
- TOP
- ã¿ã°äžèЧ
- ã²ãŒã
ã²ãŒã
ã€ãã³ã
ãã¬ãžã³
æè¡ããã°
æ¬èšäºã¯ 2026 幎 6 æ 2 æ¥ã«å
¬éããã â Announcing durability for Amazon ElastiCache for Valkey â ã翻蚳ãããã®ã§ãã Amazon ElastiCache ã¯æ°åäžã®ã客æ§ã«ãµãŒãã¹ãæäŸããValkeyãMemcachedãRedis OSS ã®ã¯ãŒã¯ããŒãå
šäœã§æ¯ç§æ°ååã®ãªã¯ãšã¹ãããã€ã¯ãç§ã®ã¬ã€ãã³ã·ãŒã§åŠçããŠããŸããå€ãã®çµç¹ã§ã¯ãElastiCache ã®ãã«ã AZ ã¬ããªã±ãŒã·ã§ã³ãšèªåãã§ã€ã«ãªãŒããŒãã¬ãžãªãšã³ã¹ã®èŠä»¶ãæºãããŠããŸãããã客æ§ããã£ãã·ã¥ã ãã§ãªãæ°žç¶çãªããŒã¿ã¹ãã¢ãšã㊠ElastiCache ãæ¡çšããã±ãŒã¹ãå¢ããã«ã€ããããŒã¿æå€±ãäž»èŠãªæžå¿µäºé
ãšãªã£ãŠããŸãã æ¬æ¥ã Amazon ElastiCache for Valkey ã®èä¹
æ§æ©èœã®æäŸéå§ãçºè¡šããŸããããã«ãããããŒã¿æå€±ã蚱容ã§ããªãã¯ãŒã¯ããŒãã« ElastiCache ã䜿çšã§ããããã«ãªããŸãã ãã®èšäºã§ã¯ãèä¹
æ§ãã©ã®ããã«æ©èœãããã説æããã¢ãŒããã¯ãã£ã詳ããèŠãŠãããèä¹
æ§ã ElastiCache ã§ã客æ§ãæåŸ
ãããã€ã¯ãç§åäœã®ã¬ã€ãã³ã·ãŒãæãªããªãããšã瀺ãããã©ãŒãã³ã¹çµæãå
±æããŸãã èä¹
æ§ã®ä»çµã¿ ElastiCache ã®èä¹
æ§ã¯ããã«ã AZ ãã©ã³ã¶ã¯ã·ã§ã³ãã°ã䜿çšããŠãã€ã³ãã©ã¹ãã©ã¯ãã£é害æã®é«éãªã«ããªãšåèµ·åã«ããããŒã¿ä¿è·ãæäŸããŸããElastiCache 㯠2 ã€ã®èä¹
æ§ãªãã·ã§ã³ãæäŸããŠããŸãããŒãããŒã¿æå€±ãèšèšããåææžã蟌ã¿ãšããã€ã¯ãç§åäœã®æžã蟌ã¿ã¬ã€ãã³ã·ãŒãå®çŸããéåææžã蟌ã¿ã§ãã åææžã蟌㿠ã¯ãããŒã¿æå€±ã蚱容ã§ããªãå Žåã«é©ããéžæè¢ã§ããElastiCache ã¯ãã¯ã©ã€ã¢ã³ãã«å¿çããåã«ããã«ã AZ ãã©ã³ã¶ã¯ã·ã§ã³ãã°å
ã®å°ãªããšã 2 ã€ã®ã¢ãã€ã©ããªãã£ãŒãŸãŒã³ (AZ) ã«ããŒã¿ãæ°žç¶åããŸãã確èªå¿çãããæžã蟌ã¿ã¯ãã¹ãŠæ°žç¶çã§ãããæžã蟌ã¿ã¬ã€ãã³ã·ãŒã¯ 1 æ¡å°ã®ããªç§ã§ãããã©ã€ããªããŒãã¯åŒ·ãæŽåæ§ãæã¡ããã©ã€ããªã§ã®èªã¿åãæäœã¯åžžã«ææ°ã®ããŒã¿ãè¿ããŸãããã®æŽåæ§ã¯ãã§ã€ã«ãªãŒããŒæã«ãä¿æãããŸããåææžã蟌ã¿ã¯ãRAG ã¢ããªã±ãŒã·ã§ã³åãã®ãã¬ããžããŒã¹ãAI ãšãŒãžã§ã³ãã®é·æã¡ã¢ãªãAI ãšãŒãžã§ã³ãã®ã¯ãŒã¯ãããŒç¶æ
ãæ±ºæžããŒã¯ã³åãã¹ããªãŒãã³ã°ã¡ã¿ããŒã¿ãã²ãŒã ãã¬ã€ã€ãŒã®ç¶æ
ããªã¢ã«ã¿ã€ã åšåº«ç®¡çãªã©ãæžã蟌ã¿ã®æå€±ã誀ã£ãã¢ããªã±ãŒã·ã§ã³åäœãåŒãèµ·ããå Žåã«æé©ã§ãã éåææžã蟌㿠ã¯ãããŒã¿ã埩æ§å¯èœã§ãããã®ã®ããœãŒã¹ããã®åæ§ç¯ãé
ãããŸãã¯éçšã³ã¹ããé«ãå Žåã«é©ããéžæè¢ã§ããéåææžã蟌ã¿ã§ã¯ãã¯ã©ã€ã¢ã³ããžã®å¿çåŸã«ããŒã¿ã Multi-AZ ãã©ã³ã¶ã¯ã·ã§ã³ãã°ã«æ°žç¶åãããããã远å ã³ã¹ããªãã§ãã€ã¯ãç§åäœã®æžã蟌ã¿ã¬ã€ãã³ã·ãŒãç¶æã§ããŸããäžãäžé害ãçºçããå Žåãæå€§ 10 ç§éã®ã³ããããããŠããªãããŒã¿ã倱ãããå¯èœæ§ããããŸããæœåšçãªããŒã¿æå€±ãå¶éãããããElastiCache ã¯èä¹
æ§ã©ã°ãç£èŠããŸããããã¯ããŸã ãã°ã«æ°žç¶åãããŠããªãæãå€ãæžã蟌ã¿ããã®çµéæéã§ãããã®ã©ã°ã 10 ç§ã«éãããšããã©ã€ããªããŒãã¯ãã°ã远ãã€ããŸã§æžã蟌ã¿ã®åãå
¥ãã忢ããŸããéåææžã蟌ã¿ã¯ãã»ãã·ã§ã³ã¹ãã¢ãã²ãŒã ã®ãªãŒããŒããŒãããªã¢ã«ã¿ã€ã åæãäºåããŒããããããŒã¿ã»ãããªã©ãæ°ç§éã®æè¿ã®æžã蟌ã¿ã倱ãããšã¯èš±å®¹ã§ãããã®ã®ããã倧ããªã®ã£ãããçãããšèª¿æŽã«ã³ã¹ãããããå Žåã«æé©ã§ãã èä¹
æ§ãæå¹ã«ããŠããªã ElastiCache ã¯ãããŒã¿ããªã³ããã³ãã§ç°¡åã«åæ§ç¯ã§ããå Žåã«é©ããŠããŸããå
ãšãªãããŒã¿ããŒã¹ã«åºã¥ããªãŒãã¹ã«ãŒãã£ãã·ã¥ãã¬ãŒãå¶éã«ãŠã³ã¿ãŒããŸãã¯æ¬ èœãããšã³ããªããã®å Žã§ååŸãŸãã¯åèšç®ã§ããã¯ãŒã¯ããŒãã«äœ¿çšããŠãã ããã åææžã蟌ã¿ãšéåææžã蟌ã¿ã®äž¡æ¹ã§ããã€ã¯ãç§åäœã®èªã¿åãã¬ã€ãã³ã·ãŒãç¶æãããŸãããããã®ãªãã·ã§ã³ã§ããã¬ããªã«ããŒãã¯çµææŽåæ§ãæã¡ãã¬ããªã«ããã®èªã¿åãæäœã¯åžžã«ææ°ã®æžã蟌ã¿ãåæ ãããšã¯éããŸãããæ¬¡ã®è¡šã«ã2 ã€ã®èä¹
æ§ãªãã·ã§ã³ããŸãšããŸãã åææžã蟌㿠éåææžãèŸŒã¿ æšæºçãªèªã¿åãã¬ã€ãã³ã·ãŒ ãã€ã¯ãç§ ãã€ã¯ãç§ æšæºçãªæžã蟌ã¿ã¬ã€ãã³ã·ãŒ 1 æ¡ããªç§ ãã€ã¯ãç§ ããŒã¿æå€±ã«é¢ããä¿èšŒ ããŒã¿æå€±ãŒãã確èªãããæžã蟌ã¿ã¯ãã¹ãŠãå°ãªããšã 2 ã€ã®ã¢ãã€ã©ããªãã£ãŒãŸãŒã³ã«ããã£ãŠæ°žç¶åãããŸã äžãäžé害ãçºçããå Žåãæå€§ 10 ç§éã®ç¢ºèªãããæžã蟌ã¿ã倱ãããå¯èœæ§ããããŸãã äžè¬çãªãŠãŒã¹ã±ãŒã¹ RAG ã¢ããªã±ãŒã·ã§ã³ã®ãã¬ããžããŒã¹ãAI ãšãŒãžã§ã³ãã®é·æã¡ã¢ãªãšã¯ãŒã¯ãããŒç¶æ
ãæ¯æãããŒã¯ã³åããªã¢ã«ã¿ã€ã åšåº«ç®¡ç ã»ãã·ã§ã³ã¹ãã¢ãã²ãŒã ãªãŒããŒããŒãããªã¢ã«ã¿ã€ã åæãäºåããŒãæžã¿ããŒã¿ã»ãã ã¢ãŒããã¯ã㣠次ã®å³ã¯ãMulti-AZ ã®ãã©ã³ã¶ã¯ã·ã§ã³ãã°ã䜿çšãã ElastiCache ã®èä¹
æ§ãã©ã®ããã«æ©èœãããã瀺ããŠããŸãã åææžãèŸŒã¿ åææžã蟌ã¿ãèšå®ãããã¯ã©ã¹ã¿ãŒã«ã¯ã©ã€ã¢ã³ããæžã蟌ã¿ã³ãã³ããéä¿¡ããå Žå: ãã©ã€ããªããŒããã¡ã¢ãªå
