Slide 1
Slide 1 text
ਫ୩ ਖ਼ܚ
ٕज़෦ ηΩϡϦςΟάϧʔϓ
εέʔϥϒϧͳηΩϡϦςΟ
ࢹج൫ͷ࡞Γํ
Slide 2
Slide 2 text
ࣗݾհɿਫ୩ਖ਼ܚ (@m_mizutani)
2
w લ৬
w ใηΩϡϦςΟؔ࿈ͷݚڀ։ൃ
w ηΩϡϦςΟΦϖϨʔγϣϯηϯλʔͷΞφϦετ
w ݄ΫοΫύουೖࣾ
w ٕज़෦ηΩϡϦςΟάϧʔϓάϧʔϓ
w ηΩϡϦςΟࢹΛத৺ʹηΩϡϦςΟؔ࿈ۀʹैࣄ
Slide 3
Slide 3 text
ηΩϡϦςΟ
ࢹͯ͠·͔͢ʁ
Slide 4
Slide 4 text
ηΩϡϦςΟରࡦͷશମ૾
4
ޚ ݕग़ ରԠ
੬ऑੑΛվળ͢Δ
ෆཁͳαʔϏεΛด͡Δ
ݖݶͷ੍ݶ
৵ೖ͞Εͯ͠·ͬͨࠟͷൃݟ
ෆਖ਼ͳαʔϏεར༻ͷൃݟ
ΠϯγσϯτϨεϙϯε
վળͷੳ
Slide 5
Slide 5 text
ηΩϡϦςΟରࡦͷશମ૾
5
ޚ ݕग़ ରԠ
੬ऑੑΛվળ͢Δ
ෆཁͳαʔϏεΛด͡Δ
ݖݶͷ੍ݶ
৵ೖ͞Εͯ͠·ͬͨࠟͷൃݟ
ෆਖ਼ͳαʔϏεར༻ͷൃݟ
ΠϯγσϯτϨεϙϯε
վળͷੳ
ࢹ
Slide 6
Slide 6 text
ͳͥࢹ͢Δͷ͔
6
w ޚͷઌΛߏ͑Δඞཁ͕͋Δ
w શͳޚ͋Γ͑ͳ͍
w ݕग़ͷํ͕ར༻ऀͷෛ୲͕গͳ͍
w աͳޚ੍͕ଟ͘ͳΓϢʔβϏϦςΟΛ્͢Δ
w ޚޡͬͯಈ࡞ͨ͠߹ͷӨڹେ͖͍
Slide 7
Slide 7 text
ຊͷτϐοΫɿεέʔϥϒϧͳࢹ
7
w εέʔϥϒϧͱ
w αʔϏεͷن͕େ͖͘ͳͬͯରԠͰ͖Δ
w ࢹ͢Δର͕૿͑ͯରԠͰ͖Δ
w Կ͕ࠔΔͷʁ
w ෳαʔϏεͱͷ݁߹
w σʔλྲྀྔͷ૿Ճ
w Ξϥʔτʢޡݕग़ؚΉʣͷରԠ ࠓ͜͜ʹ
Slide 8
Slide 8 text
ηΩϡϦςΟࢹʹ͓͚Δফ
8
Ξϥʔτͷରʹͳͬͨ1$
ΛௐͯΈ͚ͨͲ݁ہԿ͕͋ͬ
ͨͷ͔Α͘Θ͔Βͳ͔ͬͨʜ
8FCࠂͷεΫϦϓτ͕
߈ܸͱఆ͞Ε͍ͯͨʜ
ϦϞʔτϫʔΫͷࣾһͷ
ΞΫηε͕ෆਖ਼ϩάΠϯ
ͷஹީͱͯ͠ݕग़͞Εͨʜ
ϝʔϧαʔό͔Βͷ%/4
௨৴͕ෆਖ਼ͳ׆ಈͱఆ
͞Ε͍ͯͨʜ
ͭΒ͍
Ξϥʔτʹग़͖ͯͨαʔϏ
εͷ༰͕Α͘Θ͔Βͳ͍ɻ
Ͳ͏அ͢Εʜ
Slide 9
Slide 9 text
ফΛແͨ͘͢Ίʹ
9
w ݕͷϧʔϧͰෆཁͳΞϥʔτΛআ֎͢ΔΑ͏ௐ͢Εྑ͍͕ɺ
w ʮͪΌΜͱௐޙͷϧʔϧ͕ಈ͔͘Θ͔Βͳ͍ʜʯ
w ʮෆཁͱஅ͢ΔϩδοΫΛϧʔϧʹॻ͚ͳ͍ʜʯ
w ʮෆཁͱஅ͢ΔͨΊʹՃͰใΛूΊͳ͍ͱແཧʜʯ
Slide 10
Slide 10 text
Security as Code
10
Slide 11
Slide 11 text
Security as Code ʢϩάऩूͱੳʣ
11
w ݕʹؔΘΔॲཧΛίʔυԽ͢Δ͜ͱͰղܾ
w มߋޙͷϧʔϧΛςετՄೳ
w Ξϥʔτఆ݅ͷߴ͍هड़ྗ
w ࣗಈతͳՃσʔλऩूʹΑΔলྗԽ
w όʔδϣϯཧʹΑΔอकੑͷ্
Slide 12
Slide 12 text
3rd Party Services
ΞϥʔτॲཧͷύΠϓϥΠϯ
12
S3
ϩάσʔλ Ξϥʔτͷݕग़ ؔ࿈ใͷऩू ΞϥʔτͷධՁ ରԠঢ়گͷڞ༗
ؔ࿈ใͷू
Ξϥʔτͷ௨
