Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Verified AccessとBedrockでお手軽セキュアに社内向け生成AIアプリを作る

Avatar for Hikaru Kawagoe Hikaru Kawagoe
October 27, 2023
3
640

Verified AccessとBedrockでお手軽セキュアに社内向け生成AIアプリを作る

Avatar for Hikaru Kawagoe

Hikaru Kawagoe

October 27, 2023
Tweet

More Decks by Hikaru Kawagoe

See All by Hikaru Kawagoe
5分でまとめたいWell-Architected Framework アップデート / Well-Architected Framework Update that can be summarized in 5 minutes
Avatar for Hikaru Kawagoe rrrraaaaa6
0
240
「オブジェクト作成の最初の 30 日間は頻繁にアクセスされますが、最初の 30 日を超えるとほとんどアクセスされません」 と真面目に向き合ってみる
Avatar for Hikaru Kawagoe rrrraaaaa6
0
200
ぼくのかんがえたさいきょうのAWSへのリソースデプロイ
Avatar for Hikaru Kawagoe rrrraaaaa6
0
1.1k
ぼくのかんがえたさいきょうのAWSへのリソースデプロイ_mentimeter
Avatar for Hikaru Kawagoe rrrraaaaa6
1
910
zero-ETLが金融業界にもたらすものとは?
Avatar for Hikaru Kawagoe rrrraaaaa6
1
910
AWS Backup 自動復元テストをやってみる / Try AWS Backup automatic restore testing
Avatar for Hikaru Kawagoe rrrraaaaa6
0
830
CDK Pipelineにも良いところあるんだからね・・・
Avatar for Hikaru Kawagoe rrrraaaaa6
1
560
失敗から学ぶCDK Construct Libraryを利用した効率化
Avatar for Hikaru Kawagoe rrrraaaaa6
2
720
CloudFormationの表示が ツリーになったけど何が嬉しいん?
Avatar for Hikaru Kawagoe rrrraaaaa6
1
660

Featured

See All Featured
Dominate Local Search Results - an insider guide to GBP, reviews, and Local SEO
Avatar for Greg Gifford greggifford
PRO
0
32
Cheating the UX When There Is Nothing More to Optimize - PixelPioneers
Avatar for Stéphanie Walter stephaniewalter
287
14k
Mobile First: as difficult as doing things right
Avatar for Swwweet swwweet
225
10k
Design and Strategy: How to Deal with People Who Don’t "Get" Design
Avatar for Morgane Peng morganepeng
133
19k
Building Adaptive Systems
Avatar for Chris Keathley keathley
44
2.9k
Winning Ecommerce Organic Search in an AI Era - #searchnstuff2025
Avatar for Aleyda Solis aleyda
0
1.8k
コードの90%をAIが書く世界で何が待っているのか / What awaits us in a world where 90% of the code is written by AI
Avatar for r-kagaya rkaga
58
41k
B2B Lead Gen: Tactics, Traps & Triumph
Avatar for Sophie Logan marketingsoph
0
40
How to build an LLM SEO readiness audit: a practical framework
Avatar for Nick Samuel nmsamuel
1
600
Agile Actions for Facilitating Distributed Teams - ADO2019
Avatar for Mark Kilby mkilby
0
100
How to audit for AI Accessibility on your Front & Back End
Avatar for davetheseo davetheseo
0
140
Game over? The fight for quality and originality in the time of robots
Avatar for Wayne Barker wayneb77
1
77

Transcript

  1. 7FSJGJFE"DDFTTͱ#FESPDLͰ ͓खܰηΩϡΞʹࣾ಺޲͚ੜ੒"*ΞϓϦΛ࡞Δ  ͔Θ͑͝ 1

  2. 2 ͔Θ͑͝ ► ৭ʑ΍ͬͯ·͢ ► +BQBO"845PQ&OHJOFFS ► "84$PNNVOJUZ#VJMEFS d ►

    9!SSSSBBBBB ► (15ͱ͔શવৄ͘͠ͳ͍ͨͩͷΠϯϑϥ԰͞ΜͰ͢

  3. 3 #FESPDL͕("͞Εͨͧʙ👏 ͍ͭͰʹ౦ژϦʔδϣϯʹ΋དྷͨͧʙ👏

  4. #FESPDLΛ࢖͏͜ͱʹΑΔϝϦοτʢࢲײʣ l "84͔ͩΒͦ͜ͷɺطଘͷ"84Ͱ࡞ΒΕͨγεςϜ΁ͷ૊ΈࠐΈɾ֦ு l γεςϜͷӡ༻Λָʹ͢ΔͨΊʹ l ίετ΍ηΩϡϦςΟʹରͯ͠Կ͔͠Βͷؾ͖ͮΛಘΔͨΊʹ l ΑΓྑ͍Ձ஋Λސ٬ʹಧ͚ΔͨΊͷΤϯϋϯεͱͯ͠ l

    ଟ͘ͷٕज़ऀ͕࢖͍׳Ε͍ͯΔͰ͋Ζ͏"84Ͱ͋Δ͔Βͦ͜ͷεϐʔυײ l CFESPDL͕("͢Δ·ͰMBOHDIBJOͱ͔QSPNQUͱ͔ͬ͞ͺΓͰ͕ͨ͠ɺlͳΜ͔΍Εͦ͏z 4

  5. 5 ˞͜ͷ෺ޠ͸ϑΟΫγϣϯͰ͢ ͜ΕͰ͏ͪͷੜ࢈ੑര͕͋Γ΍Μ👏

  6. 6 ˞͜ͷ෺ޠ͸ϑΟΫγϣϯͰ͢ ೝূ͸ʁ ۀ຿σʔλೖΕͯେৎ෉ͳͷʁ "84ͷఏڙͯ͠ΔϞσϧͷֶशʹ࢖ΘΕͳ͍ʁ ڐՄ͞ΕͨϢʔβʔͷΈ͕ΞΫηε͢Δʹ͸ʁ ΠϯϓοτͱΞ΢τϓοτϩάʹ࢒ͯ͠Ͷ ηΩϡϦςΟରࡦ͸ʁ

