Upgrade to Pro — share decks privately, control downloads, hide ads and more …

【ビジネス編】AWS活用を考えているなら”必ず!"知っておくべきセキュリティの話

Avatar for Tmorinaga Tmorinaga
August 25, 2016
Technology
1
2.4k

 【ビジネス編】AWS活用を考えているなら”必ず!"知っておくべきセキュリティの話

20160825 大阪

Avatar for Tmorinaga

Tmorinaga

August 25, 2016
Tweet

More Decks by Tmorinaga

See All by Tmorinaga
OpsJAWS#13 IAMベストプラクティス
Avatar for Tmorinaga tmorinaga
1
4k
Developers.IO 2017 E3
Avatar for Tmorinaga tmorinaga
0
1.3k
JAWS DAYS 2017 Security-JAWS発表資料
Avatar for Tmorinaga tmorinaga
2
4.8k
AWS WAFのログが3時間しか見れないのでなんとかしてみる
Avatar for Tmorinaga tmorinaga
3
4.3k
re:Growth 2016 in Tokyo
Avatar for Tmorinaga tmorinaga
0
2.3k
Developers.IO 2016 in Fukuoka
Avatar for Tmorinaga tmorinaga
1
880
【エンジニア編】AWS活用を考えているなら”必ず!"知っておくべきセキュリティの話
Avatar for Tmorinaga tmorinaga
1
4.5k
OpsJAWS#4 CloudWatch Events Hands-on
Avatar for Tmorinaga tmorinaga
3
1.8k

Other Decks in Technology

See All in Technology
GitHub Issue Templates + Coding Agentで簡単みんなでIaC/Easy IaC for Everyone with GitHub Issue Templates + Coding Agent
Avatar for AEON aeonpeople
1
330
私たち準委任PdEは2つのプロダクトに挑戦する ~ソフトウェア、開発支援という”二重”のプロダクトエンジニアリングの実践~ / 20260212 Naoki Takahashi
Avatar for SHIFT EVOLVE shift_evolve
PRO
2
290
Amazon Rekognitionで 「信玄餅きなこ問題」を解決する
Avatar for usanchuu usanchuu
1
220
Webhook best practices for rock solid and resilient deployments
Avatar for Guillaume Laforge glaforge
2
340
30分でわかる「ネットワーク図の描き方入門」/infraengbooks56
Avatar for m.hagiwara corestate55
0
290
AWS Network Firewall Proxyを触ってみた
Avatar for nagisa_53 nagisa53
1
260
ZOZO.swift #2
Avatar for ZOZO Developers zozotech
PRO
0
170
Prox Industries株式会社 会社紹介資料
Avatar for Prox proxindustries
0
190
OWASP Top 10:2025 リリースと 少しの日本語化にまつわる裏話
Avatar for Riotaro OKADA okdt
PRO
3
1k
配列に見る bash と zsh の違い
Avatar for kazzpapa3 kazzpapa3
3
190
ECS障害を例に学ぶ、インシデント対応に備えた AIエージェントの育て方 / How to develop AI agents for incident response with ECS outage
Avatar for iselegant iselegant
5
730
デザインもAIに任せる!iPhoneで行うiOS開発
Avatar for ZOZO Developers zozotech
PRO
0
170

