CertiPass LogoCertiPass

Secure Data Streaming with Amazon Kinesis and AWS KMS

INTERMEDIATE
95 minutes
5 tasks

In this lab, you will create a secure data streaming pipeline using Amazon Kinesis services. You will set up a complete data flow from data ingestion to storage, ensuring data security through encryption. The lab focuses on integrating AWS KMS for encryption and applying proper IAM policies to manage access. This hands-on experience will help reinforce your knowledge of data security in streaming architectures.

Scenario

Imagine you are a data engineer at a media company that provides real-time video analytics. With growing concerns about data security, your task is to design a streaming solution that ensures all analytics data is encrypted in transit and at rest. The company requires that only specific roles have access to the streaming data for processing and analysis.

Learning Objectives

  • Set up an Amazon Kinesis Stream with encryption using AWS KMS.
  • Create and apply IAM policies to secure access to streaming data.
  • Integrate Amazon Kinesis Firehose for data delivery to Amazon S3.
  • Ensure data stored in Amazon S3 is encrypted and governed by access policies.

tasks (5)

task 1: Create an Amazon Kinesis Data Stream

15 min

task 2: Create IAM Policies to Secure Stream Access

20 min

task 3: Integrate Kinesis Firehose for Data Delivery

25 min

task 4: Secure S3 Bucket with IAM Policies

20 min

task 5: Verify Log Auditing with CloudWatch Logs

15 min

Prerequisites

  • Basic understanding of AWS Kinesis and streaming architectures
  • Familiarity with AWS KMS and data encryption principles
  • Knowledge of IAM roles and policies

Skills Tested

Managing AWS Kinesis services for data streamingUsing AWS KMS for data encryptionConfiguring IAM policies for secure accessIntegrating Kinesis Firehose with Amazon S3Verifying logging and auditability using CloudWatch Logs

References

    Secure Data Streaming with Amazon Kinesis and AWS KMS - Hands-On Lab - CertiPass