| AWS |
AWS Big Data Blog |
Share and publish your Snowflake data to AWS Data Exchange using Amazon Redshift data sharing |
https://aws.amazon.com/blogs/big-data/share-and-publish-your-snowflake-data-to-aws-data-exchange-using-amazon-redshift-data-sharing/
|
Share and publish your Snowflake data to AWS Data Exchange using Amazon Redshift data sharingAmazon Redshift is a fully managed petabyte scale data warehouse service in the cloud You can start with just a few hundred gigabytes of data and scale to a petabyte or more Today tens of thousands of AWS customersーfrom Fortune companies startups and everything in betweenーuse Amazon Redshift to run mission critical business intelligence BI dashboards … |
2022-11-17 16:43:32 |
| AWS |
AWS Big Data Blog |
Use Karpenter to speed up Amazon EMR on EKS autoscaling |
https://aws.amazon.com/blogs/big-data/use-karpenter-to-speed-up-amazon-emr-on-eks-autoscaling/
|
Use Karpenter to speed up Amazon EMR on EKS autoscalingAmazon EMR on Amazon EKS is a deployment option for Amazon EMR that allows organizations to run Apache Spark on Amazon Elastic Kubernetes Service Amazon EKS With EMR on EKS the Spark jobs run on the Amazon EMR runtime for Apache Spark This increases the performance of your Spark jobs so that they run faster … |
2022-11-17 16:38:15 |
| AWS |
AWS Machine Learning Blog |
Large-scale feature engineering with sensitive data protection using AWS Glue interactive sessions and Amazon SageMaker Studio |
https://aws.amazon.com/blogs/machine-learning/large-scale-feature-engineering-with-sensitive-data-protection-using-aws-glue-interactive-sessions-and-amazon-sagemaker-studio/
|
Large scale feature engineering with sensitive data protection using AWS Glue interactive sessions and Amazon SageMaker StudioOrganizations are using machine learning ML and AI services to enhance customer experience reduce operational cost and unlock new possibilities to improve business outcomes Data underpins ML and AI use cases and is a strategic asset to an organization As data is growing at an exponential rate organizations are looking to set up an integrated … |
2022-11-17 16:35:20 |
| AWS |
AWS Mobile Blog |
Deploy a Next.js 13 app to AWS with Amplify Hosting |
https://aws.amazon.com/blogs/mobile/amplify-next-js-13/
|
Deploy a Next js app to AWS with Amplify HostingToday AWS Amplify Hosting announces Next js and support Your app can take advantage of Next js features including server side rendering SSR API routes middleware incremental static regeneration ISR and image optimization In combination with Next js feature support Amplify Hosting is improving the experience of running Next js apps on AWS Faster builds Next js apps deploy … |
2022-11-17 16:51:00 |
| AWS |
AWS Security Blog |
Fall 2022 SOC reports now available with 154 services in scope |
https://aws.amazon.com/blogs/security/fall-2022-soc-reports-now-available-with-154-services-in-scope/
|
Fall SOC reports now available with services in scopeAt Amazon Web Services AWS we re committed to providing customers with continued assurance over the security availability and confidentiality of the AWS control environment We re proud to deliver the Fall System and Organizational Controls SOC and reports which cover April September to support our customers confidence in AWS services … |
2022-11-17 16:16:21 |
| AWS |
AWS Security Blog |
Fall 2022 SOC 2 Type 2 Privacy report now available |
https://aws.amazon.com/blogs/security/fall-2022-soc-2-type-2-privacy-report-now-available/
|
Fall SOC Type Privacy report now availableYour privacy considerations are at the core of our compliance work at Amazon Web Services AWS and we are focused on the protection of your content while using AWS services We are happy to announce that our Fall SOC Type Privacy report is now available The report provides a third party attestation of … |
2022-11-17 16:13:53 |
| AWS |
AWS |
AWS Skills Guild - Training & Certification | Amazon Web Services |
https://www.youtube.com/watch?v=XWmr-AXDCXg
|
AWS Skills Guild Training amp Certification Amazon Web ServicesHow do you cloud Watch this minute video overview of AWS Skills Guild an enablement program that helps accelerate cloud adoption across your organization and ignite your potential to bring home true transformation If you are interested in learning more about AWS Skills Guild please visit or contact one of your AWS representatives Subscribe More AWS videos More AWS events videos ABOUT AWSAmazon Web Services AWS is the world s most comprehensive and broadly adopted cloud platform offering over fully featured services from data centers globally Millions of customers ーincluding the fastest growing startups largest enterprises and leading government agencies ーare using AWS to lower costs become more agile and innovate faster AWSSkillsGuild AWS AmazonWebServices CloudComputing |
