Submit Search
Upload
Encrypting data in S3 with Stepfunctions
•
0 likes
•
7 views
J
Jimmy Dahlqvist
Follow
Presentation on how to encrypt data in S3 in a serverless way using KMS and setpfunctins
Read less
Read more
Internet
Report
Share
Report
Share
1 of 17
Download now
Download to read offline
Recommended
Event-driven and serverless in the world of IoT
Event-driven and serverless in the world of IoT
Jimmy Dahlqvist
Serverless and event-driven in a world of IoT
Serverless and event-driven in a world of IoT
Jimmy Dahlqvist
Cloud-grilled delights a high-tech approach to perfect BBQ
Cloud-grilled delights a high-tech approach to perfect BBQ
Jimmy Dahlqvist
IoT Enabled Smoker for Great BBQ
IoT Enabled Smoker for Great BBQ
Jimmy Dahlqvist
Aws Solution Architecture Associate - summary
Aws Solution Architecture Associate - summary
onoffshake
IoT Enabled smoker for Great BBQ
IoT Enabled smoker for Great BBQ
Jimmy Dahlqvist
AWS ECS and AWS Fargate demystified: run serverless containers
AWS ECS and AWS Fargate demystified: run serverless containers
Jimmy Dahlqvist
Serverless cloud architecture patterns
Serverless cloud architecture patterns
Jimmy Dahlqvist
Recommended
Event-driven and serverless in the world of IoT
Event-driven and serverless in the world of IoT
Jimmy Dahlqvist
Serverless and event-driven in a world of IoT
Serverless and event-driven in a world of IoT
Jimmy Dahlqvist
Cloud-grilled delights a high-tech approach to perfect BBQ
Cloud-grilled delights a high-tech approach to perfect BBQ
Jimmy Dahlqvist
IoT Enabled Smoker for Great BBQ
IoT Enabled Smoker for Great BBQ
Jimmy Dahlqvist
Aws Solution Architecture Associate - summary
Aws Solution Architecture Associate - summary
onoffshake
IoT Enabled smoker for Great BBQ
IoT Enabled smoker for Great BBQ
Jimmy Dahlqvist
AWS ECS and AWS Fargate demystified: run serverless containers
AWS ECS and AWS Fargate demystified: run serverless containers
Jimmy Dahlqvist
Serverless cloud architecture patterns
Serverless cloud architecture patterns
Jimmy Dahlqvist
Building a serverless event driven Slack Bot
Building a serverless event driven Slack Bot
Jimmy Dahlqvist
Encryption and key management in AWS (SEC304) | AWS re:Invent 2013
Encryption and key management in AWS (SEC304) | AWS re:Invent 2013
Amazon Web Services
Cloud Developer Days - BigQuery
Cloud Developer Days - BigQuery
Wlodek Bielski
Weathering the Data Storm – How SnapLogic and AWS Deliver Analytics in the Cl...
Weathering the Data Storm – How SnapLogic and AWS Deliver Analytics in the Cl...
SnapLogic
Triangle Kubernetes Meet-Up - Serverless is FaaS-tastic
Triangle Kubernetes Meet-Up - Serverless is FaaS-tastic
Mark Hinkle
Modern data warehouse with Azure
Modern data warehouse with Azure
Nilesh Gule
IoT enable smoker for great BBQ
IoT enable smoker for great BBQ
Jimmy Dahlqvist
Secrets management with EC2 Systems Manager Parameter Store
Secrets management with EC2 Systems Manager Parameter Store
Alex Mattson
Doing Big Data Using Amazon's Analogs - StampedeCon Big Data Conference 2017
Doing Big Data Using Amazon's Analogs - StampedeCon Big Data Conference 2017
StampedeCon
AWS chez Attestis
AWS chez Attestis
Olivier Destrebecq
Architecting Digital Media Archive Migrations with AWS - STG301 - Anaheim AWS...
Architecting Digital Media Archive Migrations with AWS - STG301 - Anaheim AWS...
