Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
インシデントレスポンス演習 II / Incident Response Exercise II
Search
Sponsored
·
SiteGround - Reliable hosting with speed, security, and support you can count on.
→
Kenji Saito
PRO
July 15, 2024
Technology
140
0
Share
Embed
Copy iframe code
Copy JS code
Copy link
Start on current slide
インシデントレスポンス演習 II / Incident Response Exercise II
早稲田大学大学院経営管理研究科「サイバーセキュリティ」2024 夏の第11-12回で使用したスライドです。
Kenji Saito
PRO
July 15, 2024
More Decks by Kenji Saito
See All by Kenji Saito
戦略と安全保障 / Strategy and Security
ks91
PRO
0
22
ローカル LLM とコンピューティングの脱領土化 / Local LLMs and Deterritorialization of Computing
ks91
PRO
0
13
サイバー戦の現在と未来 / The Present and Future of Cyber Warfare
ks91
PRO
0
71
金融の未来を考える / Thinking About the Future of Finance
ks91
PRO
0
150
AI Agentification: Current State and the Changes Ahead
ks91
PRO
0
40
サイバー攻撃・防御とサイバー法 / Cyber Attacks, Defense, and Cyber Law
ks91
PRO
0
100
AI・ロボティクスと自動化社会 / AI, Robotics, and the Automated Society
ks91
PRO
0
150
ロボティクスの技術 / Robotics Technology
ks91
PRO
0
170
インシデントレスポンス演習 I / Incident Response Exercise I
ks91
PRO
0
140
Other Decks in Technology
See All in Technology
Keeping applications secure by evolving OAuth 2.0 and OpenID Connect
ahus1
PRO
1
130
product engineering with qa
nealle
0
140
プライバシー保護の理論と実践
lycorptech_jp
PRO
1
230
10x Speed With QA Agent Platform - How we scaled adoption from individual effort to organizational capability
lycorptech_jp
PRO
0
120
AIペネトレーションテスト・ セキュリティ検証「AgenticSec」紹介資料
laysakura
2
8k
AIエージェントとPhysical AIが拓く製造業の変革(ハノーバーメッセリキャップ)
iotcomjpadmin
0
210
AWS Summit 2026で見えたSIerにとっての Amazon Quickの位置づけ
maf_0521
0
160
スタートアップにおけるアジャイルの実践について #shibuyagile
murabayashi
3
2k
AI時代における最適なQA組織の作り方
ymty
3
350
組織における AI-DLC 実践
askul
0
300
作る力から、見極める力へ — AI時代に広がるエンジニアの価値と役割
rince
0
410
Text-to-SQLをAgentCoreで実現し、生成されるSQLの精度を定量的に評価する
yakumo
2
470
Featured
See All Featured
Product Roadmaps are Hard
iamctodd
55
12k
Building Better People: How to give real-time feedback that sticks.
wjessup
370
20k
The World Runs on Bad Software
bkeepers
PRO
72
12k
HDC tutorial
michielstock
2
730
KATA
mclloyd
PRO
35
15k
Ethics towards AI in product and experience design
skipperchong
2
320
Design and Strategy: How to Deal with People Who Don’t "Get" Design
morganepeng
133
19k
How STYLIGHT went responsive
nonsquared
100
6.2k
Noah Learner - AI + Me: how we built a GSC Bulk Export data pipeline
techseoconnect
PRO
0
210
Building Adaptive Systems
keathley
44
3.1k
Why Our Code Smells
bkeepers
PRO
340
58k
Optimising Largest Contentful Paint
csswizardry
37
3.8k
Transcript
Hardening for cyber security — generated by Stable Diffusion XL
v1.0 2024 11-12 II (WBS) 2024 11-12 II — 2024-07-15 – p.1/33
https://speakerdeck.com/ks91/collections/cyber-security-2024-summer 2024 11-12 II — 2024-07-15 – p.2/33
( ) 1 6 10 (1) • 2 6 10
(2) • 3 6 17 • 4 6 17 • 5 6 24 I ( ) • 6 6 24 I ( ) • 7 7 1 • 8 7 1 • 9 7 8 • 10 7 8 • 11 7 15 II ( ) • 12 7 15 II ( ) • 13 7 22 14 7 22 W-IOI / ( ) 2024 11-12 II — 2024-07-15 – p.3/33
( 20 ) 1 • 2 • 3 • 4
(TCP/IP ) • 5 • 6 • 7 • 8 • 9 • 10 World Wide Web • 11 Web API • 12 • 13 git GitHub • 14 • SSH • (6/24 ) / (2 ) OK / 2024 11-12 II — 2024-07-15 – p.4/33
( ) + + 2024 11-12 II — 2024-07-15 –
p.5/33
II 10 2024 11-12 II — 2024-07-15 – p.6/33
2024 11-12 II — 2024-07-15 – p.7/33
5. (1) ( ) (2) I OvenAI CEO 2024 7
11 ( ) 23:59 JST Waseda Moodle (Q & A ) 2024 11-12 II — 2024-07-15 – p.8/33
. . . . . . 12 9 (7/14( )
) ( ) 2024 11-12 II — 2024-07-15 – p.9/33
I CEO CEO CEO ⇒ NPC CEO 2024 11-12 II
— 2024-07-15 – p.10/33
W M ⇒ 2024 11-12 II — 2024-07-15 – p.11/33
N ⇒ 2024 11-12 II — 2024-07-15 – p.12/33
A ( ) ( ) ( ) ( ) (
) AI ⇒ 2024 11-12 II — 2024-07-15 – p.13/33
T ⇒ 2024 11-12 II — 2024-07-15 – p.14/33
M OvenAI ⇒ 2024 11-12 II — 2024-07-15 – p.15/33
Y CSIRT ⇒ 2024 11-12 II — 2024-07-15 – p.16/33
W E2E ⇒ E2E (End-to-End) (end) (end) 2024 11-12 II
— 2024-07-15 – p.17/33
A ⇒ 2024 11-12 II — 2024-07-15 – p.18/33
L ⇒ 2024 11-12 II — 2024-07-15 – p.19/33
II 15 2024 11-12 II — 2024-07-15 – p.20/33
4 Discord ( ) ( ) AI AI AI 2024
10 14 ( ) ( ) ( ) 112 ^^; 21:55 21:45 10 21:45 2024 11-12 II — 2024-07-15 – p.21/33
112 (1/2) OvenAI CEO ( COO ) ^^; AI 2024
11-12 II — 2024-07-15 – p.22/33
112 (2/2) OvenAI 5. . . . CSIRT (?) AI
(← ) 2024 11-12 II — 2024-07-15 – p.23/33
A B B A B B 5 2024 11-12 II
— 2024-07-15 – p.24/33
AI (NPC : Non Player Character) @ / OvenAI @ceo
: CEO ( ) : @cto : CTO ( ) : @eng : : ( ), ( ), ( , ) @cr : : @pr : OvenAI : @br : ( ) : @personnel : : @sns : W : @tv : TV : @police : ( ) : @caa : : 2024 11-12 II — 2024-07-15 – p.25/33
(cto) (eng) – (1/n) APT (Advanced Persistent Threat; ) :
APT33 ( ), APT29 ( ), APT38 ( ), etc. AWS (Amazon Web Services; ) Amazon.com 2024 11-12 II — 2024-07-15 – p.26/33
→ 2024 11-12 II — 2024-07-15 – p.27/33
10 5 ( ) ( ) CSIRT (Computer Security Incident
Response Team) 1 CISO ( ) ← : 1 ( ) 1 ( Discord ) ( ^^;) ( ) CSIRT Zoom OvenAI CTO CSIRT CEO “ ” 2024 11-12 II — 2024-07-15 – p.28/33
10 21:45 21:55 2024 11-12 II — 2024-07-15 – p.29/33
2024 11-12 II — 2024-07-15 – p.30/33
6. II (1) ( ) (2) 2024 7 18 (
) 23:59 JST Waseda Moodle (Q & A ) 2024 11-12 II — 2024-07-15 – p.31/33
(1 ) 2024 11-12 II — 2024-07-15 – p.32/33
2024 11-12 II — 2024-07-15 – p.33/33