2022-11-17 16:41:47 |
| AWS |
AWS Security Blog |
Fall 2022 SOC reports now available with 154 services in scope |
https://aws.amazon.com/blogs/security/fall-2022-soc-reports-now-available-with-154-services-in-scope/
|
Fall SOC reports now available with services in scopeAt Amazon Web Services AWS we re committed to providing customers with continued assurance over the security availability and confidentiality of the AWS control environment We re proud to deliver the Fall System and Organizational Controls SOC and reports which cover April September to support our customers confidence in AWS services … |
2022-11-17 16:16:21 |
| AWS |
AWS Security Blog |
Fall 2022 SOC 2 Type 2 Privacy report now available |
https://aws.amazon.com/blogs/security/fall-2022-soc-2-type-2-privacy-report-now-available/
|
Fall SOC Type Privacy report now availableYour privacy considerations are at the core of our compliance work at Amazon Web Services AWS and we are focused on the protection of your content while using AWS services We are happy to announce that our Fall SOC Type Privacy report is now available The report provides a third party attestation of … |
2022-11-17 16:13:53 |
| python |
Pythonタグが付けられた新着投稿 - Qiita |
pandasデータフレームの列にある例外表現を、正規表現で分割する |
https://qiita.com/islifeshort/items/4c08295114e2f8dd648f
|
artistnames |
2022-11-18 01:50:27 |
| python |
Pythonタグが付けられた新着投稿 - Qiita |
Pythonでエージェントベースシミュレーション: バイアスのない伝達(Mesoudi, 2021) |
https://qiita.com/10shimizu10/items/b31927e27c8ab7f5ffc7
|
alexmesoudi |
2022-11-18 01:05:14 |
| AWS |
AWSタグが付けられた新着投稿 - Qiita |
Nuxt3をCodePipeline×AWS-CDKでAppRunnerにデプロイする |
https://qiita.com/hntk/items/951aba96aab97bfbedb3
|
apprunner |
2022-11-18 01:53:21 |
| 海外TECH |
MakeUseOf |
The 8 Best Free Calendar Apps for Android |
https://www.makeuseof.com/tag/best-free-calendar-app-android-compare-best/
|
great |
2022-11-17 16:45:14 |
| 海外TECH |
MakeUseOf |
How To Fix the "An Audio Stream Is Currently in Use" Error on Windows |
https://www.makeuseof.com/windows-audio-stream-currently-in-use/
|
How To Fix the amp quot An Audio Stream Is Currently in Use amp quot Error on WindowsThis strange error message can appear when putting Windows into hibernate or sleep mode but don t fret it s an easy fix |
2022-11-17 16:16:15 |
| 海外TECH |
DEV Community |
See How Others' Changes Compare To Your Own In IntelliJ |
https://dev.to/gitlive/see-how-others-changes-compare-to-your-own-in-intellij-48ig
|
See How Others x Changes Compare To Your Own In IntelliJGet the ultimate perspective on all the work in progress in your repository and how it compares or possibly conflicts with the changes you are making on your own branch with GitLive s new Repository View The repository view shows all branches ahead in terms of commits of your current branch and the changes on those branches grouped by author GitLive performs what is known as a three dot diff between your local HEAD on the left and the heads of all the remote branches in your repository on the right to populate the tree in the repository view This shows you all the changes between the common ancestor of your current branch and each remote branch similar to what you would see in a PR on GitHub Know when your branch falls behindWhen the default branch or your remote tracking branch is ahead of your current branch they show at the top level of the tree As you can see these let you know how many changed files you need to pull and as you probably already know it s good Git hygiene to pull these changes sooner rather than later Sharing working tree changesWith GitLive you can see the unpushed changes from local clones of your repository when you have signed in and you and your fellow contributors have chosen to share working tree changes As mentioned above GitLive performs what is known as a three dot diff between your local HEAD on the left and the heads of all the remote branches in your repository on the right You can customize this diffing process by changing what is used as the left and right sides in the diff via the view options in the tool window toolbar in IntelliJ The options available for left and right in the tree are the following Left Right Common ancestor Selecting this for the left will include all changes pushed to the remote in the diff of the branch Their remote branch Selecting this for the left will exclude all changes pushed to the remote in the diff of the branch Their remote branch Selecting this for the right will exclude any local changes not yet pushed to the remote in the diff of the branch Their working tree Selecting this for the right will include any local changes not yet pushed to the remote in