知っておくと便利!ブロックチェーンサービスで使われるAWS周辺技術

Transcript

1. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
   
   
   
   ! "
   !
   

   View Slide

2. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
   Agenda
   AWS
   Blockchain
   
   
   
   

   View Slide

3. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
   #,
   !"-%&)
   +.*'
   /$
   !"(
   

   View Slide

4. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
   
   
   ( )
   @zabbiozabbio
   Startup Solutions Architect
   #database
   #blockchain
   #ethereum
   #startup
   #3
   

   View Slide

5. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
   
   
   

   View Slide

6. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
   ;M PO RI HL
   A F A
   C / DA CG A
   D C CA C
   C A A C A
   &
   DA
   AC
   2 C
   C C A
   A A C E A
   /
   C C
   A D CDA
   A AC C
   C E AC
   F A C C
   C
   C A C
   D
   ,,!
   !& #,$,
   F6.
   K-
   *,(
   :8
   LN
   2E
   7A
   $ * +
   ?>G=
   (),
   PC
   (B/<
   $,
   I4
   &
   ++
   J3
   "(
   [email protected]
   1C
   $,
   +&
   
   (
   MH
   %'
   DO
   05
   *
   ,+
   

   View Slide

7. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
   AWS
   Blockchain
   

   View Slide

8. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
   AWS
   
   Amazon Managed Blockchain
   2018.12
   Amazon Quantum Ledger Database
   (QLDB)
   2018.12
   
   
   2017.12
   AWS Blockchain Templates
   2017.04
   

   View Slide

9. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
   2 2 2
   • 0 7 1 2 2A2 B
   https://aws.amazon.com/jp/partners/blockchain/
   

   View Slide

10. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    S
    • BF ae A
    S
    •
    • Ab W A
    c EdCH
    https://aws.amazon.com/jp/blockchain/templates/
    

    View Slide

11. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    Amazon Managed Blockchain
    

    View Slide

12. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    " $
    %'&10+*-)
    • b H d S e S th
    A
    • K lBF e S
    y z k BF a g omH W
    c ri pKH
    • M u i
    • n E d S e S
    A
    l !
    "#/.(,
    '%$
    

    View Slide

13. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    Managed Blockchain9?%,
    
    &,.%+(-
    [email protected] *
    
    &,.!
    -AWS.).
    #'30
    
    
    
    
    
    ;AWS.
    =: !-
    84
    
    
    
    
    />6A$7
    <
    &,
    .$" 52
    92
    
    

    View Slide

14. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    Hyperledger Fabric
    
    Verify
    policy
    Peer-n
    Peer-n
    Submitting-client
    Transaction
    simulation
    2
    Ordering
    service
    5
    6 Transaction delivery to
    peers
    Transaction
    proposal
    1
    Endorsement
    signature
    3
    Broadcast
    endorsement
    4
    Certificate
    Authority
    

    View Slide

15. Fabric Network managed by Amazon Managed Blockchain
    VPC
    Account A
    VPC
    Account B
    Hyperledger Fabric Ordering Service (Orderer)
    Fabric
    Certificate
    Authority
    Peer Node
    Member A
    Fabric Client Node
    Fabric
    Certificate
    Authority
    Peer Node
    Member B
    Amazon VPC
    PrivateLink
    VPC Endpoint
    VPC Endpoint
    Amazon
    Managed
    Blockchain
    Fabric Client Node
    

    View Slide

16. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    AWS Managed Blockchain
    Hyperledger Fabric96
    Ordering service
    • #.3-3C;GH7? ()/!%!#2
    3+%3#
    • *[email protected]
    5JE0$%!#2
    3+%3# Apache Kafka=8
    • ,%$)1! 3Amazon QLDB"&[email protected]
    ID:;F:<4
    Certificate authority
    • *3(#[email protected]
    • Managed BlockchainAWS Key Management ServiceAMS KMS
    @8>?B'7A
    

    View Slide

17. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    Chaincode basics
    Code executed on the network, and can query and update ledger
    Fabric supports chaincode in three languages:
    Chaincode execute within a docker container on peer nodes
    Chaincode has two operations in its interface:
    • Init()—initializes the chaincode with parameters
    • Invoke()—invokes the chaincode with parameters
    

