Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Speaker Deck
PRO
Sign in
Sign up for free
フィッシング対策セミナー2022講演資料 / antiphishing-seminar2022-hasegawa
Ayako Hasegawa
October 25, 2022
Research
0
1k
フィッシング対策セミナー2022講演資料 / antiphishing-seminar2022-hasegawa
Ayako Hasegawa
October 25, 2022
Tweet
Share
More Decks by Ayako Hasegawa
See All by Ayako Hasegawa
ユーザブルセキュリティの最新研究動向 (日本銀行 情報セキュリティ・セミナー) / Usable Security Seminar 2022
ayakohasegawa
0
410
UWS2021企画セッション チュートリアル「ユーザブルセキュリティ研究の概要とトレンド」/ uws2021-hasegawa
ayakohasegawa
0
170
UWS2020企画セッション「ユーザスタディの進め方: セキュリティ篇」/uws2020_hasegawa_1
ayakohasegawa
0
330
UWS2020企画セッション「クラウドソーシングサービスの利用に向けて」/uws2020_hasegawa_2
ayakohasegawa
0
270
ユーザブルセキュリティ・プライバシー分野におけるユーザスタディの動向 2019 / Design of User Study
ayakohasegawa
1
1.4k
Other Decks in Research
See All in Research
Generative Multiplane Images: Making a 2D GAN 3D-Aware
kanosawa
0
140
画面転送式デジタルサイネージの開発に向けたVNCトラフィックの計測 / IOTS2022-akiba
yumulab
0
130
FADEC: FPGA-based Acceleration of Video Depth Estimation by HW/SW Co-design (FPT 2022)
hashi0203
0
150
Furm: 家具移動アプリケーションの提案 / IOTS2022-tsujinaga
yumulab
0
210
深層学習を用いた予測の不確実性-自然言語処理編-
masatoto
0
390
Revisiting Over-smoothing in BERT from the Perspective of Graph
eumesy
PRO
0
300
第50回構造活性相関シンポジウムランチョンセミナー_SMILES言語モデルSmilesFormerの開発とその応用例
elix
0
150
Federated Learning Tutorial (IBIS 2022)
osx
2
2.2k
On the Training of Infinitely Deep and Wide ResNets
gpeyre
0
180
ログ収集入門Elastic_Searchの機能と活用事例
o_hasegawa
0
140
チュートリアル: ユーザビリティはどう測る? ~評価手法とその利用~ / How do we measure usability? -Evaluation Methods and Their Use
akirakanaoka
0
390
Optimizing Electric Journal Subscriptions via Integer Programs
umepon
0
370
Featured
See All Featured
The Language of Interfaces
destraynor
149
21k
Fireside Chat
paigeccino
16
1.8k
No one is an island. Learnings from fostering a developers community.
thoeni
12
1.5k
Agile that works and the tools we love
rasmusluckow
320
20k
Design and Strategy: How to Deal with People Who Don’t "Get" Design
morganepeng
109
16k
Visualization
eitanlees
128
12k
Designing for Performance
lara
601
65k
Robots, Beer and Maslow
schacon
154
7.3k
How GitHub (no longer) Works
holman
298
140k
In The Pink: A Labor of Love
frogandcode
132
21k
Building Flexible Design Systems
yeseniaperezcruz
314
35k
Put a Button on it: Removing Barriers to Going Fast.
