Upgrade to Pro — share decks privately, control downloads, hide ads and more …

マイクロサービスでのセキュリティパッチ含めた ライブラリ更新のつらみと取り組み / s...

Sponsored · Ship Features Fearlessly Turn features on and off without deploys. Used by thousands of Ruby developers.
Avatar for Kenji Suzuki Kenji Suzuki
May 24, 2019
Technology
1.2k
2

マイクロサービスでのセキュリティパッチ含めた ライブラリ更新のつらみと取り組み / security-jaws-no13-kenjiszk

Security JAWS 【第13回】 勉強会 での登壇資料
https://s-jaws.doorkeeper.jp/events/91099

Avatar for Kenji Suzuki

Kenji Suzuki

May 24, 2019

More Decks by Kenji Suzuki

See All by Kenji Suzuki
VPoEのアンチパターンを考える / VPoE Anti-Pattern
Avatar for Kenji Suzuki kenjiszk
2
850
マイクロサービスにおける 最高のDXを目指して / Microservices vs DX
Avatar for Kenji Suzuki kenjiszk
7
5.1k
Rubyでブロックチェーンを実装してみた話 / Blockchain by Ruby
Avatar for Kenji Suzuki kenjiszk
2
630
FiNCのRelease Engineering / finc_release_engineering
Avatar for Kenji Suzuki kenjiszk
0
730
デプロイおじさんのお葬式 / Good-Bye Deploy Ojisan
Avatar for Kenji Suzuki kenjiszk
0
1.1k
イーサリアムとスマートコントラクト入門 / BlockTecCo vol.1
Avatar for Kenji Suzuki kenjiszk
1
490
FiNCのデータ戦略と​ AWSでのデータプラットフォーム構築​ / Healthcare Data in FiNC
Avatar for Kenji Suzuki kenjiszk
0
2.4k
FiNCにおけるブロックチェーンの取り組み
Avatar for Kenji Suzuki kenjiszk
1
1.9k
How to manage containers in FiNC
Avatar for Kenji Suzuki kenjiszk
0
3.9k

Other Decks in Technology

See All in Technology
Revisiting [CLS] and Patch Token Interaction in Vision Transformers
Avatar for yu4u yu4u
0
330
Choose your own adventure in agentic design patterns
Avatar for Guillaume Laforge glaforge
0
110
Oracle AI Database@AWS:サービス概要のご紹介
Avatar for oracle4engineer oracle4engineer
PRO
4
2.3k
明日からドヤれる!超マニアックなAWSセキュリティTips10連発 / 10 Ultra-Niche AWS Security Tips
Avatar for Yuji Oshima yuj1osm
0
530
2026年に相応しい 最先端プラグインホストの設計<del>と実装</del>
Avatar for Atsushi Eno atsushieno
0
130
#jawsugyokohama 100 LT11, "My AWS Journey 2011-2026 - kwntravel"
Avatar for Shinichiro Kawano shinichirokawano
0
320
Rebirth of Software Craftsmanship in the AI Era
Avatar for Lemi Orhan Ergin lemiorhan
PRO
4
1.8k
AIを共同作業者にして書籍を執筆する方法 / How to Write a Book with AI as a Co-Creator
Avatar for ama-ch ama_ch
2
130
MLOps導入のための組織作りの第一歩
Avatar for Daisuke Akagawa (Akasan) akasan
0
310
目的ファーストのハーネス設計 ~ハーネスの変更容易性を高めるための優先順位~
Avatar for Gota gotalab555
7
1.9k
[OpsJAWS 40]リリースしたら終わり、じゃなかった。セキュリティ空白期間をAWS Security Agentで埋める
Avatar for sh_fk2 sh_fk2
3
220
Claude Code を安全に使おう勉強会 / Claude Code Security Basics
Avatar for MasahiroKawahara masahirokawahara
2
17k