    View Slide

18. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    AWS Cloudformation
    

    View Slide

19. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    Amazon Cloud Watch
    

    View Slide

20. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    Starter edition and standard edition
    Starter edition
    • Test and small production networks
    • Up to 5 members/network
    • Up to 2 peer nodes/member
    • bc.t3.small and bc.t3.medium
    • 1 TiB maximum/peer node
    • Ordering service provisioned has lower
    transaction throughput and availability
    than that in a Standard Edition network
    Membership pricing rate is different for each
    edition
    Standard edition
    • Production networks
    • Up to 30 members/network
    • Up to 10 peer nodes/member
    • bc.t3, bc.m5, and bc.c5 instance families
    • 15 TiB maximum/peer node
    • Ordering service provisioned has higher
    transaction throughput and availability
    than that in a Starter Edition network
    

    View Slide

21. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    Amazon Quantum Ledger Database
    (Amazon QLDB)
    

    View Slide

22. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    Amazon Quantum Ledger Database (QLDB)
    %# )
    "&*'$(
    !
    *8'L HT
    aO:4#8,\R
    B`HT
    
    J?
    MWGF
    AU
    V]R
    Immutable
    SED

    View Slide

23. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    Amazon Quantum Ledger Database (QLDB)
    2019/05 QLDBPreview
    

    View Slide

24. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    Verifiability in Amazon QLDB
    J
    INSERT cars
    ID:1
    Manufacturer: Tesla
    Model: Model S
    Year: 2012
    VIN: 123456789
    Owner: Traci Russell
    Metadata: {
    Date:07/16/2012
    }
    H(T1
    )
    INSERT cars
    ID:1
    Manufacturer: Tesla
    Model: Model S
    Year: 2012
    VIN: 123456789
    Owner: Traci Russell
    Metadata: {
    Date:07/16/2012
    }
    H(T1
    )=2526f16306c819d651af075934170d2430d246d9ab98d975d28a83baded47ca7
    SHA-256
    

    View Slide

25. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    Verifiability in Amazon QLDB
    J
    INSERT cars
    ID:1
    Manufacturer: Tesla
    Model: Model S
    Year: 2012
    VIN: 123456789
    Owner: Traci Russell
    Metadata: {
    Date:07/16/2012
    }
    H(T1
    )
    H(T1
    ) UPDATE cars
    ID:1
    Owner: Ronnie Nash
    Metadata: {
    Date:08/03/2013
    }
    UPDATE cars
    ID:1
    Owner: Ronnie Nash
    Metadata: {
    Date:08/03/2013
    }
    5b1283c2aea4bfa78e5965e6fcfad3be9f977d46f8ce3c83896ce7549be13264
    H(T1
    ) +
    H(T1
    )=2526f16306c819d651af075934170d2430d246d9ab98d975d28a83baded47ca7
    

    View Slide

26. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    H(T2)=86a90e4166453d9423b84d47dcbd97c0e3099b1a1f0d7cfca6c191d8fd8994ff
    Verifiability in Amazon QLDB
    J
    INSERT cars
    ID:1
    Manufacturer: Tesla
    Model: Model S
    Year: 2012
    VIN: 123456789
    Owner: Traci Russell
    Metadata: {
    Date:07/16/2012
    }
    H(T1
    )
    H(T1
    ) UPDATE cars
    ID:1
    Owner: Ronnie Nash
    Metadata: {
    Date:08/03/2013
    }
    H(T1
    )=2526f16306c819d651af075934170d2430d246d9ab98d975d28a83baded47ca7
    DELETE cars
    ID:1
    Metadata: {
    Date: 09/02/2016
    }
    H(T3
    )
    

