å®éã®ãšãããã»ãšãã©ã® Web ã¢ããªã±ãŒã·ã§ã³ã API ã®ã»ãã¥ãªãã£ããŒã«ã¯ãçŸåšãšã¯å šãç°ãªãæä»£ã«åãããŠèšèšãããŠããŸããããªãã¡ãéçºè ãšã»ãã¥ãªãã£æ åœè ãååãåããçµ±åãããã¯ãŒã¯ãããŒã䜿çšããŠã»ãã¥ã¢ãªãœãããŠã§ã¢ããªãªãŒã¹ããåã®æä»£ã§ããã¢ããªã±ãŒã·ã§ã³ãã°ããŒãã«ã«åæ£ãããAPI ããŒã¹ã«ãªãåã®æä»£ã§ããšã³ãžãã¢ãã³ãã³ããå ¥åããã°ãç¬æã«ã°ããŒãã«ã«ã¢ããããŒãã§ããåã®æä»£ã§ããããããFastly ã® CEO ã§ãã Joshua Bixby ãç¹°ãè¿ãèšãããã«ããæ»æè ãéçºè ããªã®ã§ãããããŠãæ»æè ã¯ã¬ã¬ã·ãŒãœãªã¥ãŒã·ã§ã³ã®å¶éã«æ©ãŸãããããšããããŸããã圌ãã¯ææ°ã®ããŒã«ãã¯ãŒã¯ãããŒã䜿ã£ãŠãããŸã§ä»¥äžã«ä¿æã«æ°ããªè åšãæ§ç¯ããé²åãããŠããŸããã»ãã¥ãªãã£ã«å¯Ÿããã¢ãããŒããå€ããªããã°ãªããªãããšã¯æçœã§ããããã§ãã®èšäºã§ã¯ãææ°ã®ã¢ããªã±ãŒã·ã§ã³ã®æ§ç¯ããã»ã¹ãèæ ®ãããWeb ã¢ããªã±ãŒã·ã§ã³ãš API ã®ã»ãã¥ãªãã£ã«é¢ããæ°ããªã«ãŒã«ãã玹ä»ããŸãã
ã«ãŒã«1 : ç¹å®ã®è åšã§ã¯ãªããæ»æã®ç®çã«å¯Ÿå¿ã§ããããŒã«ã䜿çšãã
ã»ãã¥ãªãã£ããŒã ã¯é·ãéãç¹å®ã®è åšã«çŠç¹ãåœãŠãŠããŸããã圌ããæ°ããããŒã«ãè©äŸ¡ããéãããã®ããŒã«ã¯ X ããä¿è·ã§ããã ?ããšããããšã«æ³šç®ããã¡ã§ãããã®å Žåãè åš X 㯠Stuxnet ã SolarWinds ãããã³ã°ã®ããã«ããã¥ãŒã¹ã«ãªããããªå€§ããªè¢«å®³ããããããŠããè åšã§ãããã®ãããªåœ¢ã§è©äŸ¡ãè¡ãããå Žåãç¹å®ã®è åšã®ã·ã°ããã£ãã»ãã¥ãªãã£äŸµå®³ã€ã³ãžã±ãŒã¿ãŒ (IoC) ãæ¢ãããŒã«ãæ¡çšãããŸããIoC ã«ã¯ãæ¢ç¥ã®æ»æè ã® IP ã¢ãã¬ã¹ãããã«ãŠã§ã¢ãçãç¹å®ã®ãªã¯ãšã¹ã URL ã«ãããããæ£èŠè¡šçŸãªã©ãå«ãŸããŸãã
ããããã·ã°ããã£ããŒã¹ã®ããŒã«ã¯æ£åœãªãã©ãã£ãã¯ãšæªæã®ãããã©ãã£ãã¯ãåºå¥ããããå¢ãç¶ããè åšã«å¯Ÿå¿ããã®ãèŠæã§ããããã¯ãªãã§ãããã ? æè¿ã®ã¬ããŒãã«ãããšãæ¯æ¥35äžçš®é¡ä»¥äžã®æ°ãããã«ãŠã§ã¢ã®äºçš®ãäœæãããŠããããšãå ±åãããŠããŸãã
