AWS Lake Formation のアイコン

AWS Lake Formation Specialized2019年〜

A service that simplifies building, managing, and securing data lakes

About 2 min read

What It Does

AWS Lake Formation is a service for building data lakes on S3 and centrally managing data ingestion, cataloging, and security. It provides fine-grained access control at the table and column level, and uniformly manages access from analytics services like Athena, Redshift, and EMR.

Use Cases

Used for building enterprise data lakes, integrating and analyzing multiple data sources, implementing data governance, and managing data sharing and access control across departments.

Everyday Analogy

Think of it like a library catalog management system. It classifies and registers (catalogs) books (data) arriving from various publishers (data sources), and controls which books each patron (analyst) can access (access control).

What Is Lake Formation?

AWS Lake Formation is a service that simplifies the setup and management of data lakes. A data lake is an S3-based repository that centrally stores structured, semi-structured, and unstructured data. Lake Formation provides data ingestion, integration with the Glue Data Catalog, and fine-grained access control.

Access Control and Data Sharing

Lake Formation's standout feature is table-, column-, and row-level access control. Fine-grained data access control that's difficult to achieve with IAM policies alone can be uniformly managed through Lake Formation's permission model. The data sharing feature also enables secure data sharing across different AWS accounts. To gain a deeper understanding of access control and data sharing, reference books on Amazon are also worth checking out.

Getting Started

Set up a data lake administrator in the Lake Formation console and register an S3 bucket as the data lake location. Catalog your data with Glue crawlers and configure access permissions through Lake Formation permissions. When you run queries from Athena or Redshift Spectrum, Lake Formation access controls are automatically applied.

Things to Watch Out For

  • Both Lake Formation access controls and IAM policies apply, which can make permission design complex
  • Lake Formation itself is free. Separate charges apply for Glue, S3, Athena, and other services
共有するXB!

Related Services

Amazon S3 iconAmazon S3A scalable object storage serviceAWS Glue iconAWS GlueA serverless ETL service that automates data extraction, transformation, and loadingAmazon Athena iconAmazon AthenaA serverless query service that lets you analyze data in S3 using standard SQLAmazon Redshift iconAmazon RedshiftA cloud data warehouse service for high-speed analytics on petabyte-scale data

Related Articles

Building a Data Lake with Amazon S3 and Lake Formation - Design Patterns and GovernanceExplore data lake design patterns using S3 as the storage foundation and Lake Formation for fine-grained access control. This article also covers ETL pipelines and cost optimization.Data Lake Governance - Centralized Access Control with AWS Lake FormationLearn about building, access control, and governance for data lakes using AWS Lake Formation. This article covers fine-grained column-level and row-level permission management for S3-based data lakes, along with Glue and Athena integration.Building a Data Lake with AWS Lake Formation - Fine-Grained Access Control and Data CatalogEstablish data lake governance with column-level and row-level fine-grained access control and tag-based management. This article covers integration with Glue Data Catalog and cross-account access.

More in This Category

Amazon Athena iconAmazon Athena PopularA serverless query service that lets you analyze data in S3 using standard SQLAWS Clean Rooms iconAWS Clean Rooms NewA privacy-preserving data collaboration service that enables multiple organizations to jointly analyze data without sharing itAWS Data Exchange iconAWS Data Exchange SpecializedA data marketplace that makes it easy to find, subscribe to, and use third-party datasetsAmazon DataZone iconAmazon DataZone NewA data management service that unifies data discovery, sharing, and governanceAmazon EMR iconAmazon EMR SpecializedA managed service for running big data frameworks like Apache Spark, Hive, and PrestoAmazon EMR Serverless iconAmazon EMR Serverless SpecializedA serverless service for running Spark and Hive jobs without cluster managementAWS Entity Resolution iconAWS Entity Resolution NewA data matching service that reconciles and unifies records across different data sourcesAWS Glue iconAWS Glue PopularA serverless ETL service that automates data extraction, transformation, and loading

Similar Articles and Services

Data Lake Governance - Centralized Access Control with AWS Lake FormationLearn about building, access control, and governance for data lakes using AWS Lake Formation. This article covers fine-grained column-level and row-level permission management for S3-based data lakes, along with Glue and Athena integration.Building a Data Lake with AWS Lake Formation - Fine-Grained Access Control and Data CatalogEstablish data lake governance with column-level and row-level fine-grained access control and tag-based management. This article covers integration with Glue Data Catalog and cross-account access.AWS Lake FormationA service that centralizes data lake construction, management, and security, providing column-level and row-level fine-grained access control for data on S3Building a Data Lake with Amazon S3 and Lake Formation - Design Patterns and GovernanceExplore data lake design patterns using S3 as the storage foundation and Lake Formation for fine-grained access control. This article also covers ETL pipelines and cost optimization.AWS Data Analytics and Data Lakes - The Integrated Ecosystem of Athena, Glue, Lake Formation, and RedshiftExplore the integrated data analytics stack of AWS Athena, Glue, Lake Formation, Redshift, and QuickSight, comparing it with Azure Synapse Analytics and GCP BigQuery to highlight AWS's advantages in ecosystem integration.