Upgrade to Pro — share decks privately, control downloads, hide ads and more …

セキュリティ戦略・発表と総括 / Security Strategies, Presentat...

Avatar for Kenji Saito Kenji Saito
PRO
July 20, 2024
Technology
1
90

セキュリティ戦略・発表と総括 / Security Strategies, Presentation and Conclusions

早稲田大学大学院経営管理研究科「サイバーセキュリティ」2024 夏の第13-14回で使用したスライドです。
Avatar for Kenji Saito

Kenji Saito
PRO

July 20, 2024
Tweet

More Decks by Kenji Saito

See All by Kenji Saito
01 を動かす〜音声で対話できる自動化されたアシスタント / Running 01 - Automated Assistant with Voice Interaction
Avatar for Kenji Saito ks91
PRO
0
3
AGI (Artificial General Intelligence) の論点 / AGI (Artificial General Intelligence) Issues
Avatar for Kenji Saito ks91
PRO
0
2
Open Interpreter を動かす 〜 自動化されたアシスタントの誕生 / Running Open Interpreter - The Birth of an Automated Assistant
Avatar for Kenji Saito ks91
PRO
0
7
Linux 仮想マシンを動かす(Windows 編)(Mac 編) / Running a Linux Virtual Machine (Windows Edition) (Mac Edition)
Avatar for Kenji Saito ks91
PRO
0
13
(メタ・) ネイチャーポジティブと物質・エネルギーの循環経済 / Being (Meta-)Nature Positive and the Circular Economy of Materials and Energy
Avatar for Kenji Saito ks91
PRO
0
3
対話による知の拡張 / Extending Knowledge Through Dialogue
Avatar for Kenji Saito ks91
PRO
0
35
プロンプトに対する攻撃と対策 / Attacks Against Prompts and Countermeasures
Avatar for Kenji Saito ks91
PRO
0
34
傾聴の理論 〜 傾聴する相棒の創り方 / Theory of Listening and How to Create a Listening Partner
Avatar for Kenji Saito ks91
PRO
0
32
試作とデモンストレーション / Prototyping and Demonstrations
Avatar for Kenji Saito ks91
PRO
0
140

Other Decks in Technology

See All in Technology
分解し、導き、託す ログラスにおける“技術でリードする” 実践の記録
Avatar for Hiroto Ryushima hryushm
0
330
Google Cloud Next 2025 Recap アプリケーション開発を加速する機能アップデート / Application development-related features of Google Cloud
Avatar for turbofish ryokotmng
0
250
転職したらMCPサーバーだった件
Avatar for nwiizo nwiizo
9
7.8k
Datadog のトライアルを成功に導く技術 / Techniques for a successful Datadog trial
Avatar for 株式会社ヌーラボ nulabinc
PRO
0
160
AOAI で AI アプリを開発する時にまず考えたいこと
Avatar for Yuji Masaoka | まっぴぃ mappie_kochi
1
730
Cursorを全エンジニアに配布 その先に見据えるAI駆動開発の未来 / 2025-05-13-forkwell-ai-study-1-cursor-at-loglass
Avatar for Hiroshi Ito itohiro73
2
610
LINE 購物幕後推手
Avatar for LINE Developers Taiwan line_developers_tw
PRO
0
560
MagicPod MCPサーバー開発の裏側とAIエージェント活用の展望
Avatar for MagicPod magicpod
0
240
20250514 1Passwordを使い倒す道場 vol.1
Avatar for Takumi Abe east_takumi
0
120
Oracle Base Database Service 技術詳細
Avatar for oracle4engineer oracle4engineer
PRO
8
64k
Software Architecture in an AI-Driven World
Avatar for AGAWA Koji atty303
37
15k
RubyKaigi NOC 近況 2025
Avatar for Sorah Fukumori sorah
3
1k