ãã®ã¢ãã«ã§ã¯ããŸã察å¿ã§ããªãã®ã¯æçœã§ããå®éãã»ãã¥ãªãã£äŸµå®³ãé²ãããšãã§ããªããŠã€ã«ã¹å¯ŸçãœããããSQL ã€ã³ãžã§ã¯ã·ã§ã³ãã¯ãã¹ãµã€ãã¹ã¯ãªããã£ã³ã°ã®ã¿ãæ€åºããåŸæ¥ã® WAFããªã¯ãšã¹ããããã©ãŠã¶ã®ãŠãŒã¶ãŒãšãŒãžã§ã³ãã®ã¿ããã§ãã¯ããããã察çããŒã«ãªã©ããã®ã¿ã€ãã®ã¢ãã«ãæ¡çšããã»ãã¥ãªãã£ãœãªã¥ãŒã·ã§ã³ãè»äžŠã¿å€±æããã®ãç®ã®åœããã«ããŠããŸããã
Web ã¢ããªã±ãŒã·ã§ã³ãš API ã®ã»ãã¥ãªãã£ã«é¢ããæ°ããªã«ãŒã«ã§ã¯ãããã€ã³ããªãžã§ã³ããªã¢ãã«ãžã®ã·ãããæ±ããããŠããŸããæ°ããªã¢ãã«ã¯ãã»ãã¥ãªãã£ããŒã«ãã§ãŒã³ã«ååãªä¿¡é Œæ§ããããããæ£åœãªãªã¯ãšã¹ãããããã¯ãããæªæã®ãããªã¯ãšã¹ããééããããããå¿é ããªãã貎éãªãã©ãã£ãã¯ãå®å¿ããŠåŠçã§ããã·ã¹ãã ã§ãªããã°ãªããŸããã
ãããå®çŸããããã«ã¯ãã»ãã¥ãªãã£æè¡ã«æ°ããªããšãæ±ããå¿ èŠããããŸãããŸããã»ãã¥ãªãã£æ åœè ã¯ãã©ãã£ãã¯ã®ã·ã°ããã£ã ãã§ãªãããã®ç®çãåäœã調ã¹ãããŒã«ãæ±ããªããã°ãªããŸãããã€ãŸãããªã¯ãšã¹ãã®éããæé垯ããŠãŒã¶ãŒã®ãã°ã€ã³ã¹ããŒã¿ã¹ãªã©ã®èŠçŽ ãèæ ®ããå¿ èŠããããšããããšã§ãã
次ã«ãéçšããŒã ã¯ã¢ãã¿ãªã³ã°ã¢ãŒãã ãã§ãªããããã¯ã¢ãŒãã§ãéçšã§ããããŒã«ãæ±ããªããã°ãªããŸããã誀æ€ç¥ãæããŠã¢ãã¿ãªã³ã°ã¢ãŒãã§ããå®è¡ã§ããªãããŒã«ã§ã¯ãå£ããã·ã¹ãã ã匷åããã ãã§ããããŒã ãè åšã«å¯Ÿå¿ã§ããããã«ãªããŸã§ã«ãã§ã«ã·ã¹ãã ããã¡ãŒãžãåããŠããŸãããã§ããè¡è§ã§ç¯çœªããã£ããšãã«ãä¿¡å·ç¡èŠã ïŒããšãã空ãå·£ã ïŒããšå«ã¶ã ãã§ä»ã«äœãããããã èŠå¯ãæ¥ãã®ãåŸ ã£ãŠããã¹ãŒããŒããŒããŒãæ³åããŠã¿ãŠãã ãããã»ãã¥ãªãã£ããŒã ãéçšããŒã ã¯ãã¢ã©ãŒãã®æŽªæ°Žã®äžã§æººããããŠããŸãã圌ãã¯è åšãæ€ç¥ããŠããã«å¯Ÿå¿ããããšãåžžã«æ±ããããŠããŸã (ãããå®çŸããå¯èŠåãšã³ã³ãããŒã«ã«ã€ããŠã¯åŸè¿°ããŸã)ãããããããã§ããŒã ã«å¿ èŠãªã®ã¯ãäŸµå ¥åŸã«åé¡ã蚺æããããŒã«ã§ã¯ãªããè åšã®çºçãšåæã«ç¢ºå®ã«ããããããã¯ã§ããããŒã«ã®åºç€ã§ãã