    View Slide

27. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    Verifiability in Amazon QLDB
    J
    INSERT cars
    ID:1
    Manufacturer: Tesla
    Model: Model S
    Year: 2012
    VIN: 123456789
    Owner: Traci Russell
    Metadata: {
    Date:07/16/2012
    }
    H(T1
    )
    H(T1
    ) UPDATE cars
    ID:1
    Owner: Ronnie Nash
    Metadata: {
    Date:08/03/2013
    }
    H(T1
    )=2526f16306c819d651af075934170d2430d246d9ab98d975d28a83baded47ca7
    H(T2)=86a90e4166453d9423b84d47dcbd97c0e3099b1a1f0d7cfca6c191d8fd8994ff
    DELETE cars
    ID:1
    Metadata: {
    Date: 09/02/2016
    }
    H(T3
    )
    H(T3)=ae2d64e562ec754ec3194c744eec72c9fdafffc6b559e0414d0e75bf96ca92ad
    

    View Slide

28. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    More on digests
    J
    INSERT cars
    ID:1
    Manufacturer: Tesla
    Model: Model S
    Year: 2012
    VIN: 123456789
    Owner: Traci Russell
    Metadata: {
    Date:07/16/2012
    }
    H(T1
    )
    H(T1
    ) UPDATE cars
    ID:1
    Owner: Ronnie Nash
    Metadata: {
    Date:08/03/2013
    }
    H(T1
    )=2526f16306c819d651af075934170d2430d246d9ab98d975d28a83baded47ca7
    H(T2)=86a90e4166453d9423b84d47dcbd97c0e3099b1a1f0d7cfca6c191d8fd8994ff
    DELETE cars
    ID:1
    Metadata: {
    Date: 09/02/2016
    }
    H(T3
    )
    H(T3)=ae2d64e562ec754ec3194c744eec72c9fdafffc6b559e0414d0e75bf96ca92ad
    

    View Slide

29. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    What is verifiability?
    2/#,$ -031)(*" &+
    !!.%'*",
    
    Cryptographic
    technique
    Digest
    Customer, Ronnie can
    verify the date Traci sold
    the car to him was
    indeed 7/16
    

    View Slide

30. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    S3Export
    

    View Slide

31. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    Announcing private preview of QLDB streaming
    To get started, email: [email protected]
    

    View Slide

32. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    Amazon Managed blockchain
    Amazon QLDB
    

    View Slide

33. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    
    
    @!-0>
    
    2
    DMV
    8
    )19
    7
    5;/
    =5#
    2:9
    7
    HR & Payroll
    ,& '.
    46
    
    3?0$
    %+46
    97
    @(0>
    "*
    1
    

    View Slide

34. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    $F !-8E
    
    *1
    
    
    1 2
    D=8E
    Peer-to-peer 65
    ":
    
    
    
    #;@%)2
    BA
    0,
    G/ +C'9(
    &78E
    
    .>3?4
    

    View Slide

35. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    AWS07)(8 /$BNT
    DWQA +58!"487
    ,%>Y
    aMG:;CcdU?K`O
    FL ,%>Y
    *'2$38.=I
    VH
    38.61FLVH
    bZ;_] /#
    -$17&$[X?
    K`
    9^[email protected]
    aMG:;PeSR
    Amazon QLDB Amazon Managed Blockchain
    
    
    
    
    
    

    View Slide

36. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    
    

    View Slide

37. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    )0 5 10 059 0 2 0 )
    • K t r
    • K s
    • S a m nvp W
    • I K i g ei
    • 0 6
    215 ( y k IA
    K
    • AWS CloudTrail ci PM
    
    
    Data Key 1
    Amazon
    S3 Object
    Amazon EBS
    Volume
    Amazon
    Redshift
    Cluster
    Data Key 2 Data Key 3
    AWS KMS
    

    View Slide

38. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    50
    

    View Slide

39. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    • i HSM eM lC
    • FIPS 140-2 3 t
    • Amazon VPC V S
    A M v
    • PKCS#11, secp256k1, Java Cryptography Extensions
    (JCE), Microsoft CryptoNG (CNG) LW C
    n t API
    • BitCoin P p Ho
    secp256k1 Hu H
    da CloudHSM r H C H
    ( ()
    L
    

    View Slide

40. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    KYC
    

    View Slide

41. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    
    
    
    