the diff of the branch An asterisk appears on the icon of any branch or file with working tree changes and it s possible to see the same branch multiple times in the tree if multiple clones exist Switching between repositories in your workspaceUse the team selector to switch to a different repository view if your project or workspaces comprises more than a single repository The popup lists all the organizations and repositories found via the remotes of the local clones in your project or workspace Finally you can also select the owner of the repository to show the organization view It lists all the branches ahead of the default branch grouped by author for every repository in your organization It s great to review all work in progress across your whole organization but depending on the size that can be a lot of information Don t have the GitLive extension installed yet You can find it here and if want to learn more about the latest release check out this blog post |
2022-11-17 16:14:25 |
| Apple |
AppleInsider - Frontpage News |
Today's best early Black Friday deals on Apple, software & more |
https://appleinsider.com/articles/22/11/15/todays-best-early-black-friday-deals-on-apple-software-more?utm_medium=rss
|
Today x s best early Black Friday deals on Apple software amp moreWith Black Friday a mere days away discounts on Apple gear are hitting a fever pitch with deals on hardware ーand even some closeout steals Early Black Friday deals are live on Apple products Updated new deals added at am ET on Nov Read more |
2022-11-17 16:55:22 |
| Apple |
AppleInsider - Frontpage News |
Apple says it's too late to get iPhone 14 Pro online before Christmas |
https://appleinsider.com/articles/22/11/17/apple-says-its-too-late-to-get-iphone-14-pro-online-before-christmas?utm_medium=rss
|
Apple says it x s too late to get iPhone Pro online before ChristmasApple has shared Order By dates for online purchases to ensure arrival before Christmas for many of its products ーand some key deadlines have already passed iPhone holiday starThese are the latest dates to order holiday gifts with free shipping In most cities shoppers can get in stock items from their local Apple Store as late as December when choosing Apple Pickup or two hour delivery Read more |
2022-11-17 16:47:40 |
| Apple |
AppleInsider - Frontpage News |
How to pair a new Apple TV remote |
https://appleinsider.com/inside/apple-tv/tips/how-to-pair-a-new-apple-tv-remote?utm_medium=rss
|
How to pair a new Apple TV remoteWhile an Apple TV remote comes within the box you can easily pair a replacement Here is how to pair a new remote to your Apple TV The Apple TV remote allows you to control your Apple TV via touch or voice It has multiple functionalities to control not only the Apple TV itself but also the television it is connected to Here is how to pair a new remote to your Apple TV the remotes that can be paired and how to check your remote s battery percentage Read more |
2022-11-17 16:16:43 |
| 海外TECH |
Engadget |
Toyota's 2023 Prius Prime plug-in hybrid gets extended range and a solar roof |
https://www.engadget.com/toyota-2023-prius-prime-plug-in-hybrid-162057073.html?src=rss
|
Toyota x s Prius Prime plug in hybrid gets extended range and a solar roofToyota impressed many onlookers this week with a sleeker redesign for the Prius It turns out that the Prius Prime the plug in hybrid model is also getting the new look as well as some other upgrades For one thing Toyota says that a larger lithium ion battery will improve on the previous model s EV range of miles by over percent i e to at least miles As such you ll be able to take longer trips before starting to use gas Another neat feature is the solar roof These panels can recharge the battery when the Prius Prime is parked When you re on the road the solar roof can provide auxiliary power to functions like air conditioning to lessen the load on the lithium ion battery Toyota adds that the solar panels electrodes are concealed to maintain the plug in hybrid s sleek look A focus for Prius Prime is to allow it to have a similar ethos to the new Prius hybrid model but with a little something extra ーmore performance technology safety and even a little attitude the automaker said ToyotaThe model is lighter and more rigid than previous ones Toyota claims while it has a low center of gravity and larger luggage capacity The vehicle is two inches lower an inch wider and an inch longer than the previous Prius Prime with a hip point that s nearly an inch lower too In terms of performance Toyota says the fifth generation hybrid powertrain and liter engine help deliver a horsepower increase of nearly hp over the last gen model to hp The vehicle can seemingly go from to mph in seconds too