Featured

See All Featured
Principles of Awesome APIs and How to Build Them.
Avatar for Keavy McMinn keavy
126
17k
Fight the Zombie Pattern Library - RWD Summit 2016
Avatar for Marcelo Somers marcelosomers
233
17k
The Art of Programming - Codeland 2020
Avatar for Erika Heidi erikaheidi
54
13k
Performance Is Good for Brains [We Love Speed 2024]
Avatar for Tammy Everts tammyeverts
10
800
The Cost Of JavaScript in 2023
Avatar for Addy Osmani addyosmani
49
7.8k
Product Roadmaps are Hard
Avatar for C. Todd Lombardo iamctodd
PRO
53
11k
Building Applications with DynamoDB
Avatar for Matt Wood mza
94
6.4k
How To Stay Up To Date on Web Technology
Avatar for Chris Coyier chriscoyier
790
250k
Being A Developer After 40
Avatar for Adrian Kosmaczewski akosma
91
590k
Fantastic passwords and where to find them - at NoRuKo
Avatar for Phil Nash philnash
51
3.2k
jQuery: Nuts, Bolts and Bling
Avatar for Doug Neiner dougneiner
63
7.7k
StorybookのUI Testing Handbookを読んだ
Avatar for Shingo Yamazaki zakiyama
30
5.7k

Transcript

  1. Hardening for cyber security — generated by Stable Diffusion XL

    v1.0 2024 13-14 (WBS) 2024 13-14 — 2024-07-22 – p.1/43

  2. https://speakerdeck.com/ks91/collections/cyber-security-2024-summer 2024 13-14 — 2024-07-22 – p.2/43

  3. 1 6 10 (1) • 2 6 10 (2) •

    3 6 17 • 4 6 17 • 5 6 24 I ( ) • 6 6 24 I ( ) • 7 7 1 • 8 7 1 • 9 7 8 • 10 7 8 • 11 7 15 II ( ) • 12 7 15 II ( ) • 13 7 22 • 14 7 22 • W-IOI / ( ) 2024 13-14 — 2024-07-22 – p.3/43

  4. ( 20 ) 1 • 2 • 3 • 4

    (TCP/IP ) • 5 • 6 • 7 • 8 • 9 • 10 World Wide Web • 11 Web API • 12 • 13 git GitHub • 14 • SSH • (6/24 ) / (2 ) OK / 2024 13-14 — 2024-07-22 – p.4/43

  5. ( ) II 10 2024 13-14 — 2024-07-22 – p.5/43

  6. + 2024 13-14 — 2024-07-22 – p.6/43

  7. 2024 13-14 — 2024-07-22 – p.7/43

  8. 6. II (1) ( ) (2) 2024 7 18 (

    ) 23:59 JST Waseda Moodle (Q & A ) 2024 13-14 — 2024-07-22 – p.8/43

  9. . . . . . . 12 7 (7/20( )

    ) ( ) DDoS ( ∼ ) < ( ∼1,2 ) 2024 13-14 — 2024-07-22 – p.9/43

  10. N ⇒ ^^; 2024 13-14 — 2024-07-22 – p.10/43

  11. A CSIRT ( ) ⇒ AI 2024 13-14 — 2024-07-22

    – p.11/43

  12. L CEO CEO ⇒ MVV OvenAI MVV ( ) Mission

    : Vision : AI Value : W(X) vision value . . . 2024 13-14 — 2024-07-22 – p.12/43

  13. A W WebAPP ks91 ⇒ 2024 13-14 — 2024-07-22 –

    p.13/43

  14. 2024 6 10 ∼7 22 Google 7 2024 13-14 —

    2024-07-22 – p.14/43

  15. 6 10 Google https://lomgrp.co.jp/wp-content/uploads/2024/06/Informationleak_240610.pdf 2024 13-14 — 2024-07-22 – p.15/43

  16. 6 11 WEB 136 5 6 https://news.yahoo.co.jp/articles/71d073180db7d261c1dab9fe554d154f6193c46d 2024 13-14 —

    2024-07-22 – p.16/43

  17. 6 17 https://www.shochiku.co.jp/wp-content/uploads/2024/06/20240617_02.pdf 2024 13-14 — 2024-07-22 – p.17/43

