@techreport{oai:ipsj.ixsq.nii.ac.jp:00045095,
 author = {河内, 清人 and 北澤, 繁樹 and 中野, 初美 and 大越丈弘 and 藤井, 誠司 and 河木理一 and Kiyoto, Kawauchi and Shigeki, Kitazawa and Hatsumi, Nakano and Takehiro, Ohkoshi and Seiji, Fujii and Motokazu, Kawaki},
 issue = {122(2002-CSEC-019)},
 month = {Dec},
 note = {脆弱性診断で一般的に使用されるセキュリティスキャナは，脆弱点の列挙を行うのみであるため，それらを組み合わせて利用した場合の脅威や，盗聴のような受動的な攻撃を受けた場合の脅威についての情報をツールから得ることはできない．そこで本稿では，攻撃をスクリプトとして表現し，一階述語論理上での自動推論に従って実行することで，上記場合も含めて，可能な限り攻撃者の振る舞いを模擬可能な脆弱性診断ツールを提案し，その有効性について述べる．, Attackers often intrude their target sites by using one or more vulnerabilities found in victim hosts. Also, they can use viruses to put backdoors into target sites. Security scanners which are commonly used for security assessment cannot detect such risks described above, because they can just enumerate vulnerabilities. In this paper, we propose a vulnerability assessment tool, which can simulate whole possible activities taken by attackers. This is achieved by applying an inference engine based on first-order predicate logic to decide attack scenarios.},
 title = {一階述語論理を用いた脆弱性診断ツール},
 year = {2002}
}