Upgrade to Pro — share decks privately, control downloads, hide ads and more …

reinforce-2019-recap-lt

ryo nakamaru
July 30, 2019
Programming
2
4k

 reinforce-2019-recap-lt

ryo nakamaru

July 30, 2019
Tweet

More Decks by ryo nakamaru

See All by ryo nakamaru
AWSで楽をするサービスメッシュ入門/appmesh-trial
pottava
1
990
ScaleShift-jp-2019-summer
pottava
1
170
Firecracker とは何か/what is Firecracker
pottava
11
4.7k
ハイブリッド並列 on Kubernetes/hybrid-parallel-program-on-kubernetes
pottava
1
320
AWS Fargate + Code 兄弟で始める継続的デリバリー / Continuous Delivery with AWS Fargate and Code brothers
pottava
12
2.8k
Singularity と NVIDIA GPU Cloud で作る ハイブリッド機械学習環境の構築 / Building a hybrid environment for Machine Learning with Singularity and NGC
pottava
3
990
明日から始めるちょい足し λ / get-started-with-aws-lambda
pottava
4
2.2k
NGC と Singularity によるハイブリッド機械学習環境 / A hybrid environment for Machine Learning with NGC and Singularity
pottava
0
410
NGC × Singularity での機械学習環境/MachineLearning environment with NGC and Singularity
pottava
2
550

Other Decks in Programming

See All in Programming
SREは何を目指すのか
paper2
5
1.3k
Android端末のNFCを無効化しようとしてダメだった話
mitchan
1
2.7k
NOT A HOTEL
AIコンシェルジュ「Kevin」の開発秘話
codehex
2
2.1k
コルーチンのエラーをテストするためのTips / Tips for testing Kotlin Coroutine errors
tkmnzm
0
150
いろいろな経験を記事にまとめてみたことで学んだこと
k_takasaki
2
560
年間版1秒動画2023 大量配信の裏側 - MIXI TECH CONFERENCE 2023 DAY1
haman29
2
710
UICollectionView Compositional Layout
usamik26
0
180
プルリク毎の検証環境を建てよう
takashimiyahara
0
2.7k
オンプレミスK8s基盤をまるごと VMで仮想化した検証環境とその活用
yamatcha
1
450
分岐を低減するinterface設計と発想の転換 / interface_design_idea.pdf
minodriven
11
3.1k
DevRel/Japan 2023 - 1つの事業部だけで行う DevRel とは
hcrane
0
260
クラウドネイティブ時代のコンテナ環境におけるJavaアプリケーションのメトリクス・ログ・トレースモニタリング
shintanimoto
4
1.3k

Featured

See All Featured
Into the Great Unknown - MozCon
thekraken
4
370
Atom: Resistance is Futile
akmur
256
24k
ピンチをチャンスに:未来をつくるプロダクトロードマップ #pmconf2020
aki_iinuma
31
20k
Statistics for Hackers
jakevdp
785
210k
What the flash - Photography Introduction
edds
64
10k
Six Lessons from altMBA
skipperchong
15
2.4k
Pencils Down: Stop Designing & Start Developing
hursman
114
10k
Documentation Writing (for coders)
carmenintech
51
3k
Raft: Consensus for Rubyists
vanstee
130
5.7k
Git: the NoSQL Database
bkeepers
PRO
419
60k
Designing with Data
zakiwarfel
91
4.2k
Sharpening the Axe: The Primacy of Toolmaking
bcantrill
7
650

Transcript

  1. How do you reinforce yourself ?
    AWS re:Inforce 2019 re:Cap @ July 30th
    Ryo Nakamaru, SUPINF Inc.

    View Slide

  2. தؙ ྑ @pottava
    - SUPINF ͱ͍͏डୗ։ൃӡ༻ձࣾͰΤϯδχΞͯ͠·͢
    - ւ֎ΧϯϑΝϨϯε͸೥ 2 ճఔ౓
    - ӳޠ͸ͣͬͱ೰Έͷछ
    Profile