As with the base Prius the Prius Prime supports both Apple CarPlay and Android Auto Toyota s own Intelligent Assistant enables you to search for directions tweak audio settings change cabin temperatures and more with voice commands To help you figure out how to get to where you re going the Cloud Navigation system uses the latest available map traffic and routing information Alternatively you can get some help from a live agent via Destination Assist Other features include a JBL Premium Audio system with eight speakers and six USB C ports A digital key system is available on some trims as part of the Remote Connect service enabling you to lock and unlock doors start the engine and more with your phone ToyotaElsewhere the Prius Prime comes with Blind Spot Monitor with Rear Cross Traffic Alert as standard on all trims Front and Rear Parking Assist with Automatic Braking is available as an option on SE variants and as standard on the XSE and XSE Premium grades Those who opt for the XSE Premium trim will have the option to use a Panoramic View Monitor feature that allows for a live rotating degree view around the vehicle as well as a hands free system that can help with parallel parking and reversing into a parking space Although Toyota will announce pricing and availability for the base Prius by the end of the year you ll need to wait longer to find out that info for the Prius Prime The company says it will reveal pricing and the on sale date for the plug in hybrid in the first half of |
2022-11-17 16:20:57 |
| 海外TECH |
Engadget |
Lyft's app now lets you request a tow truck and schedule maintenance |
https://www.engadget.com/lyft-car-maintenance-roadside-assistance-161525968.html?src=rss
|
Lyft x s app now lets you request a tow truck and schedule maintenanceLyft s app is now more useful for taking care of your own car not just hailing a ride in someone else s You now have access to a trio of maintenance and parking features in the US through a dedicated app section You can ask for roadside assistance through Agero including tow trucks SpotHero now helps you reserve parking And if you need a repair or tune up you can soon book car maintenance at Goodyear Auto centers Not surprisingly Lyft is offering some incentives to Pink subscribers A membership covers four roadside help events per year and Goodyear s services are percent off Most of the features are available nationwide although you can t get roadside help in Nevada Parking services are only available in cities including Chicago Denver New York City and San Francisco although Lyft says more regions are coming soon It s not hard to see the strategy behind these additions On top of boosting Pink subscriptions this could keep you in Lyft s ecosystem even if you have no need for ride hailing bikes or scooters The company can help you through all phases of your life as fleet head Jody Kelman explains Still you might not mind if you re willing to trade flexibility in providers for the convenience of booking all your car services in a single app This might also represent slight competitive advantage over main rival Uber whose app still revolves around on demand rides In theory you might stick to Lyft simply because it addresses more of your transportation needs |
2022-11-17 16:15:25 |
| Cisco |
Cisco Blog |
Cloud Networking Resources from Cisco Developer Relations – A Deep Dive |
https://blogs.cisco.com/datacenter/cloud-networking-resources-from-cisco-developer-relations-a-deep-dive
|
Cloud Networking Resources from Cisco Developer Relations A Deep DiveWithin the Developer Relations ecosystem a lot of focus both in terms of creation as well as discussion with others is on the content that allows people to explore and develop their skills |
2022-11-17 16:07:45 |
| 海外TECH |
CodeProject Latest Articles |
Convert HTML to PDF with Chrome in ASP.NET WebForms |
https://www.codeproject.com/Articles/5347275/Convert-HTML-to-PDF-with-Chrome-in-ASP-NET-WebForm
|
chrome |
2022-11-17 16:10:00 |
| 海外TECH |
WIRED |
Frank Green’s 3-in-1 Is the Only Cup You Need |
https://www.wired.com/story/frank-greens-3-in-1-is-the-only-cup-you-need/
|
caffeine |
2022-11-17 16:02:11 |
| 金融 |
◇◇ 保険デイリーニュース ◇◇(損保担当者必携!) |
保険デイリーニュース(11/18) |
http://www.yanaharu.com/ins/?p=5080
|
三菱ufj |
2022-11-17 16:14:41 |
| 金融 |
金融庁ホームページ |
金融審議会「市場制度ワーキング・グループ」(第22回)議事次第を公表しました。 |
https://www.fsa.go.jp/singi/singi_kinyu/market-system/siryou/20221118.html
|
金融審議会 |
2022-11-17 18:00:00 |
| 金融 |
金融庁ホームページ |
金融安定理事会及び気候変動リスク等に係る金融当局ネットワークによる「各法域における気候シナリオ分析:初期段階の知見と教訓」について掲載しました。 |
https://www.fsa.go.jp/inter/fsf/20221117/20221117.html
|
気候変動 |
2022-11-17 17:00:00 |
| 金融 |
金融庁ホームページ |
参議院財政金融委員会における鈴木金融担当大臣の「破綻金融機関の処理のために講じた措置の内容等に関する報告」概要説明について公表しました。 |
