{"updated":"2025-01-19T17:56:05.181051+00:00","metadata":{"_oai":{"id":"oai:ipsj.ixsq.nii.ac.jp:00211034","sets":["1164:4088:10494:10571"]},"path":["10571"],"owner":"44499","recid":"211034","title":["LKMを介したSeccompフィルタの適用によるアクセス制御手法の提案と評価"],"pubdate":{"attribute_name":"公開日","attribute_value":"2021-05-06"},"_buckets":{"deposit":"e6156d9a-f7bf-4d16-b0b7-b55004e4e11a"},"_deposit":{"id":"211034","pid":{"type":"depid","value":"211034","revision_id":0},"owners":[44499],"status":"published","created_by":44499},"item_title":"LKMを介したSeccompフィルタの適用によるアクセス制御手法の提案と評価","author_link":["535495","535497","535496","535498"],"item_titles":{"attribute_name":"タイトル","attribute_value_mlt":[{"subitem_title":"LKMを介したSeccompフィルタの適用によるアクセス制御手法の提案と評価"}]},"item_keyword":{"attribute_name":"キーワード","attribute_value_mlt":[{"subitem_subject":"CSEC","subitem_subject_scheme":"Other"}]},"item_type_id":"4","publish_date":"2021-05-06","item_4_text_3":{"attribute_name":"著者所属","attribute_value_mlt":[{"subitem_text_value":"岡山大学学術研究院／JSTさきがけ"},{"subitem_text_value":"岡山大学大学院自然科学研究科"}]},"item_4_text_4":{"attribute_name":"著者所属(英)","attribute_value_mlt":[{"subitem_text_value":"Okayama University / JST PRESTO","subitem_text_language":"en"},{"subitem_text_value":"Graduate School of Natural Science and Technology, Okayama University","subitem_text_language":"en"}]},"item_language":{"attribute_name":"言語","attribute_value_mlt":[{"subitem_language":"jpn"}]},"item_publisher":{"attribute_name":"出版者","attribute_value_mlt":[{"subitem_publisher":"情報処理学会","subitem_publisher_language":"ja"}]},"publish_status":"0","weko_shared_id":-1,"item_file_price":{"attribute_name":"Billing file","attribute_type":"file","attribute_value_mlt":[{"url":{"url":"https://ipsj.ixsq.nii.ac.jp/record/211034/files/IPSJ-IOT21053012.pdf","label":"IPSJ-IOT21053012.pdf"},"date":[{"dateType":"Available","dateValue":"2023-05-06"}],"format":"application/pdf","billing":["billing_file"],"filename":"IPSJ-IOT21053012.pdf","filesize":[{"value":"816.1 kB"}],"mimetype":"application/pdf","priceinfo":[{"tax":["include_tax"],"price":"660","billingrole":"5"},{"tax":["include_tax"],"price":"330","billingrole":"6"},{"tax":["include_tax"],"price":"0","billingrole":"43"},{"tax":["include_tax"],"price":"0","billingrole":"44"}],"accessrole":"open_date","version_id":"3da42c0d-d38d-41eb-a0d7-c772da5a8f27","displaytype":"detail","licensetype":"license_note","license_note":"Copyright (c) 2021 by the Information Processing Society of Japan"}]},"item_4_creator_5":{"attribute_name":"著者名","attribute_type":"creator","attribute_value_mlt":[{"creatorNames":[{"creatorName":"山内, 利宏"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"吉元, 亮太"}],"nameIdentifiers":[{}]}]},"item_4_creator_6":{"attribute_name":"著者名(英)","attribute_type":"creator","attribute_value_mlt":[{"creatorNames":[{"creatorName":"Toshihiro, Yamauchi","creatorNameLang":"en"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"Ryota, Yoshimoto","creatorNameLang":"en"}],"nameIdentifiers":[{}]}]},"item_4_source_id_9":{"attribute_name":"書誌レコードID","attribute_value_mlt":[{"subitem_source_identifier":"AA12326962","subitem_source_identifier_type":"NCID"}]},"item_4_textarea_12":{"attribute_name":"Notice","attribute_value_mlt":[{"subitem_textarea_value":"SIG Technical Reports are nonrefereed and hence may later appear in any journals, conferences, symposia, etc."}]},"item_resource_type":{"attribute_name":"資源タイプ","attribute_value_mlt":[{"resourceuri":"http://purl.org/coar/resource_type/c_18gh","resourcetype":"technical report"}]},"item_4_source_id_11":{"attribute_name":"ISSN","attribute_value_mlt":[{"subitem_source_identifier":"2188-8787","subitem_source_identifier_type":"ISSN"}]},"item_4_description_7":{"attribute_name":"論文抄録","attribute_value_mlt":[{"subitem_description":"Mirai などのマルウェアによる IoT 機器への攻撃が増加している．IoT 機器は今後も増加すると考えられるため，IoT 機器で利用されるソフトウェアに脆弱性が見つかった場合に，その対策を実行できることが重要である．そこで，Linux カーネルやアプリケーションを改変することなく，脆弱性のあるアプリケーションを保護することを目的にして，発行できるシステムコールを制限する SeccompのBerkeley Packet Filter（BPF）をプロセスに適用する機能を Loadable Kernel Module（LKM）に実現し，アクセス制御する手法を提案する．本稿では，提案手法の実現方式を示し，攻撃防止実験により，提案手法の有効性を評価し，提案手法の有効性と限界について議論した結果を報告する．","subitem_description_type":"Other"}]},"item_4_biblio_info_10":{"attribute_name":"書誌情報","attribute_value_mlt":[{"bibliographicPageEnd":"6","bibliographic_titles":[{"bibliographic_title":"研究報告インターネットと運用技術（IOT）"}],"bibliographicPageStart":"1","bibliographicIssueDates":{"bibliographicIssueDate":"2021-05-06","bibliographicIssueDateType":"Issued"},"bibliographicIssueNumber":"12","bibliographicVolumeNumber":"2021-IOT-53"}]},"relation_version_is_last":true,"weko_creator_id":"44499"},"created":"2025-01-19T01:12:13.775189+00:00","id":211034,"links":{}}