kastner
56
2.5k
Transcript
ϑΟογϯάʹର͢ΔϢʔβͷߦಈɾೝࣝ ۙͷֶज़ݚڀ͔Β ϑΟογϯάରࡦηϛφʔ ࠃཱݚڀ։ൃ๏ਓ ใ௨৴ݚڀػߏ αΠόʔηΩϡϦςΟݚڀॴ ୩ ࠼ࢠ
ߨԋऀ ࣗݾհ w ࢯ໊ɿ୩ ࠼ࢠ w ॴଐɿࠃཱݚڀ։ൃ๏ਓ ใ௨৴ݚڀػߏ αΠόʔηΩϡϦςΟݚڀॴ w
৬Ґɿݚڀһ w ઐɿϢʔβϒϧηΩϡϦςΟݚڀ 2
ϢʔβϒϧηΩϡϦςΟݚڀͱ w ώϡʔϚϯϑΝΫλͷ؍͔ΒηΩϡϦςΟٕज़Λݕ౼͢Δݚڀ r ໊લͷ௨Γɼਓؒ Ϣʔβ ʹͱͬͯ lVTBCMFzͰ҆શͳηΩϡϦςΟٕज़ͷཱ͕֬ඪ r ͦͷͨΊʹϢʔβͷߦಈೝࣝΛ؍ଌ
3 γεςϜத৺ͷ ϑΟογϯάݚڀ ߴਫ਼ͳϑΟογϯάݕ ΞϧΰϦζϜͷཱ֬ ػցֶश ਓؒத৺ͷ ϑΟογϯάݚڀ Ϣʔβ͕ὃ͞ΕΔཧ༝ͷղ໌ ˣ ޮՌతͳڭҭɾϢʔβαϙʔτπʔϧ ͷग़ ֘ݚڀͷৄࡉɿ ۚԬߊϢʔβϒϧηΩϡϦςΟೖIUUQTTQFBLFSEFDLDPNBLJSBLBOBPLBVXTUJZVUPSJBSVZV[BCVSVTFLJZVSJUFJSVNFO 秋⼭満昭. ⾦融分野に求められるユーザブルセキュリティ. https://www.imes.boj.or.jp/jp/conference/citecs/22semi_02_docs/22sec_semi02_akiyama.pdf ྆ํͷΞϓϩʔν͕ॏཁ
"HFOEBʢݚڀࣄྫհʣ ϢʔβΛὃ͢߈ܸऀͷ৺ཧςΫχοΫ Ϣʔβͷଐੑͱὃ͞Ε͢͞ ϢʔβͷϑΟογϯά߈ܸʹؔ͢Δࣝ ϢʔβʹޮՌతͳڭҭɾΞυόΠε
ϢʔβʹޮՌతͳܯࠂσβΠϯ 4
ϢʔβΛὃ͢߈ܸऀͷ৺ཧτϦοΫ
߈ܸऀਓؒͷ৺ཧಛੑΛѱ༻ w ߈ܸऀ͕ѱ༻͢Δਓؒͷ৺ཧಛੑ 3PCFSU$JBMEJOJ lQSJODJQMFTPGJOGMVFODFz 6 ᶃ ฦใੑʢSFDJQSPDJUZʣ ᶄ Ұ؏ੑʢDPOTJTUFODZʣ
ᶅ ࣾձతূ໌ʢTPDJBMQSPPGʣ ᶆ ݖҖʢBVUIPSJUZʣ ᶇ ҙʢMJLJOHʣ ᶈ رগੑʢTDBSDJUZʣ
߈ܸऀ͕ѱ༻͢Δ৺ཧతಛੑɿฦใੑɾҰ؏ੑ 7 ᶃ ฦใੑɿड͚ͨԸʹ͓ฦ͠Λ͠ͳ͚ΕͳΒͳ͍ͱײ͡Δ ᶄ Ұ؏ੑɿ͕ࣗද໌ͨ͠ଋकΓͨ͘ͳΔ αʔϏε͓٬༷ͷ҆શͷͨΊʹશྗΛਚ͍ͯ͘͠·͢ɻ͓٬༷ͷΞΧϯτͷ ҆શΛอͭͨΊʹɺҎԼͷϦϯΫ͔Β͝ڠྗΛ͓ئ͍͠·͢ɻ MJOL αʔϏεͷར༻نʹ͋ͳͨಉҙ͠·ͨ͠ɻ͋ͳ͕ͨར༻نʹҧ͍ͯ͠ͳ͍
߹ɺҎԼͷϦϯΫ͔ΒΞΧϯτ࠶։ͷखଓ͖Λߦͳ͍ͬͯͩ͘͞ɻ MJOL
߈ܸऀ͕ѱ༻͢Δ৺ཧతಛੑɿࣾձతূ໌ɾݖҖ 8 ᶅ ࣾձతূ໌ɿपғͷಈ͖ʹಉௐͨ͘͠ͳΔ ᶆ ݖҖɿݖҖͷ͋Δਓʹ৴པΛ͓͖ͨ͘ͳΔ શͯͷϢʔβ͕ϝʔϧΞυϨεͷೝূΛ࣮ࢪ͢Δඞཁ͕͋Γ·͢ɻҎԼͷϦϯΫ͔ Β࣮ࢪ͍ͯͩ͘͠͞ɻ MJOL 999ࣾ$&0ͷࢁాଠͰ͢ɻࢿྉΛ֬͝ೝ͍ͩ͘͞ɻMJOL