https://www.fsa.go.jp/common/diet/houkoku/041117/20221117.html
|
財政金融委員会 |
2022-11-17 17:00:00 |
| ニュース |
BBC News - Home |
Energy bills to rise to £3,000 a year from April |
https://www.bbc.co.uk/news/business-63661098?at_medium=RSS&at_campaign=KARANGA
|
household |
2022-11-17 16:09:46 |
| ニュース |
BBC News - Home |
Autumn Statement: Hunt has picked pockets of entire country, Labour says |
https://www.bbc.co.uk/news/uk-politics-63662142?at_medium=RSS&at_campaign=KARANGA
|
recession |
2022-11-17 16:33:09 |
| ニュース |
BBC News - Home |
UK faces biggest fall in living standards on record |
https://www.bbc.co.uk/news/business-63659936?at_medium=RSS&at_campaign=KARANGA
|
incomes |
2022-11-17 16:39:48 |
| ニュース |
BBC News - Home |
Electric car drivers must pay tax from 2025 |
https://www.bbc.co.uk/news/business-63660321?at_medium=RSS&at_campaign=KARANGA
|
vehicles |
2022-11-17 16:11:20 |
| ニュース |
BBC News - Home |
Royal Mail asks to stop Saturday letter deliveries |
https://www.bbc.co.uk/news/business-63660320?at_medium=RSS&at_campaign=KARANGA
|
deliveriesit |
2022-11-17 16:23:43 |
| ニュース |
BBC News - Home |
Queen so greatly missed, says Camilla in first speech as Queen Consort |
https://www.bbc.co.uk/news/uk-63659233?at_medium=RSS&at_campaign=KARANGA
|
comfort |
2022-11-17 16:23:23 |
| ニュース |
BBC News - Home |
UK weather: Rain warnings as flooding hits roads and rail |
https://www.bbc.co.uk/news/uk-63659585?at_medium=RSS&at_campaign=KARANGA
|
scotland |
2022-11-17 16:34:17 |
| ニュース |
BBC News - Home |
Ukraine war: Gas plant hit in latest Russian strikes |
https://www.bbc.co.uk/news/world-europe-63659370?at_medium=RSS&at_campaign=KARANGA
|
bombardments |
2022-11-17 16:11:08 |
| ニュース |
BBC News - Home |
Autumn Statement: Is money for schools, social care and NHS enough? |
https://www.bbc.co.uk/news/uk-63662726?at_medium=RSS&at_campaign=KARANGA
|
areas |
2022-11-17 16:37:30 |
| ニュース |
BBC News - Home |
Will chancellor Jeremy Hunt's plan to fix the UK economy work? |
https://www.bbc.co.uk/news/business-63666574?at_medium=RSS&at_campaign=KARANGA
|
chancellor |
2022-11-17 16:44:50 |
| ニュース |
BBC News - Home |
What awaits Brittney Griner in Russian penal colony? |
https://www.bbc.co.uk/news/world-europe-63660402?at_medium=RSS&at_campaign=KARANGA
|
moscow |
2022-11-17 16:23:06 |
| IT |
週刊アスキー |
「Lies of P」アジア最速試遊、ソウルライクの新たな“死にゲー”の名作誕生の予感! |
https://weekly.ascii.jp/elem/000/004/113/4113677/
|
gstar |
2022-11-18 01:15:00 |
| GCP |
Cloud Blog |
Introducing Cloud Armor features to help improve efficacy: advanced rule tuning and auto deploy |
https://cloud.google.com/blog/products/identity-security/introducing-cloud-armor-features-to-help-improve-efficacy/
|
Introducing Cloud Armor features to help improve efficacy advanced rule tuning and auto deployAt Google Cloud Next in October we announced the Preview release of advanced rule tuning for Cloud Armor which can provide customers more granular control over how they apply our pre configured Web Application Firewall WAF rules We also announced the Preview of our auto deploy option for proposed mitigating rules generated by Cloud Armor Adaptive Protection our machine learning based attack detection and response capability Advanced rule tuning for pre configured WAF rulesWith the advanced rule tuning capabilities customers may now Tune preconfigured WAF rules by sensitivity levelDeploy preconfigured WAF rules using signature opt in or opt out modeExclude request fields from WAF rule inspection Advanced rule tuning can help customers make rules more effective and reduce the noise from protected applications which expect traffic that matches the underlying signatures It is considered a best practice to enable verbose logging to help quickly identify which signatures and fields to omit from a given deployment Configuration by Sensitivity Level Sometimes normal traffic to protected resources can cause a preconfigured WAF rule to trigger even though the request is safe and well formed The result is a false positive While it doesn t happen often when it does it can be annoying and distracting With the latest release of Cloud Armor the configuration options and process for rule tuning have been expanded which can greatly simplify how one can address such cases Customers can now specify a sensitivity level which determines which group of signatures in the preconfigured WAF rule are used to inspect an incoming request thus alleviating the need to list out each specific signature individually The OWASP ModSecurity Core Rule Set CRS groups specific threat signature values into logical groupings called Paranoia Levels which Cloud Armor implements as the sensitivity level field in its rule language Because we added a level there are five sensitivity levels Sensitivity