ã§æžã蟌ã¿ã³ãã³ããåä¿¡ããŠå®è¡ããŸãã æžã蟌ã¿ã¯ãå°ãªããšã 2 ã€ã®ã¢ãã€ã©ããªãã£ãŸãŒã³ã«ãŸããã Multi-AZ ãã©ã³ã¶ã¯ã·ã§ã³ãã°ã«æ°žç¶åãããŸãã æ°žç¶åã確èªããããšããã©ã€ããªã¯ã¯ã©ã€ã¢ã³ãã«æåã¬ã¹ãã³ã¹ãè¿ããŸãã ããã¯ãã¯ã©ã€ã¢ã³ããæåã¬ã¹ãã³ã¹ãåãåã£ãåŸããã®æžã蟌ã¿ãæ°žç¶åãããããšãæå³ããŸãããã©ã€ããªããŒãããã®çŽåŸã«é害ãèµ·ãããŠãæžã蟌ã¿ã¯å€±ããããæ°ãããã©ã€ããªãžã®ãã§ã€ã«ãªãŒããŒåŸãå«ãããã©ã€ããªããã®ä»åŸã®ãã¹ãŠã®èªã¿åãã«ãã®æžã蟌ã¿ãåæ ãããŸãããã¬ãŒããªãã¯æžã蟌ã¿ã¬ã€ãã³ã·ãŒã§ããåæžã蟌ã¿ã¯ãã©ã³ã¶ã¯ã·ã§ã³ãã°ãžã® AZ éãããã¯ãŒã¯ã©ãŠã³ãããªãããçºçãããããæ°ããªç§ã®æžã蟌ã¿ã¬ã€ãã³ã·ãŒãçããŸãã éåææžã蟌㿠éåææžã蟌ã¿ãèšå®ãããã¯ã©ã¹ã¿ãŒã«ã¯ã©ã€ã¢ã³ããæžã蟌ã¿ã³ãã³ããéä¿¡ããå ŽåïŒ ãã©ã€ããªããŒããã¡ã¢ãªå
ã§æžã蟌ã¿ã³ãã³ããåä¿¡ããŠå®è¡ããŸãã ãã©ã€ããªã¯ãã€ã¯ãç§ã®ã¬ã€ãã³ã·ãŒã§å³åº§ã«ã¯ã©ã€ã¢ã³ãã«å¿çãè¿ããŸãã ããã¯ã°ã©ãŠã³ãã§ãæžã蟌ã¿ã¯ Multi-AZ ãã©ã³ã¶ã¯ã·ã§ã³ãã°ã«æžã蟌ãŸããŸãã ã¯ã©ã€ã¢ã³ããæåã¬ã¹ãã³ã¹ãåä¿¡ããæç¹ã§ã¯ãæžã蟌ã¿ã¯ãã©ã€ããªããŒãã®ã¡ã¢ãªå
ã«ã®ã¿ååšããŸãããŸã ãã©ã³ã¶ã¯ã·ã§ã³ãã°ã«ã¯æžã蟌ãŸããŠããŸãããæžã蟌ã¿ãæ°žç¶åãããåã«ãã©ã€ããªããŒãã«é害ãçºçãããšããã®æžã蟌ã¿ã¯å€±ãããŸãããããéåææžã蟌ã¿ã®åºæ¬çãªãã¬ãŒããªãã§ãããã€ã¯ãç§åäœã®æžã蟌ã¿ã¬ã€ãã³ã·ãŒãšåŒãæãã«ãããŒã¿æå€±ãçºçãããéãããæéæ ãååšããŸãã éåææžã蟌ã¿ã®èä¹
æ§ãããã¡ éåææžã蟌ã¿ã«ããæœåšçãªããŒã¿æå€±ãå¶éãããããElastiCache ã¯æå€§ 10 ç§ã®èä¹
æ§ãããã¡ã匷å¶ããŸãããã©ã€ããªããŒãã¯ãåãå
¥ããããããŸã Multi-AZ ãã©ã³ã¶ã¯ã·ã§ã³ãã°ã«æ°žç¶åãããŠããªãæãå€ãæžã蟌ã¿ã®çµéæéãç¶ç¶çã«è¿œè·¡ãããã®å€ã DurabilityLag ã¡ããªã¯ã¹ãšã㊠Amazon CloudWatch ã«å
¬éããŸãã ãã®çµéæéã 10 ç§æªæºã§ããéããããŒãã¯éåžžéãæ°ããæžã蟌ã¿ãåãå
¥ãç¶ããŸãããããã¡ã 10 ç§ãè¶
ããŠå¢å ããå ŽåãäŸãã°ãã©ã³ã¶ã¯ã·ã§ã³ãã°ãžã®äžæçãªãããã¯ãŒã¯èŒ»èŒ³ãåå ã§ããå Žåããã©ã€ããªã¯è¿œãã€ããŸã§äžæçã«åä¿¡ããæžã蟌ã¿ã³ãã³ããæåŠããŸãããã®æéäžãèªã¿åãæäœã¯ãã€ã¯ãç§ã®ã¬ã€ãã³ã·ãŒã§æäŸããç¶ããŸãããã©ã³ã¶ã¯ã·ã§ã³ãã°ã远ãã€ããèä¹
æ§ã©ã°ããããå€ãäžåããšãæåä»å
¥ãå¿
èŠãšããæžã蟌ã¿ãèªåçã«åéãããŸããå®éã«ã¯ãã»ãšãã©ã®æžã蟌ã¿ã¯ 10 ç§ã®ãããå€å
ã«ååæ°žç¶åãããã»ãšãã©ã®ã¯ã©ã¹ã¿ãŒã¯éåžžã®åäœæ¡ä»¶äžã§æåŠç¶æ
ã«å
¥ãããšã¯ãããŸãããéåæèä¹
æ§ã¯ã©ã¹ã¿ãŒã«ãã©ãã£ãã¯ãéä¿¡ããããã«ã¯ã©ã€ã¢ã³ããæ§æããå Žåãäžæçã«æåŠãããæžã蟌ã¿ã³ãã³ãã«å¯ŸããŠææ°ããã¯ãªãã«ããèªåãªãã©ã€ãæå¹ã«ããããšããå§ãããŸããValkey ã®å
¬åŒãªãŒãã³ãœãŒã¹ã¯ã©ã€ã¢ã³ãã©ã€ãã©ãªã® 1 ã€ã§ãã Valkey GLIDE ããå§ãããŸããããã¯ä¿¡é Œæ§ãšé«å¯çšæ§ãèæ
®ããŠèšèšãããŠããŸããGLIDE ã¯ææ°ããã¯ãªãã«ããèªåãªãã©ã€ãšã¢ãã€ã©ããªãã£ãŒãŸãŒã³èªèã«ãŒãã£ã³ã°ããµããŒãããŠããŸããã¯ã©ã€ã¢ã³ãæ§æã®ãã¹ããã©ã¯ãã£ã¹ã«ã€ããŠã¯ã Best practices: Valkey/Redis OSS clients and Amazon ElastiCache ãåç
§ããŠãã ããã é害ã·ããªãª ElastiCache ã®èä¹
æ§ã¯ã以äžã®é害ã¿ã€ãããä¿è·ããŸãã ãã©ã€ããªããŒãã®é害ã ãã©ã€ããªããŒãã«é害ãçºçããå ŽåãElastiCache ã¯èªåçã«ã¬ããªã«ãžã®ãã§ã€ã«ãªãŒããŒãããªã¬ãŒããŸããã¬ããªã«ã¯ãã©ã³ã¶ã¯ã·ã§ã³ãã°ãã远ãã€ãããã®åŸæ°ãããã©ã€ããªãšããŠæžã蟌ã¿ãåãå
¥ãå§ããŸããé害ãçºçããããŒãã¯çœ®ãæãããããã°ããåæãããŸããåææžã蟌ã¿ã§ã¯ãããŒã¿ã¯å€±ãããŸãããéåææžã蟌ã¿ã§ã¯ããã©ã€ããªãé害ãèµ·ããåã«ãã©ã³ã¶ã¯ã·ã§ã³ãã°ã«ãã¹ãŠã®æžã蟌ã¿ãèšé²ãããŠããªãå¯èœæ§ããããããæå€§ 10 ç§éã®ç¢ºèªå¿çæžã¿ã®æžã蟌ã¿ã倱ãããå¯èœæ§ããããŸãã ãªãŒãã¬ããªã«ã®é害ã ãªãŒãã¬ããªã«ã«é害ãçºçããå Žåãé害ãçºçããããŒãã¯çœ®ãæããããéžæãããèä¹
æ§ãªãã·ã§ã³ã«é¢ä¿ãªããMulti-AZ ãã©ã³ã¶ã¯ã·ã§ã³ãã°ããåæãããŸããããŒã¿æå€±ã¯çºçããŸããã ã·ã£ãŒãå
šäœã®é害 (ã·ã£ãŒãå
ã®ãã¹ãŠã®ããŒã)ã ã·ã£ãŒãå
šäœã«é害ãçºçããå Žåããã¹ãŠã®ããŒãã眮ãæããããMulti-AZ ãã©ã³ã¶ã¯ã·ã§ã³ãã°ããåæãããŸããåææžã蟌ã¿ã§ã¯ãããŒã¿ã¯å€±ãããŸãããéåææžã蟌ã¿ã§ã¯ãæå€§ 10 ç§éã®ç¢ºèªå¿çæžã¿ã®æžã蟌ã¿ã倱ãããå¯èœæ§ããããŸããã³ããããããããŒã¿ã埩å
ãããåŸã眮ãæããããããŒãã® 1 ã€ãèªåçã«æ°ãããã©ã€ããªãšããŠéžåºãããŸãã ããã©ãŒãã³ã¹åæ ElastiCache ã®èä¹
æ§ãæå¹ã«ããå Žåãšç¡å¹ã«ããå Žåã®ã¹ã«ãŒããããšèªã¿åã/æžã蟌ã¿ã¬ã€ãã³ã·ãŒã枬å®ããããããæ¯èŒããŸããããã®çµæãElastiCache ã§èä¹
æ§ãæå¹ã«ããŠããã客æ§ã ElastiCache ã«æåŸ
ãããã€ã¯ãç§åäœã®ã¬ã€ãã³ã·ãŒãæãªãããªãããšãå®èšŒããŸããã ãã¹ãæ¹æ³ r7g.4xlarge ããŒãã䜿çšããŠãèä¹