Featured

See All Featured
BBQ
Avatar for Matthew Crist matthewcrist
89
10k
Facilitating Awesome Meetings
Avatar for Lara Hogan lara
57
6.8k
Taking LLMs out of the black box: A practical guide to human-in-the-loop distillation
Avatar for Ines Montani inesmontani
PRO
3
2.1k
Darren the Foodie - Storyboard
Avatar for Kevinho.art khoart
PRO
3
3.2k
New Earth Scene 8
Avatar for Sydney Stone popppiees
3
2.1k
What’s in a name? Adding method to the madness
Avatar for The Alliance productmarketing
PRO
24
4k
The Success of Rails: Ensuring Growth for the Next 100 Years
Avatar for Eileen M. Uchitelle eileencodes
47
8k
The AI Revolution Will Not Be Monopolized: How open-source beats economies of scale, even for LLMs
Avatar for Ines Montani inesmontani
PRO
3
3.3k
Building Experiences: Design Systems, User Experience, and Full Site Editing
Avatar for Michelle Schulp Hunt marktimemedia
0
480
[SF Ruby Conf 2025] Rails X
Avatar for Vladimir Dementyev palkan
2
950
Bootstrapping a Software Product
Avatar for Garrett Dimon garrettdimon
PRO
307
120k
How Software Deployment tools have changed in the past 20 years
Avatar for Geshan Manandhar geshan
0
33k

Transcript

  1. ϚΠΫϩαʔϏεͰͷηΩϡϦςΟύονؚΊͨ ϥΠϒϥϦߋ৽ͷͭΒΈͱऔΓ૊Έ Security JAWS ʲୈ13ճʳ 'J/$5FDIOPMPHJFT !LFOKJT[L

  2. 8IPBN* w 4V[VLJ,FOKJ UXJUUFS!LFOKJT[L  w 'J/$5FDIOPMPHJFT w 43&&OHJOFFS w

    ϘϧμϦϯά

  3. 5PEBZ`T5BMLϥΠϒϥϦߋ৽        #JH#BOH 4NBMM

    3FMFBTF 74

  4. 4NBMM3FMFBTFͷํ͕ྑ͍ w ηΩϡϦςΟ؍఺͔Β w ੬ऑੑ͸͋Δ೔ಥવ͘Δ w ࠷৽ͷ਺όʔδϣϯʹ͔͠ެࣜύον͕౰ͨΒͳ͍͜ͱ΋ w ৗʹ࠷৽ʹ௥͍ͭ͘ӡ༻Λ͍ͯ͠ͳ͍ͱಠࣗͷύονΛ౰ͯଓ͚Δ͜ͱ ʹͳΔ

    w ґଘ͢Δύοέʔδ΋όʔδϣϯ্͛Δඞཁ͕͋ͬͨΓ͢Δ

  5. ݁࿦ w ࡉ͔͘όʔδϣϯΛ্͍͖͛ͯ·͠ΐ͏      4NBMM 3FMFBTFT

  6. ໰୊ w ϚΠΫϩαʔϏε͕ݸ͘Β͍͋Δ       

                                                                                                                                                                                         

  7. ϚΠΫϩαʔϏεͩͱԿ͕ࠔΔʁ

  8. ୯७ܭࢉͰճಉ͡࡞ۀΛ͢Δ

  9. ͭͷઐ໳νʔϜͰ͸ରԠͰ͖ͳ͍

  10. αʔϏεؒͷґଘ΋ߟ͑Δඞཁ͕͋Δ

  11. ֤νʔϜͷҙࣝ΍εΩϧͷ͹Β͖ͭ

  12. ͭͷ࡞ۀ΋Ε͕શମʹӨڹ͢ΔՄೳੑ

  13. ϝϦοτ΋͋Δ w ن໛͕খ͍͞ͷͰҰͭҰͭͷ࡞ۀྔ͸গͳ͘ͳΔ͜ͱ͕ଟ͍ w νʔϜؒͰ৘ใڞ༗͕Ͱ͖Δ w ৽͍͠ϚΠΫϩαʔϏεͰઌʹ৽͍͠όʔδϣϯΛ࢖͑Δ w ܥશମͱͯ͠͸ΧφϦΞͬΆ͘ͳΔ

  14. ԿΛ͢΂͖͔ʁ wνʔϜؒͰ৘ใΛԣஅతʹγΣΞͭͭ͠ wΈΜͳͰؤுΔ

  15. ΍ͬͯΈͨ͜ͱ w࢓૊Έ wՄࢹԽ wࣗಈԽ w։ൃνʔϜͰಠཱͯ͠ରԠͰ͖ΔΑ͏ʹ w૊৫ w༗ࢤͰͷ׆ಈͷࢧԉ wࡇΓతʹ΍Δ wظͷ໨ඪʹೖΕΔ

  16. ՄࢹԽ w ֤ΞϓϦέʔγϣϯͷϥΠϒϥ ϦͷόʔδϣϯΛԣஅͯ͠Մࢹ Խ w ͲͷΞϓϦέʔγϣϯ͕όʔ δϣϯ͕௿͍··์ஔ͞Ε͍ͯ Δ͔ΛҰ໨ྎવʹ w

