Upgrade to Pro — share decks privately, control downloads, hide ads and more …

セキュリティ戦略・発表と総括 / Security Strategies, Presentat...

Sponsored · Ship Features Fearlessly Turn features on and off without deploys. Used by thousands of Ruby developers.
Avatar for Kenji Saito Kenji Saito PRO
July 20, 2024
Technology
0
120

セキュリティ戦略・発表と総括 / Security Strategies, Presentation and Conclusions

早稲田大学大学院経営管理研究科「サイバーセキュリティ」2024 夏の第13-14回で使用したスライドです。

Avatar for Kenji Saito

Kenji Saito PRO

July 20, 2024
Tweet

More Decks by Kenji Saito

See All by Kenji Saito
アカデミーキャンプ2026 冬「ウチらとヤツらのフューチャー・デザイン」DAY3 / Acadmy Camp 2026 Winter - Future Design by Us and Them DAY3
Avatar for Kenji Saito ks91
PRO
0
37
アカデミーキャンプ2026 冬「ウチらとヤツらのフューチャー・デザイン」DAY1 / Acadmy Camp 2026 Winter - Future Design by Us and Them
Avatar for Kenji Saito ks91
PRO
0
69
アカデミーキャンプ2026 冬「ウチらとヤツらのフューチャー・デザイン」DAY2 / Acadmy Camp 2026 Winter - Future Design by Us and Them DAY2
Avatar for Kenji Saito ks91
PRO
0
53
アナログAI からの逃走とメタ・ネイチャーポジティブ / Escape from Analog AI, and Meta-Nature Positive
Avatar for Kenji Saito ks91
PRO
0
32
AI 前提社会におけるトラスト / Trust in an AI-Driven Society
Avatar for Kenji Saito ks91
PRO
0
63
非営利組織の起業/発表と総括 / Starting up a Nonprofit Organization, Presentation and Summary
Avatar for Kenji Saito ks91
PRO
0
64
自己開発 / Self-Development
Avatar for Kenji Saito ks91
PRO
1
30
あなたは何によって憶えられたいですか? / What Do You Want to be Remembered for?
Avatar for Kenji Saito ks91
PRO
0
39
ボランティアと理事会 / Volunteers and Board of Directors
Avatar for Kenji Saito ks91
PRO
0
61

Other Decks in Technology

See All in Technology
All About Sansan – for New Global Engineers
Avatar for Sansan, Inc. sansan33
PRO
1
1.4k
Contract One Engineering Unit 紹介資料
Avatar for Sansan, Inc. sansan33
PRO
0
14k
Agent Ready になるためにデータ基盤チームが今年やること / How We're Making Our Data Platform Agent-Ready
Avatar for Hiroka Zaitsu zaimy
0
170
もう怖くないバックグラウンド処理 Background Tasks のすべて - Hakodate.swift #1
Avatar for Kanta Oikawa kantacky
0
110
競争優位を生み出す戦略的内製開発の実践技法
Avatar for 増田 亨 masuda220
PRO
2
460
使って学ぼう MCP (と GitHub Codespaces)
Avatar for Yuta Matsumura tsubakimoto_s
1
220
Scrum Fest Morioka 2026
Avatar for Yasunobu Kawaguchi kawaguti
PRO
2
660
20260222ねこIoTLT ねこIoTLTをふりかえる
Avatar for フクイ poropinai1966
0
220
研究開発部メンバーの働き⽅ / Sansan R&D Profile
Avatar for Sansan, Inc. sansan33
PRO
4
22k
Amazon Bedrock AgentCoreでブラウザ拡張型AI調査エージェントを開発した話 (シングルエージェント編)
Avatar for Kiminori Yokoi nasuvitz
2
120
Snowflake Night #2 LT
Avatar for タロウ taromatsui_cccmkhd
0
160
2026年のAIエージェント構築はどうなる?
Avatar for みのるん minorun365
11
2.4k

