Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Minimum knowledge for secure web payment

Avatar for Yutaro Sugai Yutaro Sugai
July 22, 2014
Technology
1
1.1k

Minimum knowledge for secure web payment

安全なウェブ決済のために
最低限知っておいてほしいこと
WebPay meetup #1 2014/07/22
Avatar for Yutaro Sugai

Yutaro Sugai

July 22, 2014
Tweet

More Decks by Yutaro Sugai

See All by Yutaro Sugai
devlove-kansai-sre-scrum
Avatar for Yutaro Sugai hokkai7go
0
11k
sre-lounge8
Avatar for Yutaro Sugai hokkai7go
6
6.7k
88_techbookfest5_in_omotesandorb
Avatar for Yutaro Sugai hokkai7go
1
130
Career Keynote at LDD '18 in Muroran
Avatar for Yutaro Sugai hokkai7go
1
610
What has been realized to improve maintainability at "Eight".
Avatar for Yutaro Sugai hokkai7go
0
960
Serverless and tough access management
Avatar for Yutaro Sugai hokkai7go
1
1.5k
"1st try and team productivity"
Avatar for Yutaro Sugai hokkai7go
1
320
Technology to support Eight, Infrastructure part
Avatar for Yutaro Sugai hokkai7go
0
610
AWS and Serverless and Monitoring
Avatar for Yutaro Sugai hokkai7go
1
2.2k

Other Decks in Technology

See All in Technology
United Airlines Customer Service– Call 1-833-341-3142 Now!
Avatar for vivankilkenny548+imnfc airhelp
0
180
マーケットプレイス版Oracle WebCenter Content For OCI
Avatar for oracle4engineer oracle4engineer
PRO
3
990
TLSから見るSREの未来
Avatar for atpons atpons
2
240
推し書籍📚 / Books and a QA Engineer
Avatar for akihisa1210 ak1210
0
120
american aa airlines®️ USA Contact Numbers: Complete 2025 Support Guide
Avatar for jackal5647 aaguide
0
500
アクセスピークを制するオートスケール再設計: 障害を乗り越えKEDAで実現したリソース管理の最適化
Avatar for M-Yamashita myamashii
1
330
衛星運用をソフトウェアエンジニアに依頼したときにできあがるもの
Avatar for Takahiro Miyoshi sankichi92
1
230
【LT会登壇資料】TROCCO新コネクタ「スマレジ」を活用した直営店データの分析
Avatar for sho choma kazari0425
1
170
United airlines®️ USA Contact Numbers: Complete 2025 Support Guide
Avatar for heron31238 unitedflyhelp
0
340
セキュアな社内Dify運用と外部連携の両立 ~AIによるAPIリスク評価~
Avatar for ZOZO Developers zozotech
PRO
0
100
Delta airlines®️ USA Contact Numbers: Complete 2025 Support Guide
Avatar for ape1422 airtravelguide
0
350
伴走から自律へ: 形式知へと導くSREイネーブリングによる プロダクトチームの信頼性オーナーシップ向上 / SRE NEXT 2025
Avatar for Visional Engineering & Design visional_engineering_and_design
3
230

Featured

See All Featured
Testing 201, or: Great Expectations
Avatar for Joseph Mastey jmmastey
43
7.6k
個人開発の失敗を避けるイケてる考え方 / tips for indie hackers
Avatar for panda_program panda_program
107
19k
Distributed Sagas: A Protocol for Coordinating Microservices
Avatar for Caitie McCaffrey caitiem20
331
22k
How GitHub (no longer) Works
Avatar for Zach Holman holman
314
140k
Code Review Best Practice
Avatar for Trisha Gee trishagee
69
19k
Become a Pro
Avatar for Speaker Deck speakerdeck
PRO
29
5.4k
How to Ace a Technical Interview
Avatar for Jacob Kaplan-Moss jacobian
278
23k
The Art of Delivering Value - GDevCon NA Keynote
Avatar for David Neal reverentgeek
15
1.6k
No one is an island. Learnings from fostering a developers community.
Avatar for Antonio thoeni
21
3.4k
How to train your dragon (web standard)
Avatar for Monica Dinculescu notwaldorf
96
6.1k
Bash Introduction
Avatar for André Augusto Costa Santos 62gerente
613
210k
Making the Leap to Tech Lead
Avatar for Ryan Cromwell cromwellryan
134
9.4k

Transcript

  1. ҆શͳ΢ΣϒܾࡁͷͨΊʹ ࠷௿ݶ஌͓͍ͬͯͯ΄͍͜͠ͱ Yutaro Sugai <[email protected]> @hokkai7go

  2. ϖΠʂ (ָ͠ΜͰ·͔͢)

