7æã«æ±äº¬éœå ã§éå¬ããããã€ãããã¥ãŒã¹ITãµããã Webã»ãã¥ãªãã£ã2012å¹ŽåºŠç ææ°è åšå¯Ÿçè¬åº§ãã§ã¯ããœãªãã³ã·ã¹ãã 㺠ãããã¯ãããŒã±ãã£ã³ã°éš é è€å¥å¿æ°ãããæšçåæ»æã«çŽé¢ããäŒæ¥ãããã¯ãŒã¯ãžã®å ¥å£/åºå£å¯Ÿçããšé¡ããŠè¬æŒãäžè¬äŒæ¥ã«ãè åšãäžãã€ã€ããæšçåæ»æã®ã¡ã«ããºã ãæããã«ãããšãšãã«ãæ»æã«å¯Ÿæããããã«å¿ èŠãšãªãå ¥å£å¯Ÿçãšåºå£å¯Ÿçãå«ãå æ¬çãªå¯Ÿçã®ããæ¹ã玹ä»ããã
äžè¬äŒæ¥ã«ãè åšãäžãå§ããæšçåæ»æ
|
|
ãœãªãã³ã·ã¹ãã ãºããããã¯ãããŒã±ãã£ã³ã°éšã®é è€å¥å¿æ° |
æšçåæ»æã¯ã2011幎ã«åœå ã®å€§äŒæ¥ãå®å ¬åºãžã®æ¬æ Œçãªæ»æãçºèŠãããã®è åšãäžè¬ã«åºãç¥ãããããã«ãªã£ããIPA(æ å ±åŠçæšé²æ©æ§)ãçºè¡šããã2012幎ç 10倧è åšãã§ã¯ã2010幎ã«5äœã ã£ããæ°ããã¿ã€ãã®æ»æãã2011幎ã«ã¯äžæ°ã«ãããã«èºãåºããæ°ããã¿ã€ãã®æ»æãšã¯ãŸãã«æšçåæ»æãæããŠããã
åŸæ¥ãŸã§ããã«ãŠã§ã¢ãžã®ææã¯ãé»åã¡ãŒã«ã®æ·»ä»ãã¡ã€ã«ãéããããå±éºãªWebãµã€ããé²èЧãããããã¡ã€ã«å ±æãœãããå©çšããããšãã£ãåäžã®åå ã«ããçºçããããšãå€ãã£ããããããæè¿ã§ã¯ã人ãã ãŸããã¯ããã¯ãã»ãã¥ãªãã£å¯Ÿçãå·§åŠã«ããæãããã¯ããã¯ãé§äœ¿ããæŠç¥çã§è€åçãªæ»æãå¢ããŠããã
å®éã®çŸå Žã®ç¶æ³ã¯ã©ããªã®ããã»ãã¥ãªãã£ã¢ãã©ã€ã¢ã³ã¹ãæäŸãããœãªãã³ã·ã¹ãã ãºã®ãµããŒãã»ã³ã¿ãŒãžã®åãåããå 容ã®åŸåãèŠããšãã»ãã¥ãªãã£ãããæããŠããŸãæšçåã¡ãŒã«ãå ±åããå§ããã®ã¯ã3幎ã»ã©åããã®ããšã§ãããåœåã¯æšçåæ»æã«é¢ããåãåããã®ã»ãšãã©ã¯å®å ¬åºãŠãŒã¶ãŒããã®ãã®ã ã£ããããããæè¿ã§ã¯äžè¬ã®äŒæ¥ãŠãŒã¶ãŒããã®åãåãããå¢ããŠããŠãããšããã
ãç¹ã«æè¿ã¯ããæšçåæ»æã®å¯Ÿçãè¡ããããäœãããã°ãããããšããæŒ ç¶ãšããåãåãããå¢ããäŒæ¥ãŠãŒã¶ãŒã®å€ãããæšçåæ»æã«äžå®ãæããªããããæå¹ãªå¯ŸçãããããªããšããçŸç¶ã窺ããããšãé è€æ°ã¯ææããã
é è€æ°ã«ãããšãäžè¬çãªæšçåæ»æã®æµãã¯ããã ããŸããããããããªã©ããç¹å®ã®äººç©ãè£ ã£ãŠéä¿¡å ãåœè£ ããã¹ãã ã¡ãŒã«ãæ¢åã®ã»ãã¥ãªãã£å¯ŸçãããæããŠãšã³ããŠãŒã¶ãŒã«é ä¿¡ãããããšã³ããŠãŒã¶ãŒããã€ãã®å®å šãªWebãµã€ãã ãšæã蟌ãã§é»åã¡ãŒã«ã®ãªã³ã¯ãã¯ãªãã¯ãããšãå·§åŠã«äœãããå±éºãªãµã€ãã«ãªãã€ã¬ã¯ããããURLãã£ã«ã¿ãªã³ã°ãªã©æ¢åã®ã»ãã¥ãªãã£å¯ŸçãããæããŠãæ°çš®ã®ãã«ãŠã§ã¢ããšã³ããŠãŒã¶ãŒã®PCã«éã蟌ãŸããã