level No rules applied Signature opt in modeSensitivity levels Sliding scale of signature sensitivity with level corresponding to the highest fidelity signatures which are least likely to generate false positives and level corresponding to the highest sensitivity signatures which are least likely to generate the chances of a false negative The Cloud Armor documentation describes in more detail which signatures are associated with which severity level In general the higher the sensitivity level the lower the risk of permitting a malicious request through false negative However high sensitivity increases the chance of noisy alerts without further tuning of the rules Depending on your defense strategy you may wish to start with a more aggressive posture for especially sensitive applications such as level and relax the rules based on observed noise from your protected application however most customers tend to start with a permissive deployment such as level and tighten as necessary Sensitivity level example code block StructValue u code u evaluatePreconfiguredWaf sqli v stable sensitivity u language u u caption lt wagtail wagtailcore rich text RichText object at xeadc gt Signature Opt out and Opt in ModeTo further tune your rules you can also now opt in or opt out of certain signatures in a rule set Opt out Allows you to disable a signature that you don t want to be used in the current rule invocationOpt in The inverse function of opt out you select only the signatures that you want Cloud Armor to evaluateOpt out example code block StructValue u code u evaluatePreconfiguredWaf php v stable sensitivity opt out rule ids owasp crs v id php u language u u caption lt wagtail wagtailcore rich text RichText object at xeadcc gt This rule applies sensitivity level for the CRS rule for PHP while excluding the signature owasp crs v id php which is normally part of the level grouping To apply the opt in rule ids operation the sensitivity level has to be explicitly set as no rules applied Opt in example code block StructValue u code u evaluatePreconfiguredWaf cve canary sensitivity opt in rule ids owasp crs v id cve owasp crs v id cve u language u u caption lt wagtail wagtailcore rich text RichText object at xeadc gt In the opt in example above Cloud Armor will only process the two Common Vulnerabilities and Exposures CVE signatures specified rather than applying the standard Cloud Armor cve canary rules set which currently contains four signatures The opt in approach can be helpful in two cases The first is when most of the signature rules are not going to be processed so rather than listing a longer set of signatures to exclude you list only the handful of signatures to evaluate The second is when you always want to verify newly released signatures before deploying them Such a case can arise when new signatures are added to an existing rule such as when a new critical zero day vulnerability drives new signatures as occurred with our response to Logj Using opt in IDs the new signatures will not automatically be evaluated you can first test and verify them in your specific environment and then deploy them when you are ready By combining Common Expression Language CEL with preconfigured WAF rules you can customize opt in opt out use cases you need to support if specific URLs need specialized processing while preserving the inspection of the preconfigured WAF signatures elsewhere Combining CEL rule with Opt out rule code block StructValue u code u request path matches auth login api auth login amp amp evaluatePreconfiguredWaf rce v stable sensitivity opt out rule ids owasp crs v id rce u language u u caption lt wagtail wagtailcore rich text RichText object at xeadc gt In the CEL rule example the rule evaluates the remote code execution CRS rule at a sensitivity level of while excluding one signature value only for requests which attempt to reach the login URL based on the specified regular expression match Optionally exclude request fields from inspection There are times when you expect incoming requests to contain values such as special characters that could trigger a signature in the preconfigured WAF rules In these circumstances you still want Cloud Armor to evaluate the request for possible vulnerabilities For these situations you can now configure field level exclusions to preconfigured WAF rules within Cloud Armor policy You can now configure Cloud Armor rules to exclude from evaluation specific fields request headers cookies query parameters and URL paths based on a string pattern match on the field name You can articulate a string sequence to match on a field name using any one of the following operators EQUALSSTARTS WITHENDS WITHCONTAINSEQUALS ANYOnce you have identified the