߈ܸऀ͕ѱ༻͢Δ৺ཧతಛੑɿҙɾرগੑ 9 ᶇ ҙɿ͖ʹͳͬͯ͘ΕͨਓΛ͖ʹͳΓɼ͖ͳਓʹಉௐͨ͘͠ͳΔ ᶈ رগੑɿرগͳͷ΄Ͳཉ͘͠ͳΔ αʔϏε͓٬༷Λେʹ͍ͯ͠·͢ɻզʑ͕͓٬༷ΛαϙʔτͰ͖ΔΑ͏ɺҎ ԼͷϦϯΫ͔ΒઃఆΛ࣮ࢪ͍ͩ͘͞ɻ MJOL ࣌ؒҎʹϩάΠϯ͍͍ͯͨͩͨ͠ํʹɺಛผʹϙΠϯτΛ্ࠩ͛͠·͢ɻ
MJOL
10 ࢀߟɿ<>")FJKEFOBOE -"MMPEJ$PHOJUJWF5SJBHJOHPG1IJTIJOH"UUBDLT *O1SPDPG4&$` <>߂ؽ΄͔ඪతܕϝʔϧʹ͓͚Δ৺ཧૢ࡞ςΫχοΫͱ ੑ֨ಛੑ͓Αͼߦಈಛੑͱͷؔੑੳใॲཧֶձจࢽ 7PM/P ˞͍ͣΕจԽతൺֱΛతͱͨ͠จͰͳ͍͕ɼຊߨԋʹ͓͍ͯศ্ٓ྆จͷ݁ՌΛൺֱͨ͠ ߨԋऀʹΑΔ ϑΟογϯάϝʔϧ
ͷಛ ԤभͷϢʔβ <> ʢۚ༥ػؔʹͳΓ͢·ͨ͠ ϑΟογϯάϝʔϧͰ࣮ݧʣ ຊͷϢʔβ <> ʢҰൠతͳ༰ͷඪతܕ ϑΟογϯάϝʔϧͰ࣮ݧʣ ฦใੑ͕ߴ͍ ΫϦοΫ͕͍ ΫϦοΫͱ༗ҙͳؔͳ͠ Ұ؏ੑ͕ߴ͍ ΫϦοΫ͕ߴ͍ ΫϦοΫͱ༗ҙͳؔͳ͠ ࣾձతূ໌͕ߴ͍ ΫϦοΫͱ༗ҙͳؔͳ͠ ΫϦοΫͱ༗ҙͳؔͳ͠ ݖҖ͕ߴ͍ ΫϦοΫͱ༗ҙͳؔͳ͠ ΫϦοΫ͕ߴ͍ ҙ͕ߴ͍ ΫϦοΫͱ༗ҙͳؔͳ͠ ΫϦοΫ͕ߴ͍ رগੑ͕ߴ͍ ΫϦοΫ͕ߴ͍ ΫϦοΫ͕ߴ͍ ৺ཧτϦοΫͷϢʔβͷὃ͞Ε͢͞
11 ϑΟογϯ άϝʔϧͷ ಛ ԤभͷϢʔβ ຊͷϢʔβ ฦใੑ ͍ ༗ҙͳؔͳ͠ Ұ؏ੑ
ߴ͍ ༗ҙͳؔͳ͠ ࣾձతূ໌ ༗ҙͳؔͳ͠ ༗ҙͳؔͳ͠ ݖҖ ༗ҙͳؔͳ͠ ߴ͍ ҙ ༗ҙͳؔͳ͠ ߴ͍ رগੑ ߴ͍ ߴ͍ ຊԤभΑΓू߹ओٛ ⁶ ݸਓओٛ ͕ڧ͍ࠃͰ͋ΔͨΊɼݖҖʹऑ͍ ͱ͍͏ͷೲಘͰ͖Δ ʢҰൠʹ ू߹ओٛͷࠃͷॅຽͷ΄͏͕ ϑΟογϯάʹὃ͞Ε͍͢ͱ͞ΕΔ <> ʣ ͲͷΑ͏ͳϢʔβʹରͯ͠ൺֱతޮ Ռ͕ߴ͍ͱ͢Δͱɼ߈ܸऀʹͱͬͯ ࠷ศརͳ৺ཧτϦοΫʁ <>.#VUBWJDJVT FUBM6OEFSTUBOEJOH4VTDFQUJCJMJUZUP1IJTIJOH&NBJMT"TTFTTJOHUIF*NQBDUPG*OEJWJEVBM%JGGFSFODFTBOE$VMUVSF *O1SPDPG)"*4"` ৺ཧτϦοΫͷϢʔβͷὃ͞Ε͢͞
͜ͷΑ͏ͳݚڀՌ ݟ ΛͲ͏׆͔͔͢ Ø Ϣʔβ͕ಛʹὃ͞Ε͍͢৺ཧτϦοΫʹؔͯ͠ɼͦͷ৺ཧτϦοΫ͕༻͍ΒΕ ͨϝʔϧΛࣗಈͰผ͠ɼ༏ઌతʹௐࠪ͢ΔɾܯࠂΛදࣔͤ͞ΔͳͲ 12
Ϣʔβͷଐੑͱὃ͞Ε͢͞
Ϣʔβଐੑͱὃ͞Ε͢͞ Ϣʔβͷଐੑʢɾੑผɾੑ֨ಛੑɾաڈͷܦݧɾจԽ FUDʣʹΑΓϑΟο γϯάͷὃ͞Ε͕͢͞ҟͳΔ͜ͱ͕໌Β͔ʹͳ͍ͬͯΔ ˠὃ͞Ε͍͢ଐੑͷϢʔβΛੵۃతʹαϙʔτ w ɾੑผ<> r ߴྸͷঁੑ͕࠷ὃ͞Ε͍͢ r
