Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
セキュリティ戦略・発表と総括 / Security Strategies, Presentat...
Search
Kenji Saito
PRO
July 20, 2024
Technology
1
97
セキュリティ戦略・発表と総括 / Security Strategies, Presentation and Conclusions
早稲田大学大学院経営管理研究科「サイバーセキュリティ」2024 夏の第13-14回で使用したスライドです。
Kenji Saito
PRO
July 20, 2024
Tweet
Share
More Decks by Kenji Saito
See All by Kenji Saito
スマートコントラクトと分散ファイナンス / Smart Contracts and Decentralized Finance
ks91
PRO
0
50
シン・ブロックチェーン / Truth of Blockchain
ks91
PRO
0
78
パスワード/パスフレーズと認証 / Password, Passphrase and Authentication
ks91
PRO
0
32
git と GitHub / git and GitHub
ks91
PRO
0
33
ソフトウェアの開発と保守 / Software Development and Maintenance
ks91
PRO
0
46
インターネットの特徴 / Features of the Internet
ks91
PRO
0
31
インターネットのガバナンス / Governance of the Internet
ks91
PRO
0
29
暗号学的ハッシュ関数 / Cryptographic Hash Function
ks91
PRO
0
35
デジタル署名 / Digital Signature
ks91
PRO
0
30
Other Decks in Technology
See All in Technology
BigQuery Remote FunctionでLooker Studioをインタラクティブ化
cuebic9bic
3
300
【5分でわかる】セーフィー エンジニア向け会社紹介
safie_recruit
0
26k
なぜ私はいま、ここにいるのか? #もがく中堅デザイナー #プロダクトデザイナー
bengo4com
0
440
Understanding_Thread_Tuning_for_Inference_Servers_of_Deep_Models.pdf
lycorptech_jp
PRO
0
120
Uniadex__公開版_20250617-AIxIoTビジネス共創ラボ_ツナガルチカラ_.pdf
iotcomjpadmin
0
160
ひとり情シスなCTOがLLMと始めるオペレーション最適化 / CTO's LLM-Powered Ops
yamitzky
0
440
2025-06-26_Lightning_Talk_for_Lightning_Talks
_hashimo2
2
100
Oracle Audit Vault and Database Firewall 20 概要
oracle4engineer
PRO
3
1.7k
セキュリティの民主化は何故必要なのか_AWS WAF 運用の 10 の苦悩から学ぶ
yoh
1
150
2年でここまで成長!AWSで育てたAI Slack botの軌跡
iwamot
PRO
4
710
Amazon Bedrockで実現する 新たな学習体験
kzkmaeda
2
550
Кто отправит outbox? Валентин Удальцов, автор канала Пых
lamodatech
0
340
Featured
See All Featured
Making Projects Easy
brettharned
116
6.3k
Java REST API Framework Comparison - PWX 2021
mraible
31
8.6k
VelocityConf: Rendering Performance Case Studies
addyosmani
330
24k
Designing Dashboards & Data Visualisations in Web Apps
destraynor
231
53k
Improving Core Web Vitals using Speculation Rules API
sergeychernyshev
17
940
10 Git Anti Patterns You Should be Aware of
lemiorhan
PRO
657
60k
Raft: Consensus for Rubyists
vanstee
140
7k
How GitHub (no longer) Works
holman
314
140k
Reflections from 52 weeks, 52 projects
jeffersonlam
351
20k
Designing for Performance
lara
609
69k
Building Flexible Design Systems
yeseniaperezcruz
328
39k
Site-Speed That Sticks
csswizardry
10
660
Transcript
Hardening for cyber security — generated by Stable Diffusion XL
v1.0 2024 13-14 (WBS) 2024 13-14 — 2024-07-22 – p.1/43
https://speakerdeck.com/ks91/collections/cyber-security-2024-summer 2024 13-14 — 2024-07-22 – p.2/43
1 6 10 (1) • 2 6 10 (2) •
3 6 17 • 4 6 17 • 5 6 24 I ( ) • 6 6 24 I ( ) • 7 7 1 • 8 7 1 • 9 7 8 • 10 7 8 • 11 7 15 II ( ) • 12 7 15 II ( ) • 13 7 22 • 14 7 22 • W-IOI / ( ) 2024 13-14 — 2024-07-22 – p.3/43
( 20 ) 1 • 2 • 3 • 4
(TCP/IP ) • 5 • 6 • 7 • 8 • 9 • 10 World Wide Web • 11 Web API • 12 • 13 git GitHub • 14 • SSH • (6/24 ) / (2 ) OK / 2024 13-14 — 2024-07-22 – p.4/43
( ) II 10 2024 13-14 — 2024-07-22 – p.5/43
+ 2024 13-14 — 2024-07-22 – p.6/43
2024 13-14 — 2024-07-22 – p.7/43