    View Slide

42. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    Y e4 5 A f
    c
    R
    3F
    C
    AWS Well-Architected Framework
    A
    https://wa.aws.amazon.com/wat.pillar.se
    curity.en.html
    AWS . 1
    .1 12
    https://pages.awscloud.com/fintech-
    reference-architecture-wp-jp.html
    FISC K
    PCI-DSS K
    https://www.fisc.or.jp/publication/guideline.php
    https://ja.pcisecuritystandards.org/
    

    View Slide

43. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    K .5
    
    
    
    4 2
    3 C
    

    View Slide

44. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    A
    
    I M K A
    A A
    
    
    • A D Y I A
    C
    • M Y I A A
    A A
    • K A
    AWS
    AWS IAM
    

    View Slide

45. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    A
    
    
    A
    
    • M A
    • A A
    • A I
    AWS
    AWS IAM Amazon RDS
    

    View Slide

46. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    M
    
    
    
    • I
    • I AF
    •
    AWS
    AWS IAM Amazon RDS AWS Secrets Manager
    

    View Slide

47. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    . 3 1
    1 1 4
    
    4
    5 CK
    

    View Slide

48. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    4%,4-8XW3!4#7
    
    
    %&+.,("'&heBO2&"T:
    3#
    2&"dLK>S
    
    • "'&\`_A %&+.,("'&heBO
    [IQfUDC9?_ :C;)*"
    • VcbgP>SM0$gPhe=^a"
    '&Y7b2&"T: -/%14H:
    • "'&3#gP3#b[IQfJRFR? Vc
    ?Z 6G5UDN [IQf"'&E
    ]
    AWS
    Amazon CloudWatch AWS CloudTrail Amazon S3 VPC Flow logs Amazon RDS
    

    View Slide

49. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    z z D C o A
    
    
    z C C D
    C C m 2A A
    
    • S C
    E a D A
    • Ea nC R o 2
    A a E C
    o A
    AWS
    Amazon RDS AWS CloudFormation (or Terraform)
    

    View Slide

50. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    . 1 C
    2 1 1 4
    
    
    
    2 5 K
    

    View Slide

51. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    K
    
    
    Y
    
    • K
    • C K C
    AWS
    AWS Account Amazon VPC Security Group NACL VPC Endpoints
    

    View Slide

52. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    t D r Wu I
    
    
    benA W G t P rW I S W I
    R r Wu I
    
    • W G zy
    P W I
    • W wG oe P W I N Al
    T Nd m o ao P r C c hc W
    I
    • ikb oaA be P F p z L
    T W I
    AWS
    Amazon VPC Amazon GuardDuty AWS WAF AWS Shield
    

    View Slide

53. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    . 2 K
    1 3 5
    1 5 3
    
    1 C
    

    View Slide

54. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    0-Bm:&6)&(Gd
    
    
    0-YTK0-vxF;+(`0-"Bm
    uoM$(,+b
    fgO0-Ng80%$wLgOpn^EX"s\P
    
    • )5+St! 0-I0-E
    [ ,'9;/%
    =7
    • Rr0-"03&+_qZuoM 4+>1Na"@
    liRr0-J
    0-"2.*9M
    Nk
    
    • ?FHDU 6#&Rr0-h CA?F6#&QT
    FWcjR]V
    AWS
    Amazon S3
    Amazon RDS AWS KMS
    

    View Slide

55. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    ;:(
    
    
    35 9)6
    #2-
    4 ;
    :(,"
    
    • .-' <>$
    4 )
    7$;:(35$;:(;:(
    
    0+;:=
    %/+1&
    
    8 6*!
    AWS
    Amazon S3
    Amazon RDS AWS KMS
    

    View Slide

56. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    41 C
    . .243
    3 2 K
    K
    
    
    

    View Slide

57. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    "()#+ $+%3?6O
    
    
    @D"!IEbc]"()#+ $+%6OGL
    :BUN-4X
    6O3? VPA>S
    M
    
    • @D"[email protected]"![,RM
    6OFW_4^9K
    • YC\Z`aH.52176Q/=&*"
    !8T'+%'!;03?
    AWS
    AWS Lambda AWS Step Functions Amazon GuardDuty
    