æåŸã«ãããŒã«ã¯ã»ãã¥ãªãã£ããŒã ãéçšããŒã ã«è² æ ããããã«ãåžžã«ææ°ã®è åšã«å¯Ÿå¿ã§ãããã®ã§ãªããã°ãªããŸãããæå 端ã®ã¯ã©ãŠãããã³ SaaS ãœãªã¥ãŒã·ã§ã³ã䜿çšããããšã§ãã»ãã¥ãªãã£ããŒã ã¯åžžã«è åšã®äžæ©å ãé²ã¿ç¶ããŠããã¢ã¯ãã£ãã«ãããã¯ãã®ã¢ããããŒããæäŸã§ããããã«ãªããŸããããããåœãŠãå¿ èŠããªããªããææ°ã®è åšãžã®å¿é ã«åãã€ãããããšããªããªããŸãã
ã«ãŒã«2 : ãŠãŒã¶ããªãã£ã®ãªãã»ãã¥ãªãã£ããŒã«ã¯äœ¿ããŸãã
æè¿ã® SaaS ããŒã¹ã®ããŒã«ã¯ãçŽæçã§èª°ã«ã§ãåããããã Web ãšã¯ã¹ããªãšã³ã¹ãæäŸãããã®ãå¢ããŠãããããã»ãšãã©ã®ãã¯ãããžãŒããŒã«ã§ã¯äœ¿ãããããéèŠèŠãããŠããŸãããã»ãã¥ãªãã£ãœãªã¥ãŒã·ã§ã³ã¯ãã®ç¹ã§å€§ããé ãããšã£ãŠããŸããåŸæ¥ã®ããŒã«ã¯ã«ãŒã«ã®åŒ·å¶ãšã³ã³ãããŒã«ãç®çã«èšèšãããŠãããå®éã«æäœãããããšã¯èæ ®ãããŠããŸããã§ããããããã仿¥ã®ããŒã ã¯ããŒã«ãæäœããããšãæã¿ãçµ±åã芳å¯ãã¢ã¯ã·ã§ã³ã®å®è¡ãå¯èœãªããŒã«ãå¿ èŠãšããŠããã®ã§ãã
éçšè ã«ãšã£ãŠãŠãŒã¶ãŒã€ã³ã¿ãŒãã§ãŒã¹ã¯é²åŸ¡ã®æåç·ã§ãããæ®å¿µãªããšã«ãçã£å ã«ãŠãŒã¶ããªãã£ããªããããã«ãããå Žæã§ããããŸããåŸæ¥ã® UI ã¯åäœãé ãã䜿ãåæãæªãããšããããããŸãããŸãå€ãã®å Žåãåããããã€ããŒã®ãœãªã¥ãŒã·ã§ã³ã䜿çšããŠããŠããã·ã¹ãã ã管çããã®ã«è€æ°ã®ãŠãŒã¶ãŒã€ã³ã¿ãŒãã§ãŒã¹ã«ãã°ã€ã³ããå¿ èŠããããŸãã貧匱㪠UI ã¯ãããŒã«éã§ã®ããªã·ãŒãšé©çšç¶æ³ã®ã®ã£ãããç·æ¥ã®è åšã«å¯Ÿãã察å¿ã®é ãã飿ºäžè¶³ãã»ãã¥ãªãã£ãšã³ã·ã¹ãã å šäœã«å¯Ÿããäžè²«æ§ã®ããå¯èŠæ§ã®äžè¶³ (ææªã®å Žåãå¯èŠæ§ã®å®å šãªæ¬ åŠ) ãªã©ãå€ãã®ãªã¹ã¯ãçã¿åºããŸãã
ã»ãã¥ãªãã£ãœãªã¥ãŒã·ã§ã³ã¯ããœãªã¥ãŒã·ã§ã³å šäœã®ã³ã³ãããŒã«ãšå¯èŠåãå®çŸãããçŽæçã§äœ¿ããããåäžã®ã€ã³ã¿ãŒãã§ã€ã¹ãåããŠããå¿ èŠããããŸãããŸããã·ã¹ãã ã®ç¶æ ãäžç®ã§ææ¡ã§ããå®å šãªå¯èŠæ§ãåŸãããããããã¹ãŠãã«ããŒããå¯èŠ³æž¬æ§ãåããŠããªããã°ãªããŸãããéèŠãªã®ã¯ããããã®ãœãªã¥ãŒã·ã§ã³ã¯ãã»ãã¥ãªãã£ããŒã ãšä»ã®ããŒã ã®äž¡æ¹ã䜿çšã§ãããã®ã§ãªããã°ãªããªããšããããšã§ãããªããªããéçšãšãšã³ãžãã¢ãªã³ã°ããŒã å šäœã§ããå€ãã®äººãè åšãšã®æŠãåå ããããšãå¯èœã«ãªãããã§ãã
