Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
開発と運用でサービスの信頼性を高める 「SRE」の実践/Mercari SRE in practice Enterprise Development Conference
Search
kazeburo
September 01, 2017
Technology
3
1.8k
開発と運用でサービスの信頼性を高める 「SRE」の実践/Mercari SRE in practice Enterprise Development Conference
開発と運用でサービスの信頼性を高める 「SRE」の実践
Enterprise Development Conference
kazeburo
September 01, 2017
Tweet
Share
More Decks by kazeburo
See All by kazeburo
DNS水責め攻撃と監視 / DNS water torture attack Monitoring and SLO
kazeburo
4
3.8k
DBやめてみた / DNS water torture attack and countermeasures
kazeburo
13
12k
IaaSにおけるPlatform Engineeringとこれから / Platform engineering in IaaS
kazeburo
2
1.2k
高信頼IaaSを実現するDevOps / DevOps for Highly Reliable IaaS
kazeburo
1
510
権威DNSサービスへのDDoSと ハイパフォーマンスなベンチマーカ / DNS Pseudo random subdomain attack and High performance Benchmarker
kazeburo
3
4.8k
DNS権威サーバのクラウドサービス向けに行われた攻撃および対策 / DNS Pseudo-Random Subdomain Attack and mitigations
kazeburo
7
12k
sacloudns
kazeburo
2
300
「orchestratorとGTID運用を支える監視」の勉強 / Monitoring orchestrator and GTID operation
kazeburo
2
1.3k
最近の監視(仮)/Recent system monitoring with mackerel
kazeburo
3
4.6k
Other Decks in Technology
See All in Technology
20240725 LLMによるDXのビジョンと、今何からやるべきか @Azure OpenAI Service Dev Day
nrryuya
3
1.2k
テストケースの自動生成に生成AIの導入を試みた話と生成AIによる今後の期待
shift_evolve
0
180
Github Actions 로 Android 팀의 효율성 극대화
hadonghyun
0
160
コミュニティサービスに「あなたへ」フィードを リリースするまでの試行錯誤
takapy
1
150
目標設定は好きですか? アジャイルとともに目標と向き合い続ける方法 / Do you like target Management?
kakehashi
10
3k
フルリモートワークはエンジニアの夢を叶えたか? #cm_odyssey
mamohacy
2
600
MySQLのロックの種類とその競合
yoku0825
6
1.6k
エンジニアの生存戦略 〜クラウド潮流の経験から紐解く技術トレンドのメカニズムと乗りこなし方〜
shimy
9
1.9k
AWSサービスメニュー開発をしていてAWSを好きだ!と感じた瞬間
toru_kubota
0
130
成長期に歩みを止めないための創業期の開発文化形成
mayah
6
420
データ分析基盤を作ってみよう~設計編~
nrinetcom
PRO
1
110
