Slide 1
Slide 1 text
ϚωʔϑΥϫʔυͷ
ೝূج൫ͷݱࡏ
גࣜձࣾϚωʔϑΥϫʔυ
@nhosoya
ࡉ୩थ
2023-12-19
Slide 2
Slide 2 text
@nhosoya ʢࡉ୩थʣ
גࣜձࣾϚωʔϑΥϫʔυ
IDαʔϏε։ൃ෦ ෦
2015 -
ϚωʔϑΥϫʔυMEͷ։ൃ
2018 - ݱࡏ
ೝূج൫ͷ։ൃ <- ࠓ͜ͷ
Slide 3
Slide 3 text
ϚωʔϑΥϫʔυͷαʔϏε
Slide 4
Slide 4 text
͜͜ʹςΩετ͕ೖΓ·͢͜͜ʹςΩετ͕
͜͜ʹςΩετ͕ೖΓ·͢͜͜ʹςΩετ͕
͜͜ʹςΩετ͕ೖΓ·͢͜͜ʹςΩετ͕
͜͜ʹςΩετ͕ೖΓ·͢͜͜ʹςΩετ͕
Slide 5
Slide 5 text
ೝূج൫ͷ
Slide 6
Slide 6 text
ͬ͘͟Γද
2012 ϚωʔϑΥϫʔυ ME αʔϏε։࢝
2013 - ৭ʑͳαʔϏε͕ϦϦʔε
2017 ڞ༗DBΞʔΩςΫνϟͷݶք
2018ʢ1݄ʣ ೝূج൫։ൃ։࢝
2018ʢ12݄ʣ ೝূج൫ϦϦʔε
2020 શαʔϏε͕ೝূج൫ͷҠߦྃ
Slide 7
Slide 7 text
ͬ͘͟Γද
2012 ϚωʔϑΥϫʔυ ME αʔϏε։࢝
2013 - ৭ʑͳαʔϏε͕ϦϦʔε
2017 ڞ༗DBΞʔΩςΫνϟͷݶք
2018ʢ1݄ʣ ೝূج൫։ൃ։࢝
2018ʢ12݄ʣ ೝূج൫ϦϦʔε
2020 શαʔϏε͕ೝূج൫ͷҠߦྃ
Slide 8
Slide 8 text
ڞ༗DBΞʔΩςΫνϟͷݶքʢ- 2017ʣ
• ࿈͢ΔγεςϜো
• ਐԽ͠ͳ͍ೝূ
• ݴޠɺΠϯϑϥͷ੍
Slide 9
Slide 9 text
ͬ͘͟Γද
2012 ϚωʔϑΥϫʔυ ME αʔϏε։࢝
2013 - ৭ʑͳαʔϏε͕ϦϦʔε
2017 ڞ༗DBΞʔΩςΫνϟͷݶք
2018ʢ1݄ʣ ೝূج൫։ൃ։࢝
2018ʢ12݄ʣ ೝূج൫ϦϦʔε
2020 શαʔϏε͕ೝূج൫ͷҠߦྃ
Slide 10
Slide 10 text
ೝূج൫Λ࡞Γ࢝ΊΔʢ20181݄͝Ζʣ
w 0QFO*%$POOFDUͷ࠾༻
w طଘαʔϏεͷೝূج൫ͷҠߦํ
w *%BB4WTࣗ࡞ೝূج൫
Slide 11
Slide 11 text
OpenID Connect ͷ࠾༻
w αʔϏεೝূج൫ʹೝূΛҕৡ͢Δ͚ͩ
Slide 12
Slide 12 text
طଘαʔϏεͷೝূج൫ͷҠߦํ
w ֤αʔϏε͕ҙͷλΠϛϯάͰೝূج൫ରԠͰ͖ΔΑ͏ʹ
ڞ༗%#ͷσʔλॻ͖ࠐΈܧଓͯ͠ޓੑΛอͭ
Slide 13
Slide 13 text
IDaaS vs ࣗ࡞ೝূج൫
w ࣗ࡞Λબͨ͠
w ίετ
w ϕϯμʔϩοΫΠϯͷճආ
w ෳࡶͳཁ݅ͷରԠͷॊೈੑ
w *%ͷΤΩεύʔτͱͷ૬ஊ
ʢ0QFO*%'PVOEBUJPO+BQBOͳͲʣ
Slide 14
Slide 14 text
ͬ͘͟Γද
2012 ϚωʔϑΥϫʔυ ME αʔϏε։࢝
2013 - ৭ʑͳαʔϏε͕ϦϦʔε
2017 ڞ༗DBΞʔΩςΫνϟͷݶք
2018ʢ1݄ʣ ೝূج൫։ൃ։࢝
2018ʢ12݄ʣ ೝূج൫ϦϦʔε
2020 શαʔϏε͕ೝূج൫ͷҠߦྃ
Slide 15
Slide 15 text
ೝূج൫͕Ͱ͖ͨ͜ͱͰਐԽͨ͠ೝূ
• TOTP Ͱͷ 2FA ʢ2018ʣ
• Sign in with Apple ʢ2020ʣ
• Τϯϓϥ͚ SAML SSO ʢ2020ʣ
• WebAuthn ରԠʢ2022ʣ/ ύεΩʔରԠʢ2023ʣ
5લ·Ͱ࣌ͰϨΨγʔͳೝূ͔͠ఏڙͰ͖͍ͯͳ͔ͬ
ͨͷʹɺࠓͰ࠷৽ͷೝূΛ͍ͪૣ͘ఏڙͰ͖ΔΑ͏ʹͳͬͨ
Slide 16
Slide 16 text
·ͱΊ
w ؒͰੵٕͬͨज़తෛ࠴ɺ·ͬͨ͘ਐԽ͠ͳ͍ೝূ
w ͔͚ͯೝূج൫Λࣗ࡞ͯ͠ॳظϦϦʔε
w ͔͚ͯطଘαʔϏεͷೝূॲཧΛͯ͢ೝূج൫ʹࡌͤସ͑ྃ
ʢ͞ΒʹܦͬͨݱࡏͰೝূҎ֎ͷͱ͜ΖͰ%#ڞ༗͕͓ͬͯΓʹશղফ༧ఆʣ
w ৫ʹ*%νʔϜཱ͕֬ͨ͠
w ೝূͷϞμϯԽɺ.645͔Β8*--
w 0QFO*%4VNNJU5PLZPʹߦ͘ͱ͍͍ͱࢥ͏
Slide 17
Slide 17 text
Thank you!