  7. 7 ˞͜ͷ෺ޠ͸ϑΟΫγϣϯͰ͢

  8. ੜ੒"*ʹΑΔۀ຿޲͚ΞϓϦέʔγϣϯͷधཁ૿ͱ՝୊ l ࣗ෼ͷۀ຿Λָʹ͢ΔͨΊʹ࢖͍͍ͨ l ͕ηΩϡϦςΟΛҙࣝ͢Δͱࣾ಺*5ؔ࿈ͷௐ੔͕ඞཁʹͳͬͯ͘Δέʔε͕ଟ͍ l ͱ͍͏ΑΓۀ຿σʔλѻ͏্Ͱ͸ॏཁ l 71/ l

    .JDSPTPGU&OUSB*%ͳͲͷ*E1 l εϐʔυΛ࣋ͬͯ΍Γ͍ͨͰ͢ΑͶɺΘ͔Δ 8

  9. 7FSJGJFE"DDFTT͕౦ژͰ΋ར༻Մೳʹ l ࣾ಺ΞϓϦέʔγϣϯʹର͢Δधཁ͕ߴ·͍ͬͯΔதͰφΠελΠϛϯάͷ(" l 71/ͳ͠Ͱ71$಺ͷϓϥΠϕʔτͳΞϓϦέʔγϣϯʹ઀ଓՄೳͳαʔϏε l ৴པϓϩόΠμͱͯ͠*EFOFJUZ $FOUFS چ440 ͕ར༻Մೳ

    l ଞʹ΋0LUBͳͲ΋Ͱ͖Δ͕ l 7FSJGJFE"DDFTTΛ࡞੒͢ΔϦʔδϣϯͱ*EFOUJUZ$FOUFS͕ಉ͡Ϧʔδϣϯʹͳ͍ͱμϝ l ౦ژϦʔδϣϯʹ440࡞͍ͬͯͨ৔߹͸ࠓ·Ͱ7FSGJFE "DDFTTͷ*EFOUJUZ$FOUFSΛ ৴པϓϩόΠμͱͯ͠ར༻Ͱ͖ͳ͔ͬͨ 9

  10. σϞͰ࡞Γ͔ͨͬͨͷ͕͜Ε 10 AWS Verified Access AWS IAM Identity Center Amazon

    ECS Amazon Bedrock Virtual private cloud (VPC) AWS Cloud Elastic Load Balancing かいしゃ はたらく 人たち ೖΕͨσʔλΛ Α͠ͳʹཁ໿ͯ͠ ϑϩϯτʹฦ͢

  11. ΞϓϦྗ͕ͳͯ͘͜͏ͳͬͨ 11 AWS Verified Access AWS IAM Identity Center Amazon

    ECS Amazon Bedrock Virtual private cloud (VPC) AWS Cloud Elastic Load Balancing かいしゃ はたらく 人たち Amazon S3 AWS Lambda Amazon S3 ݁Ռͷ֨ೲ USJHHFS ཁ໿ ཁ໿͍ͨ͠σʔλΛQVTI

  12. 12 ৄ͘͠࿩࢝͠ΊΔͱ༨༟Ͱ࣌ؒ௒͑ΔͷͰ ৄ͘͠͸ϒϩάʹॻ͖·͢ͷͰʂ͢Έ·ͤΜʂ https://zenn.dev/rrrraaaaa6

  13. 13 ͋Εɺશવ#FESPDLೖ໳͡Όͳ͍ɾɾɾ

  14. 14 ˞͜ͷ෺ޠ͸ϑΟΫγϣϯͰ͢ ೝূ͸ʁ ۀ຿σʔλೖΕͯେৎ෉ͳͷʁ "84ͷఏڙͯ͠ΔϞσϧͷֶशʹ࢖ΘΕͳ͍ʁ ڐՄ͞ΕͨϢʔβʔͷΈ͕ΞΫηε͢Δʹ͸ʁ ΠϯϓοτͱΞ΢τϓοτϩάʹ࢒ͯ͠Ͷ ηΩϡϦςΟରࡦ͸ʁ

  15. ΠϯϓοτσʔλͱΞ΢τϓοτσʔλΛ؅ཧɾ؂ࢹ͢Δ 15

  16. ΠϯϓοτσʔλͱΞ΢τϓοτσʔλΛ؅ཧɾ؂ࢹ͢Δ l $MPVE8BUDI-PHT4ʹϩά͸ग़ྗՄೳ l SFRVFTU*EͰ$MPVE5SBJMͱͷಥ߹΋ՄೳͰ͢ 16

  17. 17 ଞʹ΋ࠓ΍Γ͍ͨͱࢥ͍ͬͯΔ͜ͱ

  18. γεςϜͷӡ༻Λָʹ͍ͨ͠ 18 Amazon CloudWatch AWS Lambda Amazon Bedrock AWS Chatbot

    Amazon Kendra 障害対応のレポートとか 設計書とかデザインド キュメントとか はたらく 人たち XXXってエラーが出たので この⼿順書⾒て対応すれば OK 類似の対応でXXXこんなのがあ りますゆえ参考にしてね Amazon EventBridge

  19. 19 ͜Ε͔Βօ༷ͷ஌ݟ͕೥຤ʹ͔͚ͯ Ξ΢τϓοτ͞Εͯ͘ΔͷΛָ͠Έʹ଴͓ͬͯΓ·͢ʂ

  20. 20 &0'