6. II (1) ( ) (2) 2024 7 18 (
) 23:59 JST Waseda Moodle (Q & A ) 2024 13-14 — 2024-07-22 – p.8/43
. . . . . . 12 7 (7/20( )
) ( ) DDoS ( ∼ ) < ( ∼1,2 ) 2024 13-14 — 2024-07-22 – p.9/43
N ⇒ ^^; 2024 13-14 — 2024-07-22 – p.10/43
A CSIRT ( ) ⇒ AI 2024 13-14 — 2024-07-22
– p.11/43
L CEO CEO ⇒ MVV OvenAI MVV ( ) Mission
: Vision : AI Value : W(X) vision value . . . 2024 13-14 — 2024-07-22 – p.12/43
A W WebAPP ks91 ⇒ 2024 13-14 — 2024-07-22 –
p.13/43
2024 6 10 ∼7 22 Google 7 2024 13-14 —
2024-07-22 – p.14/43
6 10 Google https://lomgrp.co.jp/wp-content/uploads/2024/06/Informationleak_240610.pdf 2024 13-14 — 2024-07-22 – p.15/43
6 11 WEB 136 5 6 https://news.yahoo.co.jp/articles/71d073180db7d261c1dab9fe554d154f6193c46d 2024 13-14 —
2024-07-22 – p.16/43
6 17 https://www.shochiku.co.jp/wp-content/uploads/2024/06/20240617_02.pdf 2024 13-14 — 2024-07-22 – p.17/43
6 17 https://csw-kawasaki.or.jp/wp-content/uploads/2024/06/20240617 -1.pdf Google ⇒ Google 2024 13-14 —
2024-07-22 – p.18/43
6 18 AI https://www.ocha.ac.jp/news/d014901.html Google Forms Google Google 2024 13-14
— 2024-07-22 – p.19/43
6 25 https://bravegroup.co.jp/news/6359/ URL 2024 13-14 — 2024-07-22 – p.20/43
6 26 Google https://www.gifu-pu.ac.jp/news/2024/06/post-268.html 2024 13-14 — 2024-07-22 – p.21/43
6 28 ( 3.0 ) https://www.soumu.go.jp/menu_news/s-news/01cyber01_02000001_00215.html 2024 13-14 — 2024-07-22
– p.22/43
7 1 OpenSSH “regreSSHion” CVE-2024-6387 2024 13-14 — 2024-07-22 –
p.23/43
7 9 “regreSSHion” OpenSSH CVE-2024-6409 2024 13-14 — 2024-07-22 –
p.24/43
7 9 Zoom High ∼ ( ) https://news.yahoo.co.jp/articles/00fb89f571bf72672e5165cb19049bfc1ade7242 2024 13-14
— 2024-07-22 – p.25/43
7 19 Windows CrowdStrike Falcon Sensor https://news.yahoo.co.jp/articles/dee7ebe1e0f5ac28fd833033c454ee3792727046 2024 13-14 —
2024-07-22 – p.26/43
https://kurashi.com/journal/11074 + CSIRT 2024 13-14 — 2024-07-22 – p.27/43
(1) IPA Ver 3.0 (2023) https://www.meti.go.jp/policy/netsecurity/mng_guide.html IPA Ver 3.0 4
(2023) https://www.ipa.go.jp/security/economics/csm-practice.html 2024 13-14 — 2024-07-22 – p.28/43
(2) +1 / IPA ( ) Ver2.0 F 2 (2022)
https://www.meti.go.jp/policy/netsecurity/mng_guide.html ( Ver 2.0) CSIRT Ver.2.1 https://www.nca.gr.jp/activity/imgs/recruit-hr20201211.pdf 2024 13-14 — 2024-07-22 – p.29/43
(3) (2019) https://www.keidanren.or.jp/policy/cybersecurity/CyberRiskHandbook .html 10 NIST 2024 13-14 — 2024-07-22
– p.30/43
3 2024 13-14 — 2024-07-22 – p.31/43
10 1. 2. 3. ( ) 4. 5. 6. PDCA
7. 8. 9. 10. F 2024 13-14 — 2024-07-22 – p.32/43
1 IT 2 3 4 5 2024 13-14 — 2024-07-22
– p.33/43
NIST 5 (Identify) (Protect) (Detect) (Respond) (Recover) 2024 13-14 —
2024-07-22 – p.34/43
: 5 5 2024 13-14 — 2024-07-22 – p.35/43
(OvenAI) 2024 6 10 OvenAI (BCP) OK 2024 13-14 —
2024-07-22 – p.36/43
2024 13-14 — 2024-07-22 – p.37/43
2024 2024 13-14 — 2024-07-22 – p.38/43
( ) (1) (2) ( ) ⇒ 2024 13-14 —
2024-07-22 – p.39/43
( ) NISC 7 ( ) 2024 13-14 — 2024-07-22
– p.40/43
2024 13-14 — 2024-07-22 – p.41/43
7. 2024 7 29 ( ) 23:59 JST Waseda Moodle
(Q & A ) 2024 13-14 — 2024-07-22 – p.42/43
2024 13-14 — 2024-07-22 – p.43/43