    View Slide

  3. SUPINF Inc
    !3
    ※ Mac ͷࣙॻΑΓҾ༻

    View Slide

  4. SUPINF Inc
    !4
    ※ Mac ͷࣙॻΑΓҾ༻
    ηΩϡϦςΟ
    ؔ܎ͳ͍ͷ͔ɾɾ

    View Slide

  5. SUPINF Inc
    5
    re:Inforce Ͳ͏ͩͬͨͷ

    View Slide

  6. SUPINF Inc
    6
    ࠷ͬߴͰͨ͠ɻ
    ΄Μͱָ͔ͬͨ͠

    View Slide

  7. SUPINF Inc
    7
    ɾԿ͕࠷ߴͩͬͨͷ͔ recap
    ɾདྷ೥ώϡʔετϯʹ޲͚ͯ

    View Slide

  8. SUPINF Inc
    ࠷ߴͩͬͨ͜ͱ

    View Slide

  9. SUPINF Inc
    ࠷ߴͦͷɹ (AWS ͷ) ॏཁ֓೦ͷཧղ͕ਂ·Δ
    9
    1:
    ໨ࢦ͢΂͖͸ɺϏδωεͷΞδϦςΟ ͱ Ψόφϯε Λ ཱ྆͢Δ ͜ͱ

    https://www.youtube.com/watch?v=2t-VkWt0rKk

    View Slide

  10. SUPINF Inc
    10
    ͦͷͨΊʹ͸ɺΨʔυϨʔϧ ͱ ϥϯσΟϯάκʔϯ ͑͋͞Ε͹͍͍ɻ
    ͋ͱ͸ϓϩδΣΫτνʔϜʹɺࣗ༝ʹ૸ΒͤΑ͏ʂ
    https://www.youtube.com/watch?v=2t-VkWt0rKk

    View Slide

  11. SUPINF Inc
    11
    ग़య: ϏϧμʔʹඞཁͳηΩϡϦςΟ͸ʮ໳൪ʯͰ͸ͳ͘ʮΨʔυϨʔϧʯ
    https://weekly.ascii.jp/elem/000/000/425/425592/

    View Slide

  12. SUPINF Inc
    12
    ֓೦Λ࠲ֶͰֶΜͩΒ

    View Slide

  13. SUPINF Inc
    13
    ໰. AWS ͰͷΨʔυϨʔϧ࣮૷ͱͯ͠ɺاۀͷηΩϡϦςΟϙϦγʔΛ
    ʮAWS Organizations ͷ SCPʯ΍ʮIAM ͷ Permissions Boundaryʯͷ
    ซ༻Ͱ࣮ݱͰ͖ͦ͏Ͱ͢ɻ͋ͳͨͳΒɺͲͷΑ͏ʹ࣮૷͠·͔͢ʁ

    View Slide

  14. SUPINF Inc
    14
    https://identity-round-robin.awssecworkshops.com/permission-boundaries/presentation.pdf
    ೤͍͏ͪʹɺϫʔΫγϣοϓͰమ͕ଧͯΔɻʢΘ͔Βͳ͍͜ͱ͕Θ͔Δʣ

    View Slide

  15. SUPINF Inc
    AWS ΧϯϑΝϨϯεͷ͓͢͢Ί
    15
    • ηογϣϯΑΓ΋ϫʔΫγϣοϓ ε
    ‣ ࡢࠓɺ΄ͱΜͲͷηογϣϯ͸ YouTube Ͱެ։͞Ε·͢
    ‣ Ϣʔβࣄྫ ΍ ೤͍ؾ࣋ͪΛݺͼى͍ͨ͜͠ ৔߹͸ผ
    ‣ ਓؾ ϫʔΫγϣοϓ͙͢ຒ·Δ ͷͰ஫ҙʂʂ
    • ηογϣϯΑΓ΋ϒʔεΛ·ΘΖ͏

    View Slide

  16. SUPINF Inc
    ࠷ߴͦͷɹ ະདྷͷ࿩͕Ͱ͖Δ / ະདྷ͕Έ͑Δ
    16
    2:
    AWS ύʔτφʔاۀ͸͋ΔҙຯɺAWS ΑΓଟগઌߦ͍ͯ͠Δ͔΋ʁʁ

    View Slide

  17. SUPINF Inc
    17
    ʮ͔ͨ͠ʹ͜Ε͸ۀ຿ָ͕ʹͳΔ ʯ
    ʮ͜ͷػೳɺAWS དྷ೥͖ͩͯͦ͠͏ʯ

    View Slide

  18. SUPINF Inc
    18
    ͑ʁ೔ຊʹ୅ཧళͳ͍ͷʁ
    ࢖ͬͯΈ͍ͨΜ͚ͩͲʁ·ͣ͸͓ࢼ͠Ͱɻ
    ͍͍Αɺ͡Ό͋དྷि NDA ݁ͼͭͭ
    ΧϯϑΝϨϯείʔϧͰઆ໌ͤͯ͞ʂ
    ϒʔεͰͷΑ͋͘ΔྲྀΕ