Featured

See All Featured
The B2B funnel & how to create a winning content strategy
Avatar for Katarina Dahlin katarinadahlin
PRO
1
280
ピンチをチャンスに:未来をつくるプロダクトロードマップ #pmconf2020
Avatar for Aki / @LoveIdahoBurger aki_iinuma
128
55k
AI in Enterprises - Java and Open Source to the Rescue
Avatar for ivargrimstad ivargrimstad
0
1.2k
Sharpening the Axe: The Primacy of Toolmaking
Avatar for Bryan Cantrill bcantrill
46
2.7k
コードの90%をAIが書く世界で何が待っているのか / What awaits us in a world where 90% of the code is written by AI
Avatar for r-kagaya rkaga
60
42k
Responsive Adventures: Dirty Tricks From The Dark Corners of Front-End
Avatar for Vitaly Friedman smashingmag
254
22k
Game over? The fight for quality and originality in the time of robots
Avatar for Wayne Barker wayneb77
1
120
How to Think Like a Performance Engineer
Avatar for Harry Roberts csswizardry
28
2.5k
Principles of Awesome APIs and How to Build Them.
Avatar for Keavy McMinn keavy
128
17k
GitHub's CSS Performance
Avatar for Jon Rohan jonrohan
1032
470k
Large-scale JavaScript Application Architecture
Avatar for Addy Osmani addyosmani
515
110k
Visualizing Your Data: Incorporating Mongo into Loggly Infrastructure
Avatar for mongodb mongodb
49
9.9k

Transcript

  1. Deep Security؂ࢹɾ෼ੳαʔϏε HOOT Security ͷ͝঺հ Ϋϥεϝιουגࣜձࣾ ιϦϡʔγϣϯΞʔΩςΫτ ৿Ӭେࢤ

  2. ࣗݾ঺հ

  3. Morinaga Taishi(@morimoritaitai) AWS Solution Archetect ✦ झຯ : ήʔϜ(શൠ) /

    ञ / Χϝϥ ✦ ڵຯ : Security / DevOps ✦ ޷͖ͳαʔϏε:Config/CloudTrail/IAM AWS Certified Solutions Architect - Professional DevOps Engineer - Professional I ❤ Config