ãšã³ããŠãŒã¶ãŒã®PCã«ææããæ°çš®ã®ãã«ãŠã§ã¢ã¯ãã ãã«ãæ°ã€ãããªãããã«æœäŒãç¶ããå€éšã®ãããããããšéä¿¡ãè¡ããªããã¢ããã°ã¬ãŒããšæ©èœåŒ·åãç¹°ãè¿ããŠæªäºãåããã£ã³ã¹ãåŸ ã€ã®ã§ããããšã³ããŠãŒã¶ãŒããèªåã®PCããã«ãŠã§ã¢ã«ææããŠããããšã«æ°ã¥ãããšã¯ãŸããªãã
ããããæ°çš®ã®ãã«ãŠã§ã¢ãžã®ææã¯å¹Žã å¢ãç¶ããŠããããã®æææºã¯ããã€ãŠã¯é»åã¡ãŒã«ãäž»æµã§ãã£ãããæè¿ã§ã¯ãWebçµç±ã§ã®ææãæ¥å¢ããé»åã¡ãŒã«çµç±ã§ã®ææãäžåã£ãŠãããšããã
Webãµã€ãã¢ã¯ã»ã¹å¯Ÿçã§å ¥å£å¯Ÿçã匷å
ããããæšçåæ»æã«ã©ãåãåãã¹ãããé è€æ°ã¯ãäŒæ¥ãããã¯ãŒã¯ã®å ¥å£å¯ŸçããšãããWebãµã€ãã¢ã¯ã»ã¹ã«å¯Ÿãã察çããããŸã§ä»¥äžã«åŒ·åããå¿ èŠããããšã¢ããã€ã¹ããã
åæ°ãææ¡ãã察çã®1ã€ããæªç¥ã®è åšãµã€ãã«å¯Ÿãã察çã®åŒ·åã§ããããããå®çŸããŠãããã®ãWebã¬ãã¥ããŒã·ã§ã³æ å ±ã®æŽ»çšã§ãããããã¯ãã»ãã¥ãªãã£æ å ±ãã¯ã©ãŠãããŒã¹ã§ãªã¢ã«ã¿ã€ã ã«æäŸããè åšæ å ±ã»ã³ã¿ãŒã®ææ°ã®ããŒã¿ããŒã¹ã®æ å ±ãåºã«ãWebã¢ã¯ã»ã¹ã®å¶åŸ¡ãå®çŸãããšãããã®ã
äŸãã°ãWebã»ãã¥ãªãã£ã¢ãã©ã€ã¢ã³ã¹ãIronPort WSA(Web Security Appliance)ãã§æŽ»çšãããŠãããäžçæå€§çŽã®è åšæ å ±ã»ã³ã¿ãŒãCisco SIO(Security Intelligence Operation)ãã§ã¯ãå šäžçã®çŽ100äžå°ã®ã»ã³ãµãŒããåéããè åšæ å ±ãã«ãŒã«åããçŽ200段éã®ã¹ã³ã¢æ å ±ãšããŠæäŸããŠãããããã«ãããã¹ã³ã¢ã®é«ãå±éºãªãµã€ãã®ãããã¯ã ãã§ãªããã¹ã³ã¢ãäžäœã®æªãããµã€ãã«ãæè»ãªå¶åŸ¡ãå¯èœã«ãªãã
ãã1ã€ã®ææ¡ã¯ãWebã¢ããªã±ãŒã·ã§ã³ã®å¯èŠåãšå¶åŸ¡ã§ããããããå®çŸããŠãããã®ãIronPort WSA ã®ãAVC(Application Visibility Control)ããšåŒã°ããæ©èœã§ãããããã¯ãFacebookãTwitterãMessengerãªã©115çš®é¡ã«äžãHTTPããŒã¹ã®ã¢ããªã±ãŒã·ã§ã³ã®ã¢ã¯ã»ã¹ãå¯èŠåãããã®å©çšãå¶åŸ¡ãããšãããã®ãã¢ããªã±ãŒã·ã§ã³ããšã«ã¢ã¯ã»ã¹ã®å¶åŸ¡ã垯åå¹ ã®å¶åŸ¡ã现ãã«è¡ãããšãã§ããã
äŸãã°ãInstant Messageç³»ã®ã¢ããªã±ãŒã·ã§ã³ã®å Žåã¯ããã¡ã€ã«å ±æã®ã¿ããããã¯ããããã¡ãã£ã¢ç³»ã®ã¢ããªã±ãŒã·ã§ã³ã®å Žåã¯ã垯åå¹ ãå¶åŸ¡ããããªã©ãWebã¢ããªã±ãŒã·ã§ã³ã®å©äŸ¿æ§ãä¿æããªãããå±éºãªè¡çºãäžå¿ èŠãªè¡çºãæé€ããããšãå¯èœãšãªãã
|
å€éšãžã®éä¿¡ãå¯èŠåããåºå£æŠç¥ã®éèŠæ§
