Skip to content
hands-on lab

Query Encrypted Amazon S3 Data with Amazon Athena

Difficulty: Beginner
Duration: Up to 1 hour and 20 minutes
Students: 3,119
Rating: 4.5/5
Start lab
Get guided in a real environmentPractice with a step-by-step scenario in a real, provisioned environment.
Learn and validateUse validations to check your solutions every step of the way.
See resultsTrack your knowledge and monitor your progress.

Description

Amazon Simple Storage Service (S3) is a web service from AWS that enables you to store data at scale in the cloud. Amazon S3 supports encrypting data at rest. Amazon Athena is a query service that integrates with Amazon S3 allowing you to easily access and analyze your data.

By combining Amazon S3 and Amazon Athena you can achieve end-to-end security:

  • Data is stored encrypted in Amazon S3 (at rest)
  • All communications within AWS are encrypted (in transit)
  • Amazon Athena query results are encrypted (at rest)

In this hands-on lab, you will upload data files to Amazon S3. Configure one of the files to be stored encrypted. And you will use Amazon Athena to query both files.

Note: Due to updates by AWS, starting January 5, 2023, all new object uploads to Amazon S3 are automatically encrypted at no additional cost and with no impact on performance. However, it would still be beneficial for students to understand the concepts behind S3 encryption.

Learning Objectives

Upon completion of this lab you will be able to:

  • Encrypt data on S3
  • Define a schema in order to create a database and table in Amazon Athena
  • Perform basic queries in Athena
  • Encrypt the query results

Prerequisites

Familiarity with the following will be beneficial but is not required:

  • Amazon S3
  • Amazon Athena

The following courses can be used to fulfill the prerequisites:

Lab Environment

After completing the lab instructions the environment should look similar to:

Updates

July 20th, 2023 - Updated the instructions and screenshots to reflect the latest UI

May 12th, 2023 - Updated the instructions and screenshots to reflect the latest UI

April 14th, 2022 - Updated the instructions and screenshots to reflect the latest UI

January 21st, 2022 - Updated the instructions and screenshots to reflect the latest UI

December 21, 2021 - Updated grammar.

October 5, 2021 - Added a note about changes to the interface and how to access the previous interface.

January 10th, 2019 - Added a validation Lab Step to check the work you perform in the Lab

 

Covered topics

Object Storage
Analytics
Storage
Security
Databases
Amazon Web Services
Analytics for AWS
Storage for AWS
Amazon Athena
Amazon S3

Lab steps

Logging In to the Amazon Web Services Console
Creating an Amazon S3 Bucket
Configuring Athena Query Results for encrypted storage on S3
Preparing the Data and Storing it on S3
Defining the Schema and Creating the Database Table in Athena
Confirming Athena Query Results

Lab Rules