Amazon Web Services
AWS re:Invent 2016: Extending Hadoop and Spark to the AWS Cloud (GPST304)
AWS re:Invent 2016: Extending Hadoop and Spark to the AWS Cloud (GPST304)
Amazon Web Services
Kengo Horiuchi, SaaS Business Born in the Cloud :: AWS Partner Techshift
Kengo Horiuchi, SaaS Business Born in the Cloud :: AWS Partner Techshift
Amazon Web Services Korea
Serverless Culture
Serverless Culture
AWS User Group Bengaluru
Serverless without Code (Lambda)
Serverless without Code (Lambda)
CloudHesive
[HUN] 2023_Hacker_Suli_Meetup_Cloud_DFIR_Alapok.pptx
[HUN] 2023_Hacker_Suli_Meetup_Cloud_DFIR_Alapok.pptx
hackersuli
Deep dive on security in Amazon S3 - STG304 - Chicago AWS Summit
Deep dive on security in Amazon S3 - STG304 - Chicago AWS Summit
Amazon Web Services
Rethinking Application Design for the Cloud
Rethinking Application Design for the Cloud
CloudBees
Encryption and Key Management in AWS
Encryption and Key Management in AWS
Amazon Web Services
Encryption and Key Management in AWS
Encryption and Key Management in AWS
Amazon Web Services
Building-resilient-serverless-workloads-Navigating-through-failure
Building-resilient-serverless-workloads-Navigating-through-failure
Jimmy Dahlqvist
Serverless website analytics with Lambda@Edge
Serverless website analytics with Lambda@Edge
Jimmy Dahlqvist
More Related Content
Similar to Encrypting data in S3 with Stepfunctions
Building a serverless event driven Slack Bot
Building a serverless event driven Slack Bot
Jimmy Dahlqvist
Encryption and key management in AWS (SEC304) | AWS re:Invent 2013
Encryption and key management in AWS (SEC304) | AWS re:Invent 2013
Amazon Web Services
Cloud Developer Days - BigQuery
Cloud Developer Days - BigQuery
Wlodek Bielski
Weathering the Data Storm – How SnapLogic and AWS Deliver Analytics in the Cl...
Weathering the Data Storm – How SnapLogic and AWS Deliver Analytics in the Cl...
SnapLogic
Triangle Kubernetes Meet-Up - Serverless is FaaS-tastic
Triangle Kubernetes Meet-Up - Serverless is FaaS-tastic
Mark Hinkle
Modern data warehouse with Azure
Modern data warehouse with Azure
Nilesh Gule
IoT enable smoker for great BBQ
IoT enable smoker for great BBQ
Jimmy Dahlqvist
Secrets management with EC2 Systems Manager Parameter Store
Secrets management with EC2 Systems Manager Parameter Store
Alex Mattson
Doing Big Data Using Amazon's Analogs - StampedeCon Big Data Conference 2017
Doing Big Data Using Amazon's Analogs - StampedeCon Big Data Conference 2017
StampedeCon
AWS chez Attestis
AWS chez Attestis
Olivier Destrebecq
Architecting Digital Media Archive Migrations with AWS - STG301 - Anaheim AWS...
Architecting Digital Media Archive Migrations with AWS - STG301 - Anaheim AWS...
Amazon Web Services
AWS re:Invent 2016: Extending Hadoop and Spark to the AWS Cloud (GPST304)
AWS re:Invent 2016: Extending Hadoop and Spark to the AWS Cloud (GPST304)
Amazon Web Services
Kengo Horiuchi, SaaS Business Born in the Cloud :: AWS Partner Techshift
Kengo Horiuchi, SaaS Business Born in the Cloud :: AWS Partner Techshift
Amazon Web Services Korea
Serverless Culture
Serverless Culture
AWS User Group Bengaluru
Serverless without Code (Lambda)
Serverless without Code (Lambda)
CloudHesive
[HUN] 2023_Hacker_Suli_Meetup_Cloud_DFIR_Alapok.pptx
[HUN] 2023_Hacker_Suli_Meetup_Cloud_DFIR_Alapok.pptx
hackersuli
Deep dive on security in Amazon S3 - STG304 - Chicago AWS Summit
Deep dive on security in Amazon S3 - STG304 - Chicago AWS Summit
Amazon Web Services
Rethinking Application Design for the Cloud
Rethinking Application Design for the Cloud
CloudBees
Encryption and Key Management in AWS
Encryption and Key Management in AWS
Amazon Web Services
Encryption and Key Management in AWS
Encryption and Key Management in AWS
Amazon Web Services
Similar to Encrypting data in S3 with Stepfunctions
(20)
Building a serverless event driven Slack Bot
Building a serverless event driven Slack Bot
Encryption and key management in AWS (SEC304) | AWS re:Invent 2013
Encryption and key management in AWS (SEC304) | AWS re:Invent 2013
Cloud Developer Days - BigQuery
Cloud Developer Days - BigQuery
Weathering the Data Storm – How SnapLogic and AWS Deliver Analytics in the Cl...
Weathering the Data Storm – How SnapLogic and AWS Deliver Analytics in the Cl...
Triangle Kubernetes Meet-Up - Serverless is FaaS-tastic
Triangle Kubernetes Meet-Up - Serverless is FaaS-tastic
Modern data warehouse with Azure
Modern data warehouse with Azure
IoT enable smoker for great BBQ
IoT enable smoker for great BBQ
Secrets management with EC2 Systems Manager Parameter Store
Secrets management with EC2 Systems Manager Parameter Store
Doing Big Data Using Amazon's Analogs - StampedeCon Big Data Conference 2017
Doing Big Data Using Amazon's Analogs - StampedeCon Big Data Conference 2017
AWS chez Attestis
AWS chez Attestis
Architecting Digital Media Archive Migrations with AWS - STG301 - Anaheim AWS...