    ఆྫͰνΣοΫ

  17. ࣗಈԽ w $JSDMF$*ͰϥΠϒϥϦͷΞοϓ σʔτͷ1VMM3FRVFTUΛࣗಈͰ ࡞Δ w HJUIVCϢʔβʔ͸EFQFOEBCPU ͕ແྉͰར༻ՄೳʹͳͬͨͷͰ ͦͪΒΛ࢖ͬͯ΋͍͍͔΋͠Ε ͳ͍

  18. ֤νʔϜͰಠཱͯ͠ಈ͚ΔΑ͏ʹ w 04ϨΠϠʔҎ্͸%PDLFSpMFͰ؅ཧ͍ͯ͠Δ w ΋ͱ΋ͱ43&νʔϜ͕%PDLFSpMFΛ؅ཧ͍ͯͨ͠ w %PDLFSpMFͷ؅ཧ΋֤։ൃνʔϜʹҠৡ w ֤νʔϜ͕ಠཱͯ͠04Ҏ্ͷϨΠϠʔͷΞοϓσʔτ͕Մೳʹ

  19. ༗ࢤͰͷ׆ಈ w ि̍ճɺ༗ࢤͰू·ͬͯߦ͖ಧ͍͍ͯͳ͍ͱ͜ΖΛαϙʔτ͢Δ w %PDLFSpMF $*ͷઃఆ w ϥΠϒϥϦͷΞοϓσʔτ w ݴޠͷόʔδϣϯͷΞοϓσʔτ

    w νʔϜʹΑͬͯ͸ϦϦʔεཱ͕ͯࠐΜͰ͍ͨΓ͢Δ͜ͱ͕͋ΔͷͰɺશମ ͰαϙʔτͰ͖Δମ੍͕ग़དྷΔͱྑ͍

  20. ࡇΓతʹ΍Δ

  21. ظͷ໨ඪʹೖΕΔ w ηΩϡϦςΟରԠ͕੾ΕΔόʔδϣϯΛ্͛ΔΑ͏ͳΫϦςΟΧϧͳ৔߹ ʹ͸ɺνʔϜͷظͷ໨ඪʹೖΕͯ૊৫ͱͯ͠ઈରʹରԠ͢Δ

  22. ͜ͷ׆ಈʹΑΔ੒Ռ΋ݟ͖͑ͯͨ w ओཁͳΞϓϦέʔγϣϯ͸I Ҏ಺ʹ΄΅ରԠ׬ྃ w ਺೔Ҏ಺ʹ͢΂ͯͷαʔϏεͷ ߋ৽͕׬ྃ

  23. ࠓޙऔΓ૊Έ͍ͨ͜ͱ w 4-0΁ͷ૊ΈࠐΈ w ηΩϡϦςΟӡ༻ୡ੒౓ͷ਺஋Խ w ࡉ͔͘ϥΠϒϥϦΛߋ৽͠ଓ͚ΒΕ͍ͯΔνʔϜ͸ૉ੖Β͍͠ w ϚΠΫϩαʔϏεΛ৽͘͠࡞Δ൑அ࣠ͱͯ͠ͷηΩϡϦςΟୡ੒౓ w

    ٯʹɺҰఆϨϕϧͰୡ੒Ͱ͖͍ͯͨΒͪΐͬͱ๯ݥ͍͍ͯ͠

  24. ·ͱΊ w ·ͩ·ͩ՝୊͕͋Δ w ׬શʹ֤νʔϜ͕ࣗ૸Ͱ͖͍ͯΔঢ়ଶ·Ͱ͸ߦ͚͍ͯͳ͍ w ضৼΓ໾͕ඞཁ w $*Ͱͷࣗಈߋ৽Λ΋ͬͱਐԽͤͯ͞ɺ2"΋ؚΊͯ΋ͬͱෛ୲͕ͳ͍Α ͏ͳ࢓૊ΈΛ࡞͍͖͍ͬͯͨ

    w ϥΠϒϥϦߋ৽εςʔδϯάσϓϩΠΧφϦΞϦϦʔε