  4. ձࣾ঺հ

  5. Classmethod,Inc.

  6. AWSʢΠϯϑϥʣ ϞόΠϧΞϓϦ Ϗοάσʔλ෼ੳ IoTʢηϯαʔʣ

  7. AWSϓϨϛΞ ίϯαϧςΟϯάύʔτφʔ ʢશੈքͰ46ࣾʣ

  8. AWS Ҡߦίϯϐςϯγʔɹ ɹɹ ʢશੈքͰ17ࣾʣ Ϗοάσʔλίϯϐςϯγʔɹɹɹ ʢશੈքͰ20ࣾʣ ϞόΠϧίϯϐςϯγʔɹɹɹɹ ʢશੈքͰ 6ࣾʣ

  9. ੈքதʹΦϑΟε

  10. ळ༿ݪɾେࡕɾࡳຈɾ্ӽ όϯΫʔόʔɾϕϧϦϯ New ਓ͕͍Δ৔ॴʹΦϑΟε͕ग़དྷ·͢

  11. Developers.IO

  12. 6600ຊͷٕज़هࣄ 2780ຊͷAWSهࣄ ݄ؒ100ສPV

  13. ࣮຿Λ͍ͯ͠Δࣾһ͕ࣥච ϊ΢ϋ΢͸ੵۃతʹެ։

  14. ฐࣾAWS૯߹ࢧԉαʔϏε ʮϝϯόʔζʯͷ͝঺հ

  15. AWSΛ࢖͍͍ͨɻ

  16. AWSΛ࢖͍͍ͨɻ ৄ͍͠ਓ͕͍ؒͳ͍…

  17. AWSΛ࢖͍͍ͨɻ ৄ͍͠ਓ͕͍ؒͳ͍… ΫϨδοτΧʔυ෷͍͸ͪΐͬͱ…

  18. AWSΛ࢖͍͍ͨɻ ৄ͍͠ਓ͕͍ؒͳ͍… ΫϨδοτΧʔυ෷͍͸ͪΐͬͱ… ग़དྷΔ͚ͩ҆͘࢖͍͍ͨ…

  19. AWSΛ࢖͍͍ͨɻ ৄ͍͠ਓ͕͍ؒͳ͍… ΫϨδοτΧʔυ෷͍͸ͪΐͬͱ… ग़དྷΔ͚ͩ҆͘࢖͍͍ͨ… ӡ༻͸Ͳ͏͢ΔΜͩ…

  20. ͦͷ͓೰Έɺղܾ͠·͢ɻ

  21. AWS૯߹ࢧԉαʔϏε ϝϯόʔζ • AWSͷઃܭίϯαϧ • AWS؀ڥߏங • ੥ٻॻ෷͍Ͱͷ੥ٻ୅ߦ • ֤छਃ੥୅ߦʢ্ݶ؇࿨ਃ੥ͳͲʣ

    • QAαϙʔτɺAWSαϙʔτ୅ߦ • AWSར༻ྉۚͷେ෯ׂҾ ͝ఏҊ ߏங ӡ༻ ؂ࢹ

  22. AWS૯߹ࢧԉαʔϏε ϝϯόʔζ • AWSͷઃܭίϯαϧ • AWS؀ڥߏங • ੥ٻॻ෷͍Ͱͷ੥ٻ୅ߦ • ֤छਃ੥୅ߦʢ্ݶ؇࿨ਃ੥ͳͲʣ

    • QAαϙʔτɺAWSαϙʔτ୅ߦ • AWSར༻ྉۚͷେ෯ׂҾ ͝ఏҊ ߏங ӡ༻ ؂ࢹ

  23. AWSͷϕετϓϥΫςΟεΛ ஌Γਚͨ͘͠ΤϯδχΞ͕ ࣭໰ɾ૬ஊʹͷΓ·͢ɻ

  24. AWS૯߹ࢧԉαʔϏε ϝϯόʔζ • AWSͷઃܭίϯαϧ • AWS؀ڥߏங • ੥ٻॻ෷͍Ͱͷ੥ٻ୅ߦ • ֤छਃ੥୅ߦʢ্ݶ؇࿨ਃ੥ͳͲʣ

    • QAαϙʔτɺAWSαϙʔτ୅ߦ • AWSར༻ྉۚͷେ෯ׂҾ ͝ఏҊ ߏங ӡ༻ ؂ࢹ

  25. ͝ر๬ͷAWS؀ڥΛ ૉૣ͘௿ίετͰߏங͠·͢ɻ

  26. AWS૯߹ࢧԉαʔϏε ϝϯόʔζ • AWSͷઃܭίϯαϧ • AWS؀ڥߏங • ੥ٻॻ෷͍Ͱͷ੥ٻ୅ߦ • ֤छਃ੥୅ߦʢ্ݶ؇࿨ਃ੥ͳͲʣ

    • QAαϙʔτɺAWSαϙʔτ୅ߦ • AWSར༻ྉۚͷେ෯ׂҾ ͝ఏҊ ߏங ӡ༻ ؂ࢹ