æ§ãªããåææžã蟌ã¿ãéåææžã蟌ã¿ã® Valkey 9.0 for Amazon ElastiCache ã¯ã©ã¹ã¿ãŒãèµ·åããŸãããåã¯ã©ã¹ã¿ãŒã¯ã1 ã€ã®ãã©ã€ããªããŒããš 1 ã€ã®ãªãŒãã¬ããªã«ã§æ§æããããã¹ãå®è¡åã«ãµã³ãã«ããŒã¿ãäºåã«æå
¥ããŸãããValkey ã®ããã©ã«ãã®ããã©ãŒãã³ã¹æž¬å®ããŒã« ( valkey-benchmark ) ã䜿çšããŠã300 äžåã®ããŒã§ã³ãã³ããã€ãã©ã€ã³ãªãã§å®è¡ãããã©ã€ããªããŒããšåã AZ å
ã® 10 åã® Amazon Elastic Compute Cloud (Amazon EC2) ã€ã³ã¹ã¿ã³ã¹ã䜿çšããŠã¯ã©ã¹ã¿ãŒã«ãã©ãã£ãã¯ãåããŸãããäžè¬çãªã客æ§ã®ã¯ãŒã¯ããŒããã¿ãŒã³ã代衚ããæ··åã¯ãŒã¯ããŒã (80% èªã¿åãã20% æžã蟌ã¿) ã䜿çšããŠã50K ãš 100K TPS ã® 2 ã€ã®ã¹ã«ãŒãããã¬ãã«ã§ãã¹ãããŸãããElastiCache ã¯ã©ã¹ã¿ãŒã¯ãã«ã AZ 忣ã·ã¹ãã ã§ãããããåäžã®ã»ããã¢ããã§ãäžã®è¡šã®æ°å€ããããçšåºŠã®ã°ãã€ãã芳å¯ãããå ŽåããããŸãã æ¬¡ã®è¡šã¯ãr7g.4xlarge ããŒãã«ããããã¹ãŠã® ElastiCache ãªãã·ã§ã³ã®èªã¿åãããã³æžã蟌ã¿ã¬ã€ãã³ã·ãŒãæ¯èŒãããã®ã§ãã ã¯ãŒã¯ããŒã (80% èªã¿åãã20% æžã蟌ã¿) ElastiCache ãªãã·ã§ã³ ããŒãã¿ã€ã èªã¿åã P50 èªã¿åã P90 æžã蟌㿠P50 æžã蟌㿠P90 50K TPS èä¹
æ§æ©èœãªãã® ElastiCache r7g.4xlarge 260 µ s 301 µ s 147 µ s 185 µ s 50K TPS éåææžã蟌㿠r7g.4xlarge 245 µ s 289 µ s 112 µ s 152 µ s 50K TPS åææžã蟌㿠r7g.4xlarge 245 µ s 288 µ s 2.15 ms 2.36 ms 100K TPS èä¹
æ§æ©èœãªãã® ElastiCache r7g.4xlarge 263 µ s 301 µ s 160 µ s 196 µ s 100K TPS éåææžã蟌㿠r7g.4xlarge 245 µ s 286 µ s 128 µ s 158 µ s 100K TPS åææžã蟌㿠r7g.4xlarge 879 µ s 992 µ s 2.72 ms 3.12 ms éèŠãªãã€ã³ã: ãã¹ãŠã®ãªãã·ã§ã³ã§ãã€ã¯ãç§ã®èªã¿åãã¬ã€ãã³ã·ãŒãç¶æããŸããåæãéåæãã«é¢ããããèä¹
æ§ã¯äž¡æ¹ã®ã¹ã«ãŒãããã¬ãã«ã§ãã€ã¯ãç§ã®èªã¿åãããã©ãŒãã³ã¹ãç¶æãããããå®éã®ãŠãŒã¹ã±ãŒã¹ã®å€§åãå ããèªã¿åãäžå¿ã®ã¯ãŒã¯ããŒãã«é©ããŠããŸãã éåææžã蟌ã¿ã¯ãèä¹
æ§ãæå¹ã«ããŠããªã ElastiCache ãšåçã®ã¬ã€ãã³ã·ãŒãå®çŸããŸãã50K TPS ãš 100K TPS ã®äž¡æ¹ã§ãèªã¿åããšæžã蟌ã¿ã®ã¬ã€ãã³ã·ãŒã¯ãããããã€ã¯ãç§ã¬ãã«ã§ããè¿œå æéãªãã§èä¹
æ§ã远å ã§ããäžè¬çãªã¯ãŒã¯ããŒãã¬ãã«ã§ã®ã¹ã«ãŒããããžã®åœ±é¿ã¯ãããããã§ããããŒã¿æå€±ãŒããå¿
èŠãšããªããã¹ãŠã®ã¯ãŒã¯ããŒãã«å¯ŸããŠãéåææžã蟌ã¿ãããã©ã«ããšããŠæšå¥šããŸãããã®ãªãã·ã§ã³ã¯ãã¬ã€ãã³ã·ãŒã®ããã«ãã£ãªãã§èä¹
æ§ãæäŸããŸãã åææžã蟌ã¿ã¯ãäžçšåºŠã®ã¹ã«ãŒãããã§ãã€ã¯ãç§ã®èªã¿åãã¬ã€ãã³ã·ãŒãç¶æããŸãã50K TPS ã§ã¯ãèªã¿åãã¬ã€ãã³ã·ãŒã¯ 300 µ s æªæºã®ãŸãŸã§ãã100K TPS ã§ã¯ãã·ã¹ãã ããã©ã³ã¶ã¯ã·ã§ã³ãã°ãžã®ããé«ãäžŠè¡æ§ãåŠçãããããèªã¿åãã¬ã€ãã³ã·ãŒã¯ãµãããªç§ (879 µ s) ã«å¢å ããŸããæžã蟌ã¿ã¬ã€ãã³ã·ãŒã¯ãäž¡æ¹ã®ã¹ã«ãŒãããã¬ãã«ã§ããªç§ã® 1 æ¡å°ã«çãŸããŸããããã¯ãæžã蟌ã¿ã確èªããåã« 2 ã€ã®ã¢ãã€ã©ããªãã£ãŒãŸãŒã³ã«ããŒã¿ãæ°žç¶åããããã®äºæ³ããããã¬ãŒããªãã§ããã¢ããªã±ãŒã·ã§ã³ãããŒã¿æå€±ãäžå蚱容ã§ããªãå Žåã¯ãåææžã蟌ã¿ã䜿çšããå¿
èŠããããŸãã ElastiCache ã®èä¹
æ§ã䜿ãå§ãã åææ¡ä»¶ å§ããåã«ã以äžã確èªããŠãã ããã ã¢ã¯ãã£ã㪠AWS ã¢ã«ãŠã³ã AWS CLI ããŒãžã§ã³ 2.x 以éãã€ã³ã¹ããŒã«ããã³èšå®ãããŠããããš elasticache:CreateReplicationGroup ãš elasticache:ModifyReplicationGroup ã® IAM æš©é æ°žç¶åã¯ã©ã¹ã¿ãŒã®äœæ èä¹
æ§ã䜿ãå§ããã«ã¯ãæ°ãã ElastiCache ã¯ã©ã¹ã¿ãŒãäœæãã AWS Management Console ãAWS Software Development Kit (SDK)ããŸã㯠AWS Command Line Interface (CLI) ã䜿çšããŠãåžæããèä¹
æ§ãªãã·ã§ã³ãéžæããå¿
èŠããããŸãã AWS ãããžã¡ã³ãã³ã³ãœãŒã«ã®äœ¿çš æ°ããã¯ã©ã¹ã¿ãŒãäœæããéã¯ãValkey 9.0 以éãéžæããŠãã ãããã¯ã©ã¹ã¿ãŒèšå®ã§åžæããèä¹
æ§ãªãã·ã§ã³ãéžæããŸãã AWS CLI ã®äœ¿çš åææžã蟌ã¿ã䜿çšããæ°ããèä¹
æ§ã®ããã¯ã©ã¹ã¿ãŒãäœæããã«ã¯ïŒ aws elasticache create-replication-group \ --replication-group-id my-durable-cluster \ --replication-group-description "ElastiCache durable cluster" \ --engine valkey --engine-version 9.0 \ --num-node-groups 2 --replicas-per-node-group 1 \ --cache-node-type cache.r7g.large \ --multi-az-enabled \ --transit-encryption-enabled \ --durability sync \ --region us-east-1 éåææžã蟌ã¿ã䜿çšããã¯ã©ã¹ã¿ãŒãäœæããã«ã¯ã --durability async ãèšå®ããŸãã aws elasticache create-replication-group \ --replication-group-id my-durable-cluster \ --replication-group-description "ElastiCache durable cluster" \ --engine valkey --engine-version 9.0 \ --num-node-groups 2 --replicas-per-node-group 1 \ --cache-node-type cache.r7g.large \ --multi-az-enabled \ --transit-encryption-enabled \ --durability async \ --region us-east-1 ã¯ã©ã¹ã¿ãŒã®æ€èšŒ ã¯ã©ã¹ã¿ãŒãäœæããåŸãèä¹
