Amazon inspector で自動セキュリティ診断 / Automatic security diagnostics with Amazon inspector

Slide 1

Slide 1 text

Amazon Inspector Ͱ ࣗಈηΩϡϦςΟ਍அ גࣜձࣾβούϥε @serima / ࣲࢁ ྮ

Slide 2

Slide 2 text

ࣗݾ঺հ • ىۀˠ·͙·͙ˠάϦʔˠβούϥε • βούϥεೖࣾ 1 ೥ܦͬͨ • αʔόαΠυΤϯδχΞ • Πϯϑϥ΋΍͍ͬͯ·͢

Slide 3

Slide 3 text

Rint

Slide 4

Slide 4 text

AWS ࢖ͬͯ·͢ • βούϥεͰ͸ɺҰ෦αʔϏεͰ AWS Λར༻ • EC2/ELB/Route 53/S3/RDS/ElastiCache ౳ • ελϯμʔυͳߏ੒

Slide 5

Slide 5 text

੬ऑੑ ಡΊͳ͍

Slide 6

Slide 6 text

੬ऑੑ • γεςϜͷ҆શ্ͷܽؕ • ηΩϡϦςΟϗʔϧ • ์͓ͬͯ͘ͱɺ͜ΕΛಥ͔Εͯඃ֐Λड͚Δ Մೳੑ͕͋Δ

Slide 7

Slide 7 text

ຖिͷΑ͏ʹݟ͔ͭΔ੬ऑੑ

Slide 8

Slide 8 text

৘ใݯ • JPCERT • IPA • Wordpress ެࣜαΠτ • PHP ެࣜαΠτ • ଞʹ΋͍Ζ͍Ζ…

Slide 9

Slide 9 text

No content

Slide 10

Slide 10 text

CVE • Common Vulnerabilities and Exposures • ڞ௨੬ऑੑࣝผࢠ • ถࠃͷMITRE͕ࣾఏڙ͍ͯ͠Δ੬ऑੑ৘ใ σʔλϕʔε • CVE-ID ͸ҰҙʹৼΒΕɺੈքڞ௨

Slide 11

Slide 11 text

ηΩϡϦςΟνΣοΫɺ ͯ͠·͔͢ʁ

Slide 12

Slide 12 text

Amazon Inspector • 2016೥5݄ʹҰൠར༻։࢝ • EC2 Πϯελϯεͷ੬ऑੑΛݕ஌ͯ͘͠ΕΔ αʔϏε

Slide 13

Slide 13 text

No content

Slide 14

Slide 14 text

No content

Slide 15

Slide 15 text

ԿͷνΣοΫ͕Ͱ͖Δͷ͔ • Common Vulnerabilities and Exposures • CIS Operating System Security Conﬁguration Benchmarks • Security Best Practices • Runtime Behavior Analysis

Slide 16

Slide 16 text

खॱ • Inspector ༻ͷϩʔϧΛ࡞੒͢Δ • ର৅ͱ͢Δ EC2 ΠϯελϯεʹλάΛઃఆ • σʔϞϯΛΠϯετʔϧ • ධՁςϯϓϨʔτͷ࡞੒ • Ͳͷλά͕͍ͭͨΠϯελϯεʹ͍࣮ͭͯߦ͢Δͷ͔ • ԿͷηΩϡϦςΟνΣοΫΛߦ͏ͷ͔ • ࣮ߦ

Slide 17

Slide 17 text

No content

Slide 18

Slide 18 text

$ curl -O https:// d1wk0tztpsntt1.cloudfront. net/linux/latest/install $ sudo bash install

Slide 19

Slide 19 text

No content

Slide 20

Slide 20 text

ࢼݧ༻ʹ OpenSSL ͷ όʔδϣϯ͕গ͠ݹ͍ ΠϯελϯεΛ༻ҙ

Slide 21

Slide 21 text

No content

Slide 22

Slide 22 text

݁Ռ

Slide 23

Slide 23 text

ͦΕͧΕʹ͍ͭͯৄࡉઆ໌ͱରॲ๏͕ࢀরͰ͖Δ

Slide 24

Slide 24 text

Ϧϕϯδ ͱΓ͋͑ͣॏཁ౓ High ͷ΋ͷ͸ͳ͘ͳͬͨ

Slide 25

Slide 25 text

֦͕Γͱͯ͠͸ • Amazon SNS ରԠ͍ͯ͠ΔͷͰɺ׬ྃ࣌ʹ Slack ͳͲʹ௨஌ • ΋ͪΖΜ SDK ΋ެ։͞Ε͍ͯΔͷͰɺఆظత ʹࣗಈ࣮ߦͤ͞Δ͜ͱ΋Մೳ  ʢࠓͷͱ͜Ζίϯιʔϧ͔ΒͰ͖Δػೳ͸ͳ ͛͞ʣ

Slide 26

Slide 26 text

҆৺ɾ҆શͳ։ൃΛ • ͱ͸͍͑ɺ͜Ε͚ͩͰ͸ෆे෼ • ੬ऑੑʹରͯ͠ɺҰఆͷอݥΛ͔͚Δ • χϡʔεΛνΣοΫͯ͠ɺద੾ͳରԠΛʂ