セキュリティ研修 Day1【MIXI 24新卒技術研修】
mixi_engineers
PRO
0
160
Featured
See All Featured
Templates, Plugins, & Blocks: Oh My! Creating the theme that thinks of everything
marktimemedia
23
1.9k
Helping Users Find Their Own Way: Creating Modern Search Experiences
danielanewman
26
2.1k
jQuery: Nuts, Bolts and Bling
dougneiner
61
7.4k
Music & Morning Musume
bryan
43
5.9k
Sharpening the Axe: The Primacy of Toolmaking
bcantrill
26
1.6k
Clear Off the Table
cherdarchuk
89
320k
The MySQL Ecosystem @ GitHub 2015
samlambert
248
12k
CoffeeScript is Beautiful & I Never Want to Write Plain JavaScript Again
sstephenson
155
14k
A better future with KSS
kneath
231
17k
The Cult of Friendly URLs
andyhume
75
5.9k
Creatively Recalculating Your Daily Design Routine
revolveconf
214
11k
Why Our Code Smells
bkeepers
PRO
332
56k
Transcript
։ൃͱӡ༻ͰαʔϏεͷ৴པੑΛߴΊΔ ʮSREʯͷ࣮ફ Enterprise Development Conference 2017/09/01 גࣜձࣾϝϧΧϦ Masahiro Nagano @kazeburo
ࣗݾհ • Masahiro Nagano / խ • @kazeburo (twitter/github) •
גࣜձࣾϝϧΧϦ ϓϦϯγύϧΤϯδχΞ Site Reliability Engineering (SRE) νʔϜ • BASE, Inc ٕज़ΞυόΠβʔ
ࣗݾհ(ܦྺɾ׆ಈ) • ܦྺ • 2006 mixi - ΞϓϦӡ༻νʔϜ • 2010
livedoor (LINE) - ։ൃࢧԉνʔϜ • 2015 ݱ৬ - SRE • 15Ҏ্ WebαʔϏεΛΠϯϑϥ͔Βࢧ͑Δۀ • ొஃʗࣥච • AWS Dev Day Tokyo 2017 ొஃ • WEB+DB PRESS Vol. 100 هࣄࣥච
ΞδΣϯμ • ࣗݾհ • ϝϧΧϦʹ͍ͭͯ • SREͱ • ϝϧΧϦͷSREͷࣄྫհ
ϝϧΧϦʹ͍ͭͯ
ϝϧΧϦ • ࠃ࠷େڃͷϑϦϚΞϓϦ • 3Ͱ؆୯ʹग़ 1) ࣸਅΛࡱΔ 2) ใΛهೖ 3)
ग़ϘλϯΛԡ͢ • ҆৺҆શͳܾࡁɾऔҾ • ΤεΫϩʔ • ͓ۚͷΓͱΓ͕ࣾؒʹհࡏ • ಗ໊ૹ
ถࠃ/ӳࠃ ͷల։ JP US UK
KPI μϯϩʔυ GMV(૯औҾֹ) 7500ສDL(JP+US) ݄ؒ100ԯԁҎ্ ग़ 1100ສҎ্ (ϐʔΫ࣌ؒଳ1ؒʹ1000ग़Ҏ্)
ϝϧΧϦγεςϜ֓ཁ ©2011 Amazon Web Services LLC or its affiliates. All