æ§ãæå¹ã«ãªã£ãŠããç¶æ
ã§å®è¡ãããŠããããšã確èªã§ããŸãã aws elasticache describe-replication-groups \ --replication-group-id my-durable-cluster \ --query 'ReplicationGroups[0].[Status,Durability]' --region us-east-1 åºåã«ã¯ãã¹ããŒã¿ã¹ã available ãšããŠãéžæããèä¹
æ§ãªãã·ã§ã³ã衚瀺ãããã¯ãã§ãã èä¹
æ§ãªãã·ã§ã³ã®åãæ¿ã æ¢åã®ã¯ã©ã¹ã¿ãŒãåææžã蟌ã¿ãšéåææžã蟌ã¿ã®éã§åãæ¿ããã«ã¯ã modify-replication-group ã䜿çšããŸãã aws elasticache modify-replication-group \ --replication-group-id my-durable-cluster \ --durability async ã¯ãªãŒã³ã¢ãã ç¶ç¶çãªæéãçºçããªãããã«ãäœæãã ElastiCache ã¯ã©ã¹ã¿ãŒãåé€ããŠãã ããã aws elasticache delete-replication-group \ --replication-group-id my-durable-cluster \ --region us-east-1 泚æ: ãã®æäœã«ãããã¯ã©ã¹ã¿ãŒãšãã¹ãŠã®ããŒã¿ãæ°žä¹
ã«åé€ãããŸããç¶è¡ããåã«ãå¿
èŠãªããŒã¿ãããã¯ã¢ããããŠããããšã確èªããŠãã ããã ãŸãšã ElastiCache ã®èä¹
æ§ã«ãããElastiCache ããã£ãã·ã³ã°ãšæ°žç¶çãªããŒã¿ã¹ãã¢ã®äž¡æ¹ã®ãŠãŒã¹ã±ãŒã¹ã§äœ¿çšã§ããŸããåææžã蟌ã¿ã¯ããã€ã¯ãç§ã®èªã¿åãã¬ã€ãã³ã·ãŒãš 1 æ¡ããªç§ã®æžã蟌ã¿ã¬ã€ãã³ã·ãŒã§ããŒã¿æå€±ãŒããå®çŸããããã«èšèšãããŠãããããŒã¿æå€±ã蚱容ã§ããªãã¯ãŒã¯ããŒãã«é©ããŠããŸããéåææžã蟌ã¿ã¯ãè¿œå æéãªãã§èä¹
æ§ã®ãªã ElastiCache ãšåçã®ããã©ãŒãã³ã¹ãæäŸãããŸãã«é害ãçºçããå Žåã«æå€§ 10 ç§ã®æœåšçãªããŒã¿æå€±ã蚱容ã§ããã¯ãŒã¯ããŒãã«é©ããŠããŸããèä¹
æ§ã®ãªã ElastiCache ã¯ãããŒã¿ããªãªãžã³ãœãŒã¹ããåæ§ç¯ã§ããæžã蟌ã¿ã®å®å
šãªå¯çšæ§ãæéèŠãªåŸæ¥ã®ãã£ãã·ã³ã°ã¯ãŒã¯ããŒãã«é©ããéžæè¢ã§ãã ElastiCache ã®èä¹
æ§ã¯ãValkey 9.0 ããããã¹ãŠã® AWS åçšãªãŒãžã§ã³ãAWS äžåœãªãŒãžã§ã³ãããã³ AWS GovCloud (US) ãªãŒãžã§ã³ã§ãå©çšããã ããŸããæéã®è©³çްã«ã€ããŠã¯ã Amazon ElastiCache æéããŒãž ãã芧ãã ããã詳现ã«ã€ããŠã¯ã ElastiCache ããã¥ã¡ã³ã ãã芧ãã ããã èè
ã«ã€ã㊠Jules Lasarte Jules 㯠Amazon ã€ã³ã¡ã¢ãªããŒã¿ããŒã¹ããŒã ã®ãœãããŠã§ã¢éçºãšã³ãžãã¢ã§ããElastiCache ã®èä¹
æ§ã«é¢ãããšã³ãžãã¢ãªã³ã°æŽ»åãäž»å°ãã髿§èœåæ£ã·ã¹ãã ãšã€ã³ã¡ã¢ãªã¯ãŒã¯ããŒãã®ããŒã¿ä¿è·ã«æ³šåããŠããŸããã«ããã®ãã³ã¯ãŒããŒãæ ç¹ãšããŠããŸãã Karthik Konaparthi Karthik 㯠Amazon ã€ã³ã¡ã¢ãªããŒã¿ããŒã¹ããŒã ã®ããªã³ã·ãã«ãããã¯ããããŒãžã£ãŒã§ãã¯ã·ã³ãã³å·ã·ã¢ãã«ãæ ç¹ãšããŠããŸããããŒã¿ã«é¢ããããããããšã«æ
ç±ãæã¡ãã客æ§ã®èª²é¡ã圌ããæãã補åã«å€ããããšã楜ããã§ããŸããä»äºä»¥å€ã§ã¯ãå®¶æãšæ°ããå Žæãæ¢çŽ¢ããããšã楜ãã¿ãåžžã«æ¬¡ã®çŽ æŽãããã¬ã¹ãã©ã³ãæ¢ããŠããŸãã æ¬èšäºã¯ã Announcing durability for Amazon ElastiCache for Valkey ã翻蚳ãããã®ã§ãã翻蚳㯠Solutions Architect ã® Hayato Tsutsumi ãæ
åœããŸããã
ãããã£ç€Ÿå
ã§åŸæ¥å¡ã䜿ã瀟å
ã¡ãŒã«ãäºå®è¡šãã«ã¬ã³ããŒãããã«ã¯ãSlackãGoogle Workspaceãšãã£ãå€éšããŒã«ãŸã§ãæ°å€ãã®ãããã¯ãã®éçšãæ
ãã®ãããã©ãããã©ãŒã ããŒã ïŒä»¥äžãPFããŒã ïŒã§ããåŸæ¥å¡ãããŠãŒã¶ãŒããšåŒã³ãæ¥ã
ã¿ããªãæ»ããªãæ¥åãè¡ãããããçžã®äžã§æ¯ããŠããŸãã æ¢åããŒã«ã®éçšã ãã§ãªããæ°èŠã®å€éšãµãŒãã¹ã®å°å
¥æ€èšããæã«ã¯ããŒã«ã®éçºãŸã§ãæ
ããšããPFããŒã ããã®è©³ããæ¥åå
容ãå°è±¡çã ã£ããããžã§ã¯ãããŸããä»äºã®ããããã«ã€ããŠãã¡ã³ããŒã«è©±ãèããŸããã èªå·±çŽ¹ä» D.Kãã 2020幎4æã«æ°åå
¥ç€Ÿãæ¥åå
容ã¯IDåºç€ã·ã¹ãã ãã³ã©ãã¬ãŒã·ã§ã³ããŒã«ã®ä¿å®ã»éçšãè¶£å³ã¯ã³ãŒããŒãæè¿ã¯ãã€ã«ã«ãªãã§ã³ã«ããã£ãŠèªåžã«åžžåã Y.Kãã 2019幎4æã«æ°åå
¥ç€Ÿãæ¥åå
容ã¯ç€Ÿå
ã·ã¹ãã ã®éçšã»ä¿å®ã»å·æ°ãè¶£å³ã¯æ£æ©ãšãæž©æ³ã§ãã£ããããããšã K.Gãã 2024幎4æã«æ°åå
¥ç€Ÿãæ¥åå
容ã¯ç€Ÿå
ã·ã¹ãã ã®éçšã»ä¿å®ã»å·æ°ãè¶£å³ã¯ã²ãŒã ããµãã«ãŒèгæŠã鳿¥œãèŽãããšã ã䜿ããŠåœããåããæ
ä¿ãã€ã€ããŠãŒã¶ãŒã®å©äŸ¿æ§ãé«ããŠãã ã¿ãªããã¯ãããã£ã®ããã©ãããã©ãŒã ããŒã ïŒä»¥äžãPFããŒã ïŒãã®ã¡ã³ããŒãšããããšã§ãããå
·äœçãªæ¥åå
容ãæããŠãã ããã D.Kãã PFããŒã ã§ã¯ããããã£ã®åŸæ¥å¡ïŒä»¥äžããŠãŒã¶ãŒïŒã䜿ãå
