Upgrade to Pro — share decks privately, control downloads, hide ads and more …

reinforce-2019-recap-lt

ryo nakamaru
July 30, 2019
Programming
2
4k

 reinforce-2019-recap-lt

ryo nakamaru

July 30, 2019
Tweet

More Decks by ryo nakamaru

See All by ryo nakamaru
AWSで楽をするサービスメッシュ入門/appmesh-trial
pottava
1
1.1k
ScaleShift-jp-2019-summer
pottava
1
170
Firecracker とは何か/what is Firecracker
pottava
13
4.9k
ハイブリッド並列 on Kubernetes/hybrid-parallel-program-on-kubernetes
pottava
1
340
AWS Fargate + Code 兄弟で始める継続的デリバリー / Continuous Delivery with AWS Fargate and Code brothers
pottava
12
2.8k
Singularity と NVIDIA GPU Cloud で作る ハイブリッド機械学習環境の構築 / Building a hybrid environment for Machine Learning with Singularity and NGC
pottava
3
1k
明日から始めるちょい足し λ / get-started-with-aws-lambda
pottava
4
2.2k
NGC と Singularity によるハイブリッド機械学習環境 / A hybrid environment for Machine Learning with NGC and Singularity
pottava
0
420
NGC × Singularity での機械学習環境/MachineLearning environment with NGC and Singularity
pottava
2
580

Other Decks in Programming

See All in Programming
プチモブから始めてみよう(XP祭り2023)
jxmtst
0
320
Improve the build times of your project is not impossible. How we achieved it in N26.
antonicg
0
160
CSS Subgridが遂に全ブラウザ対応。新時代のグリッドデザインを学ぼう
tonkotsuboy_com
5
6.7k
AWS SDKのClientは Factory経由で作ろう
iwatatomoya
1
320
VSCodeから一発でProxymanを起動する
kumamotone
0
130
4 Patterns to Jumpstart your Event-Driven Architecture Journey @ Current 2023, San Jose California
hpgrahsl
0
240
Math in Notes on the Synthesis of Form
hiranabe
1
440
Jakarta EE 10 - Simplicity for Modern and Lightweight Cloud
ivargrimstad
0
690
社内AI勉強会 ChatGPT入門 ~生成AIの基本とその活用法~
beenos
0
320
Laravelでのキャッシュの持ち方とAWS Fargateやイミュータブルインフラとの向き合い方
taikikawamura
1
100
理解して導入するWebフレームワーク ~解決すべき課題に着目する~ / Understanding and implementing web frameworks ~focusing on the problems to be solved~
seike460
PRO
3
770
UseCaseの凝集度を高める Goのpackage戦略 / Go packaging strategy to increase use case cohesion
deresmos
2
950

Featured

See All Featured
Building Applications with DynamoDB
mza
87
5.2k
How to Ace a Technical Interview
jacobian
272
22k
Building Better People: How to give real-time feedback that sticks.
wjessup
349
18k
Bash Introduction
62gerente
603
210k
[RailsConf 2023] Rails as a piece of cake
palkan
15
2.8k
I Don’t Have Time: Getting Over the Fear to Launch Your Podcast
jcasabona
17
1.3k
The Brand Is Dead. Long Live the Brand.
mthomps
48
5.1k
Responsive Adventures: Dirty Tricks From The Dark Corners of Front-End
smashingmag
239
20k
jQuery: Nuts, Bolts and Bling
dougneiner
57
6.8k
Designing with Data
zakiwarfel
93
4.5k
GraphQLの誤解/rethinking-graphql
sonatard
44
8.5k
Documentation Writing (for coders)
carmenintech
55
3.3k

Transcript

  1. How do you reinforce yourself ?
    AWS re:Inforce 2019 re:Cap @ July 30th
    Ryo Nakamaru, SUPINF Inc.

    View Slide

  2. தؙ ྑ @pottava
    - SUPINF ͱ͍͏डୗ։ൃӡ༻ձࣾͰΤϯδχΞͯ͠·͢
    - ւ֎ΧϯϑΝϨϯε͸೥ 2 ճఔ౓
    - ӳޠ͸ͣͬͱ೰Έͷछ
    Profile