3rd Party Services Internal Data Source
Slide 13
Slide 13 text
Ξϥʔτͷݕग़
13
w 4ʹసૹ͞Εͨϩά͔ΒΞϥʔτ
Λݕग़͢ΔͨΊͷॲཧ
w ηΩϡϦςΟϓϩμΫτ͕Ξϥʔτ
ͱͯ͠ൃใͨ͠ϩάͷநग़
w ͦͷଞɺϩάͰෆ৹ͳߦಈ͕͋ͬͨ
߹ʹΞϥʔτͱͯ͠ൃใ
Ξϥʔτݕग़-BNCEB
ʢݕग़ϧʔϧʣ
োൃੜ࣌ʹॲཧ࠶։Λ
༰қʹ͢ΔͨΊ,JOFTJT
%BUB4USFBNΛར༻
ฒྻॲཧͷͨΊͷ
%JTQBUDIFS
S3 Bucket SNS
S3 Bucket
S3 Bucket
SNS
SNS
Lambda Kinesis
data stream
Lambda
Lambda
Lambda
Lambda
SNS
Slide 14
Slide 14 text
͜͜ʹ۩ମྫ
14
ಛఆͷυϝΠϯ໊ΛؚΉ63-͔ͭɺ
ಛఆͷݕ໊Ͱ͋Εޡݕͱఆ͢Δ
ಛఆͷαΠτͰ0QFO44-ؔ࿈ͷ%P4͕ޡݕग़͞Εͯ͠·͏έʔε
Slide 15
Slide 15 text
15
ಛఆͷλάΛͭΠϯελϯεͰ͋Γɺ
ಛఆͷυϝΠϯ໊ʹؔ͢ΔൃใͰ͋Εޡݕͱఆ͢Δ
ϝʔϧαʔό͔Βෆਖ਼ར༻υϝΠϯͷ%/4ΫΤϦ͕ૹ৴͞ΕΔέʔε
Slide 16
Slide 16 text
Ξϥʔτؔ࿈ใͷऩू
16
w ֎෦͔Βͷऩू
w ྫʣϚϧΣΞؔ࿈ใαΠτ
w ྫʣαϯυϘοΫεαΠτ
w ෦͔Βͷऩू
w ྫʣؔ࿈Ϣʔβͷߦಈϩά
w ྫʣΞΫηεݩσόΠεͷใ
Ξϥʔτʹؔ࿈ͨ͠ϩά
ͷ౸ணΛͭͨΊͷ%FMBZ
ใऩूͷ݁ՌΛ
ͭͨΊͷ%FMBZ
Ξϥʔτݕͷ௨
ใऩूͷ݁ՌΛ
ͭͨΊʹ%FMBZ
ใऩू
-BNCEB
Lambda
Lambda Lambda
Lambda
Lambda
Lambda DynamoDB
SNS
SNS
Step Function
Step Function
Slide 17
Slide 17 text
DynamoDB
Step Function
Lambda Lambda Lambda
(1) Invoke (2) Invoke (3) Invoke
ΞϥʔτͷධՁ
17
w Ξϥʔτʴऩूͨؔ͠࿈ใ͔ΒϦ
εΫධՁͯ݁͠ՌΛ௨
w ෳͷใΛΈ߹ΘͤΔ͜ͱͰΑ
Γਫ਼ີͳධՁ͕Մೳ
w ίʔυͱͯ͠هड़͓ͯ͘͜͠ͱͰ୭
͕ͲͷΑ͏ͳҙਤͰϩδοΫ͕मਖ਼
͞Ε͔ͨΛѲ͍͢͠
௨ͳͲ
ϦεΫධՁ
-BNCEB
ใऩूޙʹൃಈ
ؔ࿈ใΛूੵ
ؔ࿈ใΛϚʔδ
ධՁྃͷ௨
Slide 18
Slide 18 text
͜͜ʹ۩ମྫ
18
ීஈͱҟͳΔΞΫηεΛݕग़͢ΔΞϥʔτ͔ͭɺ
ΫοΫύουॴ༗ͷσόΠεͰ͋ͬͨ߹ɺڴҖແ͠ͱධՁ͢Δ
௨ৗͱҟͳΔωοτϫʔΫɾϢʔβ͔ΒͷΞΫηεΛݕग़ͨ͠ΞϥʔτͷධՁ
Slide 19
Slide 19 text
·ͱΊ
19
w αʔϏεͷنछྨΛ૿͢ʹ͋ͨΓɺηΩϡϦςΟࢹσʔ
λͷछྨɾྲྀྔҎ֎ʹΞϥʔτରԠͷεέʔϥϏϦςΟΛߟ͑ͳ͍
ͱͳΒͳ͍
w ΞϥʔτݕɾੳɾධՁͷॲཧΛίʔυԽ͢Δ͜ͱʹΑͬͯɺ୲
ऀͷෛՙΛܰݮ͠ͳ͕ΒࢹۀΛܧଓͰ͖Δ
Slide 20
Slide 20 text
Thank you!!