rights reserved. Client Multimedia Corporate data center Traditional server Mobile Client IAM Add-on Example: IAM Add-on ence ) Assignment/ Task Requester Workers ग़! DB Search 5-දࣔ ݕࡧө ©2011 Amazon Web Services LLC or its affiliates. All rights reserved. User Users Client Multimedia Corporate data center Traditional server Mobile Client Internet AWS Management Console IAM Add-on Example: IAM Add-on Amazon Mechanical Turk On-Demand Workforce Human Intelligence Tasks (HIT) Assignment/ Task Requester Workers Amazon Mechanical Turk Non-Service Specific ©2011 Amazon Web Services LLC or its affiliates. All rights reserved. User Users Client Multimedia Corporate data center Traditional server Mobile Client Internet AWS Management Console IAM Add-on Example: IAM Add-on Amazon Mechanical Turk On-Demand Workforce Human Intelligence Tasks (HIT) Assignment/ Task Requester Workers Amazon Mechanical Turk Non-Service Specific ©2011 Amazon Web Services LLC or its affiliates. All rights reserved. User Users Client Multimedia Corporate data center Traditional server Mobile Client Internet AWS Management Console IAM Add-on Example: IAM Add-on Amazon Mechanical Turk On-Demand Workforce Human Intelligence Tasks (HIT) Assignment/ Task Requester Workers Amazon Mechanical Turk Non-Service Specific ©2011 Amazon Web Services LLC or its affiliates. All rights reserved. User Users Client Multimedia Corporate data center Traditional server Mobile Client Internet AWS Management Console IAM Add-on Example: IAM Add-on Amazon Mechanical Turk On-Demand Workforce Human Intelligence Tasks (HIT) Assignment/ Task Requester Workers Amazon Mechanical Turk Non-Service Specific ©2011 Amazon Web Services LLC or its affiliates. All rights reserved. User Users Client Multimedia Corporate data center Traditional server Mobile Client Internet AWS Management Console IAM Add-on Example: IAM Add-on Amazon Mechanical Turk On-Demand Workforce Human Intelligence Tasks (HIT) Assignment/ Task Requester Workers Amazon Mechanical