specific WAF rule and offending signature you can run a gCloud command to tell Cloud Armor to omit the undesired field from evaluation while processing the rule against the remainder of the request Field exclusion example code block StructValue u code u gcloud beta compute security policies rules add preconfig waf exclusion r n security policy my policy r n target rule set xss v stable r n target rule ids owasp crs v id xss owasp crs v id xss r n request header to exclude op STARTS WITH val abc u language u u caption lt wagtail wagtailcore rich text RichText object at xeacf gt In the example above the exclusion is configured for Cloud Armor to evaluate incoming requests while omitting headers that begin with “abc from inspection against two signatures owasp crs v id xss and owasp crs v id xss All other signatures within the “xss v stable rule set will still be included in the evaluation if they are included in the rule at priority Auto Deploy Adaptive Protection s suggested rulesCloud Armor s Adaptive Protection video can automatically detect incoming attacks and can analyze the attack traffic to recommend mitigations in near real time Cloud Armor mitigated one of the largest known DDoS attacks on record using this functionality Leveraging Google s machine learning capabilities Adaptive Protection can analyze traffic flowing to the protected applications to establish a baseline of good traffic and can detect potential attacks that deviate from the baseline Alerts include the dynamically calculated signature of the attack and Adaptive Protection proposes a WAF rule to mitigate it When customers come to trust and rely on Adaptive Protection they generally ask us to help cut the human out of the loop when a mitigating rule is generated We have been hearing this request this past year and a half With Adaptive Protection s new auto deploy feature in Preview customers can now have Cloud Armor automatically deploy the Adaptive Protection generated rules based on the following criteria Load threshold The spike in the load of the attacked application or backend service Confidence threshold The confidence score indicating the likelihood of attackImpacted baseline threshold The percentage of baseline traffic that may be affected by the ruleExpiration How long you want the rule to remain in placePreviously customers needed to manually review the alert and suggested rule then deploy the rule It didn t take long before customers were convinced of Adaptive Protection s accuracy and asked us to automate those deployment steps With the new auto deploy feature Cloud Armor customers can automatically deploy rules with a desired action like block or rate limit when the configured criteria threshold values are satisfied Next stepsCloud Armor s improved configuration options for WAF rule writing can help increase how effective the rules are and make them more adaptable to the needs of the applications they re protecting These tuning capabilities can help reduce noise and simplify deployment while ensuring maximal security where appropriate We ve also helped customers react faster to and reduce the damage from Layer attacks by providing the option for automatic deployment of the Adaptive Protection feature s recommended blocking rules For more information consult our documentation contact your Google Cloud sales representative or reach out to us in the Google Cloud Platform Community s security Slack channel |
2022-11-17 17:00:00 |
| GCP |
Cloud Blog |
How one e-commerce platform went from data mistrust to data confidence |
https://cloud.google.com/blog/topics/partners/prestashop-leverages-google-cloud-and-partners-to-gain-better-data-insights/
|
How one e commerce platform went from data mistrust to data confidenceSince PrestaShop has helped companies unlock the power of e commerce through its open source platform Over merchants worldwide use the PrestaShop platform to grow their business and serve online shoppers Our open source strategy to ecommerce enablement sets us apart says Rémi Paulin Ph D Data Architect at PrestaShop Customization is becoming more crucial to retailers and our open source platform allows companies to continually evolve their sites and services to stand out from competitors As PrestaShop grew it wished to derive more value from its data but the company ran into issues caused by a legacy siloed architecture that negatively impacted data consistency and accessibility Let s look at how PrestaShop works with Google Cloud and partners Fivetran and Hightouch to gain more control over data enable a beyond BI data strategy and increase employee engagement from less than to more than Improving trust in dataCore systems at PrestaShop including SQL and NoSQL databases and