    View Slide

  19. SUPINF Inc
    19
    ͓΋͠Ζ͍ 2 ࣾΛ͝঺հ

    View Slide

  20. SUPINF Inc
    20

    View Slide

  21. SUPINF Inc
    Aporeto
    21
    • Identity-based access control ε
    ‣ ΦϯϓϨ͔ΒΫϥ΢υͰͷαʔόʔϨε·ͰɻϋΠϒϦου΋ɻ
    ‣ ಛఆͷϥϕϧ͕͍ͭͨϦιʔεʹͷΈΞΫηεΛڐՄ
    ‣ γϛϡϨʔγϣϯ / ݕূ / ຊ൪ར༻ͷ҆৺εςοϓ
    • ωοτϫʔΫͷ؂ࢹͱڧ੍ ε
    ‣ ϗετʹΠϯετʔϧ͢Δ Enforcer ͕શ௨৴Λ೺Ѳɾ੍ޚ
    ‣ ՄࢹԽ΍τϨʔε͕ Web UI ͔Β͔ΜͨΜʹ

    View Slide

  22. SUPINF Inc
    22
    Ϋϥ΢υ࣌୅ͷΨόφϯεɾɾʁ
    → ΄΅΄΅ AWS ͷ֓೦ͷԆ௕
    ɹʢ͍͍ҙຯͰͶɻ૬ੑΑͦ͞͏ʣ

    View Slide

  23. SUPINF Inc
    23
    AWS re:Inforce 2019: Governance for the Cloud Age (DEM12-R1)
    https://youtu.be/y3WmHnavuN8

    View Slide

  24. SUPINF Inc
    དྷ೥ͷώϡʔετϯ
    Ͱ΋ָ͠ΉͨΊʹ

    View Slide

  25. SUPINF Inc
    25
    ϫʔΫγϣοϓࢀՃ΍ AWS ͷதͷਓ΁
    ࣭໰͍ͨ͠ɺ࿩Λཧղ͍ͨ͠

    View Slide

  26. SUPINF Inc
    Tips ͦͷɹ ࣄલʹ४උ͢Δ
    26
    1:
    • AWS ͷւ֎ΧϯϑΝϨϯε҆͘͸ͳ͍໰୊
    ‣ ೔ຊͰ΋Θ͔Δ͜ͱ͸ ௐ΂͍ͯ͘
    ‣ Security Specialty ͱ SA Pro ΋ͬͯͯ΋Α͏΍͘ Hello Worldʁ
    • ϒʔεΛճΔ
    ‣ ࣗ෼ͷࣄۀͱࠔ͍ͬͯΔϙΠϯτΛ ӳޠͰ આ໌ͯ͠ΈΔ
    ‣ ࿩Λฉ͍ͯΈ͍ͨ SaaS ʹࣄલʹΞϙΛͱͬͯΈΔ

    View Slide

  27. SUPINF Inc
    Tips ͦͷɹ ೔ຊʹ͍Δ͍͋ͩʹਓ຺Λ޿͛Δ
    27
    2:
    • ࠓ೔͸νϟϯεͰ͢
    ‣ AWS Japan ͞Μ͔Βͷ৘ใൃ৴ΛੵۃతʹऔΓʹ
    ‣ ͢Ͱʹ࣮ફ͍ͯ͠Δਓ͔Β΍ΓํΛฉ͍ͯ͠·͏
    • ݱ஍
    ‣ Ϙον൧ͷϦεΫ
    ‣ ঺հͰΞϙ͕ೖΔͱ΍͸Γɺձ͍΍͍͢ʢ͋ͨΓ·͑ʣ

