FOLIO のこれまでの情報セキュリティへの取り組みについて / Scramble! #2 Security

'0-*0ךֿ׸תדך 䞔㜠إُؗٔذ؍פך《׶穈׫חאְג 2018/12/6ɹScramble! #2 Security

㣐銮姻䛾 (Tadayuki Onishi) Software Engineer Twitter: @kenchan0130 Blog: kenchan0130.github.io 荈䊹稱➜

秈䎃ծغحؙؒٝسؒٝآ ص،ך➂꟦ָ劢穗꿀זָ׵ծ 爡ⰻ䞔㜠ءأذيה׃גו׿ זֿה׾׃גֹ׋ַך➭䠥׮ זְ僓鑧 ➙傈鑧ֿׅה ➙傈鑧ׁזְֿה 稢ְַ欽铂ծֶ״ןفٗتؙ زך铡僇

https://speakerdeck.com/kenchan0130/ jiao-yu-qi-ye-niokerudebaisuguan-li-nituite 侄肪٥⟰噟חֶֽ׷ رغ؎أ盖椚䩛岀חאְג 2018/9/2ɹiOSDC Japan 2018 ؎ظك٦ءّٝ׾姺׭׆חծ 畭劣盖椚ה麊欽׾遤ֲ倯岀 2018/9/7ɹbuilderscon
tokyo 2018 https://speakerdeck.com/kenchan0130/ builderscon-tokyo-2018

痥♧珏ꆃ輐㉀ㅷ《䒷噟罏䎃։ 䎃剢ח鏣甧䖞噟㆞秈せ䎃剢植㖈 ؿؓٔؔIUUQTGPMJPTFDDPNך؟٦ؽأ׾䲿⣘

։➂ ։➂ ➂⟃♳ 晙䩛꟦㔐׵זֻז׷ ּׁ׶ּׁ׶圓眠 ⚥鋉垷麊欽

ֿך涪邌ד鑧ׅهٔء٦ֶ״ן麊欽זוכծ 傀ח麓⿠ך׮ךװ⦐➂ך䠐鋅׾ろ׿דֶ׶ծ '0-*0ה׃ג植㖈׮黝欽٥麊欽׃竲ֽגְ ׷ֿה׾⥂ꥺׅ׷׮ךדכ֮׶תׇ׿կ

װ׏גֹ׋䎃邌

㼪Ⰵ畭劣鼅㹀䎃䎃䎃 0LUB "DUJWF%JSFDUPSZ 1SPMF.BOBHFS +BNG130 "[VSF"% 爡ⰻخ٦ؙٕٓؐس⻉
8JOEPXT &OUFSQSJTF J04"OESPJE 爡ⰻخ٦ٕ ؎و؝؝ .JDSPTPGU*OUVOF ؒٝسه؎ٝزخ٦ٕ ؒٝسه؎ٝزخ٦ٕ 㢌刿 $JTDP.FSBLJ ؚٗ　꧊㛇湍ךⵗ倜

䎃䎃䎃 0LUB "[VSF"% 8JOEPXT &OUFSQSJTF 爡ⰻخ٦ٕ㼪Ⰵ ؎و؝؝ 爡ⰻخ٦ؙٕٓؐس⻉
㼪Ⰵ畭劣鼅㹀 J04"OESPJE "DUJWF%JSFDUPSZ 1SPMF.BOBHFS +BNG130 .JDSPTPGU*OUVOF $JTDP.FSBLJ ؒٝسه؎ٝزخ٦ٕ ؒٝسه؎ٝزخ٦ٕ 㢌刿 ؚٗ　꧊㛇湍ךⵗ倜

㼪Ⰵ畭劣鼅㹀䎃䎃䎃 0LUB "[VSF"% 8JOEPXT &OUFSQSJTF J04"OESPJE 爡ⰻخ٦ٕ㼪Ⰵ
؎و؝؝ 爡ⰻخ٦ؙٕٓؐس⻉ "DUJWF%JSFDUPSZ 1SPMF.BOBHFS +BNG130 .JDSPTPGU*OUVOF $JTDP.FSBLJ ؒٝسه؎ٝزخ٦ٕ ؒٝسه؎ٝزخ٦ٕ 㢌刿 ؚٗ　꧊㛇湍ךⵗ倜