次ã«ãææ°ã®ããŒã«ã¯ææ°ã®ã¢ããªã±ãŒã·ã§ã³ãã¶ã€ã³ã«ãããããªããã°ãªããŸãããå€ãã®å ŽåãããŒã«ã»ããã¯åã«ããã±ãŒãžåããããããã€ããŒã«ãã£ãŠè²©å£²ãããŠããŸãããå®éã«ã¯æè¡çãªçµ±åãè¡ãããšãã§ããŸãããç§ã®å人ã¯ããããè«æ±æžã«ããçµ±åããšåŒãã§ããŸããããšãã·ã¹ãã ãããœãªã¥ãŒã·ã§ã³ãããã²ãŒãããããã«ã¿ããåãæ¿ããªããã°ãªããªãã ãã ãšããŠããæ»æãåããŠããéã貎éãªæ°ç§ãšçµ±åãããå¯èŠæ§ã倱ãããšã«ãªããŸãããã®ã¢ãããŒãã§ã¯ãæè¡çãªã®ã£ãããå¯èŠæ§ã®ã®ã£ãããçãããããå šäœçãªã»ãã¥ãªãã£å¯Ÿçã®å¹æã匱ããªããŸãããããã€ããŒã¯ãããã©ã«ãã§èªååãšçµ±åãæäŸããã¹ãã§ããããããè¡ãã«ã¯ãå®å šã« API å¶åŸ¡å¯èœã§ããããšãåæã§ãããã¹ãŠã®ã»ãã¥ãªãã£ãœãªã¥ãŒã·ã§ã³ã«ã¯ãã·ã¹ãã ã®å šæ©èœãå ¬éããã䜿ãããã API ãå¿ èŠã§ãããœãªã¥ãŒã·ã§ã³ã¯ãçžäºã«çµ±åã§ããã ãã§ã¯ãªããJiraãPagerDutyãSlackãSplunk ãªã©ã®ããŒã«ãå«ããã¬ã¹ãã³ã¹ããŒã«ãã§ãŒã³å šäœãšç°¡åã«çµ±åã§ãããã®ã§ãªããã°ãªããŸããããŸããããŒã ã䜿çšããã»ãã¥ãªãã£ã¢ãã¿ãªã³ã°ãå¯èŠ³æž¬æ§ã·ã¹ãã ã®ããŒã¿ãå ¬éããããªã¢ã«ã¿ã€ã ã®ãã°ãšçµ±èšãæäŸã§ããå¿ èŠããããŸãããã¹ãŠã®ãœãªã¥ãŒã·ã§ã³ãçµ±åããããšã§ãæ»æè ã®çã®æå³ãã¯ããã«å®¹æã«ç¹å®ããããšãå¯èœã«ãªããŸãã
ã«ãŒã«3 : ãªã¢ã«ã¿ã€ã ã®æ»æã«ã¯ãªã¢ã«ã¿ã€ã ã®å¯Ÿå¿ãå¿ èŠ
ãã«ãŠã§ã¢ã¯ããœãããŠã§ã¢ã·ã¹ãã ã§ãããœãããŠã§ã¢ã·ã¹ãã ã¯éçºè ã«ãã£ãŠæ§ç¯ãããŸããã€ãŸããæ»æè ã¯éçºè ãªã®ã§ãããã®ããšãèªèãããšãåŸæ¥ã®ã»ãã¥ãªãã£ã¢ãã«ãè åšã®ã¹ããŒãã«è¿œãä»ããªãçç±ã容æã«çè§£ã§ããŸããã¢ãžã£ã€ã«ãªæ»æè ã¯é«åºŠãª DevOps ã¯ãŒã¯ãããŒãæ¡çšããŠæ°ããææ³ãè¿ éã«è©Šè¡ã調æŽããããã€ããŠããŸãã1åã®æ»æã®éã«äœçŸåãããããè¡ã£ãŠããå ŽåããããŸããæ»æè ãšåãã¹ããŒãã§å¯Ÿå¿ã§ããªãå Žåãã¢ããªã±ãŒã·ã§ã³ãä¿è·ããããšã¯äžå¯èœã§ãã誀解ã®ãªãããã«èšããšã察å¿ã®éãã¯é ã®å転ã®éãã«ãã£ãŠå¶éãããŠããã®ã§ã¯ãããŸããã察å¿ã®éãã¯ã䜿çšããŠããã»ãã¥ãªãã£ãœãªã¥ãŒã·ã§ã³ã®ã¹ããŒãã«äŸåããŸããããããå¯èŠåã®ã¹ããŒãããšãã³ã³ãããŒã«ã®ã¹ããŒããã«åããŠèããŠã¿ãŸãããã