æšçåæ»æå¯Ÿçãæå¹ã«è¡ãããã«ã¯ããããŸã§ç޹ä»ããŠããå ¥å£å¯Ÿçã®åŒ·åã ãã§ãªãã瀟å ãã瀟å€ãžã®éä¿¡ãã©ãã£ãã¯ãå¯èŠåããå±éºãªéä¿¡ãæ€ç¥ããŠé©åã«ãããã¯ããåºå£å¯Ÿçãäžå¯æ¬ ã«ãªãã
é è€æ°ã¯ããæšçåæ»æå¯Ÿçãå®çŸããããã«ã¯ãå ¥å£å¯Ÿçãæ ãWebãããã·æ©èœãšãšãã«ãåºå£å¯Ÿçãæ ããã©ãã£ãã¯ã»ã¢ãã¿ãªã³ã°æ©èœãçµ±åçã«ãµããŒãããå¿ èŠãããããšåŒ·èª¿ããã
IronPort WSAã®ãã©ãã£ãã¯ã»ã¢ãã¿ãªã³ã°ã¯ãè åšæ å ±ã»ã³ã¿ãŒã®è åšæ å ±ãåºã«ã瀟å ãããã¯ãŒã¯ã®å šããŒããã¹ãã£ã³ããŠãå€éšã®äžæ£ãµã€ããžã®ãã©ãã£ãã¯ãå¯èŠåããå±éºãªéä¿¡ãèªåãããã¯ããæ©èœã§ããã
ãã®æ©èœãå©çšããã°ããã«ãŠã§ã¢ã«ããæªæã®ããéä¿¡ã ãã§ãªããè©å€ã®æªãã¢ããªã³ãåæã«ã€ã³ã¹ããŒã«ãããµã€ãããã©ããã³ã°ã¯ãããŒãåäœãããµã€ããžã®ãã©ãã£ãã¯ãªã©ãæ¥åã«é¢ä¿ãªããšæãããããŒã¯ãã©ãã£ãã¯ãå¶åŸ¡ãããããã¯ãŒã¯ã»ã¢ã¯ã»ã¹ã®å¹çåãå³ãããšãå¯èœã«ãªãã
é è€æ°ã«ãããšãããèªæ²»äœã«ãããŠãIronPort WSAã1ã«æé詊çšããŠããã£ããšãããç«¯æ«æ°ã150å°çšåºŠãããªãã«ãé¢ããããçŽ2äž6000ãã®å€§éã®æªããéä¿¡ãèŠã€ãã£ããšãããããã¯ã詊çšã«ãã£ãŠåããŠæããã«ãªã£ããã®ã§ãåºå£å¯Ÿçã®éèŠæ§ã象城ãããã®ãšèšããã
åæ°ã¯ãŸããæšçåæ»æã«å¯Ÿå¿ããå ¥å£å¯Ÿçã®äžç°ãšããŠãã¡ãŒã«å信察çã®èŠçŽããè¡ãããšãéèŠã ãšææãããæšçåã¡ãŒã«ãå¢å ããçŸåšãæ¢åã®SMTPã¬ãã«ã®å¯Ÿçã ãã§ã¯ååã§ã¯ãªããªã£ãŠãããã¡ãŒã«ã«ãããŠãã¬ãã¥ããŒã·ã§ã³æ å ±ã®æŽ»çšãéèŠã«ãªãã»ããããã«æ¥ãŠæ®åçãé«ãŸã£ãŠããSPFãªã©ã®éä¿¡è èªèšŒæè¡ã®æŽ»çšãæ€èšãã¹ã課é¡ãšããŠæµ®äžããŠããããŸããæ€ç¥ç²ŸåºŠã®é«ãã¹ãã æ€ç¥æ©èœã®å©çšãããŒããã€å¯Ÿçã®å®æœãªã©ãæªããã¡ãŒã«ã¯å¯èœãªéãåä¿¡ããªãããã«ããåªåãæ±ããããã
é è€æ°ã¯ãããããããŒãºã«å¯Ÿå¿ãã補åãšããŠãIronPort ESA(Email Security Appliance)ãã玹ä»ãã¹ãã é²åŸ¡ããŠã£ã«ã¹é²åŸ¡ãã¡ãŒã«æå·åãDLP(Data Loss PreventionïŒæ©å¯ããŒã¿ãèå¥ããŠæã¡åºããé²ãæ©èœ)ãã£ã«ã¿ãªã©ã®æ©èœãåããå šæ¹äœã®ã¡ãŒã«ã»ãã¥ãªãã£ãœãªã¥ãŒã·ã§ã³ãæäŸããŠãããšåŒ·èª¿ããã
é è€æ°ã¯ããæšçåæ»æã«å¯Ÿå¿ããããã«ã¯ãåŸæ¥ã®ã¢ã³ããŠã€ã«ã¹ãå«ããæå¹ãªæ©èœãé©åã«çµã¿åãããå€å±€çãªé²åŸ¡ãè¡ãå¿ èŠãããããšããããã§ããå ¥å£å¯Ÿçãšåºå£å¯Ÿçãå«ããå æ¬çãªå¯ŸçãéèŠã«ãªãããšãè¬æŒãç· ãããã£ãã
