AWS offers numerous services that help protect data at rest and in transit. In this lab, you’ll explore a real-world situation and gain practical experience with multiple services. You’ll learn about Server Side Encryption (SSE) for Amazon S3, AWS Key Management Service (KMS), and Amazon DynamoDB Encryption Client. You’ll optionally use the AWS Encryption SDK to encrypt and decrypt data programmatically.
Level
Advanced
Duration
1 Hours 30 MinutesCourse Objectives
In this course, you will learn how to:
- Create a KMS Key for encryption management
- Enable S3 Server-side Encryption
- Configure Attribute-Based Access Control
- Use the DynamoDB Encryption Client to encrypt database data in DynamoDB
- Encrypt data programmatically with the AWS Encryption SDK
Intended Audience
This course is intended for:
- Architects
- Developers
- Security Engineers
Prerequisites
We recommend that attendees of this course have the following prerequisites:
- None
Course Outline
- Task 1: Create a KMS Key for encryption management
- Task 2: Enable S3 Server-side Encryption
- Task 3: Add new objects to the secured bucket
- Task 4: Configure Attribute-Based Access Control
- Task 5: Use the DynamoDB Encryption Client to encrypt database data in DynamoDB