㼪Ⰵ畭劣鼅㹀䎃䎃䎃 0LUB "[VSF"% 爡ⰻخ٦ؙٕٓؐس⻉ 8JOEPXT &OUFSQSJTF J04"OESPJE
爡ⰻخ٦ٕ㼪Ⰵ ؎و؝؝ "DUJWF%JSFDUPSZ 1SPMF.BOBHFS +BNG130 .JDSPTPGU*OUVOF $JTDP.FSBLJ ؒٝسه؎ٝزخ٦ٕ ؒٝسه؎ٝزخ٦ٕ 㢌刿 ؚٗ　꧊㛇湍ךⵗ倜

儗禸⴨ד鴬׏גְֻ

堣珏ך鼅㹀 ⣣呓⮚⯓ 欽鷿ח䘔ׄ׋ؕأةو؎ؤ اؿزؒٝآص،ؚٔٝ 곁㹏⦐➂䞔㜠ꠘ鋮
鸐䌢噟⹡ 䎃כׄ׭鴟׶

䎃כׄ׭鴟׶ ؒٝسه؎ٝزخ٦ٕ 1SPMF.BOBHFS

䎃⚥湍ַ׵䖓⼱חַֽג &UD

䎃⚥湍ַ׵䖓⼱חַֽג

䎃䖓⼱ַ׵䎃⵸⼱ 1SPMF.BOBHFS

䎃䖓⼱ַ׵䎃⵸⼱ %FWJDF(VBSE $SFEFOUJBM(VBSE

ٌثك٦ءّٝך竰竲

䚀䟘ד֮׷ֿה 瀉孡ד֮׷ֿה 額妜ד֮׷ֿה ٌثك٦ءّٝך竰竲

תה׭ 畭劣㼪Ⰵծ畭劣盖椚ծؒٝسه؎ٝزإُؗٔ ذ؍ծ*E1ծ爡ⰻخ٦ٕؚٕ٦فؐؑ،זו 䌴䎢ֻװ׏גֹ׋ 䚀䟘ծ瀉孡ծ額妜ד֮׶אבֽ׷

׫זׁ׿ד׮דֹ׷

FOLIO のこれまでの情報セキュリティへの取り組みについて / Scramble! #2 Security

FOLIO のこれまでの情報セキュリティへの取り組みについて / Scramble! #2 Security

kenchan0130

More Decks by kenchan0130

Other Decks in Technology

Featured

Transcript

'0-*0ךֿ׸תדך 䞔㜠إُؗٔذ؍פך《׶穈׫חאְג 2018/12/6ɹScramble! #2 Security

㣐銮姻䛾 (Tadayuki Onishi) Software Engineer Twitter: @kenchan0130 Blog: kenchan0130.github.io 荈䊹稱➜

秈䎃ծغحؙؒٝسؒٝآ ص،ך➂꟦ָ劢穗꿀זָ׵ծ 爡ⰻ䞔㜠ءأذيה׃גו׿ זֿה׾׃גֹ׋ַך➭䠥׮ זְ僓鑧 ➙傈鑧ֿׅה ➙傈鑧ׁזְֿה 稢ְַ欽铂ծֶ״ןفٗتؙ زך铡僇

https://speakerdeck.com/kenchan0130/ jiao-yu-qi-ye-niokerudebaisuguan-li-nituite 侄肪٥⟰噟חֶֽ׷ رغ؎أ盖椚䩛岀חאְג 2018/9/2ɹiOSDC Japan 2018 ؎ظك٦ءّٝ׾姺׭׆חծ 畭劣盖椚ה麊欽׾遤ֲ倯岀 2018/9/7ɹbuilderscon

痥♧珏ꆃ輐㉀ㅷ《䒷噟罏䎃։ 䎃剢ח鏣甧䖞噟㆞秈せ䎃剢植㖈 ؿؓٔؔIUUQTGPMJPTFDDPNך؟٦ؽأ׾䲿⣘

։➂ ։➂ ➂⟃♳ 晙䩛꟦㔐׵זֻז׷ ּׁ׶ּׁ׶圓眠 ⚥鋉垷麊欽

ֿך涪邌ד鑧ׅهٔء٦ֶ״ן麊欽זוכծ 傀ח麓⿠ך׮ךװ⦐➂ך䠐鋅׾ろ׿דֶ׶ծ '0-*0ה׃ג植㖈׮黝欽٥麊欽׃竲ֽגְ ׷ֿה׾⥂ꥺׅ׷׮ךדכ֮׶תׇ׿կ