    View Slide

58. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    d
    
    
    f e
    C c
    d
    
    • a CI
    AWS
    AWS CloudFormation
    (or Terraform)
    AWS CodeCommit
    (or GitHub)
    AWS Config
    

    View Slide

59. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    D
    Amazon GuardDuty
    (1) EC2
    )
    (2) )
    AWS Lambda
    (3) )
    AWS
    ) 5 )
    4
    4 ) (
    

    View Slide

60. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    
    
    

    View Slide

61. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    dD pD
    RDS/Aurora
    Datacenter Infrastructure
    OS rf
    Compute Storage
    ibe D sD
    Z e D dD uycR
    b bo s cg
    M IM L
    Z e D y D ( CdD pD D
    D( /
    dD uycR dD O C )
    - Network: AZSubnetRoute TableSecurity Group
    sD : C BC- -
    b bo
    s cg s cg R f C ba Sr
    t y
    W
    / P
    - OS: RDSS O o l C bodDe
    rf dD pD neOo l
    : A Z muDey D O
    e D O
    ( A A eCdD DC C
    yD O
    t y W
    

    View Slide

62. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    S P c t
    P i
    ) - 1 D( P ciDo
    c e W )( -/ 1 : 3 D s o
    S
    r / Ds MS t ( g r
    ( g I P tBM
    a l
    - AZ: Multi-AZ KL n M
    - Subnet: L a I i Private Subnet
    - Route Table: i o
    - Security Group: S i oA y
    

    View Slide

63. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    S d s
    bi
    ) -1 1 5 5 D )bi c M
    1 2 / nm (3 5 1 2 v LM
    /51 /5: 31 /51 /5: 31 s MB /51 M
    a c
    r ly D A l p a cr tp M
    RP R RP R M
    b s Qe s Qe
    M
    

    View Slide

64. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    iT e
    n
    n : :/ ( S n S ER
    hc
    / ) : S - uER O ER
    P :3 : / S e L S tER
    L t fm
    APL e O Md a S
    L g S
    e L e L n S o
    n I s Sr
    

    View Slide

65. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    S3A M
    W 3l
    a 3 3T3 3 A
    W C W
    3 M
    3 A u M3 a
    a3Vi P :
    o3
    Ad 3 K rA
    d 3
    P
    PA - A S3a3 W P V
    lA KW
    

    View Slide

66. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    
    
    

    View Slide

67. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    Ga bgl
    Production Account KYC Account
    IAM Root User
    Secrets
    Manager
    KMS
    VPC
    KYC DB Aurora
    VPC
    Service App
    Back Office Tool
    CloudWatch Logs
    IAM Role
    KYC APP
    Other Region
    CloudTrail
    CloudTrail
    Rotation
    Copy
    CW Logs to S3
    Log Check
    App Log
    Work Log
    Aurora audit log
    DB Snapshot
    w
    r
    KMS
    S3
    P sy
    b e W L
    C B C
    : , N PRIE
    V b eL
    ncGdmo Y
    BA
    3 3 R V B
    oiP K L
    C : B P . E
    Bsy b e W L
    BA 3 3 . A C P
    . E C B Bsy b
    e W L . B3B r 3 3r .
    oi BY L
    . aGk
    ndGP L BA 3 3
    pS b eL M E
    B tu
    KMS
    S3
    Secrets
    Manager
    

    View Slide

68. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    i rC
    • aki
    obePlo C aki N VB w W kp a
    ki 1 1A DB
    • 1 obe npg Cl
    dCb npg ClN VB
    • R . 3 KY b
    T Y R Y bP. 3 tEB
    yP/ 3 V 1 Nuv TWK
    1 N S VB
    