  3. ҆શͳ΢ΣϒܾࡁͷͨΊʹ ࠷௿ݶ஌͓͍ͬͯͯ΄͍͜͠ͱ Yutaro Sugai <[email protected]> @hokkai7go

  4. @hokkai7go ! WebPay ɾαʔό܈ͷӡ༻ ɾPCIDSSͳͲηΩϡϦςΟج४΁ͷ४ڌ ! ݸਓ ɾ֤छRubyܥΧϯϑΝϨϯεͷϨϙʔτ൝ ɾΔͼ·ฤू ɾChef࣮ફೖ໳ॻ͖·ͨ͠

  5. PCIDSS஌ͬͯ·͔͢ʁ

  6. PCIDSSͱ͸ ΫϨδοτΧʔυ৘ใ࿙Ӯ๷ࢭͷ ͨΊͷࠃࡍηΩϡϦςΟج४ ΫϨδοτΧʔυ৘ใΛऔΓѻ͏ શͯͷࣄۀऀ΍αʔϏεϓϩόΠ μ͸ɺ͜ͷඪ४ʹ४ڌ͢Δඞཁ͕ ͋Γ·͢ɻ(േଇͳ͠)

  7. PCIDSSͱ͸ ܾࡁࣄۀऀ͚ͩͰͳ͘ AWSͳͲͷαʔϏεϓϩόΠμ͕ ४ڌ͢Δྫ͕૿͍͑ͯΔ

  8. Χʔυ൪߸࿙Ӯͷ ࡾେϦεΫϙΠϯτ

  9. ॲཧ ఻ૹ อଘ

  10. 4242#4242#4242#4242 ఻ૹ

  11. 4242#4242#4242#4242 ఻ૹ

  12. 4242#4242#4242#4242 ఻ૹɾॲཧ

  13. 4242#4242#4242#4242 อଘ

  14. ఻ૹ

  15. PCIDSS͸ ఻ૹ࣌҉߸ԽΛཁٻ

  16. ”ΦʔϓϯͳެڞωοτϫʔΫܦ༝Ͱػີ ੑͷߴ͍ΧʔυձһσʔλΛ఻ૹ͢Δ৔ ߹ɺҎԼͷΑ͏ͳɺڧྗͳ҉߸ԽͱηΩϡ ϦςΟϓϩτίϧʢSSL/TLSɺIPSECɺ SSHͳͲʣΛ࢖༻ͯ͠อޢ͢Δɻ” - PCIDSS ཁ݅ͱηΩϡϦςΟධՁखॱόʔδϣϯ3.0 ΑΓൈਮ

  17. ҉߸ԽͤͣʹΧʔυ൪߸ ͷ఻ૹ͍ͯ͠·ͤΜ͔ʁ

  18. ੜͷΧʔυ൪߸ΛαʔόͰ ड͚ͱΓͨ͘ͳ͍Ͱ͢ΑͶ

  19. Έͳ͞Μ͕Χʔυ൪߸Λۃྗѻ Θͳ͍͍ͯ͘Α͏ʹɺτʔΫϯ ܾࡁͷ࢓૊ΈΛ༻ҙ͍ͯ͠·͢

  20. ɾΫϥΠΞϯταΠυτʔΫϯ ɾαʔόαΠυτʔΫϯ

  21. ΫϥΠΞϯταΠυτʔΫϯͷར఺ ʮॲཧʯʮ఻ૹʯʮอଘʯͷ ͢΂ͯΛճආ͢Δ͜ͱ͕Ͱ͖·͢

  22. https://webpay.jp/docs/payments_with_token

  23. ΫϥΠΞϯταΠυτʔΫϯΛ࢖Θͳ͍ ɾʮॲཧʯʮ఻ૹʯΛආ͚ΒΕͳ͍ ɾੜͷΧʔυ൪߸Λѻ͏ϦεΫ ɹɾܦ࿏্ͷϩάʹΧʔυ൪߸࢒͍ͬͯ·ͤΜ͔ʁ ɹɾʮॲཧʯޙͷϝϞϦ͸҆શͰ͔͢ʁ

  24. ʮॲཧʯʮ఻ૹʯΛߦ͏͜ͱ͸ϦεΫͰ͢ɻ ΫϥΠΞϯταΠυτʔΫϯΛར༻ͯ͠ ආ͚Δ͜ͱΛ͓͢͢Ί͠·͢ɻ

  25. ҆શͳ΢ΣϒܾࡁͷͨΊʹ ɾSSLͷ࢖༻(αΠτؙ͝ͱ or ࠷௿Ͱ΋ܾࡁϖʔδ) ɾద੾ͳΤϥʔϋϯυϦϯά ɾෆཁͳΧʔυ৘ใͷഁغ