װ׏גֹ׋䎃邌

㼪Ⰵ畭劣鼅㹀䎃䎃䎃 0LUB "DUJWF%JSFDUPSZ 1SPMF.BOBHFS +BNG130 "[VSF"% 爡ⰻخ٦ؙٕٓؐس⻉

䎃䎃䎃 0LUB "[VSF"% 8JOEPXT &OUFSQSJTF 爡ⰻخ٦ٕ㼪Ⰵ ؎و؝؝ 爡ⰻخ٦ؙٕٓؐس⻉

㼪Ⰵ畭劣鼅㹀䎃䎃䎃 0LUB "[VSF"% 8JOEPXT &OUFSQSJTF J04"OESPJE 爡ⰻخ٦ٕ㼪Ⰵ

㼪Ⰵ畭劣鼅㹀䎃䎃䎃 0LUB "[VSF"% 爡ⰻخ٦ؙٕٓؐس⻉ 8JOEPXT &OUFSQSJTF J04"OESPJE

㼪Ⰵ畭劣鼅㹀䎃䎃䎃 0LUB "[VSF"% 爡ⰻخ٦ؙٕٓؐس⻉ 8JOEPXT &OUFSQSJTF J04"OESPJE

㼪Ⰵ畭劣鼅㹀䎃䎃䎃 0LUB "[VSF"% 爡ⰻخ٦ؙٕٓؐس⻉ 8JOEPXT &OUFSQSJTF J04"OESPJE

儗禸⴨ד鴬׏גְֻ

㼪Ⰵ畭劣鼅㹀䎃䎃䎃 0LUB "DUJWF%JSFDUPSZ 1SPMF.BOBHFS +BNG130 "[VSF"% 爡ⰻخ٦ؙٕٓؐس⻉

堣珏ך鼅㹀 ⣣呓⮚⯓ 欽鷿ח䘔ׄ׋ؕأةو؎ؤ اؿزؒٝآص،ؚٔٝ 곁㹏⦐➂䞔㜠ꠘ鋮

䎃כׄ׭鴟׶ ؒٝسه؎ٝزخ٦ٕ 1SPMF.BOBHFS

㼪Ⰵ畭劣鼅㹀䎃䎃䎃 0LUB "DUJWF%JSFDUPSZ 1SPMF.BOBHFS +BNG130 "[VSF"% 爡ⰻخ٦ؙٕٓؐس⻉

㼪Ⰵ畭劣鼅㹀䎃䎃䎃 0LUB "DUJWF%JSFDUPSZ 1SPMF.BOBHFS +BNG130 "[VSF"% 爡ⰻخ٦ؙٕٓؐس⻉

䎃⚥湍ַ׵䖓⼱חַֽג &UD

䎃⚥湍ַ׵䖓⼱חַֽג

㼪Ⰵ畭劣鼅㹀䎃䎃䎃 0LUB "DUJWF%JSFDUPSZ 1SPMF.BOBHFS +BNG130 "[VSF"% 爡ⰻخ٦ؙٕٓؐس⻉

㼪Ⰵ畭劣鼅㹀䎃䎃䎃 0LUB "DUJWF%JSFDUPSZ 1SPMF.BOBHFS +BNG130 "[VSF"% 爡ⰻخ٦ؙٕٓؐس⻉

䎃䖓⼱ַ׵䎃⵸⼱ 1SPMF.BOBHFS

䎃䖓⼱ַ׵䎃⵸⼱ %FWJDF(VBSE $SFEFOUJBM(VBSE

㼪Ⰵ畭劣鼅㹀䎃䎃䎃 0LUB "DUJWF%JSFDUPSZ 1SPMF.BOBHFS +BNG130 "[VSF"% 爡ⰻخ٦ؙٕٓؐس⻉

㼪Ⰵ畭劣鼅㹀䎃䎃䎃 0LUB "DUJWF%JSFDUPSZ 1SPMF.BOBHFS +BNG130 "[VSF"% 爡ⰻخ٦ؙٕٓؐس⻉

ٌثك٦ءّٝך竰竲

䚀䟘ד֮׷ֿה 瀉孡ד֮׷ֿה 額妜ד֮׷ֿה ٌثك٦ءّٝך竰竲

תה׭ 畭劣㼪Ⰵծ畭劣盖椚ծؒٝسه؎ٝزإُؗٔ ذ؍ծ*E1ծ爡ⰻخ٦ٕؚٕ٦فؐؑ،זו 䌴䎢ֻװ׏גֹ׋ 䚀䟘ծ瀉孡ծ額妜ד֮׶אבֽ׷

׫זׁ׿ד׮דֹ׷