{"updated":"2025-01-19T15:20:27.847740+00:00","metadata":{"_oai":{"id":"oai:ipsj.ixsq.nii.ac.jp:00217898","sets":["1164:4088:10830:10908"]},"path":["10908"],"owner":"44499","recid":"217898","title":["NII-SOCSから通知されるインシデントへの対応の自動化の検討"],"pubdate":{"attribute_name":"公開日","attribute_value":"2022-05-12"},"_buckets":{"deposit":"1d991652-758c-432e-b89b-464e5695e2ca"},"_deposit":{"id":"217898","pid":{"type":"depid","value":"217898","revision_id":0},"owners":[44499],"status":"published","created_by":44499},"item_title":"NII-SOCSから通知されるインシデントへの対応の自動化の検討","author_link":["565430","565429"],"item_titles":{"attribute_name":"タイトル","attribute_value_mlt":[{"subitem_title":"NII-SOCSから通知されるインシデントへの対応の自動化の検討"},{"subitem_title":"Consideration on Automation of a Computer Security Incident Notified by NII-SOCS","subitem_title_language":"en"}]},"item_keyword":{"attribute_name":"キーワード","attribute_value_mlt":[{"subitem_subject":"IOT/CSEC","subitem_subject_scheme":"Other"}]},"item_type_id":"4","publish_date":"2022-05-12","item_4_text_3":{"attribute_name":"著者所属","attribute_value_mlt":[{"subitem_text_value":"鳥取大学情報基盤機構"}]},"item_4_text_4":{"attribute_name":"著者所属(英)","attribute_value_mlt":[{"subitem_text_value":"Organization for Information and Communication Technology, Tottori University","subitem_text_language":"en"}]},"item_language":{"attribute_name":"言語","attribute_value_mlt":[{"subitem_language":"jpn"}]},"item_publisher":{"attribute_name":"出版者","attribute_value_mlt":[{"subitem_publisher":"情報処理学会","subitem_publisher_language":"ja"}]},"publish_status":"0","weko_shared_id":-1,"item_file_price":{"attribute_name":"Billing file","attribute_type":"file","attribute_value_mlt":[{"url":{"url":"https://ipsj.ixsq.nii.ac.jp/record/217898/files/IPSJ-IOT22057016.pdf","label":"IPSJ-IOT22057016.pdf"},"date":[{"dateType":"Available","dateValue":"2024-05-12"}],"format":"application/pdf","billing":["billing_file"],"filename":"IPSJ-IOT22057016.pdf","filesize":[{"value":"227.7 kB"}],"mimetype":"application/pdf","priceinfo":[{"tax":["include_tax"],"price":"660","billingrole":"5"},{"tax":["include_tax"],"price":"330","billingrole":"6"},{"tax":["include_tax"],"price":"0","billingrole":"43"},{"tax":["include_tax"],"price":"0","billingrole":"44"}],"accessrole":"open_date","version_id":"1ec4acd7-1240-4866-912e-6d45a511bf19","displaytype":"detail","licensetype":"license_note","license_note":"Copyright (c) 2022 by the Information Processing Society of Japan"}]},"item_4_creator_5":{"attribute_name":"著者名","attribute_type":"creator","attribute_value_mlt":[{"creatorNames":[{"creatorName":"大森, 幹之"}],"nameIdentifiers":[{}]}]},"item_4_creator_6":{"attribute_name":"著者名(英)","attribute_type":"creator","attribute_value_mlt":[{"creatorNames":[{"creatorName":"Motoyuki, Ohmori","creatorNameLang":"en"}],"nameIdentifiers":[{}]}]},"item_4_source_id_9":{"attribute_name":"書誌レコードID","attribute_value_mlt":[{"subitem_source_identifier":"AA12326962","subitem_source_identifier_type":"NCID"}]},"item_4_textarea_12":{"attribute_name":"Notice","attribute_value_mlt":[{"subitem_textarea_value":"SIG Technical Reports are nonrefereed and hence may later appear in any journals, conferences, symposia, etc."}]},"item_resource_type":{"attribute_name":"資源タイプ","attribute_value_mlt":[{"resourceuri":"http://purl.org/coar/resource_type/c_18gh","resourcetype":"technical report"}]},"item_4_source_id_11":{"attribute_name":"ISSN","attribute_value_mlt":[{"subitem_source_identifier":"2188-8787","subitem_source_identifier_type":"ISSN"}]},"item_4_description_7":{"attribute_name":"論文抄録","attribute_value_mlt":[{"subitem_description":"国立情報学研究所 (NII: National Institute of Informatics) が実施している大学間連携に基づく情報セキュリティ体制の基盤構築 (NII-SOCS: NII Security Operation Collaboration Services) では，各参加大学のファイアウォール以降のインターネットとの通信，つまり，SINET (Science Information NETwork) を経由する通信からインシデントを検知する．そのため，ファイアウォールで遮断できており，対応が不要な疑義のある通信に対する通知もある．対応が不要な通知については，その処理に要する時間を削減し，人の業務負荷を軽減することが望ましい．そこで，本研究では，NII-SOCS から通知されるインシデントへの対応の一部の作業の自動化を検討する．また，対応の必要性を自動的に判定し，対応が不要な通知については，対応完了までを自動化することを検討する．","subitem_description_type":"Other"}]},"item_4_description_8":{"attribute_name":"論文抄録(英)","attribute_value_mlt":[{"subitem_description":"National Institute of Informatics (NII) in Japan runs NII Security Operation Collaboration Services (NII-SOCS), which is an information security infrastructure based on inter-university collaboration. NII-SOCS examines communications observed between out side of the firewall in each participating university and the Internet, i.e., communication going through Science Information NETwork (SINET), and detect an incident. NII-SOCS may, therefore, report an incident that is properly blocked by the firewall and requires no response against the incident. It is better to reduce the time to process such incident that needs no response, thereby reducing the human workload. To this end, this paper tries to automate responses to incidents notified by NII-SOCS. This paper will also consider automating the process of determining the need for a response and completing the response for notifications that do not require a response.","subitem_description_type":"Other"}]},"item_4_biblio_info_10":{"attribute_name":"書誌情報","attribute_value_mlt":[{"bibliographicPageEnd":"6","bibliographic_titles":[{"bibliographic_title":"研究報告インターネットと運用技術（IOT）"}],"bibliographicPageStart":"1","bibliographicIssueDates":{"bibliographicIssueDate":"2022-05-12","bibliographicIssueDateType":"Issued"},"bibliographicIssueNumber":"16","bibliographicVolumeNumber":"2022-IOT-57"}]},"relation_version_is_last":true,"weko_creator_id":"44499"},"created":"2025-01-19T01:18:19.453805+00:00","id":217898,"links":{}}