  27. ੥ٻॻʹΑΔ͓ࢧ෷͍ͳͷͰ ԁ෷͍ՄೳͰɺ ΫϨδοτΧʔυ͸ෆཁͰ͢ɻ

  28. AWS૯߹ࢧԉαʔϏε ϝϯόʔζ • AWSͷઃܭίϯαϧ • AWS؀ڥߏங • ੥ٻॻ෷͍Ͱͷ੥ٻ୅ߦ • ֤छਃ੥୅ߦʢ্ݶ؇࿨ਃ੥ͳͲʣ

    • QAαϙʔτɺAWSαϙʔτ୅ߦ • AWSར༻ྉۚͷେ෯ׂҾ ͝ఏҊ ߏங ӡ༻ ؂ࢹ

  29. ൥ࡶͳαϙʔτ΁ͷ໰߹ͤ΍ ֤छਃ੥΋୅ߦͯ͠ߦ͍·͢ɻ

  30. AWS૯߹ࢧԉαʔϏε ϝϯόʔζ • AWSͷઃܭίϯαϧ • AWS؀ڥߏங • ੥ٻॻ෷͍Ͱͷ੥ٻ୅ߦ • ֤छਃ੥୅ߦʢ্ݶ؇࿨ਃ੥ͳͲʣ

    • QAαϙʔτɺAWSαϙʔτ୅ߦ • AWSར༻ྉۚͷେ෯ׂҾ ͝ఏҊ ߏங ӡ༻ ؂ࢹ

  31. పఈͨ͠ར༻෼ੳʹΑΔ ίετޮ཰ԽʹΑͬͯ ҟ࣍ݩͷׂҾΛఏڙ͠·͢ɻ

  32. ׂҾྫ • EC2ΦϯσϚϯυར༻අ 10%OFF • CloudFront௨৴අ 64%OFF • AWSΤϯλʔϓϥΠζαϙʔτʹ
 ɹɹɹɹɹɹɹɹɹ૬౰͢Δαϙʔτ

    ແྉ

  33. ͞Βʹ෇ଳଛ֐อݥΛ ඪ४Ͱ͓෇͚͠·͢ɻ

  34. ౦ژւ্೔ಈͷAWSϢʔβʔ޲͚ ઐ༻อݥ͕ඪ४Ͱద༻

  35. ༷ʑͳΦϓγϣϯαʔϏεΛ ͝༻ҙ͓ͯ͠Γ·͢ɻ

  36. ϝϯόʔζͷΦϓγϣϯαʔϏε • ೔தӡ༻ࢧԉαʔϏε • 24/365 ແਓࣗಈ؂ࢹαʔϏεʮ͘Β΋Μʯ • Deep Security؂ࢹɾ෼ੳαʔϏε
 ɹɹɹɹɹɹɹɹɹɹɹɹʮHoot

    Securityʯ

  37. ϝϯόʔζͷΦϓγϣϯαʔϏε • ೔தӡ༻ࢧԉαʔϏε • 24/365 ແਓࣗಈ؂ࢹαʔϏεʮ͘Β΋Μʯ • Deep Security؂ࢹɾ෼ੳαʔϏε
 ɹɹɹɹɹɹɹɹɹɹɹɹʮHoot

    Securityʯ

  38. ฐࣾDeep Security؂ࢹɾ෼ੳαʔϏε ʮHoot Securityʯͷ͝঺հ

  39. ηΩϡϦςΟରࡦͰ Deep SecurityΛಋೖ͠Α͏ɻ

  40. ηΩϡϦςΟରࡦͰ Deep SecurityΛಋೖ͠Α͏ɻ ಋೖͨ͠΋ͷͷઃఆ͕෼͔Βͳ͍…

  41. ηΩϡϦςΟରࡦͰ Deep SecurityΛಋೖ͠Α͏ɻ ಋೖͨ͠΋ͷͷઃఆ͕෼͔Βͳ͍… DS͕ͪΌΜͱಈ࡞͍ͯ͠Δ͔ෆ҆…

  42. ηΩϡϦςΟରࡦͰ Deep SecurityΛಋೖ͠Α͏ɻ ಋೖͨ͠΋ͷͷઃఆ͕෼͔Βͳ͍… DS͕ͪΌΜͱಈ࡞͍ͯ͠Δ͔ෆ҆… ߈ܸ͞Ε͚ͯͨͲؾ෇͔ͳ͔ͬͨ…

  43. ηΩϡϦςΟରࡦͰ Deep SecurityΛಋೖ͠Α͏ɻ ಋೖͨ͠΋ͷͷઃఆ͕෼͔Βͳ͍… DS͕ͪΌΜͱಈ࡞͍ͯ͠Δ͔ෆ҆… ߈ܸ͞Ε͚ͯͨͲؾ෇͔ͳ͔ͬͨ… ͜ͷ߈ܸͬͯͲ͏ରࡦ͢Ε͹͍͍ͷ…ʁ