    View Slide

69. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    • - g
    I K 3 A I b- oPr yR f R R
    I K 3 A I om oP I K 3 A I 1:,rut g R feo k R
    R R b5IG L KBG rut c f oPeV I K 3 A I o kg
    13 u R ,31cSo SoP nf 1:,r yR WnYg13 igrw l
    o SoP
    • g R R
    I K 3 A I LIGI d pb o k c R R P R R g
    2 E 5, f poP ( c f R R oYdl P R
    R g fa b Y n
    • 5, GB K
    I K 3 A Id13 g 5, GB K B 1:, GL K K I KN 5, . GB Kg s
    R c R 1:,r yR g s R d R R 2 E f oP
    g 5, GB K B 5IG L KBG GL K K M N KN 5, . GB K 5GDB Ncrw e
    6 GLI g1:, f oP
    • I K 3 A I 13 igrw
    I K 3 A Id13 ) R Rc GIC I G g 3 6GD 5, . GB K grw g
    oP
    ) y Rc GIC I G g 3 6GD 5, . GB K grw g oP
    

    View Slide

70. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    ) . ( 2
    Secrets Manager
    VPC
    KYC DB Aurora
    VPC
    KYC APP
    Rotation
    KMS
    IAM
    L 3K
    3 3 3
    Lkg nm P
    IAM Role
    Production Account KYC Account
    V a S bB
    M
    L nm
    3 3
    3 I 3 3
    3 A A LR
    Y L
    3KdE nm PA
    DG lL
    nm P Cie
    c c L V
    a S bB I g
    L V a S
    bB nm P
    S3
    S3
    KMS
    Secrets
    Manager
    c c L
    V a S bB I
    L V a S bB
    nm P
    

    View Slide

71. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    • s nl vn
    (5 /1 s nl vn hH K (5 AF C / LR E
    P hH
    • vI Ivn
    vI Ivn (DA A I Iy hH ys uy M(5
    a y IrI hH
    • rIals y I
    / F F hR y IrI h I rI h hH/ F
    ( CA C A A C I I a r l Sih I I I Ll
    tI P h3 hHd DC/ F F D / F C C (
    C . AC / F1 C A as m p I 1,( hH
    • rIa I I
    (5 a)1/ I I P ih y I a)1/
    I I Si l tI W K)1/P iheL hHe I I
    K hK arI l n I h rIon ly I I
    hH
    • /1 a3 C 0 C
    /1 AF C ( . AF C ( . a A 0 CP hH I rI r
    hR /1 ca( .uI H
    

    View Slide

72. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    a ah
    • m n 4 3
    . ah a t m n B
    P tB K PE R
    K n O tB
    n d RDb K n SR D
    n o Ds b K MC
    • RL m n h n B
    4 3 t K DC s m
    n h n p
    • m n h n
    b K m n h n B
    

    View Slide

73. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    eu iEl
    • yEkE
    eu iEl fwE d C McPyEkE eu iEl
    A 3I SdrE T eu iEl R O D
    • . Y Ep O gE e n d O
    . .d O Ce n R D C 55 /
    d a B S B d O D
    • . e n d O
    B C R. e n d O Bd O D
    • eu iEl S u f
    eu iEl Es d KP C Es t E u n d O D PC
    IoE Es S u fd R d O D
    

    View Slide

74. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    b u M
    • u
    b u PR Ptc uLBY d I 66
    d FK C 66 d R MF il P
    mt YDML P Y
    • aos eru d
    u u . ni aos eru P
    d Y FCR 6 FK B 6 6 A
    6 LBY Y 6
    d R MF il P mt YDML
    P Y L Y mt
    Y
    

    View Slide

75. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    (
    • i
    3 d 1 2 7 DC : . 2 d TaI
    id 4 D7 / :C / d
    2 hmu rTaIesw l i PKW D d
    d TaI
    •
    i esw l id h wyt
    d TaI o MK d s nmd
    I L s nmP M ba)
    cb g d Ta
    . 2 3 , 7 AD 1 d Ta
    ehnm i d Ta
    S . p l d Ta
    

    View Slide

76. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    / WU g
    - 1.
    sw Ce d F - 1. L
    uw l o l prw Cs TL IRS c i
    uw l 1. c iT g
    g +- / o ltweC
    / Uo ltweC o U/: 3 + L
    uw l o ltweCU L n l C T g
    uw l Un l C T F P o P P
    g +- 8: : 2
    / U T 8: : 2 A2 U +- L
    uw l n l C T g
    uw l 2 R 8: : U F TS
    