SaaS Applications were siloed each presenting its own data often captured from different sources such as support tickets marketing engagement purchase activity and product usage This setup made data overall inconsistent as no single system would contain a source of truth resulting in many inefficiencies poor collaboration across teams and a reluctance to use data to support key decisions Not long ago less than of the company regularly relied on data so we were missing opportunities to make more data driven decisions says Paulin Data was underutilized and people were rapidly losing trust in data Until recently wild dataflows have resulted in a lack of data quality and consistency and poor data accessibility PrestaShop set out to design a new architecture to address past challenges such as lack of data consistency and improve data accessibility Google Cloud along with Hightouch and Fivetran allowed us to build a modern stack to solve these challenges and support our beyond BI data strategy Building a modern data stackThe first step was to build a robust data ingestion pipeline After considering several vendors PrestaShop chose to work with Fivetran to extract data from SaaS applications including Zendesk HubSpot and GitHub to load into BigQuery They also use Datastream to stream Change Data Capture CDC data from transactional databases into BigQuery in real time Fivetran and Datastream are no ops efficient and highly reliable and relieve our Data Engineers of management tasks This brings us a high degree of confidence to build the rest of the stack atop these services says Paulin PrestaShop relies on several Google Cloud solutions including Dataflow and a managed Spark service by Ascend io for data transformation It also uses Looker for its semantic modeling capacities and as a self serve data platform As the company continued on its journey to transform how it manages and benefits from data it engaged Hightouch to enable data accessibility through activation Sitting on top of Looker Hightouch unlocks all data models for operational intelligence For example in just a few days the team built a customer knowledge model combining data from multiple sources and used Hightouch to sync data from the semantic layer to Zendesk via Reverse ETL This allowed the care team to make more data informed decisions speeding up the time to resolve support tickets submitted through Zendesk by Hightouch feels like a natural extension of Looker and reinforces the position of the semantic data model as the single source of truth says Paulin It powers a variety of Data Activation use cases supporting our beyond BI strategy by providing teams with access to data when and where they need it to improve everyday operations This has a big impact on the company bolstering employee trust in available data Taming dataflows and building a single source of truth Becoming data drivenIn less than six months PrestaShop managed to get the entire data stack up and running build over data models and engage over employees with a small team of only two Data Engineers Data is now accessible to every stakeholder within the company regardless of their technical abilities says Paulin PrestaShop has already seen much progress in its shift to a more data driven company and is excited to roll out more self service intelligence capabilities in the future Google Cloud drives home a culture of simplicity around our data stack which is essential for us especially given the small size of our engineering team says Paulin Fivetran and Hightouch share this culture of simplicity Together they offer strong foundations to support our data needs Dashboards which the company had always had an appetite for are seamlessly created today Before moving to Looker a full fledged dashboard would take an average of six weeks to develop Now it takes less than two days and a simple dashboard can be created autonomously by business users in as little as minutes Furthermore data usage goes beyond dashboards Thanks to Looker s self service exploration capabilities many stakeholders can now glean insights surrounding product issues and business opportunities Thanks to Hightouch teams can activate their data to make better and smarter operational decisions This is a big leap forward and one of many to come as we continue to add new models activate our data and onboard more users says Paulin Given our global reach and unique approach to e commerce enablement we know this is just the start of the great things we can accomplish with Google Cloud Fivetran and Hightouch Check out Fivetran on Google Cloud Marketplace or sign up for a free Hightouch workspace to learn more about what partners can do for your business |
2022-11-17 17:00:00 |
コメント
コメントを投稿