{"id":233790,"links":{},"created":"2025-01-19T01:35:22.448867+00:00","metadata":{"_oai":{"id":"oai:ipsj.ixsq.nii.ac.jp:00233790","sets":["1164:6389:11481:11634"]},"path":["11634"],"owner":"44499","recid":"233790","title":["Webサービスにおける信頼性を考慮した移動標的防御手法の提案"],"pubdate":{"attribute_name":"公開日","attribute_value":"2024-03-14"},"_buckets":{"deposit":"6de86a74-0f9d-4668-abf1-adc41e74b406"},"_deposit":{"id":"233790","pid":{"type":"depid","value":"233790","revision_id":0},"owners":[44499],"status":"published","created_by":44499},"item_title":"Webサービスにおける信頼性を考慮した移動標的防御手法の提案","author_link":["635777","635778","635783","635779","635784","635781","635782","635780"],"item_titles":{"attribute_name":"タイトル","attribute_value_mlt":[{"subitem_title":"Webサービスにおける信頼性を考慮した移動標的防御手法の提案"},{"subitem_title":"Proposal of Moving Target Defense Approach on Reliability in Web Services","subitem_title_language":"en"}]},"item_keyword":{"attribute_name":"キーワード","attribute_value_mlt":[{"subitem_subject":"ICSS(3)","subitem_subject_scheme":"Other"}]},"item_type_id":"4","publish_date":"2024-03-14","item_4_text_3":{"attribute_name":"著者所属","attribute_value_mlt":[{"subitem_text_value":"慶應義塾大学大学院理工学研究科"},{"subitem_text_value":"兵庫県立大学大学院情報科学研究科"},{"subitem_text_value":"大阪大学サイバーメディアセンター"},{"subitem_text_value":"京都産業大学情報理工学部"}]},"item_4_text_4":{"attribute_name":"著者所属(英)","attribute_value_mlt":[{"subitem_text_value":"Faculty of Science and Technology, Keio University","subitem_text_language":"en"},{"subitem_text_value":"Graduate School of Information Science, University of Hyogo","subitem_text_language":"en"},{"subitem_text_value":"Cybermedia Center, Osaka University","subitem_text_language":"en"},{"subitem_text_value":"Faculty of Information Science and Engineering, Kyoto Sangyo University","subitem_text_language":"en"}]},"item_language":{"attribute_name":"言語","attribute_value_mlt":[{"subitem_language":"jpn"}]},"item_publisher":{"attribute_name":"出版者","attribute_value_mlt":[{"subitem_publisher":"情報処理学会","subitem_publisher_language":"ja"}]},"publish_status":"0","weko_shared_id":-1,"item_file_price":{"attribute_name":"Billing file","attribute_type":"file","attribute_value_mlt":[{"url":{"url":"https://ipsj.ixsq.nii.ac.jp/record/233790/files/IPSJ-SPT24054019.pdf","label":"IPSJ-SPT24054019.pdf"},"format":"application/pdf","billing":["billing_file"],"filename":"IPSJ-SPT24054019.pdf","filesize":[{"value":"2.2 MB"}],"mimetype":"application/pdf","priceinfo":[{"tax":["include_tax"],"price":"0","billingrole":"46"},{"tax":["include_tax"],"price":"0","billingrole":"44"}],"accessrole":"open_login","version_id":"edb76742-cc5c-4dde-b045-bd69c9977c39","displaytype":"detail","licensetype":"license_note","license_note":"Copyright (c) 2024 by the Institute of Electronics, Information and Communication Engineers This SIG report is only available to those in membership of the SIG."}]},"item_4_creator_5":{"attribute_name":"著者名","attribute_type":"creator","attribute_value_mlt":[{"creatorNames":[{"creatorName":"齋田, 衛"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"橋本, 俊甫"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"猪俣, 敦夫"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"井上, 