šãŠã®ç€Ÿå
ã·ã¹ãã ã®éçšã»ä¿å®ã»å·æ°ãæ
ã£ãŠããŸãã瀟å
ã¡ãŒã«ãäºå®è¡šãã«ã¬ã³ããŒã®ã»ããSlackãGoogle Workspaceãªã©ã®å€éšããŒã«ãŸã§ã管çããŠãããããã¯ãã¯25çšåºŠããã®ã»ããä»éšçœ²ã®ã·ã¹ãã ã®ç®¡çã®ã¿ãå§èšã®ãããªåœ¢ã§è«ãè² ã£ãããšã瀟å
ã§äœ¿ãããŒã«é¢ä¿ã«ã€ããŠã¯ã倧åãç§ãã¡ã®ããŒã ã§åãæ±ã£ãŠããŸãã å
·äœçãªä»äºå
容ã§ãããã¡ã€ã³ã®æ¥åã¯éçšã§ãã瀟å
ã·ã¹ãã ã¯ã䜿ããŠåœããåãã§ããããã©ãã«ãèµ·ãã£ãç¬éã«æ¥åã«æ¯éãåºãŠããŸããŸãããŠãŒã¶ãŒã«æ»ããªãæ¥åã«ããã£ãŠããããããåé¡ãçããå Žåã§ã圱é¿ãæå°éã«æããªããéçšããå¿
èŠããããŸãã ãŸããæ¢åã®ããŒã«ã®éçšã ãã§ãªããå€éšããŒã«ã®æ°ããæ©èœãåãå
¥ããããæ°èŠãµãŒãã¹ã®å°å
¥ãæ€èšããããšãçŸåšã®æ°Žæºã¯ä¿ã¡ã€ã€ãŠãŒã¶ãŒããããã䟿å©ã«ä»äºãã§ãããããµããŒãããã®ããç§ãã¡ã®éèŠãªæ¥åã§ããã çŸåšãPFããŒã ã¯äœåäœå¶ã§æ¥åã«ããã£ãŠããŸããïŒ D.Kãã çŸåšã¯8åã§ããããŒã ã¯å€§ããã¢ã«ãŠã³ãç³»ãã³ã©ãã¬ãŒã·ã§ã³ããŒã«ç³»ã«åãããŠããŠãK.Gããã«ã¯äž»ã«ã¢ã«ãŠã³ãç³»ã®ãããã¯ãããY.Kããã¯äž»ã«ã³ã©ãã¬ãŒã·ã§ã³ããŒã«ç³»ã®ãããã¯ããæ
åœããŠããã£ãŠããŸãã ã§ã¯ããããããæ
åœãããŠããé åããããã¯ãã®è©³çްã«ã€ããŠããäºäººããã説æããã ããŸããïŒ K.Gãã ç§ã¯ã¢ã«ãŠã³ãç³»ã®ããŒã ã§ãäž»ã«ãŠãŒã¶ãŒã®IDããã¹ã¯ãŒãã®ç®¡çãæ
åœããŠããŸããæ°ãã«å
¥ç€Ÿããã人ãååºå€ããŠä»äºãã¹ã¿ãŒããã忥ãŸã§ã«ã¯ãã¢ã«ãŠã³ããä»äžããŠäœ¿ããç¶æ
ã«ããŠãããªããã°ãããŸãããä»ã«ããäŒç€Ÿããæ¯çµŠãããããœã³ã³ã®ã¯ã©ãŠãäžã§ã®éä¿¡ã®ç®¡çããã»ãã¥ãªãã£ãã¡ã€ã«ã®ç®¡çãªã©ãè¡ãªã£ãŠããŸããåŸè
ã§èšããšãããšãã°ãã¡ã€ã«ã®ãªãã«å人æ
å ±ãå
¥ã£ãŠããªããããã§ãã¯ãããªã©ãå¹
åºãæ¥åããããŸãããç§ã¯ãã®éšçœ²ã«æ¥ãŠãŸã æ¥ãæµ
ãã®ã§ãããããªãå¹
åºãç¥èãæ±ããããä»äºã ãšæããŠããŸãã Y.Kãã ç§ã¯ã³ã©ãã¬ãŒã·ã§ã³ããŒã«ãåããããããšããã§ã¯SlackãGoogle Workspaceãªã©ã§ããããã®ä»ã«ãããŸããŸãªå€éšããŒã«ããŠãŒã¶ãŒããæ®éã«äœ¿ããç¶æ
ãã«ãããšããã®ã倧ããªåœ¹å²ã§ããä»®ã«äžå
·åãªã©ããã£ãŠäœ¿çšã§ããªãæã«å¯Ÿå¿ã«ããã£ããããŠãŒã¶ãŒããã®åãåããã«ãåçãããããŠããŸãã ããããéçšä»¥å€ã«ããå·æ°ãã®åœ¹å²ãæ
ã£ãŠããŸããããŸäœ¿çšããŠããããŒã«ããã䟿å©ãªãã®ãæ°ãããã®ãåºãŠããæã«å°å
¥ãæ€èšããããå®éã«çœ®ãæããæšé²ãããããä»äºã§ãããä»ãã¡ããã©ãRPAããŒã«ãå¥ã®ãã®ã«çœ®ãæãããããžã§ã¯ããåããŠããŸãã æ°ããããŒã«ã«çœ®ãæãã倿ã¯ãããçšåºŠããŒã ã«å§ããããŠããã®ã§ããããïŒ Y.Kãã ããã§ãããåºæ¬çã«ã¯ãã©ãããã©ãŒã ããŒã ã®ã¡ã³ããŒã§æ€èšããäžé·ã®OKãåºãã°å°å
¥ãæšé²ã§ããŸãããã®åŸãã»ãã¥ãªãã£ã®èŠä»¶ãæºãããŠãããã©ãããªã©ã®ãã§ãã¯ãçµãŠãæçµçã«å€æããããšããæµãã§ããã ãã ããã¡ããå·æ°åã®ããŒã«ã®ã»ãã䜿ãæ
£ããŠããããæçãæãããŠãããŠãŒã¶ãŒãããã®ã§ããããªãã¬ã©ã£ãšå€ããã®ã§ã¯ãªããåŸæ¥å¡ãšå¯Ÿè©±ãããŠæ°ããããŒã«ã®æ
å ±ãäŒããããå©ç¹ãã¢ããŒã«ããããšãã£ãã³ãã¥ãã±ãŒã·ã§ã³ã¯å€§äºã«ããŠããŸãã å€éšãµãŒãã¹ã®å©çšãããèªç€Ÿéçºãã«åãæ¿ããæ¥åå¹çåãå®çŸ ãããŸã§ã«æ
åœãããããžã§ã¯ãã®ãªãã§ãç¹ã«å°è±¡æ·±ããã®ãæããŠãã ããã Y.Kãã ç§ã¯ãã¢ã«ãã€ããæŽŸé£ç€Ÿå¡çšIDäœæã·ã¹ãã ã®å·æ°ãããžã§ã¯ããå°è±¡ã«æ®ã£ãŠããŸããæ°ããå
¥ã£ãã¢ã«ãã€ãã®æ¹ã®æ
å ±ãå
¥åãããšã¢ã«ãŠã³ããèªåçºè¡ããããšããã·ã¹ãã ãªã®ã§ãããããšããšã¯ããªãæã«å€éšã®ããŒãããŒäŒæ¥ã«äœæããŠããã£ããã®ã§ãåœæã®ä»æ§æžãå®éã®ãœãŒã¹ã³ãŒãã確èªã§ããªããããªç¶æ
ãåã°ãã©ãã¯ããã¯ã¹åããŠãããã§ãã ããããå€ãã·ã¹ãã ãªã®ã§é »ç¹ã«ãšã©ãŒãèµ·ãããããªç¶æ
ã«ãªã£ãŠããŠããã®åºŠã«ãµãŒããŒãåèµ·åããŠããã®ã§ãããããããéçšãç¶ããŠãããšãã€ãã·ã¹ãã èªäœã䜿ããªããªã£ãŠããŸãå¯èœæ§ããããããã§ãã·ã¹ãã èªäœãå·æ°ããããšã«ãªããŸããã æ¢åã·ã¹ãã ã®éçšã ãã§ãªãããããããããã°ãå€ãéºç£ããå·æ°ãããããªæ¥åããããšããããšã§ãããK.Gããã¯ãããã§ããïŒ K.Gãã ç§ãæ
åœããå°è±¡æ·±ããããžã§ã¯ãã¯ã瀟å
ã»ãã¥ãªãã£ã¬ãã«éã®ãã¡ã€ã«ç§»è¡ããŒã«ãå·æ°ãããšãããã®ã§ããããšããšã¯å€éšæäŸãåããŠããSaaSã®ã·ã¹ãã ã瀟å
ã§éçºãçŽããããã«æ¹è¯ãè¡ããŸãããæã倧ããªæ¹è¯ç¹ãšããŠã¯ããããŸã§ã¯ãã¡ã€ã«ãç§»è¡ããéã«ãå€éšãžã®äžæ£ãªããŒã¿æã¡åºãããªããã©ãããç®èŠã§ãã§ãã¯ããŠããæ¿èªããŠããã®ã§ãããäžéšã«AIãå°å
¥ããŠèªåã§æ€ç¥ã§ããããã«ããããšããããããDLPã®ã·ã¹ãã ãå°å
¥ããŸãããããã«ãããã³ã¹ãåæžãšã»ãã¥ãªãã£ã¬ãã«ã®åäžã«ã€ãªããããã¡ã€ã«ç§»è¡ããŒã«ãäœ¿ãæ¥åã®å¹çåã«ã€ãªãã£ããšæããŸãã ãããããå€éšãµãŒãã¹ããèªç€Ÿéçºã«åãæ¿ããçç±ã¯äœã ã£ãã®ã§ããããïŒ D.Kãã äžçªã¯èªç€Ÿéçºã§ããã°ãè²ããªæ©èœã远å ãããã䜿ããããã·ã¹ãã ãæ¹è¯ããããšãã«ã¹ã¿ãã€ãºãããããããšã§ãããã¡ã€ã«ç§»è¡ããŒã«ã«é¢ããŠã¯ãå