  44. ͦͷ͓೰Έɺղܾ͠·͢ɻ

  45. Deep Security؂ࢹɾ෼ੳαʔϏε Hoot Security • ॳظߏங • ηΩϡϦςΟΠϯγσϯτ෼ੳ • ϩάɺϨϙʔτ

    • γεςϜϑΝϯΫγϣϯ؂ࢹ • ϙϦγʔνϡʔχϯά • Web ϙʔλϧαΠτ • ৘ใఏڙ ෼ੳ ؂ࢹ

  46. Deep Security؂ࢹɾ෼ੳαʔϏε Hoot Security • ॳظߏங • ηΩϡϦςΟΠϯγσϯτ෼ੳ • ϩάɺϨϙʔτ

    • γεςϜϑΝϯΫγϣϯ؂ࢹ • ϙϦγʔνϡʔχϯά • Web ϙʔλϧαΠτ • ৘ใఏڙ ෼ੳ ؂ࢹ

  47. Trend Microͷೝఆࢿ֨Λ ࣋ͬͨࣾһ͕ߏஙΛߦ͍·͢ɻ

  48. Deep Security؂ࢹɾ෼ੳαʔϏε Hoot Security • ॳظߏங • ηΩϡϦςΟΠϯγσϯτ෼ੳ • ϩάɺϨϙʔτ

    • γεςϜϑΝϯΫγϣϯ؂ࢹ • ϙϦγʔνϡʔχϯά • Web ϙʔλϧαΠτ • ৘ใఏڙ ෼ੳ ؂ࢹ

  49. ηΩϡϦςΟͷઐ໳Ո͕ ϩάΛ෼ੳ͠ɺඞཁʹԠͯ͡ ϝʔϧ௨஌͍ͨ͠·͢ɻ

  50. ݄࣍ΠϯγσϯτϨϙʔτΛ ૹ෇͍ͨ͠·͢ɻ

  51. Deep Security؂ࢹɾ෼ੳαʔϏε Hoot Security • ॳظߏங • ηΩϡϦςΟΠϯγσϯτ෼ੳ • ϩάɺϨϙʔτ

    • γεςϜϑΝϯΫγϣϯ؂ࢹ • ϙϦγʔνϡʔχϯά • Web ϙʔλϧαΠτ • ৘ใఏڙ ෼ੳ ؂ࢹ

  52. Deep Securityͷػೳ͕ ਖ਼ৗʹಈ࡞͍ͯ͠Δ͔Λ 24/365༗ਓ؂ࢹ͠·͢ɻ

  53. Deep Security؂ࢹɾ෼ੳαʔϏε Hoot Security • ॳظߏங • ηΩϡϦςΟΠϯγσϯτ෼ੳ • ϩάɺϨϙʔτ

    • γεςϜϑΝϯΫγϣϯ؂ࢹ • ϙϦγʔνϡʔχϯά • Web ϙʔλϧαΠτ • ৘ใఏڙ ෼ੳ ؂ࢹ

  54. ੬ऑੑɺαʔόઃఆ౳ʹԠͯ͡ ϙϦγʔνϡʔχϯά͠·͢ɻ

  55. ࣄྫ͝঺հ • ࣜձࣾIDOM༷ʢچΨϦόʔΠϯλʔφγϣφϧ༷ʣ http://classmethod.jp/cases/gulliver/gulliver-221616-com/

  56. ʮηΩϡϦςΟ͕ؾʹͳΔʯ ʮDeep Security࢖͍͍ͨʯ ͱ͍͏ํ͸͝ݕ౼Լ͍͞ɻ

  57. Πϕϯτͷ͝঺հ

  58. େࡕͰ͸9/15։࠵༧ఆ http://dev.classmethod.jp/news/bigdata-20160915-27/

  59. 9/16։࠵༧ఆ http://dev.classmethod.jp/news/aws-premier-night-2/

  60. ͋Γ͕ͱ͏͍͟͝·ͨ͠ɻ

  61. None