    View Slide

  3. SUPINF Inc
    !3
    ※ Mac ͷࣙॻΑΓҾ༻

    View Slide

  4. SUPINF Inc
    !4
    ※ Mac ͷࣙॻΑΓҾ༻
    ηΩϡϦςΟ
    ؔ܎ͳ͍ͷ͔ɾɾ

    View Slide

  5. SUPINF Inc
    5
    re:Inforce Ͳ͏ͩͬͨͷ

    View Slide

  6. SUPINF Inc
    6
    ࠷ͬߴͰͨ͠ɻ
    ΄Μͱָ͔ͬͨ͠

    View Slide

  7. SUPINF Inc
    7
    ɾԿ͕࠷ߴͩͬͨͷ͔ recap
    ɾདྷ೥ώϡʔετϯʹ޲͚ͯ

    View Slide

  8. SUPINF Inc
    ࠷ߴͩͬͨ͜ͱ

    View Slide

  9. SUPINF Inc
    ࠷ߴͦͷɹ (AWS ͷ) ॏཁ֓೦ͷཧղ͕ਂ·Δ
    9
    1:
    ໨ࢦ͢΂͖͸ɺϏδωεͷΞδϦςΟ ͱ Ψόφϯε Λ ཱ྆͢Δ ͜ͱ

    https://www.youtube.com/watch?v=2t-VkWt0rKk

    View Slide

  10. SUPINF Inc
    10
    ͦͷͨΊʹ͸ɺΨʔυϨʔϧ ͱ ϥϯσΟϯάκʔϯ ͑͋͞Ε͹͍͍ɻ
    ͋ͱ͸ϓϩδΣΫτνʔϜʹɺࣗ༝ʹ૸ΒͤΑ͏ʂ
    https://www.youtube.com/watch?v=2t-VkWt0rKk

    View Slide

  11. SUPINF Inc
    11
    ग़య: ϏϧμʔʹඞཁͳηΩϡϦςΟ͸ʮ໳൪ʯͰ͸ͳ͘ʮΨʔυϨʔϧʯ
    https://weekly.ascii.jp/elem/000/000/425/425592/

    View Slide

  12. SUPINF Inc
    12
    ֓೦Λ࠲ֶͰֶΜͩΒ

    View Slide

  13. SUPINF Inc
    13
    ໰. AWS ͰͷΨʔυϨʔϧ࣮૷ͱͯ͠ɺاۀͷηΩϡϦςΟϙϦγʔΛ
    ʮAWS Organizations ͷ SCPʯ΍ʮIAM ͷ Permissions Boundaryʯͷ
    ซ༻Ͱ࣮ݱͰ͖ͦ͏Ͱ͢ɻ͋ͳͨͳΒɺͲͷΑ͏ʹ࣮૷͠·͔͢ʁ

    View Slide

  14. SUPINF Inc
    14
    https://identity-round-robin.awssecworkshops.com/permission-boundaries/presentation.pdf
    ೤͍͏ͪʹɺϫʔΫγϣοϓͰమ͕ଧͯΔɻʢΘ͔Βͳ͍͜ͱ͕Θ͔Δʣ

    View Slide

  15. SUPINF Inc
    AWS ΧϯϑΝϨϯεͷ͓͢͢Ί
    15
    • ηογϣϯΑΓ΋ϫʔΫγϣοϓ ε
    ‣ ࡢࠓɺ΄ͱΜͲͷηογϣϯ͸ YouTube Ͱެ։͞Ε·͢
    ‣ Ϣʔβࣄྫ ΍ ೤͍ؾ࣋ͪΛݺͼى͍ͨ͜͠ ৔߹͸ผ
    ‣ ਓؾ ϫʔΫγϣοϓ͙͢ຒ·Δ ͷͰ஫ҙʂʂ
    • ηογϣϯΑΓ΋ϒʔεΛ·ΘΖ͏

    View Slide

  16. SUPINF Inc
    ࠷ߴͦͷɹ ະདྷͷ࿩͕Ͱ͖Δ / ະདྷ͕Έ͑Δ
    16
    2:
    AWS ύʔτφʔاۀ͸͋ΔҙຯɺAWS ΑΓଟগઌߦ͍ͯ͠Δ͔΋ʁʁ

    View Slide

  17. SUPINF Inc
    17
    ʮ͔ͨ͠ʹ͜Ε͸ۀ຿ָ͕ʹͳΔ ʯ
    ʮ͜ͷػೳɺAWS དྷ೥͖ͩͯͦ͠͏ʯ

    View Slide

  18. SUPINF Inc
    18
    ͑ʁ೔ຊʹ୅ཧళͳ͍ͷʁ
    ࢖ͬͯΈ͍ͨΜ͚ͩͲʁ·ͣ͸͓ࢼ͠Ͱɻ
    ͍͍Αɺ͡Ό͋དྷि NDA ݁ͼͭͭ
    ΧϯϑΝϨϯείʔϧͰઆ໌ͤͯ͞ʂ
    ϒʔεͰͷΑ͋͘ΔྲྀΕ