ã»ã©K.Gãããèšã£ãããã«ããããŸã§ã®ããŒã«ã§ã¯ç®èŠã§äžã€ã²ãšã€ãã§ãã¯ããŠãããããèšå€§ãªäººçãªãœãŒã¹ãå²ãããŠããŸãããDLPãå°å
¥ãããã«ããæ¢åã®ãµãŒãã¹ã®ä»çµã¿ã§ã¯ãªããªãçµã¿èŸŒãããšãé£ããããŸããDLP以å€ã«ããä»åŸãŠãŒã¶ãŒããã®èŠæã«å¿ããŠã«ã¹ã¿ãã€ãºãããããã®ã«ããã»ããããã ãããšããããšã§ãèªç€Ÿéçºã«èµãåããŸããã ãã©ãããã©ãŒã ããŒã ãšãããšãæ¢åã·ã¹ãã ãããã«æ»ããªãåãããããã¡ã€ã³ã®æ¥åãšããã€ã¡ãŒãžã§ãããéçºå¯ãã®ãããžã§ã¯ããçµæ§ããã®ã§ããã D.Kãã æè¿ã¯ã¡ããã¡ãããããŸããããã©ãããã©ãŒã ããŒã ã¯äŒç»ããéçºãããã«ã¯éçšãŸã§ãæ
ãã»ããã¬ã€ã€ãŒãã€ã³ãã©ã®ãµãŒããŒãããããã¯ãŒã¯ãã¢ããªã±ãŒã·ã§ã³ã«è³ããŸã§ãæ¬åœã«ãäœã§ããããŸãããšããæãã®ããŒã ãªã®ã§ã掻èºã®å¹
ãåºãéšçœ²ãšèšãããããããŸããã ãŠãŒã¶ãŒã®ãé¡ãèŠããããšããäžçªã®ãããã ã¿ãªããã¯çŸåšã®ãã©ãããã©ãŒã ããŒã ã®æ¥åã«ãããŠãã©ããªãšããã«æ¥œããããããããæããŠããŸããïŒ Y.Kãã äžçªã¯ãŠãŒã¶ãŒã瀟å
ãšãããæã身è¿ãªå Žæã«ååšããŠããããšãåãåããã«å¯ŸããŠåçã解決ãããæã«ããããã«ãå©ãããŸãããããããšãããããŸãããšåå¿ãããããã®ã¯å¬ããã§ãããããããã«ã€ãªãã£ãŠããŸããã K.Gãã ç§ã䌌ãçãã«ãªã£ãŠããŸããŸããããŠãŒã¶ãŒãããšçŽæ¥ãããšãã§ããç¹ã§ããããããããæ©èœããããšããããšãã£ãèŠæãçŽã§äŒããŠããããã®ã§ããšãŠãåãçµã¿ç²æããããšæããŠããŸããæã«ã¯é£ããèŠæããããŸãããã©ãã ããŠãŒã¶ãŒã«å¯ãæ·»ããããå®çŸã«åããŠåªåã§ããããèªåã®ä»äºã ãšèããŠããŸãã®ã§ãããã¯ããããã倧äºã«ããŠããããã§ãã ã¡ãªã¿ã«ãK.Gããã¯3人ã®ãªãã§ã¯æãè¥æã§ããããã©ãããã©ãŒã ããŒã ã®ããã«è²ããªããšãã§ããçŸå Žã ãšãå¹
åºãç¥èŠãã¹ãã«ãç²åŸãããšããç¹ã§ã倧ããã®ã§ã¯ãªãã§ããããã K.Gãã ããã¯ãããŸãããã©ã¡ãããšãããšãããã£ã«ã¯éçºãã¡ã€ã³ã®ããŒã ãå€ããšæããŸãããã®ãªãã§ãã·ã¹ãã ã®éçšã ã£ããããŠãŒã¶ãŒãããšçŽæ¥ã³ãã¥ãã±ãŒã·ã§ã³ã§ãããããã®ã¯è²Žéãªæ©äŒããªããã€ãéçºã®æ¡ä»¶ãããŸã«ããã®ã§ããã£ãããéãè²ããªçµéšãç©ãããšãã§ããããŒã ã§ããã D.Kãã ç§èªèº«ããããšäœã§ãããããã¿ã€ããªã®ã§ãä»ã®ããŒã ã¯ãšãŠããã£ããããŠãããšæããŸããããšã¯ãäºäººãèšã£ãŠãããããã«ããŠãŒã¶ãŒãšçŽã«è©±ãã§ããã®ã¯å€§ããªããããã«ã€ãªãã£ãŠããŠããŠãŒã¶ãŒãšå¯Ÿè©±ãããŠããã©ãã«ã·ã¥ãŒããããŠããã®åŸã®ãªã¢ã¯ã·ã§ã³ãŸã§ãããããããããäœéšãã§ããããŒã ã£ãŠããããã£ã®ãªãã§ãããŸããªããšæããŸãã®ã§ãããã¯å€§ããªåã³ã§ããã åŸç·šã«ç¶ããŸãïŒ ä»åã¯ãããã£ã®ç€Ÿå
ãã©ãããã©ãŒã ããŒã ã®ã€ã³ã¿ãã¥ãŒïŒåç·šïŒã®æ§åããå±ãããŸããã ç¶ãã¯è¿æ¥å
¬éäºå®ã®åŸç·šã®èšäºãã芧ãã ããã ãã®ã€ã³ã¿ãã¥ãŒã«é¢ããæ±äººæ
å ± /ããã°èšäº ãããã£æ ªåŒäŒç€Ÿ æ±äººæ
å ±
æ¬ããã°ã¯ 2026 幎 4 æ 3 æ¥ã«å
¬éããã AWS Blog â How AWS KMS and AWS Encryption SDK overcome symmetric encryption bounds â ã翻蚳ãããã®ã§ãã 倧éã®ããŒã¿ãæå·åããå€§èŠæš¡ãªã¢ããªã±ãŒã·ã§ã³ãéçšããŠããå Žåãæå·åéçã®è¿œè·¡ãéµã®ããŒããŒã·ã§ã³ã課é¡ã«ãªãããšããããŸãããã®èšäºã§ã¯ã AWS Key Management Service (AWS KMS) ãš AWS Encryption SDK ããæŽŸç鵿¹åŒãçšã㊠Galois Counter Mode ã® Advanced Encryption Standard (AES-GCM) ã® encryption limits (æå·åéç) ã bounds (å¢ç) ãèªåçã«åŠçããæåã§ã®ç®¡çãäžèŠã«ããä»çµã¿ã説æããŸãããããã®æ¹åŒã§ã¯ãã©ã³ãã ãªãã³ã¹ã䜿ã£ãŠãã¡ã€ã³ã㌠K ããæ°ããæŽŸçéµ K d ãçæããŸããããã«ãããæå·åã®ãã³ã«äžæã®éµã䜿ãããããã K ãã¯ããã«é·ã䜿ãç¶ããããŸããåæ§ã®æŽŸçéµã¢ãŒãã¯ã (KC-)XAES ã DNDK v2 ã ia.cr/2020/1153 ãªã©ãæè¿ã®ããŸããŸãªã¹ããŒã ã§ãææ¡ãããŠããŸãã 察称æå·åã®å¢ç 察称æå·åã¢ã«ãŽãªãºã ã¯ã転éäžã®ããŒã¿ãšä¿ç®¡äžã®ããŒã¿ã倧éã«æå·åããŸããææ°ã®æå·ã¯ãèªèšŒã¿ã°ã䜿ã£ãŠããŒã¿ã®èªèšŒãè¡ããŸãããããã¯è¿œå ããŒã¿ä»ãèªèšŒæå· (AEAD) ãšåŒã°ããŸããAEAD æå·ã®äŸãšããŠã¯ãAES-GCM ã ChaCha20/Poly1305 ããããŸãã AES-GCM ã¯æãåºã䜿ãããŠããæå·åã¢ã«ãŽãªãºã ã§ãNIST ã«ãã£ãŠ SP 800-38D ãšããŠæšæºåãããŸãããAES-GCM ã¯ã128 ããããŸã㯠256 ãããã®éµ K ãšãåæåãã¯ãã« ( IV ãé垞㯠96 ããã) ã䜿ã£ãŠãå¹³æ P ãæå·åãèªèšŒããŸãããŸãã远å èªèšŒããŒã¿ ( AAD ) ãèªèšŒããŸããåºåã¯æå·æ C ãšèªèšŒã¿ã° T ã§ãã (C, T) = AES-GCM(K, IV, AAD, P ) åŸ©å·æã«ã¯ãåä¿¡è
㯠K ã IV ã AAD ã䜿ã£ãŠ C ã埩å·ããã¿ã° T ãæ€èšŒããŸããã¿ã°ã®èªèšŒãæåããã°ãå
ã®å¹³æ P ãåŸãããŸãã æå·ååŒã³åºãéç ããŒã¿ãæå·åãããšãã«ã¯ãéµ K ã®äœ¿çšæéäžã K, IV ã®ã¿ãã«ãç¹°ãè¿ãããªãããšã極ããŠéèŠã§ããç¹°ãè¿ããããšãAES-GCM ã®ã»ãã¥ãªãã£ç¹æ§ã倱ãããŠããŸãããã§ãã SP 800-38D ã§ã¯ãå®è£
