Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
AWS, Immutable Infrastructure, and PCI
Search
Philip Corliss
September 01, 2016
Programming
0
99
AWS, Immutable Infrastructure, and PCI
Philip Corliss
September 01, 2016
Tweet
Share
More Decks by Philip Corliss
See All by Philip Corliss
Building a Platform on AWS
pcorliss
1
110
Developer Happiness - Building Systems & Tools
pcorliss
0
91
xss
pcorliss
1
310
Other Decks in Programming
See All in Programming
Komplexe Oberflächen mit SVG und der Web Animation API
joergneumann
0
680
見た目から始める生産性向上
ikumatadokoro
10
1.5k
スキーマ駆動開発による品質とスピードの両立 - 私達は何故、スキーマを書くのか
kentaroutakeda
0
180
Micro Frontends for Java Microservices - Utah JUG 2024
mraible
PRO
1
110
Exploring the Implementation of “t.Run”, “t.Parallel”, and “t.Cleanup”
akarin
1
140
Milestoner
bkuhlmann
1
420
Fast JSX: Don't clone props object #28768
yossydev
1
200
TCAとKMPを用いた新規動画配信アプリ 「ABEMA Live」の設計
tomu28
2
130
はてなにおける CSS Modules、及び CSS Modules に足りないもの / CSS Modules in Hatena, and CSS Modules missing parts
mizdra
7
990
Apache Hive 4 on Treasure Data
ryukobayashi
1
440
StoreKit2によるiOSのアプリ内課金のリニューアル
kangnux
0
130
効率化に挑戦してみたらモバイル開発が少し快適になった話
ryunakayama
0
140
Featured
See All Featured
How to Create Impact in a Changing Tech Landscape [PerfNow 2023]
tammyeverts
21
1.6k
5 minutes of I Can Smell Your CMS
philhawksworth
199
19k
GraphQLの誤解/rethinking-graphql
sonatard
56
9.3k
Understanding Cognitive Biases in Performance Measurement
bluesmoon
12
1k
Keith and Marios Guide to Fast Websites
keithpitt
408
22k
The Invisible Side of Design
smashingmag
294
49k
Design and Strategy: How to Deal with People Who Don’t "Get" Design
morganepeng
117
18k
Designing with Data
zakiwarfel
96
4.8k
Design by the Numbers
sachag
274
18k
Automating Front-end Workflow
addyosmani
1357
200k
The Cost Of JavaScript in 2023
addyosmani
21
3.9k
Build The Right Thing And Hit Your Dates
maggiecrowley
25
2k
Transcript
AWS, IMMUTABLE INFRASTRUCTURE, AND PCI Slides: https://speakerdeck.com/pcorliss/
WHO IS THIS ? • Philip Corliss • @pcorliss (Gmail,
Twitter, Github) • Cheese Enthusiast • Engineering Manager • Braintree
BraintreePayments.com
Where We Were/Are • Physical Datacenters • Level 1 PCI
DSS Compliant Service Provider
AWS, The Natural Choice • PCI 1 Firewalls, VPCs •
PCI 9 Physical Access • PCI 10.1 Audibility
Immutable Infrastructure • PCI 6.1 Security Patches • PCI 11.5
File Integrity
Scoped Access • PCI 7 Restrict Access
CVVs • PCI 3.2 Do Not Store CVVs
Secrets & KMS
Greenfield Development
S3 Isn’t Near-Line Storage PCI 10.7 Retain audit trail history
for at least one year, with a minimum of three months immediately available for analysis (for example, online, archived, or restorable from backup).
VPCs • PCI 4: Encrypt Data Across Public Networks
Huge Wins
Evolving Platform
WHO’S THIS GUY? • Philip Corliss • @pcorliss (Gmail, Twitter,
Github) • Cheese Enthusiast • Engineering Manager • Braintree
pcorliss
joergneumann
ikumatadokoro
kentaroutakeda
mraible
akarin
bkuhlmann
yossydev
tomu28
mizdra
ryukobayashi
kangnux
ryunakayama
tammyeverts
philhawksworth
sonatard
bluesmoon
keithpitt
smashingmag
morganepeng
zakiwarfel
sachag
addyosmani
maggiecrowley