Architecting Digital Media Archive Migrations with AWS - STG301 - Anaheim AWS...
AWS re:Invent 2016: Extending Hadoop and Spark to the AWS Cloud (GPST304)
AWS re:Invent 2016: Extending Hadoop and Spark to the AWS Cloud (GPST304)
Kengo Horiuchi, SaaS Business Born in the Cloud :: AWS Partner Techshift
Kengo Horiuchi, SaaS Business Born in the Cloud :: AWS Partner Techshift
Serverless Culture
Serverless Culture
Serverless without Code (Lambda)
Serverless without Code (Lambda)
[HUN] 2023_Hacker_Suli_Meetup_Cloud_DFIR_Alapok.pptx
[HUN] 2023_Hacker_Suli_Meetup_Cloud_DFIR_Alapok.pptx
Deep dive on security in Amazon S3 - STG304 - Chicago AWS Summit
Deep dive on security in Amazon S3 - STG304 - Chicago AWS Summit
Rethinking Application Design for the Cloud
Rethinking Application Design for the Cloud
Encryption and Key Management in AWS
Encryption and Key Management in AWS
Encryption and Key Management in AWS
Encryption and Key Management in AWS
More from Jimmy Dahlqvist
Building-resilient-serverless-workloads-Navigating-through-failure
Building-resilient-serverless-workloads-Navigating-through-failure
Jimmy Dahlqvist
Serverless website analytics with Lambda@Edge
Serverless website analytics with Lambda@Edge
Jimmy Dahlqvist
Building a serverless AI powered translation service
Building a serverless AI powered translation service
Jimmy Dahlqvist
AI Powered event-driven translation bot
AI Powered event-driven translation bot
Jimmy Dahlqvist
Autoscaled Github Runners using StepFunctions
Autoscaled Github Runners using StepFunctions
Jimmy Dahlqvist
EventBridge Patterns and real world use case
EventBridge Patterns and real world use case
Jimmy Dahlqvist
re:Invent Recap Breakfast
re:Invent Recap Breakfast
Jimmy Dahlqvist
CI/CD As first and last line of defence
CI/CD As first and last line of defence
Jimmy Dahlqvist
Introduction to testing in Cloud / AWS
Introduction to testing in Cloud / AWS
Jimmy Dahlqvist
CHAOS ENGINEERING – OR LET'S SHAKE THE TREE
CHAOS ENGINEERING – OR LET'S SHAKE THE TREE
Jimmy Dahlqvist
Road to an asynchronous device registration API
Road to an asynchronous device registration API
Jimmy Dahlqvist
GitOps in action, powered by Alexa.
GitOps in action, powered by Alexa.
Jimmy Dahlqvist
More from Jimmy Dahlqvist
(12)
Building-resilient-serverless-workloads-Navigating-through-failure
Building-resilient-serverless-workloads-Navigating-through-failure
Serverless website analytics with Lambda@Edge
Serverless website analytics with Lambda@Edge
Building a serverless AI powered translation service
Building a serverless AI powered translation service
AI Powered event-driven translation bot
AI Powered event-driven translation bot
Autoscaled Github Runners using StepFunctions
Autoscaled Github Runners using StepFunctions
EventBridge Patterns and real world use case
EventBridge Patterns and real world use case
re:Invent Recap Breakfast
re:Invent Recap Breakfast
CI/CD As first and last line of defence
CI/CD As first and last line of defence
Introduction to testing in Cloud / AWS
Introduction to testing in Cloud / AWS
CHAOS ENGINEERING – OR LET'S SHAKE THE TREE
CHAOS ENGINEERING – OR LET'S SHAKE THE TREE
Road to an asynchronous device registration API
Road to an asynchronous device registration API
GitOps in action, powered by Alexa.
GitOps in action, powered by Alexa.
Recently uploaded
Multi-cluster Kubernetes Networking- Patterns, Projects and Guidelines
Multi-cluster Kubernetes Networking- Patterns, Projects and Guidelines
Sanjeev Rampal
Pvtaan Social media marketing proposal.pdf
Pvtaan Social media marketing proposal.pdf
Pvtaan
The Use of AI in Indonesia Election 2024: A Case Study
The Use of AI in Indonesia Election 2024: A Case Study
Damar Juniarto
Bug Bounty Blueprint : A Beginner's Guide
Bug Bounty Blueprint : A Beginner's Guide
Varun Mithran
Article writing on excessive use of internet.pptx
Article writing on excessive use of internet.pptx
abhinandnam9997
How Do I Begin the Linksys Velop Setup Process?