एऀرগੑʹὃ͞Ε͘͢ɼߴྸऀฦใੑʹὃ͞Ε͍͢ r ߴྸऀͷ΄͏͕ὃ͞Ε͢͞ͷ֮ࣗͱ࣮ࡍͷὃ͞Ε͢͞ʹ͕ࠩେ͖͍ʢա৴ʣ 14 ࢀߟɿ <>%0MJWFJSBFUBM%JTTFDUJOH4QFBS1IJTIJOH&NBJMTGPS0MEFSWT:PVOH"EVMUT0OUIF*OUFSQMBZPG8FBQPOTPG*OGMVFODFBOE-JGF %PNBJOTJO1SFEJDUJOH4VTDFQUJCJMJUZUP 1IJTIJOH *O1SPDPG$)*`
Ϣʔβଐੑͱὃ͞Ε͢͞ w ੑ֨ಛੑ r ྑ৺తͳੑ֨ͳਓͦ͏Ͱͳ͍ਓΑΓὃ͞Ε͍͢ <> w աڈͷܦݧ r աڈʹϑΟογϯάτϨʔχϯάΛड͚ͨਓͦ͏Ͱͳ͍ਓΑΓὃ͞Εʹ͍͘
<> w ଞͷଐੑʢྸɾੑผʣΑΓӨڹ͕େ͖͍ w จԽɾݴޠ r ू߹ओٛͷࠃͷॅຽͷ΄͏͕ὃ͞Ε͍͢ <> 15 ࢀߟɿ <>5)BMFWJFUBM 4QFBS1IJTIJOHJOUIF8JME"3FBM8PSME4UVEZPG1FSTPOBMJUZ 1IJTIJOH4FMGFGGJDBDZBOE7VMOFSBCJMJUZUP4QFBS1IJTIJOH"UUBDLT443/&MFDUSPOJD+PVSOBM <>44IFOHFUBM8IP'BMMTGPS1IJTI "%FNPHSBQIJD"OBMZTJTPG1IJTIJOH4VTDFQUJCJMJUZBOE&GGFDUJWFOFTTPG*OUFSWFOUJPOT *O1SPDPG$)*` <>.#VUBWJDJVT FUBM6OEFSTUBOEJOH4VTDFQUJCJMJUZUP1IJTIJOH&NBJMT"TTFTTJOHUIF*NQBDUPG*OEJWJEVBM%JGGFSFODFTBOE$VMUVSF *O1SPDPG)"*4"`
ϢʔβͷϑΟογϯά߈ܸʹؔ͢Δࣝ
ϑΟογϯάʹؔ͢ΔϢʔβͷ࣭ ຊͷ2ˍ"αΠτʹߘ͞ΕͨηΩϡϦςΟɾϓϥΠόγʔؔ࿈ͷ࣭ͷ͏ͪ ׂ͕ϑΟογϯάͷαΠόʔ߈ܸʹؔ͢Δ࣭Ͱ͋ͬͨ<> w ࠷ଟ͍࣭ɿʮ͜ͷϝʔϧ4.4αΠτٗͰ͔͢ʁʯ r ࣭ऀ͕ఴ͍ͯͨ͠ϝʔϧ4.4αΠτయܕతͳϑΟογϯά߈ܸͰ͋ͬͨɽయܕత ͳϑΟογϯά߈ܸͰ͋ͬͯɼϢʔβ͕ࣗྗͰஅ͢Δͷࠔ w యܕతͳUZQPTRVBUUJOHʢྫɿ"QQMF4VQQSUʣɼ༗໊ͳϑϦʔϝʔϧαʔϏεͷϝʔϧΞυ
ϨεΛར༻͢Δ߈ܸʢྫɿ(NBJMΞυϨεΛͬͯ(PPHMFʹͳΓ͢·͢ʣ w ࣍ʹଟ͍࣭ɿʮٗαΠτʹϩάΠϯใΧʔυใΛೖྗͯ͠͠·͍· ͨ͠ɻ͜ͷޙԿΛ͖͢Ͱ͔͢ʁʯ r ϑΟογϯάϝʔϧαΠτͷಛఆํ๏ո͍͠ϝʔϧͷରॲํ๏ʹൺͯɼϑΟογϯ άʹὃ͞Εͨޙͷߦಈʹ͍ͭͯͷΞυόΠεΛܝࡌ͍ͯ͠ΔΣϒαΠτগͳ͍ <> 17 ࢀߟɿ<>")BTFHBXBFUBM 6OEFSTUBOEJOH/PO&YQFSUT`4FDVSJUZ BOE1SJWBDZ3FMBUFE2VFTUJPOTPOB2"4JUF*O1SPDPG40614` <>..PTTBOP FUBM "OBMZTJTPG1VCMJDMZ"WBJMBCMF"OUJ1IJTIJOH8FCQBHFT$POUSBEJDUJOH*OGPSNBUJPO -BDLPG$PODSFUF"EWJDFBOE7FSZ/BSSPX"UUBDL7FDUPS *O1SPDPG&VSP64&$`
