{"id":61480,"updated":"2025-01-21T22:36:34.200166+00:00","links":{},"created":"2025-01-18T23:23:40.099141+00:00","metadata":{"_oai":{"id":"oai:ipsj.ixsq.nii.ac.jp:00061480","sets":["1164:3925:5646:5647"]},"path":["5647"],"owner":"10","recid":"61480","title":["MyJVNを用いた脆弱性対策情報提供サービスの検討"],"pubdate":{"attribute_name":"公開日","attribute_value":"2009-02-26"},"_buckets":{"deposit":"36b0cab2-26a7-49f5-abae-4ab9d048480c"},"_deposit":{"id":"61480","pid":{"type":"depid","value":"61480","revision_id":0},"owners":[10],"status":"published","created_by":10},"item_title":"MyJVNを用いた脆弱性対策情報提供サービスの検討","author_link":["0","0"],"item_titles":{"attribute_name":"タイトル","attribute_value_mlt":[{"subitem_title":"MyJVNを用いた脆弱性対策情報提供サービスの検討"},{"subitem_title":"Feasibility study of vulnerability information service by MyJVN","subitem_title_language":"en"}]},"item_type_id":"4","publish_date":"2009-02-26","item_4_text_3":{"attribute_name":"著者所属","attribute_value_mlt":[{"subitem_text_value":"(独)情報処理推進機構(IPA)"},{"subitem_text_value":"(独)情報処理推進機構(IPA)"},{"subitem_text_value":"(独)情報処理推進機構(IPA)"},{"subitem_text_value":"(独)情報処理推進機構(IPA)"},{"subitem_text_value":"中央大学大学院理工学研究科"}]},"item_4_text_4":{"attribute_name":"著者所属(英)","attribute_value_mlt":[{"subitem_text_value":"Information-technology Promotion Agency, Japan","subitem_text_language":"en"},{"subitem_text_value":"Information-technology Promotion Agency, Japan","subitem_text_language":"en"},{"subitem_text_value":"Information-technology Promotion Agency, Japan","subitem_text_language":"en"},{"subitem_text_value":"Information-technology Promotion Agency, Japan","subitem_text_language":"en"},{"subitem_text_value":"Graduate School of Science and Engineering, Chuo University.","subitem_text_language":"en"}]},"item_language":{"attribute_name":"言語","attribute_value_mlt":[{"subitem_language":"jpn"}]},"item_publisher":{"attribute_name":"出版者","attribute_value_mlt":[{"subitem_publisher":"情報処理学会","subitem_publisher_language":"ja"}]},"publish_status":"0","weko_shared_id":10,"item_file_price":{"attribute_name":"Billing file","attribute_type":"file","attribute_value_mlt":[{"url":{"url":"https://ipsj.ixsq.nii.ac.jp/record/61480/files/IPSJ-CSEC09044048.pdf","label":"IPSJ-CSEC09044048"},"date":[{"dateType":"Available","dateValue":"2011-02-26"}],"format":"application/pdf","billing":["billing_file"],"filename":"IPSJ-CSEC09044048.pdf","filesize":[{"value":"4.2 MB"}],"mimetype":"application/pdf","priceinfo":[{"tax":["include_tax"],"price":"660","billingrole":"5"},{"tax":["include_tax"],"price":"330","billingrole":"6"},{"tax":["include_tax"],"price":"0","billingrole":"30"},{"tax":["include_tax"],"price":"0","billingrole":"44"}],"accessrole":"open_date","version_id":"1adbbbd6-c53a-4897-8d38-80ae5eba287e","displaytype":"detail","licensetype":"license_note","license_note":"Copyright (c) 2009 by the Information Processing Society of Japan"}]},"item_4_creator_5":{"attribute_name":"著者名","attribute_type":"creator","attribute_value_mlt":[{"creatorNames":[{"creatorName":"寺田, 真敏"},{"creatorName":"杉山, 賢"},{"creatorName":"山岸, 正"},{"creatorName":"小林, 偉昭"},{"creatorName":"土居, 範久"}],"nameIdentifiers":[{}]}]},"item_4_creator_6":{"attribute_name":"著者名(英)","attribute_type":"creator","attribute_value_mlt":[{"creatorNames":[{"creatorName":"Masato, Terada","creatorNameLang":"en"},{"creatorName":"Ken, Sugiyama","creatorNameLang":"en"},{"creatorName":"Tadashi, Yamagishi","creatorNameLang":"en"},{"creatorName":"Hideaki, Kobayashi","creatorNameLang":"en"},{"creatorName":"Norihisa, Doi","creatorNameLang":"en"}],"nameIdentifiers":[{}]}]},"item_4_source_id_9":{"attribute_name":"書誌レコードID","attribute_value_mlt":[{"subitem_source_identifier":"AA11235941","subitem_source_identifier_type":"NCID"}]},"item_4_textarea_12":{"attribute_name":"Notice","attribute_value_mlt":[{"subitem_textarea_value":"SIG Technical Reports are nonrefereed and hence may later appear in any journals, conferences, symposia, etc."}]},"item_resource_type":{"attribute_name":"資源タイプ","attribute_value_mlt":[{"resourceuri":"http://purl.org/coar/resource_type/c_18gh","resourcetype":"technical report"}]},"item_4_description_7":{"attribute_name":"論文抄録","attribute_value_mlt":[{"subitem_description":"MyJVNは，処理の機械化や自動化を考慮した流通基盤上に，JVNの脆弱性対策情報を用いたサービスを構築するフレームワークである．しかしながら，流通基盤上で交換される情報は文書情報であり，脆弱性の有無をチェックして対策を促すなどの脆弱性対策に関わる処理の機械化については発展途上にある．本稿では，脆弱性対策情報の流通基盤の拡張として，セキュリティ問題をチェックする手続き仕様OVAL (Open Vulnerability Assessment Language)を用いた脆弱性対策に関わる処理の機械化を提案すると共に，開発したプロトタイプシステムについて述べる．","subitem_description_type":"Other"}]},"item_4_description_8":{"attribute_name":"論文抄録(英)","attribute_value_mlt":[{"subitem_description":"MyJVN is framework for exchange of security information and automation of vulnerability countermeasure. Currently, MyJVN has a Web service API that is based on CPE (Common Platform Enumeration) as a structured naming scheme for products. And most of security information of MyJVN is deployed as human readable documents. It is necessary to improve the security information service environment for automation of vulnerability countermeasure. In this paper, firstly we will explain the specification and applications of MyJVN. Secondly, we will introduce our feasibility study of OVAL (Open Vulnerability Assessment Language) for MyJVN.","subitem_description_type":"Other"}]},"item_4_biblio_info_10":{"attribute_name":"書誌情報","attribute_value_mlt":[{"bibliographicPageEnd":"288","bibliographic_titles":[{"bibliographic_title":"研究報告コンピュータセキュリティ（CSEC）"}],"bibliographicPageStart":"283","bibliographicIssueDates":{"bibliographicIssueDate":"2009-02-26","bibliographicIssueDateType":"Issued"},"bibliographicIssueNumber":"20(2009-CSEC-44)","bibliographicVolumeNumber":"2009"}]},"relation_version_is_last":true,"weko_creator_id":"10"}}