Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
AWS, Immutable Infrastructure, and PCI
Search
Philip Corliss
September 01, 2016
Programming
0
110
AWS, Immutable Infrastructure, and PCI
Philip Corliss
September 01, 2016
Tweet
Share
More Decks by Philip Corliss
See All by Philip Corliss
Building a Platform on AWS
pcorliss
1
120
Developer Happiness - Building Systems & Tools
pcorliss
0
96
xss
pcorliss
1
320
Other Decks in Programming
See All in Programming
CNCF Project の作者が考えている OSS の運営
utam0k
6
710
社内フレームワークとその依存性解決 / in-house framework and its dependency management
vvakame
1
550
Djangoアプリケーション 運用のリアル 〜問題発生から可視化、最適化への道〜 #pyconshizu
kashewnuts
1
240
SwiftUI Viewの責務分離
elmetal
PRO
1
220
さいきょうのレイヤードアーキテクチャについて考えてみた
yahiru
3
740
2024年のkintone API振り返りと2025年 / kintone API look back in 2024
tasshi
0
220
Immutable ActiveRecord
megane42
0
140
ファインディの テックブログ爆誕までの軌跡
starfish719
2
1.1k
Introduction to kotlinx.rpc
arawn
0
670
第3回関東Kaggler会_AtCoderはKaggleの役に立つ
chettub
3
950
Open source software: how to live long and go far
gaelvaroquaux
0
630
Lottieアニメーションをカスタマイズしてみた
tahia910
0
120
Featured
See All Featured
For a Future-Friendly Web
brad_frost
176
9.5k
YesSQL, Process and Tooling at Scale
rocio
171
14k
The Cult of Friendly URLs
andyhume
78
6.2k
Optimizing for Happiness
mojombo
376
70k
Helping Users Find Their Own Way: Creating Modern Search Experiences
danielanewman
29
2.4k
Producing Creativity
orderedlist
PRO
343
39k
Raft: Consensus for Rubyists
vanstee
137
6.8k
Product Roadmaps are Hard
iamctodd
PRO
50
11k
Building Flexible Design Systems
yeseniaperezcruz
328
38k
Measuring & Analyzing Core Web Vitals
bluesmoon
6
240
Designing for humans not robots
tammielis
250
25k
Rails Girls Zürich Keynote
gr2m
94
13k
Transcript
AWS, IMMUTABLE INFRASTRUCTURE, AND PCI Slides: https://speakerdeck.com/pcorliss/
WHO IS THIS ? • Philip Corliss • @pcorliss (Gmail,
Twitter, Github) • Cheese Enthusiast • Engineering Manager • Braintree
BraintreePayments.com
Where We Were/Are • Physical Datacenters • Level 1 PCI
DSS Compliant Service Provider
AWS, The Natural Choice • PCI 1 Firewalls, VPCs •
PCI 9 Physical Access • PCI 10.1 Audibility
Immutable Infrastructure • PCI 6.1 Security Patches • PCI 11.5
File Integrity
Scoped Access • PCI 7 Restrict Access
CVVs • PCI 3.2 Do Not Store CVVs
Secrets & KMS
Greenfield Development
S3 Isn’t Near-Line Storage PCI 10.7 Retain audit trail history
for at least one year, with a minimum of three months immediately available for analysis (for example, online, archived, or restorable from backup).
VPCs • PCI 4: Encrypt Data Across Public Networks
Huge Wins
Evolving Platform
WHO’S THIS GUY? • Philip Corliss • @pcorliss (Gmail, Twitter,
Github) • Cheese Enthusiast • Engineering Manager • Braintree
pcorliss
utam0k
vvakame
kashewnuts
elmetal
yahiru
tasshi
megane42
starfish719
arawn
chettub
gaelvaroquaux
tahia910
brad_frost
rocio
andyhume
mojombo
danielanewman
orderedlist
vanstee
iamctodd
yeseniaperezcruz
bluesmoon
tammielis
gr2m