ҰൠతͳΤϯυϢʔβʹ63-ͷѼઌΛ͏ΞϯέʔτΛ࣮ࢪ<> 63-ͷߏʹؔ͢ΔϢʔβͷࣝ 18 2ҎԼͷ63-ͦΕͧΕͲͷΑ͏ͳΣϒαΠτʹܨ͕Δͱࢥ͍·͔͢ʁ ᶃ IUUQTQSPGJMFGBDFCPPLDPN ᶄ IUUQTGBDFCPPLQSPGJMFDPN ᶅ IUUQTUXJUUFSDPNGBDFCPPLDPN
! ! ! ࢀߟɿ<>4"MCBLSZ FUBM8IBUJTUIJT63-T%FTUJOBUJPO &NQJSJDBM&WBMVBUJPOPG6TFST63-3FBEJOH *O1SPDPG$)*`
63-ͷߏʹؔ͢ΔϢʔβͷࣝ 19 ᶃ IUUQTQSPGJMFGBDFCPPLDPN 㱺'BDFCPPL ᶄ IUUQTGBDFCPPLQSPGJMFDPN 㱺1SPGJMF ᶅ IUUQTUXJUUFSDPNGBDFCPPLDPN
㱺5XJUUFS αϒυϝΠϯ αϒυϝΠϯ αϒσΟϨΫτϦ υϝΠϯ໊ υϝΠϯ໊ υϝΠϯ໊
63-ͷߏʹؔ͢ΔϢʔβͷࣝ w ࢀՃऀυϝΠϯͱαϒυϝΠϯͷ۠ผ͕͍͓ͭͯΒͣ ʮ'2%/ʹؚ·ΕΔαʔϏε ໊শ ʹ ܨ͕ΔΣϒαΠτʯͰ͋Δͱޡղ͕ͪ͠ w ᶅ αϒσΟϨΫτϦʹαʔϏε໊
ൺֱతޡগͳ͔ͬͨ w શਖ਼ղͨ͠ࢀՃऀɼͭ·Γ63-ͷߏΛཧղ͍ͯͨ͠ࢀՃऀͷΈɽٕज़ܥͷ ࢀՃऀͰ͋ͬͯޡͨ͠ 20 ᶃ IUUQTQSPGJMFGBDFCPPLDPN 㱺 ࢀՃऀ 'BDFCPPL ʹܨ͕Δͱճ ᶄ IUUQTGBDFCPPLQSPGJMFDPN 㱺 ࢀՃऀ 'BDFCPPL ʹܨ͕Δͱճʢޡʣ Ϣʔβ63-ΛݟͯͦͷѼઌΛஅͰ͖ͳ͍͜ͱ͕͋ΔͨΊɼʮϝʔϧதͷϦϯΫΛ ϗόϦϯάͯ͠ਅͷ63-Λ֬ೝ͠·͠ΐ͏ʯͷΑ͏ͳΞυόΠεͰෆे
֤छ63-ِςΫχοΫʹؔ͢ΔϢʔβͷࣝ 21 ࢀߟɿ<>+3FZOPMETFUBM.FBTVSJOH*EFOUJUZ$POGVTJPOXJUI6OJGPSN3FTPVSDF-PDBUPST *O1SPDPG$)*` 2ҎԼͷ63-ͲͷΑ͏ͳΣϒαΠτʹܨ͕Δͱࢥ͍·͔͢ʁ • IUUQTUXJUUUFSDPN • IUUQTCPGBDPNTJHOJOJOGP •
IUUQT • IUUQTЛBZЛBMDPN • IUUQTTFDVSFHNBJMDPN • IUUQTUXJUUFSDPNJTTVFTTVQQPSU • IUUQTUXJUUFSDPNF ! ! ! ҰൠతͳΤϯυϢʔβʹ63-ͷѼઌΛ͏ΞϯέʔτΛ࣮ࢪ<> 5ZQPTRVBUUJOH 4VCEPNBJOBT%PNBJO *1"EESFTT *%/)PNPHSBQIT 4FMGEFDMBSFETFDVSF 6OGBNJMJBS5-% 63-&ODPEFE $IBSBDUFST