    View Slide

77. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    -
    2 2
    c 2N
    • 2P 2
    s v
    2
    • E 2
    2 v
    • i i c
    i i
    C
    • r wl nl e
    2 i P
    -
    ot v E i c2 i
    c
    e 2
    2P 2
    a2
    

    View Slide

78. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    
    
    C
    - 0
    2
    2
    1 4 3 2 ClgP bC
    b Sb e C Sov
    P b b
    cr C
    C P bE
    N Cts
    a
    O
    in
    E
    1 9
    

    View Slide

79. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    
    
    N CN
    i
    -
    E N
    0 43 2 1 - N P
    i N
    E2
    c ae
    - 4- 13 1 22-1
    E N
    N C
    N
    E
    N
    4- 0-9
    

    View Slide

80. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    P A K ND U A
    ge
    h A CU c (
    i a , , ,
    ) ) A S
    A W A) M
    

    View Slide

81. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    AWS Nitro Enclave is coming soon
    Sign up for the Preview
    aws.amazon.com/ec2/nitro/nitro-enclaves/
    

    View Slide

82. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    
    

    View Slide

83. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    
    https://www.slideshare.net/AmazonWebServicesJapan/day-1-with-amazon-web-services-aws10/6
    

    View Slide

84. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    Well-Architected Framework
    AWS Well-Architected Framework
    • AWS "&*#$
    •
    !)
    '
    % (#
    
    
    
    -/ / - . . .
    

    View Slide

85. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    1) W-A+$,&MSH>[email protected]
    • 3/!%#6/BV
    • B`.*idA
    • QgENZC
    2) 0,&5'IJ7?fX?=UOGe
    aP
    • _[Y
    Y 98"61&/^?
    ^?:;TW… etc
    3) cDR\I*)&e"-4(26EL
    
    
    
    
    

    View Slide

86. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    
    
    • 3=(.72>:4 1',18
    BA; 54;?6 9D
    • AWS
    1',18B-
    $ *0$)%" $
    -&/1#[email protected]
    

    View Slide

87. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    
    . /
    

    View Slide

88. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    
    
    // . .
    

    View Slide

89. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    5: AWS FinTech!"[#%9]
    https://aws.amazon.com/jp/compliance/fintech/
    • AWS Japan2018$1)
    FinTech !"
    
    • '/(&<6+ 3-
    FISC, FISC API7.,
    PCI-DSS, ISO27001
    -0(:
    ;=+ 18*4,2
    AWS
    !"
    

    View Slide

90. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    : AWS FinTech
    []
    https://aws.amazon.com/jp/compliance/fintech/
    
    
    C C C
    F
    A C
    

    View Slide

91. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    : FinTech -
    
    https://aws.amazon.com/jp/compliance/fintech/
    )". *". %".
    
    
    
    
    0
    0
    
    
    ,&
    '
    $
    /+
    !+
    ,&
    - #(
    

    View Slide

92. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    : FinTech -
    
    https://aws.amazon.com/jp/compliance/fintech/
    ) s s c s
    ) t r
    s r e i
    s dm weR
    dm o U U
    Ur n
    s o
    c m weRc r
    r
    r s u
    dm weR
    ) t s r m
    o U s
    d wit U r
    e u
    rdm weR s
    U U t
    ) / /
    /7) u- )2 Es
    r r m
    ) r mt ) /)2 n
    eR/ FK KO F ) 2 F E FK /)2 n
    t dm U U/ s
    s m U Us U r
    U Us s
    r bo n weR U U
    n g e t sys
    rop m_jc R
    rt U U
    u w weRwi
    ) wit/)2 U U
    vs r 2-)W e
    y weR
    /)2s u rl m
    t s 1 _jc R
    AKK ( E PGF GE E
    s 1 dm_jc
    AKK ( G E PGF GE C :C /)2 D K
    K I.L K I K AKED
    Ts r m /)2 U rl mt e wit
    /)2s U m s/ ) K M I KGIO
    pWo e pdm e weR/)2n U
    e U s z2-) ps /)2n n weRhs
    s/)2s r e t s 1 _j
    c R
    AKK ( G E PGF GE C :C /)2 D K K I.L K
    I K AKED
    z n/ S U ps
    ) O K E 2 F Is I E K I KGI bon r
    e bo n U U z rh s U
    U e _ weR I E K I KGI rl mt s
    1 dm_jc R
    AKK ( E PGF GE C O K E E F I I E K I KGI
    wi ) U vs r ) 0 O z
    I K ) 0 OWrl mt I FK D z
    s r s z ) 7
    )E PGF G F KG bon hs ebo
    n zt U U a bo n r weR
    s z rl mt s 1 dm_j
    c R
    AKK ( G E PGF GE C :C /)2 D K K I.L : I FK D :
    K E AKED
    b s U U r m U U . K pW
    r d r dm_jc R) nt i s
    i s U dm weR rl mt s 1
    _jc R
    AKK ( KAL GE D K I K
    