å¯èŠåã®ã¹ããŒã
æ»æãçºèŠããã®ã«æ°åããæ°æéãããããã§ã¯ãã§ã«æé ãã§ããæ»æè ã¯æ»æã詊ã¿ãããã倱æããã°ãŸãå¥ã®è©Šã¿ãè¡ããŸãããããã¯å šãŠæ°åã®éã«èµ·ãããŸããã»ãã¥ãªãã£ãœãªã¥ãŒã·ã§ã³ãããŒã¿ãèªåèªèº«ã SIEMãã¢ãã¿ãªã³ã°ã·ã¹ãã ã«äžç¶ã§ããããã«ãªããŸã§ã«ããã§ã«ã·ã¹ãã ã¯ãã¡ãŒãžãåããŠããŸããããã§ããªã¢ã«ã¿ã€ã ã®å¯èŠå (ç§åäœã§ã®æž¬å®) ãåŸããããšãèªåã¯ãŒã¯ãããŒãšæåã¯ãŒã¯ãããŒã®äž¡æ¹ã§å¹æçã«è åšã«å¯Ÿå¿ã§ããããã«ãªããŸããããã«ãããã·ã¹ãã ã¯ãªã¢ã«ã¿ã€ã ã§ããžãã¯ãé©çšããŠè åšã審æ»ããéçšããŒã ã¯äººéã®ä»å ¥ãå¿ èŠãªã¢ã©ãŒãã«è¿ éã«å¯Ÿå¿ããããšãã§ããŸãããããã®å Žåããå¯èŠåãšã³ã³ãããŒã«ã坿¥ã«é£æºããŠããå¿ èŠããããŸãã
ã³ã³ãããŒã«ã®ã¹ããŒã
æ åœè ãã·ã¹ãã ãè åšãå¯ç¥ãããã察å¿ã修埩ã®ã¹ããŒããéèŠã«ãªããŸããããã€ã³ããªãžã§ã³ããªã€ã³ãã³ãããŒã¹ã® (æ»æè ã®ç®çã«åºã¥ã) 察çãè¡ãã«ã¯ãè€æ°ã®çš®é¡ã®ããŒã¿ã䜿çšããŠå€æããå¿ èŠããããŸããã€ã³ãã³ãããŒã¹ã®ã·ã¹ãã ã¯ãèªå·±åŠç¿ãšèªå·±ä¿®åŸ©ã®æ©èœãåããã·ã¹ãã ã§ãããã®ã¿ã€ãã®ã·ã¹ãã ã¯åžžã«ãã¿ãŒã³ãšåäœãåæããŠæ°ããªè åšãé²åããè åšãäºæž¬ããŸãããã®ããããªã¢ã«ã¿ã€ã ã§ãã©ãã£ãã¯ã確èªããŠè§£æã§ããã ãã§ãªããå€åããè åšã«å¯Ÿå¿ããæ°ããã«ãŒã«ããããã€ã§ããããšããããã®ã·ã¹ãã ã«ã¯äžå¯æ¬ ã§ãã
ããã§æ³šç®ãã¹ãç¹ã¯ãå¯èŠåãšã³ã³ãããŒã«ã®ã¹ããŒãã¯ãåäžã®ãããã€ãå°åã«éå®ã§ãããã®ã§ã¯ãªããšããããšã§ãã忣åã·ã¹ãã ã®æ®å (ãã«ããªãŒãžã§ã³ããã«ãã¯ã©ãŠãã®ãããã€ããä¿è·ãå¿ èŠãªäœæ¥ã®åæ£) ã«ãããç©ççãªå Žæãå¢çãè¶ããŠã¢ã¯ã·ã§ã³ãå®è¡ã§ãããœãªã¥ãŒã·ã§ã³ãå¿ èŠãšãããŠããŸããæ€åºãšä¿è·ã1ãæã®ã¿ã§è¡ãããããšã«éå®ãããšãé«éãªã»ãã¥ãªãã£ãœãªã¥ãŒã·ã§ã³ã¯ããã€ããããŸãããããããã®ãããªéçšæ¹æ³ã¯ããéçšããŸãããä»ã®æä»£ããœãããŠã§ã¢ãåŸæ¥å¡ãäžçäžã«é 