博之"}],"nameIdentifiers":[{}]}]},"item_4_creator_6":{"attribute_name":"著者名(英)","attribute_type":"creator","attribute_value_mlt":[{"creatorNames":[{"creatorName":"Mamoru, Saita","creatorNameLang":"en"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"Shunsuke, Hashimoto","creatorNameLang":"en"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"Atsuo, Inomata","creatorNameLang":"en"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"Hiroyuki, Inoue","creatorNameLang":"en"}],"nameIdentifiers":[{}]}]},"item_4_source_id_9":{"attribute_name":"書誌レコードID","attribute_value_mlt":[{"subitem_source_identifier":"AA12628305","subitem_source_identifier_type":"NCID"}]},"item_4_textarea_12":{"attribute_name":"Notice","attribute_value_mlt":[{"subitem_textarea_value":"SIG Technical Reports are nonrefereed and hence may later appear in any journals, conferences, symposia, etc."}]},"item_resource_type":{"attribute_name":"資源タイプ","attribute_value_mlt":[{"resourceuri":"http://purl.org/coar/resource_type/c_18gh","resourcetype":"technical report"}]},"item_4_source_id_11":{"attribute_name":"ISSN","attribute_value_mlt":[{"subitem_source_identifier":"2188-8671","subitem_source_identifier_type":"ISSN"}]},"item_4_description_7":{"attribute_name":"論文抄録","attribute_value_mlt":[{"subitem_description":"現代の Web サービスは，高い安全性と信頼性の上で確立されているが，ネットワークが持つ静的な特性が攻撃者にとって有用な情報を収集する難易度を軽減し，結果として安全性を低下させる要因の 1 つとなっている．これに対し，ネットワークやシステムの構成を動的に変化させることで攻撃者の情報を陳腐化させ，攻撃耐性を高める防御手法として移動標的防御（MTD）が提案されている．しかし，現状の MTD ではシステムの変化に伴うオーバーヘッドが大きいため，より高い信頼を要求するような Web サービスへの適用についてはまだ検討の余地がある．そこで，本論文では MTD を適用した Web サービスにおいて，可用性の定義を信頼性の定義として用いることで信頼性を維持したまま安全性を向上させる新たな待ち行列モデルをベースとした手法を提案する．さらに，その有用性を評価するために実施した分析の結果，信頼性を維持したまま Web システムのネットワークアドレスの変更範囲を広げることで攻撃難易度を向上できることを示した．結果として，一般的な Web サービスに対して MTD を適用することで安全性の向上が可能であることを示した．","subitem_description_type":"Other"}]},"item_4_description_8":{"attribute_name":"論文抄録(英)","attribute_value_mlt":[{"subitem_description":"Although modern Web services are built on a high level of security and reliability, the static properties of networks reduce the difficulty for attackers to gather useful information, and as a result, are one of the factors that reduce security. In response to this, Moving Target Defense (MTD) has been proposed as a defense method that makes attackers’ information obsolete by dynamically changing the configuration of networks and systems, thereby increasing attack resistance. However, the current MTD has a large overhead associated with system changes, and its application to Web services that require a higher level of trust remains open for further study. Therefore, this paper proposes a new method based on a queueing model that improves security while maintaining reliability by using the definition of availability as the definition of reliability in Web services that apply MTD. Furthermore, the results of an analysis conducted to evaluate its usefulness show that the attack difficulty can be increased by extending the range of network address changes in the Web system while maintaining reliability. As a result, it is shown that MTD can be applied to general Web services to improve their security.","subitem_description_type":"Other"}]},"item_4_biblio_info_10":{"attribute_name":"書誌情報","attribute_value_mlt":[{"bibliographicPageEnd":"7","bibliographic_titles":[{"bibliographic_title":"研究報告セキュリティ心理学とトラスト（SPT）"}],"bibliographicPageStart":"1","bibliographicIssueDates":{"bibliographicIssueDate":"2024-03-14","bibliographicIssueDateType":"Issued"},"bibliographicIssueNumber":"19","bibliographicVolumeNumber":"2024-SPT-54"}]},"relation_version_is_last":true,"weko_creator_id":"44499"},"updated":"2025-01-19T09:59:06.338312+00:00"}