    View Slide

  19. SUPINF Inc
    19
    ͓΋͠Ζ͍ 2 ࣾΛ͝঺հ

    View Slide

  20. SUPINF Inc
    20

    View Slide

  21. SUPINF Inc
    Aporeto
    21
    • Identity-based access control ε
    ‣ ΦϯϓϨ͔ΒΫϥ΢υͰͷαʔόʔϨε·ͰɻϋΠϒϦου΋ɻ
    ‣ ಛఆͷϥϕϧ͕͍ͭͨϦιʔεʹͷΈΞΫηεΛڐՄ
    ‣ γϛϡϨʔγϣϯ / ݕূ / ຊ൪ར༻ͷ҆৺εςοϓ
    • ωοτϫʔΫͷ؂ࢹͱڧ੍ ε
    ‣ ϗετʹΠϯετʔϧ͢Δ Enforcer ͕શ௨৴Λ೺Ѳɾ੍ޚ
    ‣ ՄࢹԽ΍τϨʔε͕ Web UI ͔Β͔ΜͨΜʹ

    View Slide

  22. SUPINF Inc
    22
    Ϋϥ΢υ࣌୅ͷΨόφϯεɾɾʁ
    → ΄΅΄΅ AWS ͷ֓೦ͷԆ௕
    ɹʢ͍͍ҙຯͰͶɻ૬ੑΑͦ͞͏ʣ

    View Slide

  23. SUPINF Inc
    23
    AWS re:Inforce 2019: Governance for the Cloud Age (DEM12-R1)
    https://youtu.be/y3WmHnavuN8

    View Slide

  24. SUPINF Inc
    དྷ೥ͷώϡʔετϯ
    Ͱ΋ָ͠ΉͨΊʹ

    View Slide

  25. SUPINF Inc
    25
    ϫʔΫγϣοϓࢀՃ΍ AWS ͷதͷਓ΁
    ࣭໰͍ͨ͠ɺ࿩Λཧղ͍ͨ͠

    View Slide

  26. SUPINF Inc
    Tips ͦͷɹ ࣄલʹ४උ͢Δ
    26
    1:
    • AWS ͷւ֎ΧϯϑΝϨϯε҆͘͸ͳ͍໰୊
    ‣ ೔ຊͰ΋Θ͔Δ͜ͱ͸ ௐ΂͍ͯ͘
    ‣ Security Specialty ͱ SA Pro ΋ͬͯͯ΋Α͏΍͘ Hello Worldʁ
    • ϒʔεΛճΔ
    ‣ ࣗ෼ͷࣄۀͱࠔ͍ͬͯΔϙΠϯτΛ ӳޠͰ આ໌ͯ͠ΈΔ
    ‣ ࿩Λฉ͍ͯΈ͍ͨ SaaS ʹࣄલʹΞϙΛͱͬͯΈΔ

    View Slide

  27. SUPINF Inc
    Tips ͦͷɹ ೔ຊʹ͍Δ͍͋ͩʹਓ຺Λ޿͛Δ
    27
    2:
    • ࠓ೔͸νϟϯεͰ͢
    ‣ AWS Japan ͞Μ͔Βͷ৘ใൃ৴ΛੵۃతʹऔΓʹ
    ‣ ͢Ͱʹ࣮ફ͍ͯ͠Δਓ͔Β΍ΓํΛฉ͍ͯ͠·͏
    • ݱ஍
    ‣ Ϙον൧ͷϦεΫ
    ‣ ঺հͰΞϙ͕ೖΔͱ΍͸Γɺձ͍΍͍͢ʢ͋ͨΓ·͑ʣ