    View Slide

93. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    $: AWS FinTech[ %]
    https://aws.amazon.com/jp/compliance/fintech/
    
    AWS FinTech %
    
    "!
    ↓AWS FinTech#&↓
    

    View Slide

94. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    
    

    View Slide

95. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    AWS Blockchain Customer References
    

    View Slide

96. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    

    View Slide

97. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    "84্ͷ$MPVE)4.Λ׆༻ͨ͠ɺࣄۀऀ޲͚҉߸ࢿ࢈΢ΥϨοτΛఏڙ
    

    View Slide

98. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    • FIPS 140-2 3
    HSM l
    • Amazon Virtual Private Cloud
    (VPC) S AWS
    C
    d
    CM H
    

    View Slide

99. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
    A
    W HSM AWS No.1
    AWS S
    

    View Slide

100. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
     https://speakerdeck.com/zabbio/an-hao-zi-chan-guan-li-turufalseshe-ji-tokuraudohsmfalsehuo-yong-fang-fa?slide=22
     

     View Slide

101. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
     https://speakerdeck.com/zabbio/an-hao-zi-chan-guan-li-turufalseshe-ji-tokuraudohsmfalsehuo-yong-fang-fa?slide=30
     

     View Slide

102. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
     " .
     https://speakerdeck.com/zabbio/an-hao-zi-chan-guan-li-turufalseshe-ji-tokuraudohsmfalsehuo-yong-fang-fa?slide=22
     

     View Slide

103. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
     "
     https://speakerdeck.com/zabbio/awsfalseshang-nida-gui-mo-burotukutieninhura?slide=15
     

     View Slide

104. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
     https://www.slideshare.net/ALIS_Media/ss-159375109
     

     View Slide

105. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
     Building a Scalable, Serverless Cryptocurrency Platform
     

     View Slide

106. View Slide

107. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
     

     View Slide

108. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
     

     View Slide

109. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
     Product tracking demo
     QR Code Link How we manage the facilities
     

     View Slide

110. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
     Nestlé’s architecture
     

     View Slide

111. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
     
     

     View Slide

112. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
     • https://github.com/aws-samples/non-profit-
     blockchain
     • https://github.com/aws-samples/bank-transfer-
     blockchain-reinvent2019-workshop
     • https://bit.ly/35XF9Ul
     

     View Slide

113. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
     
     
     

     View Slide

114. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
     • AWS Loft Tokyo
     Meetup
     Blockchain
     • Tech Biz
     c
     • Slack
     • B @
     • 2019/07/25 #00 Kick-Off
     i no f
     i
     Ginco
     double jump.tokyo
     i l
     Curvegrid
     i
     Jeff Wentworth
     i
     ALIS
     • 2019/09/30 #01 Tech
     AWS Senior Blockchain Specialist, Carl Youngblood
     Curvegrid
     i a
     AWS Japan Solutions Architect
     k h
     • 2019/11/29 #02 Biz
     i
     Ginco
     L
     i
     LayerX
     i t
     

     View Slide

115. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
     Tech 4/24 ( )
     

     View Slide

116. © 2019, Amazon Web Services, Inc. or its affiliates. All rights reserved.
     Thank You
     

     View Slide