ã«ãããŠéµãš IV ãåå©çšããã確çã 42.9 ååã® 1 æªæº (<2 -32 ) ã«ããããšãæ±ããããŠããŸããããã¯ãç¹°ãè¿ãããªã決å®è«ç㪠IV ã䜿ãããã©ã³ãã 㪠IV ã䜿ãããšã§éæã§ããŸããã©ã³ãã 㪠IV ã䜿ãå Žåã¯ã2 32 åã®æå·ååŸã«éµãåçæããå¿
èŠããããŸããããšãã°ãTLS ã IKEv2/IPsec ã®ãããªäžè¬çãªãããã³ã«ã§ã¯ãæ¥ç¶ããšã«æ±ºå®è«ç㪠(ã€ãŸãã©ã³ãã ãªå€ããå§ããŠã€ã³ã¯ãªã¡ã³ããã) IV ã䜿ãããšã§ã( K, IV ) ã®è¡çªãé²ãã§ããŸãã ããŒã¿å¢ç ( K, IV ) ã®è¡çªç¢ºçãçµ±èšçã«ç¡èŠã§ãã (<2 -32 ) ãšä»®å®ããŠããåãéµ K ã§å€§éã®å¹³æãæå·åãããšãã«ã¯ãäŸç¶ãšããŠããŒã¿å¢çãååšããŸããAES-GCM ã®ãããã¯ã«ãŠã³ã¿ãŒã¯ 32 ãããã§ããããã1 åã®æå·åæäœ (( K, IV ) ã®ãã¢ããš) ããã 2 32 -2 ããã㯠(68.72 GB) ãšããéçãçããŸããããã«ãããŒã¿ã®ç·éãå¶éããªããšãæ»æè
ã 2 ã€ã®ç°ãªãå¹³æãèå¥ã§ãããã€ãŸã 2 ã€ã®ã¡ãã»ãŒãžã®ãã¡ã©ã¡ããæå·æã«æå·åãããŠããããå€å¥ã§ããããã«ãªããã»ãã¥ãªãã£ä¿èšŒãäœäžããŸããèå¥äžå¯èœæ§ã®ä¿è·ãé«ããã»ã©ãæå·åã§ãããã€ãç·æ°ã¯å°ãªããªããŸããNIST ã®ä»æ§ SP 800-38D ã§ã¯ãåäžã®éµ K ã§ä¿è·ããããŒã¿ã®éçã 2 68 ãã€ããšç€ºããŠãããããã¯èå¥äžå¯èœæ§ã®ç¢ºç 50% ã«çžåœããŸããããŸããŸãªåæ ( ia.cr/2024/051 ã 10.1145/3243734.3243816 ) ã«åºã¥ããŠãããä¿å®çãªã»ãã¥ãªãã£ããŒãžã³ã䜿ãããããšããããŸããAWS ãããä¿å®çãªããŒãžã³ãèšå®ããŠãããããã©ã«ãã§ã¯ç¡èŠã§ããçšåºŠã®èå¥äžå¯èœæ§ã®ç¢ºç (<2 -32 ) ã匷å¶ããŠããŸãã ããã»ãã¥ãªãã£ããŒãžã³ã«ããã AES-GCM ã®ããŒã¿å¢çã«éãããã察称éµãããŒããŒã·ã§ã³ããå¿
èŠããããŸããããããéç (ããšãã°ãã©ã³ãã 㪠IV ã䜿ã£ãéµããã 2 32 åã®æå·åããéµãããã®æå€§ããŒã¿ç·é) ã«ã¯ãææ°ã®å€§èŠæš¡ãªæå·åãŠãŒã¹ã±ãŒã¹ã§å°éããå¯èœæ§ããããŸãã倿°ã®åæã»ãã·ã§ã³ãæã€åæ£ã·ã¹ãã å
šäœã§ãããã®éçã远跡ãããšãéçšäžã®è€éããå¢ããŸããAWS ã§ã¯ãAWS ã®èŠæš¡ã§ AES-GCM ã䜿ãéã®ãããã課é¡ãã 2023 幎ã«éå¬ããã NIST ã®ç¬¬ 3 å Workshop on Block Cipher Modes of Operation ã§ã® è§£èª¬è³æ ãš ãã¬ãŒã³ããŒã·ã§ã³ ã§å
±æããŸããã AWS KMS ãæŽŸçéµã䜿ãä»çµã¿ AWS KMS ã¯ãããŒã¿ã®æå·åãšçœ²åã«äœ¿ãéµãäœæãå¶åŸ¡ã§ãããããŒãžããµãŒãã¹ã§ããAWS KMS Encrypt API ã¯ã察称æå·åãšé察称æå·åããµããŒãããŠããŸããå¯Ÿç§°éµæå·åã®å ŽåãAWS KMS 㯠256 ãããã®éµã䜿ã£ã AES-GCM ãçšããŠãæå€§ 4 KB ã®ãµã€ãºã®å¹³æãæå·åããŸããAWS KMS ãªã¯ãšã¹ãã«ã¯ãå¹³æãšãKMS ã«ä¿ç®¡ãããŠãã察称ã«ã¹ã¿ããŒãããŒãžãã㌠(CMK) ã®å¯Ÿç§°éµèå¥å ( KeyId ) ãå«ãŸããŸãã AWS KMS ãžã®å¯Ÿç§°éµ Encrypt API ã³ãŒã«ã§ã¯ãå¹³æãæå·åããåã« CMK ã䜿ã£ãŠå¯Ÿç§°æå·åéµã掟çãããŸããAWS KMS ã¯ãã©ã³ãã 㪠128 ãããã®ãã³ã¹ N ãçæããéµå°åºé¢æ° (KDF) ã䜿ã£ãŠã KeyId ã§æå®ãããã¡ã€ã³ã㌠K ãã 256 ãããã®å¯Ÿç§°éµãçæããŸããKDF ã¯ãéµãã©ãã«ãšã³ã³ããã¹ããåŒã³åºãåºæã®ãã³ã¹ N ããããŠãã€ãåäœã®åºåé· L Km ãå
¥åãšããŠåãåãããã®é·ãã®éµãããªã¢ã«ã K mat = KDF(K, <label>, <context>, N, L Km ) ãšããŠçæããŸãã <label> ã¯éåžžãã¢ããªã±ãŒã·ã§ã³åºæãŸãã¯åŒã³åºãåºæã®å€ã§ãã <context> ã«ã¯åŒã³åºãåºæã®å
¥åãå«ãŸããŸããAWS KMS ã®å ŽåãKDF 颿°ã¯ NIST SP 800-108r1 Counter Mode KDF ã§ãæ¬äŒŒã©ã³ãã 颿°ãšã㊠HMAC-SHA256 ã䜿ã£ãŠ 256 ãããã®éµãããªã¢ã«ãçæããŸãã K d ã¯åºæ¬çã«ãéµ K ã䜿ã£ã 1 åã® HMAC-SHA256 åŒã³åºãã§æ¬¡ã®ããã«çæãããŸãã K d = HMAC-SHA256(K, <ctx>) ããã§ <ctx> ã¯ãã«ãŠã³ã¿ãŒå€ãšå®æ°ããã³ N ãé£çµãããã®ã§ãã ç¶ããŠãAWS KMS 㯠96 ãããã®ã©ã³ãã 㪠IV ãçæããå
¥åãããå¹³æ P ã AES-GCM ã§ (C, T) = AES-GCM(K d , IV, AAD, P) ãšããŠæå·åããŸãã AWS KMS ã¯ã IV ããã³ã¹ N ãæå·æãã¿ã° ( C,T ) ãå«ã CiphertextBlob ãè¿ããŸããããã«ãããåŸç¶ã® Decrypt API ãžã®åŒã³åºãã§ CiphertextBlob ã埩å·ã§ããŸãã çŽæçã«èšããšãCMK ã®ããšã§æå·åéµã掟çãããããã«äœ¿ããã 128 ãããã®ã©ã³ãã ãªãã³ã¹ã«ãããåŒã³åºãå
㯠CMK ã®ããšã§å®è¡ã§ããæå·ååæ°ã® 2 32 éçãã¯ããã«è¶
ããããŸããããã«ãAWS Encrypt åŒã³åºãã®ãã€ããŒããµã€ãºã«å¯Ÿãã 4 KB ã®éçã«ãããæå·åéµã®ããšã§æå·åãããããŒã¿ã®ç·éã¯ãNIST ããã®ä»ã®ããä¿å®çãªæå·åããŒã¿ç·éã®äžéïŒå¢çïŒãã¯ããã«äžåãããä¿ãããŸãããã®ã¹ããŒã ã®ã»ãã¥ãªãã£åºç€ã«é¢ããè©³çŽ°ãšæ°åŠçãªèæ¯ã«ã€ããŠã¯ã Key Management Systems at the Cloud Scale ãåç
§ããŠãã ããã AWS Encryption SDK ãåŒã³åºãããšã«æŽŸçéµã¢ãŒããé©çšããä»çµã¿ AWS Encryption SDK ã¯ãããŒã¿ã®æå·åãšåŸ©å·ã«äœ¿ãããã¯ã©ã€ã¢ã³ãåŽã®æå·åã©ã€ãã©ãªã§ããè€æ°ã®ãã€ããŒããæå·åãããšãã« API ã³ãŒã«ãæžãããããããŒã¿ããŒãã£ãã·ã¥ã䜿ãããã«èšå®ã§ããŸããAES-GCM ã®æå·ååŒã³åºãããšã«ãã³ã¹ããŒã¹ã®æŽŸçéµã䜿ãããšã§ãåäžã®ããŒã¿ããŒã®ããšã§æå·åããããŒã¿ã®ç·éã远跡ããå¿