How Do I Begin the Linksys Velop Setup Process?
Linksys Velop Login
Case study on merger of Vodafone and Idea (VI).pptx
Case study on merger of Vodafone and Idea (VI).pptx
Ankitscribd
ER(Entity Relationship) Diagram for online shopping - TAE
ER(Entity Relationship) Diagram for online shopping - TAE
Himani415946
audience research (emma) 1.pptxkkkkkkkkkkkkkkkkk
audience research (emma) 1.pptxkkkkkkkkkkkkkkkkk
lolsDocherty
Cyber Security Services Unveiled: Strategies to Secure Your Digital Presence
Cyber Security Services Unveiled: Strategies to Secure Your Digital Presence
PC Doctors NET
Statistical Analysis of DNS Latencies.pdf
Statistical Analysis of DNS Latencies.pdf
OndejSur
Production 2024 sunderland culture final - Copy.pptx
Production 2024 sunderland culture final - Copy.pptx
ChloeMeadows1
一比一原版UTS毕业证悉尼科技大学毕业证成绩单如何办理
一比一原版UTS毕业证悉尼科技大学毕业证成绩单如何办理
aagad
Premier Mobile App Development Agency in USA.pdf
Premier Mobile App Development Agency in USA.pdf
appinfoedgeca
Recently uploaded
(14)
Multi-cluster Kubernetes Networking- Patterns, Projects and Guidelines
Multi-cluster Kubernetes Networking- Patterns, Projects and Guidelines
Pvtaan Social media marketing proposal.pdf
Pvtaan Social media marketing proposal.pdf
The Use of AI in Indonesia Election 2024: A Case Study
The Use of AI in Indonesia Election 2024: A Case Study
Bug Bounty Blueprint : A Beginner's Guide
Bug Bounty Blueprint : A Beginner's Guide
Article writing on excessive use of internet.pptx
Article writing on excessive use of internet.pptx
How Do I Begin the Linksys Velop Setup Process?
How Do I Begin the Linksys Velop Setup Process?
Case study on merger of Vodafone and Idea (VI).pptx
Case study on merger of Vodafone and Idea (VI).pptx
ER(Entity Relationship) Diagram for online shopping - TAE
ER(Entity Relationship) Diagram for online shopping - TAE
audience research (emma) 1.pptxkkkkkkkkkkkkkkkkk
audience research (emma) 1.pptxkkkkkkkkkkkkkkkkk
Cyber Security Services Unveiled: Strategies to Secure Your Digital Presence
Cyber Security Services Unveiled: Strategies to Secure Your Digital Presence
Statistical Analysis of DNS Latencies.pdf
Statistical Analysis of DNS Latencies.pdf
Production 2024 sunderland culture final - Copy.pptx
Production 2024 sunderland culture final - Copy.pptx
一比一原版UTS毕业证悉尼科技大学毕业证成绩单如何办理
一比一原版UTS毕业证悉尼科技大学毕业证成绩单如何办理
Premier Mobile App Development Agency in USA.pdf
Premier Mobile App Development Agency in USA.pdf
Encrypting data in S3 with Stepfunctions
1.
JIMMY DAHLQVIST |
2024-03-14 Encrypting data in S3 with StepFunctions
2.
@jimmydahlqvist Todays agenda • The
problem • StepFunctions • Gotchas • Build It!
3.
@jimmydahlqvist JIMMY DAHLQVIST Serverless enthusiast AWS
Ambassador & AWS Community Builder & User Group Leader Founder of serverless-handbook.com Head of AWS @ Sigma Technology Cloud §
4.
@jimmydahlqvist Problem • Server-side encryption
with Amazon S3 managed keys (SSE-S3) • Thousands of objects • New compliance requirement • SSE-KMS (Customer managed keys) • Encrypt existing and new objects
5.
@jimmydahlqvist Solution • AWS S3
default encryption SSE-KMS • Alternative set a bucket policy • AWS StepFunctions to the rescue • No-Code / Low-Code solution
6.
7.
@jimmydahlqvist StepFunctions • Distributed Map
State • Loop over all objects • S3 integration, copy object • Choice To check encryption
8.
@jimmydahlqvist Service / SDK
integrations • 15+ service integrations • 200+ SDK integrations
9.
@jimmydahlqvist StepFunction
10.
@jimmydahlqvist StepFunction
11.
@jimmydahlqvist StepFunction
12.
@jimmydahlqvist StepFunction
13.
@jimmydahlqvist StepFunction
14.
@jimmydahlqvist StepFunction
15.
@jimmydahlqvist Gotchas • S3 SDK
copy support objects up to 5GB in size
16.
Build It
17.
@jimmydahlqvist B B @jimmydahlqvist dahlqvistjimmy https://serverless-handbook.com https://jimmydqv.com THANK YOU
Download now