    View Slide

  28. SUPINF Inc
    28
    ͝੩ௌ͋Γ͕ͱ͏͍͟͝·ͨ͠ :)
    ࢀߟɿ
    • AWS re:Inforce 2019: Using AWS Control Tower to Govern Multi-
    Account AWS Environments (GRC313-R) https://www.youtube.com/
    watch?v=2t-VkWt0rKk
    • ϏϧμʔʹඞཁͳηΩϡϦςΟ͸ʮ໳൪ʯͰ͸ͳ͘ʮΨʔυϨʔϧʯ
    - िץΞεΩʔ https://weekly.ascii.jp/elem/000/000/425/425592/
    • Identity Round Robin Workshop Permissions Boundaries https://
    identity-round-robin.awssecworkshops.com/permission-boundaries/
    presentation.pdf
    • Aporeto https://www.aporeto.com
    • Turbot https://turbot.com

    View Slide

  29. SUPINF

    View Slide

  30. Our Works
    ϏδωεΤϦΞͷ͝঺հ
    ্ྲྀϑΣʔζ͔ΒɺԼྲྀϑΣʔζ
    ·Ͱ ͢΂ͯड͚Δࣄ͕ՄೳͰ͢ɻ
    SES
    ฐࣾͰߏஙޙ͸΋ͪΖΜɺطʹՔ
    ಇ͍ͯ͠ΔαʔϏεʹ͍ͭͯ΋
    αϙʔτ͠·͢ɻ
    MSP
    ओʹӦۀಉߦͱͯ͠ͷɹ
    ٕज़తͳαϙʔτΛ͍ͯ͠·͢ɻ
    Sales Support
    ॳظߏஙͷࢼࢉ෦෼͚ͩͰ͸ͳ͘
    αʔόʔҠߦɾϓϩάϥϜҠߦ΋
    ରԠ͠·͢ɻ
    POC
    PMOʹ܎Δ෦෼͸΋ͪΖΜͷ͜
    ͱɺࣾ಺εΩϧΛߴΊ͍ͨͱݴͬ
    ͨߨश΋ߦ͍ͬͯ·͢ɻ
    Consulting

    View Slide

  31. (C) SUPINF Inc., All Rights Reserved. < CONFIDENTIAL >
    "84ϚωʔδυαʔϏεΛ౷߹͢Δ͜ͱͰ֦ுੑ
    ٴͼӡ༻ੑೳͷߴ͍γεςϜΛ࣮ݱ
    $PHOJUPɺ"1*(BUFXBZʹΑΔೝূج൫
    424ɺ-BNCEBɺ"84#BUDIΛ
    ૊Έ߹Θͤͨ൚༻δϣϒ؅ཧγεςϜ
    ΦϯϓϨϛεͱͷϋΠϒϦου؀ڥ
    ฐࣾ୲౰ΤϦΞ
    ⾣طଘۀ຿γεςϜͷ3&45"1*Խ
    ⾣ϓϥοτϑΥʔϜͷઃܭ ߏங
    Ϛϧνςφϯτ / SaaS ܕ - API ϓϥοτϑΥʔϜ

    View Slide

  32. Kubernetes ʹΑΔϋΠϒϦουػցֶश؀ڥ
    (C) SUPINF Inc., All Rights Reserved. < CONFIDENTIAL >
    ΦϯϓϨϛε༏ઌɺࣾ಺γεςϜͱͷ౷߹
    %PDLFSϨδετϦϑΝΠϧετϨʔδ͸ΦϯϓϨ
    ηΩϡϦςΟϨϕϧʹԠͨ͡ϑΝΠϧసૹ੍ޚ
    %(9LTࣾ಺ೝূγεςϜ౷߹ֶशج൫
    "1*ͳͲΛ௨ͨ݁͡Ռ΍Ϧιʔεঢ়ଶͷՄࢹԽ
    εέʔϧઌͱͯ͠"84ͷ(16αʔόʔΛར༻
    ,VCFSOFUFTͷϊʔυͱͯ͠%9ઌͷΫϥ΢υΛ
    ฐࣾ୲౰ΤϦΞ
    ⾣Πϯϑϥͷઃܭ ߏங
    corporate data center
    AWS cloud
    ֶशΫϥελ
    ֶशΫϥελ
    &
    ΦϯϓϨϛε؀ڥ
    ߴੑೳετϨʔδ

    View Slide

  33. ౦ژ౎ौ୩۠ौ୩2-11-5
    03-6427-6517
    https://www.facebook.com/supinf/
    @supinf_pr
    CONTACT US
    And thank you for your time

    View Slide