Featured

See All Featured
Lightning Talk: Beautiful Slides for Beginners
Avatar for Ines Montani inesmontani
PRO
1
460
Faster Mobile Websites
Avatar for Dean Hume deanohume
310
31k
From Legacy to Launchpad: Building Startup-Ready Communities
Avatar for Dug Song dugsong
0
160
Fashionably flexible responsive web design (full day workshop)
Avatar for Andy Clarke malarkey
408
66k
The #1 spot is gone: here's how to win anyway
Avatar for Tamara Novitovic tamaranovitovic
2
970
ReactJS: Keep Simple. Everything can be a component!
Avatar for Pedro Nauck pedronauck
666
130k
Making Projects Easy
Avatar for Brett Harned brettharned
120
6.6k
We Are The Robots
Avatar for Honza Javorek honzajavorek
0
180
Balancing Empowerment & Direction
Avatar for Lara Hogan lara
5
920
The SEO identity crisis: Don't let AI make you average
Avatar for Varn varn
0
400
Public Speaking Without Barfing On Your Shoes - THAT 2023
Avatar for David Neal reverentgeek
1
320
Connecting the Dots Between Site Speed, User Experience & Your Business [WebExpo 2025]
Avatar for Tammy Everts tammyeverts
11
850

Transcript

  1. Hardening for cyber security — generated by Stable Diffusion XL

    v1.0 2024 13-14 (WBS) 2024 13-14 — 2024-07-22 – p.1/43

  2. https://speakerdeck.com/ks91/collections/cyber-security-2024-summer 2024 13-14 — 2024-07-22 – p.2/43

  3. 1 6 10 (1) • 2 6 10 (2) •

    3 6 17 • 4 6 17 • 5 6 24 I ( ) • 6 6 24 I ( ) • 7 7 1 • 8 7 1 • 9 7 8 • 10 7 8 • 11 7 15 II ( ) • 12 7 15 II ( ) • 13 7 22 • 14 7 22 • W-IOI / ( ) 2024 13-14 — 2024-07-22 – p.3/43

  4. ( 20 ) 1 • 2 • 3 • 4

    (TCP/IP ) • 5 • 6 • 7 • 8 • 9 • 10 World Wide Web • 11 Web API • 12 • 13 git GitHub • 14 • SSH • (6/24 ) / (2 ) OK / 2024 13-14 — 2024-07-22 – p.4/43

  5. ( ) II 10 2024 13-14 — 2024-07-22 – p.5/43

  6. + 2024 13-14 — 2024-07-22 – p.6/43

  7. 2024 13-14 — 2024-07-22 – p.7/43

  8. 6. II (1) ( ) (2) 2024 7 18 (

    ) 23:59 JST Waseda Moodle (Q & A ) 2024 13-14 — 2024-07-22 – p.8/43

  9. . . . . . . 12 7 (7/20( )

    ) ( ) DDoS ( ∼ ) < ( ∼1,2 ) 2024 13-14 — 2024-07-22 – p.9/43

  10. N ⇒ ^^; 2024 13-14 — 2024-07-22 – p.10/43

  11. A CSIRT ( ) ⇒ AI 2024 13-14 — 2024-07-22

    – p.11/43

  12. L CEO CEO ⇒ MVV OvenAI MVV ( ) Mission

    : Vision : AI Value : W(X) vision value . . . 2024 13-14 — 2024-07-22 – p.12/43

  13. A W WebAPP ks91 ⇒ 2024 13-14 — 2024-07-22 –

    p.13/43

  14. 2024 6 10 ∼7 22 Google 7 2024 13-14 —

    2024-07-22 – p.14/43

  15. 6 10 Google https://lomgrp.co.jp/wp-content/uploads/2024/06/Informationleak_240610.pdf 2024 13-14 — 2024-07-22 – p.15/43

  16. 6 11 WEB 136 5 6 https://news.yahoo.co.jp/articles/71d073180db7d261c1dab9fe554d154f6193c46d 2024 13-14 —

    2024-07-22 – p.16/43

  17. 6 17 https://www.shochiku.co.jp/wp-content/uploads/2024/06/20240617_02.pdf 2024 13-14 — 2024-07-22 – p.17/43

