{"metadata":{"_oai":{"id":"oai:ipsj.ixsq.nii.ac.jp:00224747","sets":["1164:2836:11158:11159"]},"path":["11159"],"owner":"44499","recid":"224747","title":["脆弱性対策情報データベースと資産管理との連携に向けたMyJVN製品辞書に関する検討"],"pubdate":{"attribute_name":"公開日","attribute_value":"2023-02-27"},"_buckets":{"deposit":"fbf8f2ea-4926-4269-a5a8-6fe3a35f5ab3"},"_deposit":{"id":"224747","pid":{"type":"depid","value":"224747","revision_id":0},"owners":[44499],"status":"published","created_by":44499},"item_title":"脆弱性対策情報データベースと資産管理との連携に向けたMyJVN製品辞書に関する検討","author_link":["593301","593302"],"item_titles":{"attribute_name":"タイトル","attribute_value_mlt":[{"subitem_title":"脆弱性対策情報データベースと資産管理との連携に向けたMyJVN製品辞書に関する検討"},{"subitem_title":"Feasibility study of MyJVN Product Dictionary for Collaboration with Vulnerability Database and Asset Management","subitem_title_language":"en"}]},"item_keyword":{"attribute_name":"キーワード","attribute_value_mlt":[{"subitem_subject":"脆弱性管理","subitem_subject_scheme":"Other"}]},"item_type_id":"4","publish_date":"2023-02-27","item_4_text_3":{"attribute_name":"著者所属","attribute_value_mlt":[{"subitem_text_value":"東京電機大学"}]},"item_4_text_4":{"attribute_name":"著者所属(英)","attribute_value_mlt":[{"subitem_text_value":"Tokyo Denki University","subitem_text_language":"en"}]},"item_language":{"attribute_name":"言語","attribute_value_mlt":[{"subitem_language":"jpn"}]},"item_publisher":{"attribute_name":"出版者","attribute_value_mlt":[{"subitem_publisher":"情報処理学会","subitem_publisher_language":"ja"}]},"publish_status":"0","weko_shared_id":-1,"item_file_price":{"attribute_name":"Billing file","attribute_type":"file","attribute_value_mlt":[{"url":{"url":"https://ipsj.ixsq.nii.ac.jp/record/224747/files/IPSJ-DPS23194002.pdf","label":"IPSJ-DPS23194002.pdf"},"date":[{"dateType":"Available","dateValue":"2025-02-27"}],"format":"application/pdf","billing":["billing_file"],"filename":"IPSJ-DPS23194002.pdf","filesize":[{"value":"1.7 MB"}],"mimetype":"application/pdf","priceinfo":[{"tax":["include_tax"],"price":"660","billingrole":"5"},{"tax":["include_tax"],"price":"330","billingrole":"6"},{"tax":["include_tax"],"price":"0","billingrole":"34"},{"tax":["include_tax"],"price":"0","billingrole":"44"}],"accessrole":"open_date","version_id":"81035bca-8721-4f0a-a876-48b220cc1e89","displaytype":"detail","licensetype":"license_note","license_note":"Copyright (c) 2023 by the Information Processing Society of Japan"}]},"item_4_creator_5":{"attribute_name":"著者名","attribute_type":"creator","attribute_value_mlt":[{"creatorNames":[{"creatorName":"寺田, 真敏"}],"nameIdentifiers":[{}]}]},"item_4_creator_6":{"attribute_name":"著者名(英)","attribute_type":"creator","attribute_value_mlt":[{"creatorNames":[{"creatorName":"Masato, Terada","creatorNameLang":"en"}],"nameIdentifiers":[{}]}]},"item_4_source_id_9":{"attribute_name":"書誌レコードID","attribute_value_mlt":[{"subitem_source_identifier":"AN10116224","subitem_source_identifier_type":"NCID"}]},"item_4_textarea_12":{"attribute_name":"Notice","attribute_value_mlt":[{"subitem_textarea_value":"SIG Technical Reports are nonrefereed and hence may later appear in any journals, conferences, symposia, etc."}]},"item_resource_type":{"attribute_name":"資源タイプ","attribute_value_mlt":[{"resourceuri":"http://purl.org/coar/resource_type/c_18gh","resourcetype":"technical report"}]},"item_4_source_id_11":{"attribute_name":"ISSN","attribute_value_mlt":[{"subitem_source_identifier":"2188-8906","subitem_source_identifier_type":"ISSN"}]},"item_4_description_7":{"attribute_name":"論文抄録","attribute_value_mlt":[{"subitem_description":"サイバー攻撃の高度化・巧妙化に伴い，民間企業等の情報システムへの脅威が深刻化している．サイバー攻撃の被害を防ぐためには，日々公開される脆弱性に対して迅速に対応することが求められ，各組織で使用しているどのソフトウェアがどの脆弱性の影響を受けるかを判別することが重要となる．本稿では，脆弱性を起点としたサイバー攻撃への迅速な対応を可能にする環境を実現するため，脆弱性対策情報データベースと資産管理との連携をサポートする MyJVN 製品辞書について述べる．MyJVN 製品辞書は，ソフトウェア部品表 (SBOM) への対応を踏まえ，多様な製品識別子を関連付けるための製品辞書という構成をとる．","subitem_description_type":"Other"}]},"item_4_description_8":{"attribute_name":"論文抄録(英)","attribute_value_mlt":[{"subitem_description":"As Cyber-attacks become more sophisticated, information systems are becoming more serious for the threats. To prevent damage from cyber-attacks, it is necessary to respond quickly to the vulnerabilities that are disclosed. This paper describes the MyJVN product identification dictionary that supports collaboration between the vulnerability database and asset management in order to construct an environment that enables rapid response to cyber-attacks. MyJVN product identification dictionary is configured as a product dictionary for associating product identifiers based on correspondence to software bill of materials (SBOM).","subitem_description_type":"Other"}]},"item_4_biblio_info_10":{"attribute_name":"書誌情報","attribute_value_mlt":[{"bibliographicPageEnd":"7","bibliographic_titles":[{"bibliographic_title":"研究報告マルチメディア通信と分散処理（DPS）"}],"bibliographicPageStart":"1","bibliographicIssueDates":{"bibliographicIssueDate":"2023-02-27","bibliographicIssueDateType":"Issued"},"bibliographicIssueNumber":"2","bibliographicVolumeNumber":"2023-DPS-194"}]},"relation_version_is_last":true,"weko_creator_id":"44499"},"id":224747,"updated":"2025-01-19T13:02:10.276501+00:00","links":{},"created":"2025-01-19T01:24:18.818589+00:00"}