greg has been a consistent high performer for pioneering technologies in the wireless web industries with an illustrious career that is a testament to his breadth of knowledge. Dabbling with MS Azure, at Cloud Academy, Greg really thrives on evangelizing the benefits of Amazon Web Services. A dedicated and passionate professional who learns new and emerging technologies quickly, Greg always ensures the highest quality and caliber of everything he produces.

Covered topics
Object Storage
Analytics
Storage
Security
Databases
Amazon Web Services
Analytics for AWS
Storage for AWS
Amazon Athena
Amazon S3
Lab steps
Logging In to the Amazon Web Services Console
Creating an Amazon S3 Bucket
Configuring Athena Query Results for encrypted storage on S3
Preparing the Data and Storing it on S3
Defining the Schema and Creating the Database Table in Athena
Confirming Athena Query Results