  18. 6 17 https://csw-kawasaki.or.jp/wp-content/uploads/2024/06/20240617 -1.pdf Google ⇒ Google 2024 13-14 —

    2024-07-22 – p.18/43

  19. 6 18 AI https://www.ocha.ac.jp/news/d014901.html Google Forms Google Google 2024 13-14

    — 2024-07-22 – p.19/43

  20. 6 25 https://bravegroup.co.jp/news/6359/ URL 2024 13-14 — 2024-07-22 – p.20/43

  21. 6 26 Google https://www.gifu-pu.ac.jp/news/2024/06/post-268.html 2024 13-14 — 2024-07-22 – p.21/43

  22. 6 28 ( 3.0 ) https://www.soumu.go.jp/menu_news/s-news/01cyber01_02000001_00215.html 2024 13-14 — 2024-07-22

    – p.22/43

  23. 7 1 OpenSSH “regreSSHion” CVE-2024-6387 2024 13-14 — 2024-07-22 –

    p.23/43

  24. 7 9 “regreSSHion” OpenSSH CVE-2024-6409 2024 13-14 — 2024-07-22 –

    p.24/43

  25. 7 9 Zoom High ∼ ( ) https://news.yahoo.co.jp/articles/00fb89f571bf72672e5165cb19049bfc1ade7242 2024 13-14

    — 2024-07-22 – p.25/43

  26. 7 19 Windows CrowdStrike Falcon Sensor https://news.yahoo.co.jp/articles/dee7ebe1e0f5ac28fd833033c454ee3792727046 2024 13-14 —

    2024-07-22 – p.26/43

  27. https://kurashi.com/journal/11074 + CSIRT 2024 13-14 — 2024-07-22 – p.27/43

  28. (1) IPA Ver 3.0 (2023) https://www.meti.go.jp/policy/netsecurity/mng_guide.html IPA Ver 3.0 4

    (2023) https://www.ipa.go.jp/security/economics/csm-practice.html 2024 13-14 — 2024-07-22 – p.28/43

  29. (2) +1 / IPA ( ) Ver2.0 F 2 (2022)

    https://www.meti.go.jp/policy/netsecurity/mng_guide.html ( Ver 2.0) CSIRT Ver.2.1 https://www.nca.gr.jp/activity/imgs/recruit-hr20201211.pdf 2024 13-14 — 2024-07-22 – p.29/43

  30. (3) (2019) https://www.keidanren.or.jp/policy/cybersecurity/CyberRiskHandbook .html 10 NIST 2024 13-14 — 2024-07-22

    – p.30/43

  31. 3 2024 13-14 — 2024-07-22 – p.31/43

  32. 10 1. 2. 3. ( ) 4. 5. 6. PDCA

    7. 8. 9. 10. F 2024 13-14 — 2024-07-22 – p.32/43

  33. 1 IT 2 3 4 5 2024 13-14 — 2024-07-22

    – p.33/43

  34. NIST 5 (Identify) (Protect) (Detect) (Respond) (Recover) 2024 13-14 —

    2024-07-22 – p.34/43

  35. : 5 5 2024 13-14 — 2024-07-22 – p.35/43

  36. (OvenAI) 2024 6 10 OvenAI (BCP) OK 2024 13-14 —

    2024-07-22 – p.36/43

  37. 2024 13-14 — 2024-07-22 – p.37/43

  38. 2024 2024 13-14 — 2024-07-22 – p.38/43

  39. ( ) (1) (2) ( ) ⇒ 2024 13-14 —

    2024-07-22 – p.39/43

  40. ( ) NISC 7 ( ) 2024 13-14 — 2024-07-22

    – p.40/43

  41. 2024 13-14 — 2024-07-22 – p.41/43

  42. 7. 2024 7 29 ( ) 23:59 JST Waseda Moodle

    (Q & A ) 2024 13-14 — 2024-07-22 – p.42/43

  43. 2024 13-14 — 2024-07-22 – p.43/43