Turk Non-Service Specific ©2011 Amazon Web Services LLC or its affiliates. All rights reserved. User Users Client Multimedia Corporate data center Traditional server Mobile Client Internet AWS Management Console IAM Add-on Example: IAM Add-on Amazon Mechanical Turk On-Demand Workforce Human Intelligence Tasks (HIT) Assignment/ Task Requester Workers Amazon Mechanical Turk Non-Service Specific ©2011 Amazon Web Services LLC or its affiliates. All rights reserved. User Users Client Multimedia Corporate data center Traditional server Mobile Client Internet AWS Management Console IAM Add-on Example: IAM Add-on Amazon Mechanical Turk On-Demand Workforce Human Intelligence Tasks (HIT) Assignment/ Task Requester Workers Amazon Mechanical Turk Non-Service Specific ©2011 Amazon Web Services LLC or its affiliates. All rights reserved. User Users Client Multimedia Corporate data center Traditional server Mobile Client Internet AWS Management Console IAM Add-on Example: IAM Add-on Amazon Mechanical Turk On-Demand Workforce Human Intelligence Tasks (HIT) Assignment/ Task Requester Workers Amazon Mechanical Turk Non-Service Specific ©2011 Amazon Web Services LLC or its affiliates. All rights reserved. User Users Client Multimedia Corporate data center Traditional server Mobile Client Internet AWS Management Console IAM Add-on Example: IAM Add-on Amazon Mechanical Turk On-Demand Workforce Human Intelligence Tasks (HIT) Assignment/ Task Requester Workers Amazon Mechanical Turk Non-Service Specific ©2011 Amazon Web Services LLC or its affiliates. All rights reserved. User Users Client Multimedia Corporate data center Traditional server Mobile Client Internet AWS Management Console IAM Add-on Example: IAM Add-on Amazon Mechanical Turk On-Demand Workforce Human