֤छ63-ِςΫχοΫʹؔ͢ΔϢʔβͷࣝ 22 ࢀՃऀ͕ѼઌΛਖ਼Ͱ͖ͨͷˋͷ63-ʹͱͲ·ͬͨ 63-ِςΫχοΫ ྫ ਖ਼ 5ZQPTRVBUUJOH IUUQTUXJUUUFSDPN *%/)PNPHSBQIT
IUUQTЛBZЛBMDPN 4FMGEFDMBSFETFDVSF IUUQTTFDVSFHNBJMDPN *1"EESFTT IUUQT 6OGBNJMJBS5-% IUUQTUXJUUFSDPNJTTVFTTVQQPSU 4VCEPNBJOBT%PNBJO IUUQTCPGBDPNTJHOJOJOGP 63-&ODPEFE$IBSBDUFST IUUQTUXJUUFSDPNF
w lηΩϡϦςΟϦςϥγzͱͯ͠ɼϢʔβ63-ͷߏِςΫχοΫΛ͓ͬͯ͘ ͷ͕·͍͠ r ͨͩ͠ɼਓ͕ؒࢹ֮తʹݟഁΔ͜ͱ͕ඇৗʹࠔͳɼߴͳ*%/)PNPHSBQITଘࡏ w ͦͷҰํͰɼϢʔβͷ63-ผεΩϧ͚ͩʹґଘ͢Δ͜ͱͤͣɼαʔϏεࣗۀऀ͔ ΒϢʔβͷϝʔϧͷதʹ63-ΛؚΊΔ͜ͱආ͚Δ ϒοΫϚʔΫ͔ΒΞΫηε͠ ͯΒ͏Α͏༠ಋ
ͷରࡦݕ౼͖͢ <> 23 ࢀߟɿ<>秋⼭満昭. ⾦融分野に求められるユーザブルセキュリティ. https://www.imes.boj.or.jp/jp/conference/citecs/22semi_02_docs/22sec_semi02_akiyama.pdf
ϑΟογϯάʹର͢ΔϢʔβͷՕॴ 24 w <ϝʔϧ>Ϣʔβϔομʔ63-ʹ΄ͱΜͲͤͣɼຊจͷ༰Ͱਖ਼ن͔ϑΟογϯά͔ Λஅ͢Δ <> w <ϝʔϧ>ૹ৴ݩʹ͢ΔϢʔβϑΟογϯάʹὃ͞Εʹ͘͘ɼ໊݅ۓٸͷݴ༿ͷଘࡏʹ ͢ΔϢʔβϑΟογϯάʹὃ͞Ε͍͢ <>
w <ϝʔϧ>ۓٸͷݴ༿ͷଘࡏΑΓɼϛεεϖϧͷଘࡏͷ΄͏͕ϢʔβϑΟογϯάΛ͍ٙ ͍͢ <> w <αΠτ>ϢʔβϒϥβͷηΩϡϦςΟΠϯδέʔλʹ΄΅ͤͣɼΣϒαΠτͷίϯ ςϯπʹ͢Δ <> w ϑΟογϯάϝʔϧαΠτͷಛఆͷͨΊʹʮࣝʴ࣌ؒʯ͕ॏཁ <> ࢀߟɿ<>+%PXOTFUBM%FDJTJPOTUSBUFHJFTBOETVTDFQUJCJMJUZUPQIJTIJOH *O1SPDPG40614` <>"7JTIXBOBUIFUBM8IZEPQFPQMFHFUQIJTIFE UFTUJOHJOEJWJEVBMEJGGFSFODFTJOQIJTIJOHWVMOFSBCJMJUZXJUIJOBOJOUFHSBUFE JOGPSNBUJPOQSPDFTTJOHNPEFM%FDJTJPO4VQQPSU4ZTUFNT <>+.D"MBOFZ BOE1)JMMTUnderstanding Phishing Email Processing and Perceived Trustworthiness Through Eye Tracking 'SPOUJFSTJO1TZDIPMPHZ <>."MTIBSOPVCZ FUBM8IZQIJTIJOH TUJMMXPSLTVTFSTUSBUFHJFTGPSDPNCBUJOHQIJTIJOHBUUBDLT*OUFSOBUJPOBM+PVSOBMPG)VNBO$PNQVUFS4UVEJFT <>,1GFGGFM FUBM8IFSFUIFVTFSEPFTMPPLXIFOSFBEJOHQIJTIJOHNBJMTr "OFZFUSBDLJOHTUVEZ *O1SPDPG)$**`
ϢʔβʹޮՌతͳڭҭɾΞυόΠε
ϑΟογϯάରࡦΞυόΠεͷ࣮ଶௐࠪ ΣϒαΠτʹܝࡌ͞ΕͨΞυόΠε Χࠃ Λੳͯ͠໌ͨ͠՝<> w நతͳΞυόΠε͕ଟ͍ r ྫʣʮΫϦοΫ͢Δલʹ63-Λ֬ೝ͠·͠ΐ͏ʯ w ࠞཚΛੜΉΞυόΠε͕ܝࡌ͞Ε͍ͯΔ
r ྫʣʮෆࣗવͳจষͷϝʔϧϑΟογϯάͷՄೳੑ͕͋Γ·͢ʯͱʮ߈ܸऀࣗવͳจ ষΛॻ͖·͢ʯ w ߴͳϑΟογϯάʹؔ͢ΔΞυόΠε͕ͳ͍ r ྫʣΫϩʔϯϑΟογϯά Ҏલʹૹ৴͞Εͨਖ਼نͷϝʔϧΛѱ༻͞ΕΔ ʹؔ͢Δใ͕ ܝࡌ͞Ε͍ͯͳ͍ 26 ࢀߟɿ<>..PTTBOP FUBM "OBMZTJTPG1VCMJDMZ"WBJMBCMF"OUJ1IJTIJOH8FCQBHFT$POUSBEJDUJOH*OGPSNBUJPO -BDLPG$PODSFUF"EWJDFBOE7FSZ/BSSPX"UUBDL7FDUPS *O1SPDPG&VSP64&$`
ޮՌతͳڭҭํ๏ɾڭҭλΠϛϯά υΠπͷͱ͋Δ৫Ͱ࣮ࢪ͞ΕͨϑΟογϯάڭҭɾϑΟογϯάಛఆςετ<> w ΦϯαΠτνϡʔτϦΞϧͷޮՌͲΕ͘Β͍࣋ଓ͢Δ͔ʁ ϲ݄ఔɽϲ݄ޙʹνϡʔτϦΞϧલͱେࠩͳ͍ύϑΥʔϚϯεʹ w ͲͷΑ͏ͳܗࣜͷϦϚΠϯμʔڭҭ͕ޮՌత͔ʁ ςΩετɾ͍ςΩετɾ ϏσΦɾϝʔϧը໘ʹҙϙΠϯτ͕هࡌ͞Εͨڭࡐ
ϏσΦɾϝʔϧը໘ڭࡐͷޮՌ͕ߴ͘ɼ࣮ࢪޙϲ݄ޙޮՌ༗ 27 ࢀߟɿ<>#3FJOIFJNFS FUBM"OJOWFTUJHBUJPOPGQIJTIJOHBXBSFOFTTBOEFEVDBUJPOPWFSUJNF8IFOBOEIPXUPCFTUSFNJOEVTFST *O1SPDPG40614` ߴසͰͷܧଓతͳڭҭ͕ඞཁ
ޮՌతͳڭҭํ๏ ΞυόΠεܗࣜ ͱ ετʔϦʔ ମݧஊ ܗࣜͷޮՌͷҧ͍ <> ΞυόΠεܗࣜ ˠ ޮՌ͕ߴ͘ɼઐՈ͔Β༩͑ΒΕͨࡍʹಛʹޮՌత
ετʔϦʔܗࣜ ˠ ޮՌߴ͘ͳ͍͕ɼಉ྅͔Β༩͑ΒΕͨ߹ʹޮՌ༗ 28 ࢀߟɿ<>38BTIFUBM8IP1SPWJEFT1IJTIJOH5SBJOJOH 'BDUT 4UPSJFT BOE1FPQMF-JLF.F *O1SPDPG$)*`
ͱ͋Δ৫Ͱ࣮ࢪ͞ΕͨϑΟογϯάγϛϡϨʔγϣϯ <> <ௐࠪ༰> ٖϑΟογϯάϝʔϧΛΫϦοΫͨ͠ैۀһʹର͠ɼ ݅"ɿϑΟογϯάʹὃ͞Εͨ͜ͱΛ௨͢Δը໘Λදࣔ ݅#ɿϑΟογϯάʹὃ͞Εͨ͜ͱΛ௨͢Δը໘Λදࣔ ˠ ϑΟογϯάڭҭϖʔδΛදࣔ <݁Ռ> ༧ͱҟͳΓɼ݅#ͷैۀһͷ΄͏͕ͦͷޙͷةݥߦಈ͕ଟ͔ͬͨ