  18. 6 17 https://csw-kawasaki.or.jp/wp-content/uploads/2024/06/20240617 -1.pdf Google ⇒ Google 2024 13-14 —

    2024-07-22 – p.18/43

  19. 6 18 AI https://www.ocha.ac.jp/news/d014901.html Google Forms Google Google 2024 13-14

    — 2024-07-22 – p.19/43

  20. 6 25 https://bravegroup.co.jp/news/6359/ URL 2024 13-14 — 2024-07-22 – p.20/43

  21. 6 26 Google https://www.gifu-pu.ac.jp/news/2024/06/post-268.html 2024 13-14 — 2024-07-22 – p.21/43

  22. 6 28 ( 3.0 ) https://www.soumu.go.jp/menu_news/s-news/01cyber01_02000001_00215.html 2024 13-14 — 2024-07-22

    – p.22/43

  23. 7 1 OpenSSH “regreSSHion” CVE-2024-6387 2024 13-14 — 2024-07-22 –

    p.23/43

  24. 7 9 “regreSSHion” OpenSSH CVE-2024-6409 2024 13-14 — 2024-07-22 –

    p.24/43

  25. 7 9 Zoom High ∼ ( ) https://news.yahoo.co.jp/articles/00fb89f571bf72672e5165cb19049bfc1ade7242 2024 13-14

    — 2024-07-22 – p.25/43

  26. 7 19 Windows CrowdStrike Falcon Sensor https://news.yahoo.co.jp/articles/dee7ebe1e0f5ac28fd833033c454ee3792727046 2024 13-14 —

    2024-07-22 – p.26/43

  27. https://kurashi.com/journal/11074 + CSIRT 2024 13-14 — 2024-07-22 – p.27/43

  28. (1) IPA Ver 3.0 (2023) https://www.meti.go.jp/policy/netsecurity/mng_guide.html IPA Ver 3.0 4

    (2023) https://www.ipa.go.jp/security/economics/csm-practice.html 2024 13-14 — 2024-07-22 – p.28/43

  29. (2) +1 / IPA ( ) Ver2.0 F 2 (2022)

    https://www.meti.go.jp/policy/netsecurity/mng_guide.html ( Ver 2.0) CSIRT Ver.2.1 https://www.nca.gr.jp/activity/imgs/recruit-hr20201211.pdf 2024 13-14 — 2024-07-22 – p.29/43

  30. (3) (2019) https://www.keidanren.or.jp/policy/cybersecurity/CyberRiskHandbook .html 10 NIST 2024 13-14 — 2024-07-22

    – p.30/43

  31. 3 2024 13-14 — 2024-07-22 – p.31/43

  32. 10 1. 2. 3. ( ) 4. 5. 6. PDCA

    7. 8. 9. 10. F 2024 13-14 — 2024-07-22 – p.32/43

  33. 1 IT 2 3 4 5 2024 13-14 — 2024-07-22

    – p.33/43

  34. NIST 5 (Identify) (Protect) (Detect) (Respond) (Recover) 2024 13-14 —

    2024-07-22 – p.34/43

  35. : 5 5 2024 13-14 — 2024-07-22 – p.35/43

  36. (OvenAI) 2024 6 10 OvenAI (BCP) OK 2024 13-14 —

    2024-07-22 – p.36/43

  37. 2024 13-14 — 2024-07-22 – p.37/43

  38. 2024 2024 13-14 — 2024-07-22 – p.38/43

  39. ( ) (1) (2) ( ) ⇒ 2024 13-14 —

    2024-07-22 – p.39/43

  40. ( ) NISC 7 ( ) 2024 13-14 — 2024-07-22

    – p.40/43

  41. 2024 13-14 — 2024-07-22 – p.41/43

  42. 7. 2024 7 29 ( ) 23:59 JST Waseda Moodle

    (Q & A ) 2024 13-14 — 2024-07-22 – p.42/43

  43. 2024 13-14 — 2024-07-22 – p.43/43