Intelligence Tasks (HIT) Assignment/ Task Requester Workers Amazon Mechanical Turk Non-Service Specific ©2011 Amazon Web Services LLC or its affiliates. All rights reserved. User Users Client Multimedia Corporate data center Traditional server Mobile Client Internet AWS Management Console IAM Add-on Example: IAM Add-on Amazon Mechanical Turk On-Demand Workforce Human Intelligence Tasks (HIT) Assignment/ Task Requester Workers Amazon Mechanical Turk Non-Service Specific େྔͷϦΫΤετ ©2011 Amazon Web Services LLC or its affiliates. All rights reserved. User Users Client Multimedia Corp data c Mobile Client Internet AWS Management Console IAM Add-on Example: IAM Add-on Human Intelligence Tasks (HIT) Assignment/ Task Requester Workers Amazon Mechanical Turk Non-Service Specific ϦΫΤετԠ DB Search ߪೖ! ඵʙ30ඵ ඵʙ ߴʹฒߦͯ͠େྔͷτϥϯβΫγϣϯΛѻ͏ ը૾ ܾࡁ AI ϑΟʔυόοΫ
ΠϯϑϥετϥΫνϟ JP US UK DNS: Amazon Route53 CDN: Akamai, Fastly,
ImageFlux Storage: Amazon S3 Analysis: Google BigQuery ܾࡁ/ྲྀαʔϏε ܾࡁ/ྲྀαʔϏε ܾࡁ/ྲྀαʔϏε
SREͱ
SREͱ • Site Reliability Engineering/Engineer ͷུ • Reliability = ৴པੑ
• γεςϜཧͱαʔϏεӡ༻ͷํ๏ͱͯ͠Googleͷӡ༻νʔϜΛ͍͍ͯͨ Ben Treynor͕ఏএ • USΛத৺ʹେنͳITΠϯϑϥΛӡ༻͢Δ֤ࣾʹ·Δ • ໌֬ͳఆٛͳ͍͕ʮιϑτΣΞΤϯδχΞϦϯάʹΑͬͯɺΠϯϑϥετϥΫ νϟɾαʔϏεશମͷՄ༻ੑɺੑೳɺηΩϡϦςΟΛվળ͢ΔʯΤϯδχΞ/νʔϜ
Google SRE • ιϑτΣΞΤϯδχΞϦϯάʹՃ͑ɺγεςϜɾӡ༻ͷೳྗ͕ٻΊΒΕ Δɻ·ͨ৫ɾνʔϜͷ͋ΓํؚΜͰ͍Δ • ιϑτΣΞΤϯδχΞϦϯάʮࣗಈԽʯʹϑΥʔΧε • SREͷਓαʔϏεͷنʹൺྫͤ͞ͳ͍(ݱ࣮తʹͰ͖ͳ͍) •
ʮτΠϧʯͷ໓ • ख࡞ۀͰߦΘΕɺࣗಈԽՄೳͰ܁Γฦ͢͜ͱʹՁΛ࣋ͨͳ͍
Google SRE • ۀ࣌ؒͷ50%ιϑτΣΞΤϯδχΞϦϯάΛߦ͏ • ࣗಈԽ(ࣗԽ)ɺ৴པੑ্ʹ͋ͯΔ • 50%Λ͑Δ͜ͱ͕͋Εۀͷେ෯ͳݟ͠ΛഭΒΕΔ • SLAɺΤϥʔόδΣοτ(༧ࢉ)ʹΑΔ։ൃऀͷརௐ
• ։ൃऀνʔϜͱՄ༻ੑͷඪΛαʔϏε͝ͱʹઃఆ • ΤϥʔόδΣοτʹ͋Δͱ͖։ൃऀੵۃతͳϦϦʔεΛߦ͍ɺ༧ࢉΛ ͑Δ߹৴པੑճ෮ͷͨΊͷ։ൃʹઐ೦͢Δ͜ͱ͕ٻΊΒΕΔ
ຊࠃͰͷSRE • 201511݄ ϝϧΧϦٕज़blogͰSREΛհ • RettyɺαΠϘζɺCookPadɺMixiɺͯͳͳͲWebܥاۀΛத৺ʹSREͷ࠾༻͕ਐΜͰ͍Δ • ΠϯϑϥνʔϜ/ΠϯϑϥΤϯδχΞ͔ΒͷҠߦ͕ଟ͍ • ΫϥυԽΛഎܠʹΠϯϑϥΤϯδχΞͱ͍͏ݺͼํ͕దͰͳ͘ͳ͖ͬͯͨ
• SRE Tech Talk։࠵ • ୈҰճ: 20166݄ɻୈೋճ: 20171݄ • 100໊Ҏ্ͷࢀՃऀ