    View Slide

  28. SUPINF Inc
    28
    ͝੩ௌ͋Γ͕ͱ͏͍͟͝·ͨ͠ :)
    ࢀߟɿ
    • AWS re:Inforce 2019: Using AWS Control Tower to Govern Multi-
    Account AWS Environments (GRC313-R) https://www.youtube.com/
    watch?v=2t-VkWt0rKk
    • ϏϧμʔʹඞཁͳηΩϡϦςΟ͸ʮ໳൪ʯͰ͸ͳ͘ʮΨʔυϨʔϧʯ
    - िץΞεΩʔ https://weekly.ascii.jp/elem/000/000/425/425592/
    • Identity Round Robin Workshop Permissions Boundaries https://
    identity-round-robin.awssecworkshops.com/permission-boundaries/
    presentation.pdf
    • Aporeto https://www.aporeto.com
    • Turbot https://turbot.com

    View Slide

  29. SUPINF

    View Slide

  30. Our Works
    ϏδωεΤϦΞͷ͝঺հ
    ্ྲྀϑΣʔζ͔ΒɺԼྲྀϑΣʔζ
    ·Ͱ ͢΂ͯड͚Δࣄ͕ՄೳͰ͢ɻ
    SES
    ฐࣾͰߏஙޙ͸΋ͪΖΜɺطʹՔ
    ಇ͍ͯ͠ΔαʔϏεʹ͍ͭͯ΋
    αϙʔτ͠·͢ɻ
    MSP
    ओʹӦۀಉߦͱͯ͠ͷɹ
    ٕज़తͳαϙʔτΛ͍ͯ͠·͢ɻ
    Sales Support
    ॳظߏஙͷࢼࢉ෦෼͚ͩͰ͸ͳ͘
    αʔόʔҠߦɾϓϩάϥϜҠߦ΋
    ରԠ͠·͢ɻ
    POC
    PMOʹ܎Δ෦෼͸΋ͪΖΜͷ͜
    ͱɺࣾ಺εΩϧΛߴΊ͍ͨͱݴͬ
    ͨߨश΋ߦ͍ͬͯ·͢ɻ
    Consulting

    View Slide

  31. (C) SUPINF Inc., All Rights Reserved. < CONFIDENTIAL >
    "84ϚωʔδυαʔϏεΛ౷߹͢Δ͜ͱͰ֦ுੑ
    ٴͼӡ༻ੑೳͷߴ͍γεςϜΛ࣮ݱ
    $PHOJUPɺ"1*(BUFXBZʹΑΔೝূج൫
    424ɺ-BNCEBɺ"84#BUDIΛ
    ૊Έ߹Θͤͨ൚༻δϣϒ؅ཧγεςϜ
    ΦϯϓϨϛεͱͷϋΠϒϦου؀ڥ
    ฐࣾ୲౰ΤϦΞ
    ⾣طଘۀ຿γεςϜͷ3&45"1*Խ
    ⾣ϓϥοτϑΥʔϜͷઃܭ ߏங
    Ϛϧνςφϯτ / SaaS ܕ - API ϓϥοτϑΥʔϜ

    View Slide

  32. Kubernetes ʹΑΔϋΠϒϦουػցֶश؀ڥ
    (C) SUPINF Inc., All Rights Reserved. < CONFIDENTIAL >
    ΦϯϓϨϛε༏ઌɺࣾ಺γεςϜͱͷ౷߹
    %PDLFSϨδετϦϑΝΠϧετϨʔδ͸ΦϯϓϨ
    ηΩϡϦςΟϨϕϧʹԠͨ͡ϑΝΠϧసૹ੍ޚ
    %(9LTࣾ಺ೝূγεςϜ౷߹ֶशج൫
    "1*ͳͲΛ௨ͨ݁͡Ռ΍Ϧιʔεঢ়ଶͷՄࢹԽ
    εέʔϧઌͱͯ͠"84ͷ(16αʔόʔΛར༻
    ,VCFSOFUFTͷϊʔυͱͯ͠%9ઌͷΫϥ΢υΛ
    ฐࣾ୲౰ΤϦΞ
    ⾣Πϯϑϥͷઃܭ ߏங
    corporate data center
    AWS cloud
    ֶशΫϥελ
    ֶशΫϥελ
    &
    ΦϯϓϨϛε؀ڥ
    ߴੑೳετϨʔδ

    View Slide

  33. ౦ژ౎ौ୩۠ौ୩2-11-5
    03-6427-6517
    https://www.facebook.com/supinf/
    @supinf_pr
    CONTACT US
    And thank you for your time

    View Slide