眮ãããŠããã®ã¯åœããåã§ãããã»ãã¥ãªãã£ã¯ãã®ãããªç°å¢ã«å¯Ÿå¿ããŠããå¿ èŠããããŸãããã®ã«ãŒã«ã®è©³çްã«ã€ããŠã¯ããªã³ããã³ãã®ãŠã§ãããŒãAPI-First Security for Real-Time Attack Responseãããåç §ãã ãããAPI ã«å¯Ÿå¿ããã»ãã¥ãªãã£ã«ãã£ãŠããã«è¿ éãªã€ã³ã·ãã³ã察å¿ãå¯èœã«ãªãããã芧ããã ããŸãã

ã«ãŒã«4 : éçºè ãã»ãã¥ãªãã£æ åœè ãéçšããŒã ã®å šå¡ããšã³ãžãã¢ãšããŠã®èãæ¹ã身ã«ä»ãã
ç§ãã¡ã¯ããµã€ãåãããããŒã ãåå¥ã« (èŠãã¿ãªãã) äœæ¥ããŠãœãããŠã§ã¢ããªãªãŒã¹ããŠããæä»£ãããã»ãã¥ã¢ãª DevOps ãç®æã DevSecOps ã¢ãã«ãéããŠã»ãã¥ãªãã£ããšã³ãžãã¢ãªã³ã°ãéçšã®åããŒã ãçµ±åããããŸã§ã®é²åã®éã®ããå ±ã«èŠãŠããŸãããããããŸã ãããã·ã§ã³éæã®æãæ²ããã«ã¯ã»ã©é ãç¶æ³ã§ããã»ãã¥ãªãã£ããŒã ããšã³ãžãã¢ãªã³ã°ããŒã ã®ãªãŒããŒãã¡ã®å€ãããããŒã éã®æè¡çã»æåçãªæºãåããããšã§ãããéããããå®å šãªã¢ããªã±ãŒã·ã§ã³éçºãµã€ã¯ã«ãå®çŸã§ãããšèããŠããŸãããæä»£é ãã®æ £ç¿ãããŒã«ãããŸã ã«ãã®å®çŸãé»ãã§ããŸãã
ãã®äž»ãªèŠå ã®ã²ãšã€ãšããŠãDevSecOps ãçã®çµ±åã§ã¯ãªãã圢ã ãã®ããã©ãŒãã³ã¹ã¢ãŒããšåããŠããã±ãŒã¹ãããããšãæããããŸããã»ãã¥ãªãã£ãªãã¬ãŒã¿ãŒãšãã®äœ¿çšããŒã«ããããã€ãã€ãã©ã€ã³ã®æåŸã«è¿œå ããŠããDevSecOps ãå®çŸã§ããããã§ãããœãããŠã§ã¢ã®ãªãªãŒã¹ãéããªãããã§ããããŸãããçã® DevSecOps ã§ã¯ãã»ãã¥ãªãã£æ€èšŒãšè匱æ§ã¹ãã£ã³ã¯èªååããããã¹ãããã³ãããã€ã®ãã¬ãŒã ã¯ãŒã¯ã«çŽæ¥çµã¿èŸŒãŸããŸããããã«ããã»ãã¥ãªãã£ããŒã ã¯ãã·ã¹ãã 皌åã®çŽåã«ãªã£ãŠè匱æ§ã®ãªã¹ããæåºãããããã®ä¿®æ£ãæ±ããéçªåœ¹ã§ã¯ãªããéçºããŒã ã«çµ±åããããã®äžéšãšããŠååã§ããããã«ãªããŸãããã®çµæãéçºè ã¯å®å šãªéçºãã©ã¯ãã£ã¹ãçšããŠã³ãŒããèšè¿°ã§ããããã«ãªããŸãããŸããèªååããã CI/CD ãã€ãã©ã€ã³ã§ã¯æ©èœé¢ã®ãã¹ãã ãã§ãªããäžè¬çãªã»ãã¥ãªãã£ããŒã«ã®ãã¹ããå¯èœã«ãªããŸãããããŠãèªååãããã·ã¹ãã ãäœããèŠèœãšããå Žåã«åããŠãã»ãã¥ãªãã£ããŒã ã¯è©³çްãªã»ãã¥ãªãã£ç£æ»ã宿œããã¹ãã«ãšæš©éãæã£ãŠããã®ã§ãã