SREͷظͷߴ·Γ • ॻ੶/ࡶࢽ • ΦϥΠϦʔʮSRE αΠτϦϥΠΞϏϦςΟΤϯδχΞϦϯάʯ • ܦBPʮܦSYSTEM 2017/7ʯ •
Πϯλʔωοτ্ͷಛूهࣄ • ITPro - άʔάϧൃͷ৽ख๏ʮSREʯɺຊͰ֦େ • http://itpro.nikkeibp.co.jp/atcl/column/14/346926/030600869/ • @IT - ಛूɿγεʹٻΊΒΕΔʮSREʯͱ͍͏৽ͨͳׂ • http://www.atmarkit.co.jp/ait/series/4503/
ϝϧΧϦ SRE
ϝϧΧϦ SRE • ͍ͭͰշద͔ͭ҆શʹར༻Ͱ͖Δʮ৴པੑͷߴ͍ʯαʔϏεͷ࣮ݱ • ʮ৽نαʔϏεͷ։ൃҎ֎ͷιϑτΣΞΤϯδχΞϦϯάશ෦Δʯ • ݱࡏϝϯόʔʮ10ਓʯ • શϝϯόʔ౦ژۈɻग़ுͰถࠃʹ͍͘͜ͱ
• େنͳWebαʔϏεͰͷܦݧ͕͋Δத్͕ଟ͍͕ɺ৽ଔϝϯόʔࡏ੶ • ࣾπʔϧͷӡ༻վળɺAIܥͷۀʹܞΘΔϝϯόʔ͍Δ
ϝϧΧϦͰSREΛ࠾༻ͨ͠ཧ༝ • ϝϧΧϦΛ͓٬͞·ʹͬͯ͘Β͏ʹʮ͍ͭͰշదʹ҆શʹ ͑Δʯ৴པੑ͕ॏཁ • ΠϯϑϥͰͳ͘ɺιϑτΣΞؚΊ৴པੑʹΛ࣋ͭ͜ͱΛ໌Β ͔ʹ͢Δ • ւ֎Ͱ௨͡Δ໊শ •
JP/US/UKͰͷల։ɻάϩʔόϧͰͷ࠾༻ৗʹҙࣝ • ઌਐతͳऔΓΈͱͯ͠ͷૂ͍
Mercari SRE ͷۀൣғ Operations Software Eng. ج൫ߏங OnCall (োରԠ) Automation
εέʔϥϏϦςΟɾՄ༻ੑվળ DBAɺϛυϧΣΞߏங ΞϓϦέʔγϣϯͷઃܭϨϏϡʔ ϩάऩूɾੳج൫ͷߏஙɺӡ༻ αʔόϓϩϏδϣχϯάɾσϓϩΠɺϚΠΫϩαʔϏεج൫ͷඋ ηΩϡϦςΟʗෆਖ਼ར༻ݕग़ γεςϜӡ༻ΛʮΈʯͱͯ͠ ࡞Γ্͛Δ͜ͱ͕ٻΊΒΕ͍ͯΔ
ϝϧΧϦ SREͷ࣮ફࣄྫ
ϝϧΧϦSRE࣮ફࣄྫ • OnCall/൪ରԠ • ηΩϡϦςΟͷऔΓΈ • ύεϫʔυϦετ߈ܸͷࣄྫ
OnCall/൪ରԠ
SRE൪/OnCall • ΞϥʔτରԠ • ΞϥʔτΛड͚औΔεϚϗΛৗʹOnʹ͠ɺҰ࣍ରԠΛߦ͏ • ి൪ • SlackΛ௨ͨ͡ۓٸిͷड৴ •
ʮোͷݕ͔ΒରԠ։࢝·Ͱͷ࣌ؒͷॖʯʮଞϦʔδϣϯ ͔ΒͷۓٸґཔͷରԠʯ͕త
SRE൪/OnCall • ༵0͔࣌Β༵24࣌·Ͱ1िؒͰަ • ฏνʔϜϝϯόʔ͕ग़ࣾ͢Δ·Ͱࣗػ • 9͔࣌Βࣗػ͠ɺUS͔ΒͷґཔͳͲʹରԠ • ٳ15-20ҎʹରԠ։࢝Ͱ͖Δ͜ͱ͕·͘͠ɺߦಈʹ੍ ݶ͋Δ
• ਂٳͷରԠͳͲɺՈͷڠྗඞཁ
൪/OnCall Λࢧ͑Δٕज़ • ࢹ • Mackerel • ௨/Scheduling • Slack,
PagerDuty • BotʹΑΔిݺͼग़͠
mackerel: ΫϥυܕࢹαʔϏε • גࣜձࣾͯͳ ఏڙͷࢹαʔϏε • ͯͳࣾͰͷαʔόӡ༻ϊϋ • ֤छAPI͕༻ҙ͞ΕDevOpsͱͷ૬ੑྑ͍ •
PluginͰࢹ߲ͷ֦ு͕Մೳ • 40ݸҎ্ͷSREνʔϜ։ൃͷPluginΛར༻ • αʔόͷঢ়ଶ͚ͩͰͳ͘ɺ֎ܗࢹɺαʔϏεʹؔΘΔͷՄࢹԽɺΞϥʔτઃఆՄೳ • Ξϥʔτͷ௨SlackΛ࢝Ί֤छαʔϏε࿈ܞ͕༻ҙ
slackͱΞϥʔτͷ • SlackϏδωε͚νϟοταʔϏε • OSSձࣾؒͷίϛϡχέʔγϣϯʹΘΕΔ • Chat botΛར༻ͨ͠ChatOpsͳͲߦ͏ • Ξϥʔτͷ௨ઌͱͯ͠దͰͳ͍߹
• ௨ԻͷΧελϚΠζͰ͖ͳ͍ • 1ճ͔͠௨Ͱ͖ͳ͍ɻྲྀΕ͕ͪ • ετϨε⤴ / ӡ༻ʹͳΓ͕ͪ
PagerDuty: Πϯγσϯτཧ • ΠϯγσϯτཧͷΫϥυαʔϏε • ༷ʑͳखஈʹΑΔ௨ • ௨ͷϩʔςʔγϣϯཧ • ΤεΧϨʔγϣϯϧʔϧͷઃఆ
PagerDutyʹΑΔ௨ • ༷ʑͳखஈͰ௨Λߦ͏͜ͱ͕Ͱ͖Δɻ Ԡ͢Δ·Ͱଓ͘ • mail • SMS • App
(iOS, Android) • ి • ʮ10Λ͑ͨͱ͜ΖͰҰిΛೖ ΕΔʯϧʔϧͰӡ༻
