{"id":187198,"updated":"2025-01-20T02:22:14.611175+00:00","links":{},"created":"2025-01-19T00:53:53.341933+00:00","metadata":{"_oai":{"id":"oai:ipsj.ixsq.nii.ac.jp:00187198","sets":["6164:6165:6462:9463"]},"path":["9463"],"owner":"11","recid":"187198","title":["プラグインを用いたWordPressに対する攻撃検知と分析手法の提案"],"pubdate":{"attribute_name":"公開日","attribute_value":"2017-10-16"},"_buckets":{"deposit":"6d5a4f61-b450-4b94-8542-f9c454f53f90"},"_deposit":{"id":"187198","pid":{"type":"depid","value":"187198","revision_id":0},"owners":[11],"status":"published","created_by":11},"item_title":"プラグインを用いたWordPressに対する攻撃検知と分析手法の提案","author_link":["422527","422526","422528","422530","422529","422525"],"item_titles":{"attribute_name":"タイトル","attribute_value_mlt":[{"subitem_title":"プラグインを用いたWordPressに対する攻撃検知と分析手法の提案"},{"subitem_title":"Proposal for a Method to Detect and Analyze Attacks Using a Wordpress Plugin","subitem_title_language":"en"}]},"item_keyword":{"attribute_name":"キーワード","attribute_value_mlt":[{"subitem_subject":"Web，CMS，WordPress","subitem_subject_scheme":"Other"}]},"item_type_id":"18","publish_date":"2017-10-16","item_language":{"attribute_name":"言語","attribute_value_mlt":[{"subitem_language":"jpn"}]},"item_18_text_3":{"attribute_name":"著者所属","attribute_value_mlt":[{"subitem_text_value":"株式会社神戸デジタル・ラボ"},{"subitem_text_value":"株式会社神戸デジタル・ラボ"},{"subitem_text_value":"東京大学"}]},"item_18_text_4":{"attribute_name":"著者所属(英)","attribute_value_mlt":[{"subitem_text_value":"Kobe Digital Lab Inc.","subitem_text_language":"en"},{"subitem_text_value":"Kobe Digital Lab Inc.","subitem_text_language":"en"},{"subitem_text_value":"The University of Tokyo","subitem_text_language":"en"}]},"item_publisher":{"attribute_name":"出版者","attribute_value_mlt":[{"subitem_publisher":"情報処理学会","subitem_publisher_language":"ja"}]},"publish_status":"0","weko_shared_id":-1,"item_file_price":{"attribute_name":"Billing file","attribute_type":"file","attribute_value_mlt":[{"url":{"url":"https://ipsj.ixsq.nii.ac.jp/record/187198/files/IPSJCSS2017023.pdf","label":"IPSJCSS2017023.pdf"},"date":[{"dateType":"Available","dateValue":"2019-10-16"}],"format":"application/pdf","billing":["billing_file"],"filename":"IPSJCSS2017023.pdf","filesize":[{"value":"373.6 kB"}],"mimetype":"application/pdf","priceinfo":[{"tax":["include_tax"],"price":"660","billingrole":"5"},{"tax":["include_tax"],"price":"330","billingrole":"6"},{"tax":["include_tax"],"price":"0","billingrole":"30"},{"tax":["include_tax"],"price":"0","billingrole":"46"},{"tax":["include_tax"],"price":"0","billingrole":"44"}],"accessrole":"open_date","version_id":"b14f741c-775d-4d4f-ad4c-6cee326ec371","displaytype":"detail","licensetype":"license_note","license_note":"Copyright (c) 2017 by the Information Processing Society of Japan"}]},"item_18_creator_5":{"attribute_name":"著者名","attribute_type":"creator","attribute_value_mlt":[{"creatorNames":[{"creatorName":"松本, 悦宜"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"寺岡, 良真"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"満永, 拓邦"}],"nameIdentifiers":[{}]}]},"item_18_creator_6":{"attribute_name":"著者名(英)","attribute_type":"creator","attribute_value_mlt":[{"creatorNames":[{"creatorName":"Yoshinori, Matsumoto","creatorNameLang":"en"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"Ryoma, Teraoka","creatorNameLang":"en"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"Takuho, Mitsunaga","creatorNameLang":"en"}],"nameIdentifiers":[{}]}]},"item_18_relation_9":{"attribute_name":"書誌レコードID","attribute_value_mlt":[{"subitem_relation_type_id":{"subitem_relation_type_select":"NCID","subitem_relation_type_id_text":"ISSN　1882-0840"}}]},"item_resource_type":{"attribute_name":"資源タイプ","attribute_value_mlt":[{"resourceuri":"http://purl.org/coar/resource_type/c_5794","resourcetype":"conference paper"}]},"item_18_description_7":{"attribute_name":"論文抄録","attribute_value_mlt":[{"subitem_description":"WordPressはオープンソースのContents Management Systemであり，多数のWebサイトで利用されている．その反面，WordPressを狙う攻撃が継続的に発生している．WordPressは運用の容易さやユーザ数の多さなどから共有サーバ上に展開されることがあるが，これらの環境ではサービスの特性上，一般的なWebサイトのセキュリティ対策として用いられるWeb Application FirewallやIPSなどを導入することは難しい．本稿では，共有サーバでも利用できるWordPressのプラグインを利用して，Web Application FirewallやIPSと同等な機能をもつ防御手法を提案する．また，被害の未然防止を目的に，プラグインにて検知した情報を共有し分析するプラットフォームも構築し有効性を評価する．","subitem_description_type":"Other"}]},"item_18_description_8":{"attribute_name":"論文抄録(英)","attribute_value_mlt":[{"subitem_description":"WordPress is a popular CMS (Contents Management System), used by a large number of websites. WordPress has many users, and the number of attacks against the platform is increasing. Mitigations such as WAF (Web Application Firewall) and IPS products are useful to prevent attacks. We developed a flexible WordPress plugin to prevent attacks similar to the methods used by WAFs and IPSes because a WordPress plugin can be installed on WordPress hosted on shared servers. Furthermore, we developed a platform system to analyze the logs generated by our WordPress plugin. Finally, we evaluated the plugin and system.","subitem_description_type":"Other"}]},"item_18_biblio_info_10":{"attribute_name":"書誌情報","attribute_value_mlt":[{"bibliographic_titles":[{"bibliographic_title":"コンピュータセキュリティシンポジウム2017論文集"}],"bibliographicIssueDates":{"bibliographicIssueDate":"2017-10-16","bibliographicIssueDateType":"Issued"},"bibliographicIssueNumber":"2","bibliographicVolumeNumber":"2017"}]},"relation_version_is_last":true,"weko_creator_id":"11"}}