2024-03-28T22:15:50Zhttps://ipsj.ixsq.nii.ac.jp/ej/?action=repository_oaipmhoai:ipsj.ixsq.nii.ac.jp:000621632023-04-27T10:00:04Z01164:03925:05646:05709
情報セキュリティ対策状況の評価手法の提案A Proposal of Method to Evaluate Information Security Measuresjpnhttp://id.nii.ac.jp/1001/00062163/Technical Reporthttps://ipsj.ixsq.nii.ac.jp/ej/?action=repository_action_common_download&item_id=62163&item_no=1&attribute_id=1&file_no=1Copyright (c) 2009 by the Information Processing Society of Japan三菱電機株式会社三菱電機インフォメーションシステムズ株式会社武曽, 徹飯田, 茂情報システムのセキュリティ対策の実施強度を評価する手法として,対策の強度を対策実施の有無とその運用実施水準で指標化し,この2つの指標を対策箇所とセキュリティ脅威を軸とする二次元マップ上に可視化して対策の弱点を分析する手法について提案する.In this paper, a method to evaluate effectiveness of current security measures on an information system is proposed. In the method, the effectiveness of the security measures is expressed as indicators to show not only whether if the measures are taken, but also how effectively they are operated. And the indicators are visualized on a two-dimensional map which has axes of where the measures are taken, and security threat.AA11235941研究報告コンピュータセキュリティ(CSEC)2009-CSEC-454152009-05-212009-08-19