BotʹΑΔۓٸి • SlackͰbotʹର໋ͯ͠ྩ͢Δ͜ͱͰɺ൪ʹి͕ ͔͔ΔΈ • SRE͕։ൃɾӡ༻ • PagerDutyͷAPIΛར༻͠ɺ൪ͷ࿈བྷઌΛऔಘ • TwilioΛͬͯࣗಈͰి
• US/UKؚΊɺؾܰʹͬͯΒ͑ΔΑ͏ࣾࠂ ࠷ۙͰSREνʔϜͰΤεΧϨʔγϣϯతͰ ར༻ ☎
༷ʑͳ ChatOps • ൪ͷిͷଞʹbotΛར༻ͨ͠ӡ༻Λߦͳͬͯ ͍·͢ • ൪ใ • CDNͷΩϟογϡΫϦΞ •
ຊ൪ڥͰͷSQLͷ࣮ߦܭը֬ೝ • σϓϩΠ
ηΩϡϦςΟͷऔΓΈ ύεϫʔυϦετ߈ܸͷࣄྫ
ύεϫʔυϦετ߈ܸ • ͓٬͞·ͷΞΧϯτʹରͯ͠ɺϥϯμϜͳύεϫʔυ͘͠ผͰ࿙Ӯ ͨ͠ύεϫʔυจࣈྻΛ͍ϩάΠϯΛࢼߦɺෆਖ਼ϩάΠϯΛߦ͏ • ͞·͟·ͳنͷ߈ܸ͕ߦΘΕɺଞͷαʔϏεͰͷࣄྫଟ͍
ύεϫʔυϦετ߈ܸͷରԠ • Ϧετ߈ܸͷݕ • ߈ܸ͕ߦΘΕ͍ͯΔ͜ͱΛͰ͖ΔݶΓૣ͘ݕ͠ɺΞϥʔτΛ͋͛Δ • ߈ܸ؇ࡦͷ࣮ࢪ • ΞΫηεύλʔϯ͔ΒࣗಈͰޚ •
߈ܸΛड͚ͨΞΧϯτͷύεϫʔυϦηοτ
ύεϫʔυϦετ߈ܸͷݕ • ϩάΠϯࣦഊΛAPIͷϩάͱͯ͠ه • ϩάΛϦΞϧλΠϜͰूܭɺ mackerelͰՄࢹԽͱࢹΛߦ͏ • ϝϧΧϦ͕TVʹऔΓ্͛ΒΕΔͱ Ξϥʔτ͕དྷΔ͜ͱ
ύεϫʔυϦετ߈ܸͷ؇ • ൺֱత୯७ͳ߈ܸΞϓϦέʔγϣϯͰࣗಈతʹޚ • ಉҰͷϝʔϧΞυϨεʹΑΔෳճͷϩάΠϯࢼߦ • ಉҰͷIPΞυϨεʹΑΔෳΞΧϯτͷϩάΠϯࢼߦ • ߈ܸͱஅ͞Εͨ߹֘IPΛҰఆظؒڋ൱ •
ϩάΠϯ͞ΕͨͱࢥΘ͖͠ɺ͓٬͞·ʹύεϫʔυͷϦηοτଅ͢
େنͳύεϫʔυϦετ߈ܸࣄྫ • ւ֎͚αʔϏεࠃ͚αʔϏεΑΓ߈ܸΛड͚Δճ͕ଟ͍ • ߈ܸͷن͕େ͖͘ͳΓɺखޱෳࡶʹͳΔ
େنύεϫʔυϦετ߈ܸࣄྫ • 2016ʹ࣮ࡍʹى͖ͨ߈ܸͷΞΫ ηεݩͷࠃ • ࣍ʑʹIPΛมߋ͠ɺͦΕͧΕͷIPͰ ճ͔͠ϩάΠϯࢼߦͤͣɺࣗಈ Ͱ͙͜ͱ͕͍͠ ͦͷଞ 18%
Armenia 2% Azerbaijan 2% Bahrain 2% Georgia 2% Japan 2% Russian 2% Indonesia 3% Nepal 3% Pakistan 5% Thailand 5% Taiwan 6% Viet Nam 6% Brazil 10% India 30%
େنύεϫʔυϦετ߈ܸͷඋ͑ • ߈ܸ͞Ε͍͢Web൛ͰreCAPTCHAΛಋೖ • Client Reputation ͷར༻ • GeoIP: IPΞυϨε͔Βࠃఆ
• ಗ໊ϓϩΩγͷར༻ͷ༗ແ • IP Reputation
Client reputation/GeoIP • ֎෦ͷIPσʔλϕʔεΛར༻ • ࠃ/भ/ݝ/ࢢϨϕϧ·Ͱਪఆ • σʔληϯλʔ͕ར༻͍ͯ͠ΔIP • ಗ໊ԽϓϩΩγͷఆ
• ࠃෆಠࣗʹऩू https://www.ip2location.com/demo
Client reputation/IP reputation • ओʹSPAMϑΟϧλͳͲʹΘΕΔٕज़ • աڈʹSPAMͷૹ৴Λ͓͜ͳͬͨIPɺBotnetͱ ͯ͠ΘΕͨIPΛݕग़ • ௐࠪͷ݁ՌɺύεϫʔυϦετ߈ܸʹΘΕ
͍ͯΔ͜ͱ͕໌ • ϦεΫͷߴ͍IP͔ΒͷΞΫηεڋ൱͢Δ http://www.cyren.com/security-center/ip-reputation-check
߈ܸݩIP Reputation • 2016ͷ߈ܸݩௐࠪͷ݁Ռ • 4ׂ͙͜ͱ͕Ͱ͖ͨՄೳੑ͕͋Δ* • ݱࡏͰɺ༷ʑͳใϦιʔεΛΈ߹Θͤͯ αʔϏεͷ҆શੑΛߴΊ͍ͯ·͢ -PX
.JEEMF )JHI * ߈ܸͷ͋ͬͨλΠϛϯάͷreputationͰͳ͍ͷͰଟগζϨ͕͋Γ·͢
·ͱΊ • SREͱ • Googleʹ͓͚ΔγεςϜӡ༻ͷ࣮ફ • ιϑτΣΞΤϯδχΞϦϯάʹΑͬͯ৴པੑΛ্ͤ͞Δ • ϝϧΧϦͷSREͷࣄྫհ •
OnCall/ӡ༻൪ • ύεϫʔυϦετ߈ܸ͔Βͷޚࣄྫ
͝੩ௌ͋Γ͕ͱ͏͍͟͝·ͨ͠ ຊεϥΠυspeakerdeckʹͯެ։͠·͢ https://speakerdeck.com/kazeburo/