èŠããªããªããŸãã AWS Encryption SDK ã¯å€ãã®æå·åã·ããªãªã«å¯Ÿå¿ããæè»æ§ãåããŠããŸãããããã©ã«ãèšå®ã§ã¯éµå°åºãšãã¬ãŒã ãµã€ãºã®èšå®ãèªåçã«åŠçãããããã»ãšãã©ã®ãŠãŒã¹ã±ãŒã¹ã§ãããã®èšå®ã調æŽããå¿
èŠã¯ãããŸãããAWS KMS ãšåæ§ã«ãåŒã³åºãããšã«ç°ãªãéµã掟çãããããã«ãã©ã³ãã ã«çæãããå€ N ãã¡ã€ã³ã㌠K ããã㊠KDF å
ã®åŒã³åºãåºæã®ã³ã³ããã¹ãã䜿ããŸãã N ã¯ããã©ã«ãèšå®ã§ã¯ 256 ãããã§ããåºç€ãšãªã KDF ã¯ãããã©ã«ãã®ããã·ã¥ãšã㊠SHA512 ã䜿ã HMAC ããŒã¹ã®æœåºå±ééµå°åºé¢æ° (HKDF) ã§ãã K d ã¯åºæ¬çã«ãéµ K ã䜿ã£ã 1 åã® HKDF åŒã³åºãã§æ¬¡ã®ããã«çæãããŸãã K d = HKDF(K, salt=<lbl>, info=<ctx>, 32) ããã§ <lbl> ã¯å®æ°ã§ããã <ctx> ã¯ããã©ã«ãèšå®ã§ã¯å®æ°ãšã©ã³ãã 㪠256 ãããã®å€ãé£çµãããã®ã§ãã ç¶ããŠãAWS Encryption SDK ã¯æŽŸçéµ K d ã䜿ã£ãŠãããã©ã«ãã§ã¯ 4 KB ã®ãã¬ãŒã ã«åå²ããããŠãŒã¶ãŒã³ã³ãã³ããæå·åããŸããåãã¬ãŒã ã®å¹³æ Pf ã¯ã決å®è«ç㪠IV ã䜿ã£ã AES-GCM ã§ (C, T) = AES-GCM(Kd, IV, AAD, Pf) ãšããŠæå·åãããŸãã 96 ãããã®æ±ºå®è«ç㪠IV ã¯ããã¬ãŒã ã«ãŠã³ã¿ãŒ frameID ã§æ§æããã frameID <2 32 ã§ãã远å èªèšŒããŒã¿ AAD 㯠Encryption SDK ã®ããŒã¿ãã¬ãŒã ã«åºæ ã§ããåŸ©å·æã«ã¯ãåä¿¡è
ã¯åãæ¹æ³ã§ K ãã K d ãæŽŸçãããæå·æ C ã埩å·ããŠãã¬ãŒã ã®å¹³æ Pf ãçæããèªèšŒã¿ã° T ãæ€èšŒããŸãã 4 KB ã®ãã¬ãŒã ãµã€ãºã«ãããããã©ã«ãã§ã¯åäžã®æå·åéµã®ããšã§æå·åã§ããããŒã¿ã¯ 2 44 ãã€ã (å 4 K ãã€ãã® 2 32 ãã¬ãŒã ) ãè¶
ããªãããšãä¿èšŒãããŸããããã¯ãããŒã¿ããŒãã£ãã·ã¥ã䜿ã£ãå Žåã§ããNIST ã瀺ãå¢ç (2 68 ) ãã¯ããã«äžåããŸãããŸããAWS ã®ä¿å®çãªèŠä»¶ã§ãã <2 -32 ã®èå¥äžå¯èœæ§ã®ç¢ºçãã¯ããã«äžåããŸããéµãããã®åŒã³åºãåæ°ã®éçã¯ãããŒã¿ããŒãã£ãã·ã¥ã䜿ã£ãå Žåã§ããã»ãšãã©ã®å€§èŠæš¡ã¢ããªã±ãŒã·ã§ã³ã®æå·ååæ°ãäžåããŸãã æ³š: AWS Encryption SDK ã¯ããã©ã«ãèšå®ã§ä¿å®çãªéžæãããŠããŸããã ã¬ã¬ã·ãŒã®ããŒãžã§ã³ 1.0 ã䜿ã£ãŠããå Žåãèšå®ã倿ŽããŠããå Žåã¯ãã»ãã¥ãªãã£ä¿èšŒãäœããªãå¯èœæ§ããããŸããããšãã°ã2 32 -1 ãã€ããšããã«ã¹ã¿ã ã§æå€§åãããã¬ãŒã ãµã€ãºã䜿ããšãå¹³æã®åèšãµã€ãºã倧ãããªããŸãããã㯠NIST ã瀺ãéç 2 68 ã¯äžåããŸããããã®ä»ã®ä¿å®çãªå¢çã¯äžåããŸããã ãªããããã©ã«ãã® AWS Encryption SDK èšå®ã¯ã éµã³ãããã¡ã³ã ã®ãããªãããŸãç¥ãããŠããªãã»ãã¥ãªãã£ç¹æ§ãæäŸããŸãã ã³ãããã¡ã³ãæåå ã¯ã K ãš HKDF ã䜿ã£ãŠã掟çéµãšåæ§ã«çæãããŸãã ãŸãšã æå·ååŒã³åºãããšã«äžæã®éµã掟çãããããšã§ãAWS KMS ãš AWS Encryption SDK ã¯ãAES-GCM ã®éçãæåã§è¿œè·¡ããå¿
èŠããªãããŸãã AES-GCM ã®å¢çã«é¢ããåŠè¡çãªæ ¹æ ã«ã€ããŠã¯ã SP 800-38D ãš draft-irtf-cfrg-aead-limits ãåç
§ããŠãã ãããKMS ã§äœ¿ãããéµå°åºã¹ããŒã ã®æå·è§£æã«ã€ããŠããã«è©³ããç¥ãããå Žåã¯ã Key Management Systems at the Cloud Scale ãåç
§ããŠãã ãããEncryption SDK ã® AES-GCM éµå°åºã®è©³çްã«ã€ããŠã¯ã AWS Encryption SDK algorithms reference ãåç
§ããŠãã ããã ãã®èšäºã«é¢ããã質åãããå Žåã¯ã AWS Security, Identity, & Compliance re:Post ã§æ°ããã¹ã¬ãããéå§ãããã AWS ãµããŒãã«ãåãåãã ãã ããã Panos Kampanakis Panos 㯠AWS ã® Principal Security Engineer ã§ãããµã€ããŒã»ãã¥ãªãã£ãå¿çšæå·ãã»ãã¥ãªãã£èªååãè匱æ§ç®¡çã®çµéšããããŸãããµã€ããŒã»ãã¥ãªãã£ã«é¢ããåºçç©ãå
±èããã»ãã¥ãªãã£æ
å ±å
±æãæå·ãå
¬ééµåºç€ã®ããã®å
±éãã€çžäºéçšå¯èœãªãããã³ã«ãèšèªãæäŸãã¹ããããŸããŸãªã»ãã¥ãªãã£æšæºåå£äœã«åå ããŠããŸãããçŸåšã¯ããšã³ãžãã¢ãæ¥çããŒãããŒãšååããŠãæå·åŠçã«å®å
šãªããŒã«ããããã³ã«ãæšæºã®æäŸã«åãçµãã§ããŸãã Matt Campagna Matthew 㯠Amazon Web Services ã® Cryptographer å
Œ Sr. Principal Engineer ã§ãã瀟å
å
šäœã®æå·ãœãªã¥ãŒã·ã§ã³ã®èšèšãšã¬ãã¥ãŒã管çãããã¹ãéåæå·ãžã®ç§»è¡ãäž»å°ããŠããŸããäœæã«ã¯ãã·ã¢ãã«ã§å®ç§ãªã³ãªã¢ã³ãã©ã€ãããã³ãæ¢ãæ±ããŠããŸãã Patrick Palmer Patrick 㯠AWS ã® Principal Security Specialist Solutions Architect ã§ããäžçäžã®ã客æ§ã AWS ãµãŒãã¹ãå®å
šã«äœ¿ããããæ¯æŽããŠãããæå·ãå°éãšããŠããŸããä»äºä»¥å€ã§ã¯ãå¢ãã€ã€ããå®¶æãšéããããããããªã²ãŒã ããã¬ã€ãããããããšã楜ããã§ããŸãã æ¬ããã°ã¯ Security Solutions Architect ã® äžå³¶ ç« å ã翻蚳ããŸããã


