ˠ ݅#Ͱैۀһʹ҆৺ײΛ༩͑ͯ͠·ͬͨʁ ʢ݅"ͰΫϦοΫߦಈͱۓுײ͕݁ͼ͍ͭͨʁʣ 29 ࢀߟɿ<>%-BJOFUBM1IJTIJOHJO0SHBOJ[BUJPOT'JOEJOHTGSPNB-BSHF4DBMFBOE-POH5FSN4UVEZ *O1SPDPG4ˍ1` ৫ͰͷΈࠐΈܕϑΟογϯάڭҭٯޮՌʁ
ϢʔβʹޮՌతͳܯࠂσβΠϯ
ϝʔϧΫϥΠΞϯτͰͷܯࠂ w ܯࠂදࣔҐஔ 31 ࢀߟɿ+1FUFMLB FUBM1VU:PVS8BSOJOH8IFSF:PVS-JOL*T*NQSPWJOHBOE&WBMVBUJOH&NBJM1IJTIJOH8BSOJOHT *O1SPDPG$)*` 4VCKFDU ʜ 'SPNʜ
ʜ ʜ MJOL ʜ ʜ ʜ ʜ 4VCKFDU ʜ 'SPNʜ ʜ ʜ ʜ ʜ MJOL ʜ ʜ 5IJTFNBJMTFFNTEBOHFSPVT 5IJTFNBJMDPOUBJOTBMJOLUP BGBLFXFCTJUF Ϣʔβͷ ΫϦοΫࢭޮՌ όφʔ ϦϯΫۙ
w ϦϯΫແޮԽ༗ແ 4VCKFDU ʜ 'SPNʜ ʜ ʜ ʜ IUUQTXXXZBIPPDPN ʜ
ʜ ϝʔϧΫϥΠΞϯτͰͷܯࠂ 32 'BLFXFCTJUF -JOLHPFTUP XXXZBIPPMPHJODPNCS Ϣʔβͷ ΫϦοΫࢭޮՌ ϦϯΫແޮԽແ͠ 4VCKFDU ʜ 'SPNʜ ʜ ʜ ʜ IUUQTXXXZBIPPDPN ʜ ʜ 'BLFXFCTJUF -JOLHPFTUP XXXZBIPPMPHJODPNCS ϦϯΫແޮԽ༗Γ ΫϦοΫ Մೳ ΫϦοΫ ෆՄೳ ΫϦοΫ Մೳ
Ϣʔβʹ lߟ͑ͯΒ͏zܯࠂ Ϩϙʔτ 33 ࢀߟɿ,"MUIPCBJUJ FUBM*%POU/FFEBO&YQFSU.BLJOH63-1IJTIJOH'FBUVSFT)VNBO$PNQSFIFOTJCMF *O1SPDPG$)*` 63-IUUQTCFTUDOBSHFSVFYDIBOHFSTNLUFOJE ˙ 4VNNBSZ
LOPXOJTTVF1PTTJCMFJTTVF/PJTTVF ˙ %FUBJMFEJOGPSNBUJPO .BOJQVMBUJPO5SJDLT lCFTUDOBSHFSVzJTTJNJMBSUPQPQVMBSEPNBJO lCFTUDIBSHFSVz %PNBJO"HF3FHJTUFSFEPO+VMZUI NPOUI 6TFE5SJDL 4FBSDI 3FTVMU /P.BUDI %PNBJO "HF NPOUI %PNBJO 1PQVMBSJUZ -PX ! ! !
࠷ޙʹʢ࠶ܝʣ 34 γεςϜத৺ͷ ϑΟογϯάݚڀ ߴਫ਼ͳϑΟογϯάݕ ΞϧΰϦζϜͷཱ֬ ػցֶश ਓؒத৺ͷ ϑΟογϯάݚڀ Ϣʔβ͕ὃ͞ΕΔཧ༝ͷղ໌
ˣ ޮՌతͳڭҭɾϢʔβαϙʔτπʔϧ ͷग़ ྆ํͷΞϓϩʔν͕ॏཁ