Given the worldwide proliferation of cyberattacks, it is imperative that cybersecurity education and training are addressed in a timely manner. These activities typically require trainees to do hands-on practice in order to consolidate and improve their skills, for which purpose training environments called cyber ranges are used. In this paper we present an open-source system named CyRIS (Cyber Range Instantiation System) that supports this endeavor by fully automating the training environment setup, thus making it possible for any organization to conduct more numerous and variate training activities. CyRIS uses a text-based representation in YAML format to describe the characteristics of the training environment, including both environment setup and security content generation. Based on this description, CyRIS automatically creates the corresponding cyber range instances on a computer and network infrastructure, for simultaneous use by multiple trainees. We have evaluated CyRIS in various realistic scenarios, and our results demonstrate its suitability for cybersecurity education and training, both in terms of features and performance, including for large-scale training sessions with hundreds of participants.

抄録全体を表示

近年，不正アクセスの侵入手口として，SSHのパスワード認証に対する総当たり攻撃や辞書攻撃が多くなっている．計算機によっては，不特定の地域からSSHの接続を受け入れる必要のあるものがあり，また，登録ユーザの中には脆弱なパスワードを使用している者がある．このため，何度もの接続試行によってパスワードを破られ，計算機に不正に侵入される危険がある．本稿では，ログを監視することにより，SSHのパスワード認証に対する総当たり攻撃や辞書攻撃を検知し，不正なアクセスを動的に拒否するとともに，他の機器にも伝達して不正な攻撃を拒否する方式を提案する．

抄録全体を表示

As progresses of electronic government systems such as the resident register network system, the electronic application and the others in local governments, electronic risks such as Unauthorized Computer Access, Computer Viruses, Denial of Service Attack and Leakage of the Personal Data is increasing against the local governments, too. Under this situation, local governments must carry out the assessments of assets, threats and risks to maintain the information security levels beyond baseline levels. This is because the useful techniques and examples of risk analysis indispensable to the information security risk management do not exist. Therefore, they make their security policy from the ready-made model, and do not execute the information security audit so much. So in Hyogo Prefectural Government, we constructed the risk management method for guaranteeing safety by the technique consisting mainly of a log analysis and a pseudo attack based on the methods of ISO/IEC 17799 and applied it for three years. As a result, by staff in Hyogo Prefectural Government an effective risk management cycle was able to be constructed in a short term, and the effectiveness of these methods was proved.

抄録全体を表示

This work aims to determine the propensity of password creation through the lens of language spheres. To this end, we consider four different countries, each with a different culture/language: China/Chinese, United Kingdom (UK) and India/English, and Japan/Japanese. We first employ a user study to verify whether language and culture are reflected in password creation. We found that users in India, Japan, and the UK prefer to create their passwords from base words, and the kinds of words they are incorporated into passwords vary between countries. We then test whether the findings obtained through the user study are reflected in a corpus of leaked passwords. We found that users in China and Japan prefer dates, while users in India, Japan, and the UK prefer names. We also found that cultural words (e.g., “sakura” in Japan and “football” in the UK) are frequently used to create passwords. Finally, we demonstrate that the knowledge on the linguistic background of targeted users can be exploited to increase the speed of the password guessing process.

抄録全体を表示