{"id":215326,"metadata":{"_oai":{"id":"oai:ipsj.ixsq.nii.ac.jp:00215326","sets":["6504:10735:10809"]},"path":["10809"],"owner":"44499","recid":"215326","title":["Webアプリケーションにおけるセキュアプログラミングの実践的演習システム"],"pubdate":{"attribute_name":"公開日","attribute_value":"2021-03-04"},"_buckets":{"deposit":"f6b60c41-479a-413d-8557-a003dbc9d094"},"_deposit":{"id":"215326","pid":{"type":"depid","value":"215326","revision_id":0},"owners":[44499],"status":"published","created_by":44499},"item_title":"Webアプリケーションにおけるセキュアプログラミングの実践的演習システム","author_link":["554351","554350"],"item_titles":{"attribute_name":"タイトル","attribute_value_mlt":[{"subitem_title":"Webアプリケーションにおけるセキュアプログラミングの実践的演習システム"}]},"item_keyword":{"attribute_name":"キーワード","attribute_value_mlt":[{"subitem_subject":"セキュリティ","subitem_subject_scheme":"Other"}]},"item_type_id":"22","publish_date":"2021-03-04","item_language":{"attribute_name":"言語","attribute_value_mlt":[{"subitem_language":"jpn"}]},"item_22_text_3":{"attribute_name":"著者所属","attribute_value_mlt":[{"subitem_text_value":"近畿大"},{"subitem_text_value":"近畿大"}]},"item_publisher":{"attribute_name":"出版者","attribute_value_mlt":[{"subitem_publisher":"情報処理学会","subitem_publisher_language":"ja"}]},"publish_status":"0","weko_shared_id":-1,"item_file_price":{"attribute_name":"Billing file","attribute_type":"file","attribute_value_mlt":[{"url":{"url":"https://ipsj.ixsq.nii.ac.jp/record/215326/files/IPSJ-Z83-7X-01.pdf","label":"IPSJ-Z83-7X-01.pdf"},"date":[{"dateType":"Available","dateValue":"2021-12-29"}],"format":"application/pdf","filename":"IPSJ-Z83-7X-01.pdf","filesize":[{"value":"489.4 kB"}],"mimetype":"application/pdf","accessrole":"open_date","version_id":"19677433-b2ad-46d4-adee-d37b3c9706fc","displaytype":"detail","licensetype":"license_note","license_note":"Copyright (c) 2021 by the Information Processing Society of Japan"}]},"item_22_creator_5":{"attribute_name":"著者名","attribute_type":"creator","attribute_value_mlt":[{"creatorNames":[{"creatorName":"岸本, 和理"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"井口, 信和"}],"nameIdentifiers":[{}]}]},"item_resource_type":{"attribute_name":"資源タイプ","attribute_value_mlt":[{"resourceuri":"http://purl.org/coar/resource_type/c_5794","resourcetype":"conference paper"}]},"item_22_source_id_9":{"attribute_name":"書誌レコードID","attribute_value_mlt":[{"subitem_source_identifier":"AN00349328","subitem_source_identifier_type":"NCID"}]},"item_22_description_7":{"attribute_name":"論文抄録","attribute_value_mlt":[{"subitem_description":"Webアプリケーションの脆弱性を悪用した代表的な攻撃にクロスサイトスクリプティング(以下，XSS)とSQLインジェクション（以下，SQLi）がある．本研究ではXSSとSQLiに関する安全なWebアプリケーションの作成方法の学習を目的に実践的な演習を実施できるシステムを開発した．仮想マシン上に配置されているWebアプリケーションに対してローカルプロキシツールを用いてクライアントとサーバ間の通信を解析することで脆弱性の検出を行い，実際に攻撃を行うことで攻撃の原理を学習する．その後，攻撃を行った箇所のWebアプリケーションのソースコードを修正することでXSS，SQLiそれぞれに関する安全なWebアプリケーションの作成方法を学習する．","subitem_description_type":"Other"}]},"item_22_biblio_info_10":{"attribute_name":"書誌情報","attribute_value_mlt":[{"bibliographicPageEnd":"466","bibliographic_titles":[{"bibliographic_title":"第83回全国大会講演論文集"}],"bibliographicPageStart":"465","bibliographicIssueDates":{"bibliographicIssueDate":"2021-03-04","bibliographicIssueDateType":"Issued"},"bibliographicIssueNumber":"1","bibliographicVolumeNumber":"2021"}]},"relation_version_is_last":true,"weko_creator_id":"44499"},"updated":"2025-01-19T16:12:49.184696+00:00","created":"2025-01-19T01:16:05.852747+00:00","links":{}}