çã® DevSecOps ãå®çŸããããã«ã¯ãã»ãã¥ãªãã£æ åœè ãéçšæ åœè ãéçºè ã®å šå¡ãããšã³ãžãã¢ã®æèã身ã«ä»ããã»ãã¥ã¢ãªãœãããŠã§ã¢ããªãªãŒã¹ããããšã«æ³šåããå¿ èŠããããŸããã»ãã¥ãªãã£è£œåãã»ãã¥ãªãã£æ©èœã管çããæéãçããã»ãã¥ãªãã£æ åœè ãéçšè ãããšã³ãžãã¢ãžãšã·ããã§ããç°å¢ãæ§ç¯ããŸããããããã«ããã·ã¹ãã å šäœã®ä¿¡é Œæ§ãå®å šæ§ãé«ãŸãã ãã§ãªããã¹ã¿ããã®ãã£ãªã¢ãã¹ãããå å®ãããã®ã«ãªããŸãã
åªãããœãããŠã§ã¢ãäœãã«ã¯ãåªããã»ãã¥ãªãã£ãäžå¯æ¬
Amazon ã AWS ãéå§ããäŒæ¥ãã¯ã©ãŠããžã®ç§»è¡ãéå§ããŠãã15幎ãçµã¡ãŸããããã®éã«ãããéãããããŠãŒã¶ãŒäžå¿ã®ã¢ããªã±ãŒã·ã§ã³ãæ§ç¯ããããã«äœçŸãã®æ°ãããã¬ãŒã ã¯ãŒã¯ãèšèªããµãŒãã¹ãããŒã«ãç»å ŽããŸãã (ãããŠå€ãã®äŒæ¥ãããããæ¡çšããŠããŸãã)ãç§ã«ãšã£ãŠã¯å®ã«æ¥œããäœéšã§ããããœãããŠã§ã¢ãè¿ éã«ãªãªãŒã¹ããããšãšå®å šã«ãªãªãŒã¹ããšã®éã«ãã察ç«ã¯äŸç¶ãšããŠæ®ã£ãŠããŸããã仿¥ãã®åå ã解決ããããšãå¯èœã§ãã
ãã®ãããªå¯Ÿç«ãæžããã«ã¯ãçŸåšã®ããŒã ã®ããŒãºãæºããã»ãã¥ãªãã£ãœãªã¥ãŒã·ã§ã³ãã€ãŸãããœãããŠã§ã¢ã®æ§ç¯ããã»ã¹ã«ãã»ãã¥ãªãã£ãæåçã»æè¡çã«äžå¯æ¬ ãªèŠçŽ ãšããŠçµã¿èŸŒãã ã»ãã¥ãªãã£ãœãªã¥ãŒã·ã§ã³ãå¿ èŠã§ãããœãããŠã§ã¢ãè¿ éã«ãªãªãŒã¹ããã ãã§ã¯äžååã§ããé«å質ãªãœãããŠã§ã¢ãå®å šã«ãªãªãŒã¹ããªããã°ãªããŸãããFastly ã¯ãã®å®çŸããµããŒãããããã仿¥èª¬æããã«ãŒã«ã«æ²¿ã£ãŠãWeb ã¢ããªã±ãŒã·ã§ã³ãš API ãä¿è·ããã»ãã¥ãªãã£ãœãªã¥ãŒã·ã§ã³ãæ§ç¯ããããšã«æ³šåããŠããã€ããã§ããã¿ããªã§äžç·ã«ããã°ã£ãŠãããŸãããã
ãã£ãšè©³ããç¥ãããæ¹ã¯ãeããã¯ãWeb ã¢ããªã±ãŒã·ã§ã³ãš API ã»ãã¥ãªãã£ã®æ°ããªã«ãŒã«ãããåç §ãã ãããåã«ãŒã«ã«å¯Ÿå¿ããã客æ§ã®ãŠãŒã¹ã±ãŒã¹ãã確èªããã ããŸãã

